Report - trkthat5.com/?OO=k4CRrIyD6JwWJhYtyKXNmDG7Dj/rHPqx&s1=127699_windows_FAFC_SCREFI_12.8.23-47&s2=22546205&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine@slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1

Report Overview

Visited public
2023-12-08 23:07:15
Tags
URL
trkthat5.com/?OO=k4CRrIyD6JwWJhYtyKXNmDG7Dj/rHPqx&s1=127699_windows_FAFC_SCREFI_12.8.23-47&s2=22546205&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine@slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1
Finishing URL
saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1#first-frame
IP / ASN
44.239.163.116
#16509 AMAZON-02
Title
Savior Windows

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
sbalcstrk.com	unknown	2022-08-03	2022-08-04 16:50:43	2023-12-05 22:02:49	741 B	1.4 kB	44.226.93.191
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-08 07:46:22	2.1 kB	66 kB	216.58.207.227
deviceid.trueleadid.com	2097	2010-11-03	2018-07-10 07:19:41	2023-12-08 14:54:13	724 B	4.5 kB	52.206.18.199
script.anura.io	43801	2016-03-22	2017-05-19 21:00:19	2023-12-07 06:39:39	1.6 kB	57 kB	3.8.43.133
saviorwindows.com	unknown	unknown	No data	No data	14 kB	798 kB	18.155.173.117
o400074.ingest.sentry.io	unknown	2012-04-07	2022-08-04 15:40:29	2023-12-01 16:59:02	1.3 kB	1.5 kB	34.120.195.249
create.leadid.com	14598	2010-07-11	2014-01-22 14:55:11	2023-12-08 14:54:12	4.4 kB	12 kB	18.208.87.65
cdn.trustedform.com	24659	2009-02-13	2020-08-27 01:38:48	2023-12-08 21:06:12	1.5 kB	104 kB	54.230.111.111
edwapi-prod.printfinger.tech	unknown	2019-04-26	2023-05-13 08:04:36	2023-12-01 16:59:07	6.1 kB	2.6 kB	35.161.176.122
a.mgid.com	18073	2001-12-30	2013-11-17 06:08:48	2023-12-08 13:24:54	1.4 kB	17 kB	104.19.129.76
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21 01:06:24	2023-12-08 11:14:16	350 B	863 B	143.204.53.97
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-08 07:43:19	3.2 kB	150 kB	142.250.74.106
www.nextinsure.com	33650	2004-11-15	2012-05-25 10:26:01	2023-11-24 09:18:07	431 B	35 kB	104.110.13.205
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-08 05:47:56	893 B	161 kB	142.250.74.168
api.trustedform.com	23021	2009-02-13	2012-10-29 06:30:13	2023-12-07 05:17:18	2.7 kB	1.8 kB	3.221.201.84
create.lidstatic.com	24133	2015-08-14	2015-09-23 21:42:02	2023-12-07 06:22:03	506 B	40 kB	104.22.38.182
d2m2wsoho8qq12.cloudfront.net	unknown	2008-04-25	2013-05-25 05:15:49	2023-12-08 14:54:30	718 B	4.0 kB	143.204.42.49
api.lincx.com	307663	1999-08-23	2020-10-03 12:42:18	2023-11-16 10:02:56	408 B	67 kB	216.58.207.211
trkthat5.com	unknown	2019-01-31	2019-04-23 02:15:56	2023-11-04 17:00:21	695 B	881 B	52.10.152.42
offers.printfingertech.net	unknown	2019-04-11	2023-05-10 04:01:57	2023-12-07 20:24:24	1.3 kB	525 kB	143.204.55.119
	unknown				5.2 kB	103 kB	35.83.198.99
ads.anura.io	75730	2016-03-22	2016-10-30 01:38:15	2023-12-08 08:00:38	455 B	525 B	54.230.111.16
bat.bing.com	387	1996-01-29	2014-04-08 11:23:16	2023-12-08 05:23:49	1.9 kB	15 kB	13.107.21.200
s.yimg.com	375	1997-05-14	2012-05-21 00:45:00	2023-12-08 18:36:52	2.2 kB	17 kB	87.248.119.252

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-08 23:07:10	low	Client IP	18.158.229.59	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard Low Port)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (46)

	URL	From	Size	First Seen	Last Seen
	saviorwindows.com/_app/immutable/chunks/index.5ef5ee76.js	ImportedModule	4.4 kB	2024-08-20	2024-08-20
Pretty URL saviorwindows.com/_app/immutable/chunks/index.5ef5ee76.js IP 18.155.173.117 ASN #0 Introduced by importedModule Embedded in HTML false Observations First Seen2024-08-20 16:19 Last Seen2024-08-20 16:19 Times Seen3 Hash 50beab1d7ba333846e34ff4c08c792e6 2a4c3f1e08144fb586b29797194b8fb8c0cbd6e9 ef95973409a5b87eed9d545456b1508e1153efa8ac2589dc8a6a7f5187ad8c2c Loading...

	saviorwindows.com/_app/immutable/chunks/backupSiteData.d489cda6.js	ImportedModule	3.1 kB	2024-08-20	2024-08-20
Pretty URL saviorwindows.com/_app/immutable/chunks/backupSiteData.d489cda6.js IP 18.155.173.117 ASN #0 Introduced by importedModule Embedded in HTML false Observations First Seen2024-08-20 16:19 Last Seen2024-08-20 16:19 Times Seen3 Hash c4ef469f1f989c9d09682e0b22b9921e fc1af38030b519f148c5286771434f122d35bbdb 576217bdd799a279e932f21a97d8854392c36cd300f5a44149dfdc2e246141d6 Loading...

	a.mgid.com/mgsensor.js?d=1702076830045	ScriptElement	16 kB	2023-11-30	2024-08-20
Pretty URL a.mgid.com/mgsensor.js?d=1702076830045 IP 104.19.129.76 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 13:28 Last Seen2024-08-20 17:21 Times Seen211 Hash 067883a7474453c336f468c028977d2b 83fc595bba09e63f196b9af4fa71d978fddf662d fab2f44ed2c54018f566702de911e32e0d0502e41768f5b16227576589f42e68 Loading...

	deviceid.trueleadid.com/iframe.html?token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.13&lck=F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6&lac=2B26B722-D668-EC71-D186-45FE6EC4DDE1	ScriptElement	4.2 kB	2023-04-05	2024-10-29
Pretty URL deviceid.trueleadid.com/iframe.html?token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.13&lck=F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6&lac=2B26B722-D668-EC71-D186-45FE6EC4DDE1 IP 52.206.18.199 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 03:18 Last Seen2024-10-29 13:50 Times Seen916 Hash 888397723b0cae5a849306756b87634d 2afbc2fe73160ce20dc626b552d4a2f84dce5d79 e5a55390140fb7ef34b7eec67edb995dd3ae18f313b72aeb6a1921cc2d6dd3ad Loading...

	saviorwindows.com/_app/immutable/chunks/index.4658e706.js	ImportedModule	5.7 kB	2023-11-01	2024-08-20
Pretty URL saviorwindows.com/_app/immutable/chunks/index.4658e706.js IP 18.155.173.117 ASN #0 Introduced by importedModule Embedded in HTML false Observations First Seen2023-11-01 09:20 Last Seen2024-08-20 21:32 Times Seen13 Hash da80a5b8c30d644dab78788401cc130d ce23f0df9a27b3c771c46233ccac303e5dfc3316 abe88749acc992b5d95eec4ccb17419fc85a7ee823f9c1b23409366462800a10 Loading...

	unknown	ScriptElement	503 B	2023-03-07	2025-04-14
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22 Last Seen2025-04-14 21:17 Times Seen222 Hash 0b69642b14743f6a62dee1d0217f7f8a 0700dcd083802706d70943679a1282caa0255d47 e21d85ccdb0d636f8f26a25259d2fcbff593e10fd17ffbddfd86e3905d2ff1cc Loading...

	cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=17020768295260.19294446243172725&invert_field_sensitivity=false	ScriptElement	8.1 kB	2023-10-20	2024-08-21
Pretty URL cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=17020768295260.19294446243172725&invert_field_sensitivity=false IP 54.230.111.111 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-20 23:14 Last Seen2024-08-21 04:00 Times Seen528 Hash e11406d1e7ba652ddbe0623e1207c210 e2e391f46667fb8c43868dee0918c3a0024bb8f8 35cbf6a6e5e7ff72ebb142669e1727de048df4fc13fc9fb5d9bd2d8334de7a71 Loading...

	d2m2wsoho8qq12.cloudfront.net/iframe.html?token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.13&lck=F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6&lac=2B26B722-D668-EC71-D186-45FE6EC4DDE1	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL d2m2wsoho8qq12.cloudfront.net/iframe.html?token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.13&lck=F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6&lac=2B26B722-D668-EC71-D186-45FE6EC4DDE1 IP 143.204.42.49 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 09:02 Times Seen4635013 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.googletagmanager.com/gtag/js?id=G-BZYYM64FTN	ScriptElement	230 kB	2023-12-09	2023-12-09
Pretty URL www.googletagmanager.com/gtag/js?id=G-BZYYM64FTN IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-09 00:07 Last Seen2023-12-09 00:07 Times Seen2 Hash 08d90d453997bff2f60676b9ad2ad595 3387aa921c267309220c6f82c8a5dc9ad66a6bb5 5b80d31eadc9a1d5599855208878d37b6ac74c62dd9ee55e4139c87be8fc07d7 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-T4JRFCN&l=scData	ScriptElement	228 kB	2023-12-09	2023-12-09
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-T4JRFCN&l=scData IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-09 00:07 Last Seen2023-12-09 00:07 Times Seen2 Hash 4eef7342ecf85ea591bd5fdc865e372b a51b2f757f612385d81943dc0460d614eb2375f0 effe4cd3fd2091fcd9418149d893a148a97663e4f6850b711a1f80197d0ac3ff Loading...

	s.yimg.com/wi/ytc.js	ScriptElement	18 kB	2023-06-26	2024-08-29
Pretty URL s.yimg.com/wi/ytc.js IP 87.248.119.252 ASN #203220 Yahoo! UK Services Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-26 11:33 Last Seen2024-08-29 17:29 Times Seen6264 Hash 5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91 Loading...

	saviorwindows.com/_app/immutable/chunks/scheduler.a2328b60.js	ImportedModule	8.9 kB	2023-11-01	2024-08-20
Pretty URL saviorwindows.com/_app/immutable/chunks/scheduler.a2328b60.js IP 18.155.173.117 ASN #0 Introduced by importedModule Embedded in HTML false Observations First Seen2023-11-01 09:20 Last Seen2024-08-20 21:32 Times Seen13 Hash dfa6386056be23e5a44150bb210bb6ff 6069dc2ad9a6369ce7da33bf8122daff995e6018 3c79f5d04b99cc9efa93cdef730af3c513deaa9aec244a8bcd1a73e080419ba0 Loading...

	unknown	Function	46 B	2023-04-11	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 22:36 Last Seen2025-05-09 08:20 Times Seen5603 Hash 5c399557f73fcf0024f42259cf94ee17 d2f46cbd088e9b289e63cc23e2377462c6459e3f 254e737260e5ff4f6043abc4ab52ee1f9ea6e9eab066b5c7ac1665c4cf75692b Loading...

	unknown	ScriptElement	379 B	2023-03-07	2025-04-14
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22 Last Seen2025-04-14 21:17 Times Seen144 Hash bc74b67c61157f733439fbd5743c5103 481bdd56117546ffefcfb153dcc8c3f32c1c0ebb 9a63127409b4d84589b0648e04002aee7dfad5812c0d2b93b02109535ed786ba Loading...

	create.lidstatic.com/campaign/f21bcfe7-421d-0b59-65fe-3d36e8d9c8d6.js?snippet_version=2&f=reset&callback=jornayaLeadId	ScriptElement	121 kB	2023-03-07	2024-08-21
Pretty URL create.lidstatic.com/campaign/f21bcfe7-421d-0b59-65fe-3d36e8d9c8d6.js?snippet_version=2&f=reset&callback=jornayaLeadId IP 104.22.38.182 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22 Last Seen2024-08-21 09:37 Times Seen126 Hash d95eb4757eae1af8ccec1c1e74e8f7bf 1ff1a695370b9a1020ea076cef603ed14334e3a9 8d14bc4734a6d60366e2b88c0417096df1f662a40043664ef170d181752419b0 Loading...

	saviorwindows.com/_app/immutable/entry/start.420c404f.js	ScriptElement	24 kB	2023-12-09	2023-12-09
Pretty URL saviorwindows.com/_app/immutable/entry/start.420c404f.js IP 18.155.173.117 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-09 00:07 Last Seen2023-12-09 00:07 Times Seen3 Hash 881ade63135500e0ccc3fbfbdbe82fe1 d004707b6dff1e5cc05e538bd7066df0f47a1162 5206fb179abf00d12c3f9c7ed1cb15a284d155fb607666d8e5c9fd34bf629f60 Loading...

	offers.printfingertech.net/js/jtksplits.js	ScriptElement	47 kB	2023-10-15	2023-12-17
Pretty URL offers.printfingertech.net/js/jtksplits.js IP 143.204.55.119 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-15 10:19 Last Seen2023-12-17 16:39 Times Seen68 Hash 5e666eb301e54ebbb96f2121af92e6a8 8e7f7139c4a1dc90f2b136ca27888d2ffe268805 438332b5954bf287f4ab5e3c772c476d2ccf92246e8e3c8eeed3dc77c9889af5 Loading...

	unknown	ScriptElement	140 B	2023-03-07	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22 Last Seen2024-08-21 09:37 Times Seen147 Hash 0c05a8d72d0befc1b9043d03e452b5dd 439b95b056a92b3aa5755e5e9f24a7f4ca6070d1 b87f72c1079564b6e786472f4d9fbc7ef0cf134dd9fa75d2b86f7ce66db025da Loading...

	script.anura.io/request.js?instance=560907681&source=4737&campaign=2307&exid=9640d5d3-958c-4fc7-95e4-b4f9177cc399&variable=optionalResponseObjectVariable&callback=89&485959207363	ScriptElement	56 kB	2023-12-09	2023-12-09
Pretty URL script.anura.io/request.js?instance=560907681&source=4737&campaign=2307&exid=9640d5d3-958c-4fc7-95e4-b4f9177cc399&variable=optionalResponseObjectVariable&callback=89&485959207363 IP 3.8.43.133 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-09 00:07 Last Seen2023-12-09 00:07 Times Seen1 Hash 752576dceed28d057cb239a358d4c040 9ba10af2f30eda9e23dcb24cad7b3cfab4f9ab96 07b4590a64f95a6214c3aefebee6431a218e9c851ad9212df28816bf99c62ab2 Loading...

	saviorwindows.com/_app/immutable/chunks/globals.7f7f1b26.js	ImportedModule	89 B	2023-08-11	2025-04-30
Pretty URL saviorwindows.com/_app/immutable/chunks/globals.7f7f1b26.js IP 18.155.173.117 ASN #0 Introduced by importedModule Embedded in HTML false Observations First Seen2023-08-11 10:21 Last Seen2025-04-30 05:29 Times Seen200 Hash 42f21db36ad72c8c36a737b4c5a568d1 391a315c736001175c1cea254c588b932260d880 31a34028cf64a9c5415fd0e5e5920a4057fadd0b5974adda1d13eb45aaffbfc6 Loading...

	bat.bing.com/p/action/56315087.js	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL bat.bing.com/p/action/56315087.js IP 13.107.21.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 09:02 Times Seen4635013 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	saviorwindows.com/_app/immutable/chunks/singletons.c7ccfe2f.js	ImportedModule	2.9 kB	2024-08-20	2024-08-20
Pretty URL saviorwindows.com/_app/immutable/chunks/singletons.c7ccfe2f.js IP 18.155.173.117 ASN #0 Introduced by importedModule Embedded in HTML false Observations First Seen2024-08-20 16:19 Last Seen2024-08-20 16:19 Times Seen3 Hash a82505e5a76b27422a6e2f275a76db1f 1cb6a854d220e36a3deaa14881a2a8ccc19bef68 3d1e93a798196bbfe23224d1052cfc0f9d70a7728837c15c90d683cceef62e3d Loading...

	cdn.trustedform.com/trustedform-1.9.4.js	ScriptElement	86 kB	2023-10-20	2024-08-21
Pretty URL cdn.trustedform.com/trustedform-1.9.4.js IP 54.230.111.111 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-20 23:14 Last Seen2024-08-21 04:00 Times Seen526 Hash f46641519eee44fe450f02ae72e64a74 af388dad525a6e17e8057bdd4e3abbd6e165fc62 daec1d32a4f211884695930cbc2443467f28e7bd1b1ae1afb7f2eb16349aacfe Loading...

	saviorwindows.com/_app/immutable/chunks/Moon.6ba9b2dc.js	ImportedModule	2.0 kB	2024-08-20	2024-08-20
Pretty URL saviorwindows.com/_app/immutable/chunks/Moon.6ba9b2dc.js IP 18.155.173.117 ASN #0 Introduced by importedModule Embedded in HTML false Observations First Seen2024-08-20 16:19 Last Seen2024-08-20 16:19 Times Seen3 Hash 902b2f9af03bd95872e17d3146472ea9 385af833c598e236eba60aaf16c0c7c8fe6320cd 97db0a3ca05e225399bfd894740bdce42b07b277d6aa46bd291c42f7f66692e6 Loading...

	offers.printfingertech.net/js/jtknet.js	ScriptElement	496 kB	2023-12-09	2024-08-20
Pretty URL offers.printfingertech.net/js/jtknet.js IP 143.204.55.119 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-09 00:07 Last Seen2024-08-20 16:19 Times Seen9 Hash 70407c3af0fdc924c099ed2c0a5bed2b e6744243649fd8e9c7b1ba003bddb3bad55196e3 c7bfb1a6204c9c28637e29c7978365b45243f27503133a6d96ee57cbd25e8f7c Loading...

	unknown	ScriptElement	164 B	2023-12-09	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-09 00:07 Last Seen2024-08-20 16:19 Times Seen23 Hash 1668b81ae915b129b1bc438902385c04 ddaa19336b03907b7340ec28bc093eb2ab31301c 07aed18a53130400935068975f178f74c0689ba8ba0ae5c1b49f7b59a74e8253 Loading...

	unknown	ScriptElement	575 B	2023-03-07	2025-04-14
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22 Last Seen2025-04-14 21:17 Times Seen222 Hash afe9360ac22ee687a800f4f6efb6d3c9 8a792d7aa7c0d4a16b5bd36b021a5dbc334510a2 e252435fb77878d3032a79da461874c0b21700400bb3908aac3d0671e655607b Loading...

	saviorwindows.com/_app/immutable/chunks/subDomainCheck.a1fd7b9d.js	ImportedModule	137 B	2023-11-01	2024-08-20
Pretty URL saviorwindows.com/_app/immutable/chunks/subDomainCheck.a1fd7b9d.js IP 18.155.173.117 ASN #0 Introduced by importedModule Embedded in HTML false Observations First Seen2023-11-01 09:20 Last Seen2024-08-20 21:32 Times Seen46 Hash 0dde73b8f523c093c873024a7665c39c 58d0a28876a1d3d90e86f9cdfd1a2bce556517b7 d336e666c48ab4fbc3aa63958b993b180f63bb9d3907fbc5c412e9e773da0360 Loading...

	saviorwindows.com/_app/immutable/chunks/webhookTrack.06553620.js	ImportedModule	422 B	2023-11-01	2025-05-08
Pretty URL saviorwindows.com/_app/immutable/chunks/webhookTrack.06553620.js IP 18.155.173.117 ASN #0 Introduced by importedModule Embedded in HTML false Observations First Seen2023-11-01 09:20 Last Seen2025-05-08 21:06 Times Seen162 Hash 72fdf3ebed43599dd5ec602ed0ecb6a5 8c85367c6d4166f376fdcd8c4ea0c8f61f329582 e5af35560a91e3ce8a3554febb2fe725c33357c16ec3e270f31f2cff2a772cd4 Loading...

	unknown	ScriptElement	341 B	2023-03-07	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22 Last Seen2024-08-21 09:37 Times Seen146 Hash 1d5d39520b8bfc1fe14ae09106e50149 d5d1fcdf62aea11a56f339e858f4aff537b7d029 0c6e3f07cb6144046b81241419dd0a9adafcfe0d98d9e8e690dede877cfa1d33 Loading...

	saviorwindows.com/_app/immutable/chunks/WindowsThankYouHeader.svelte_svelte_type_style_lang.9d2422d6.js	ImportedModule	322 kB	2024-08-20	2024-08-20
Pretty URL saviorwindows.com/_app/immutable/chunks/WindowsThankYouHeader.svelte_svelte_type_style_lang.9d2422d6.js IP 18.155.173.117 ASN #0 Introduced by importedModule Embedded in HTML false Observations First Seen2024-08-20 16:19 Last Seen2024-08-20 16:19 Times Seen3 Hash 114145855a58b62a20cec50db2fa671e 4ae9ec0728b4bb01e36fa1d5a0bfee45368bb9f6 17f2b3455cba46ab1c682e461bb794ec3f0d0035816cd198f18236b5231e05e1 Loading...

	www.nextinsure.com/listingdisplay/loader/sh	ScriptElement	115 kB	2023-10-15	2024-08-21
Pretty URL www.nextinsure.com/listingdisplay/loader/sh IP 104.110.13.205 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-15 10:19 Last Seen2024-08-21 04:39 Times Seen132 Hash ce8292d30d18ebc10a27b4d892492dc6 828905840093d0ddb844d9c5b61c2b30f008a5ac aa4ca46b0e424222e07ef9bd49299211bc1b6a429fb19c44458ec0456f06b922 Loading...

	unknown	ScriptElement	470 B	2023-03-07	2025-04-14
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22 Last Seen2025-04-14 21:17 Times Seen222 Hash 5f71deb8e4609bc3effd0ee0c86ebf1f 227d5899fa41c8161a0fe5d1f1033e85a5e5e0e6 5d113193cafd862ecda5af5d2709301ff669fd640a58062db9613945d71199c6 Loading...

	bat.bing.com/bat.js	ScriptElement	46 kB	2023-11-10	2024-09-19
Pretty URL bat.bing.com/bat.js IP 13.107.21.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-10 23:20 Last Seen2024-09-19 20:57 Times Seen11863 Hash 7f75f159026f3a2c8cccda487b43157b 021cf5c854db063cd79bf0394c24eb994e095640 5e319852607809336b2534ffeb96f6933f26994dd040f535302c84f59cc0a214 Loading...

	saviorwindows.com/_app/immutable/nodes/1.35bc8963.js	ScriptElement	1.0 kB	2024-08-20	2024-08-20
Pretty URL saviorwindows.com/_app/immutable/nodes/1.35bc8963.js IP 18.155.173.117 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 16:19 Last Seen2024-08-20 16:19 Times Seen3 Hash 917ff12704ceb9ea2463076a10b7b73d ade42b69d47336eff73bcdd4a76eebe5edebb8ad 64b8287c2b54158c1508fd46ea1fb80761657171b04adb021632b2641636f3a0 Loading...

	unknown	ScriptElement	469 B	2023-03-07	2025-04-14
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22 Last Seen2025-04-14 21:17 Times Seen222 Hash 02ad328fd7b3eefaf891863df65e7740 5dfd18f13cd0e805680612ca321c87d4e6db9d04 d30c0a0c706730967b10ac91eb92802d0f99bc852210a1d459628211bad7e23e Loading...

	saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 IP 18.155.173.117 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 09:02 Times Seen4635013 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	api.lincx.com/load	ScriptElement	67 kB	2023-11-28	2024-08-20
Pretty URL api.lincx.com/load IP 216.58.207.211 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 10:11 Last Seen2024-08-20 17:37 Times Seen163 Hash 7c175659416dbe9631b2efe6fdf9ab5c 3eeab691fe0ef609f8ca013fe1eaafd4f429e6db f63336ab14b9a67ae63592871a01ab5469d0861f7bd40a32e240161fbc7d6428 Loading...

	saviorwindows.com/_app/immutable/chunks/preload-helper.cf010ec4.js	ImportedModule	876 B	2023-07-22	2025-05-08
Pretty URL saviorwindows.com/_app/immutable/chunks/preload-helper.cf010ec4.js IP 18.155.173.117 ASN #0 Introduced by importedModule Embedded in HTML false Observations First Seen2023-07-22 10:19 Last Seen2025-05-08 21:06 Times Seen316 Hash 011f1ff33a32d1fe9914054e5f26aec8 f04b590d8406e40c40286cbf1ca16a4bf2ade3cf c72ccd4fdb1e96772af462ba6ea54ef471e24a8c0b85f9213142b99603d9f416 Loading...

	saviorwindows.com/_app/immutable/entry/app.b9f34b1f.js	ScriptElement	113 kB	2023-12-09	2023-12-09
Pretty URL saviorwindows.com/_app/immutable/entry/app.b9f34b1f.js IP 18.155.173.117 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-09 00:07 Last Seen2023-12-09 00:07 Times Seen3 Hash 2b7613e76aea991701c494365cd1b6ba cb90a7cf1b008349b45dcbe7f031bb3de90b1d1d 9f144e0eab5847d9e473764b2ee75059b6df34bf6ab530de36f475016feb7121 Loading...

	saviorwindows.com/_app/immutable/nodes/0.7ffd88a3.js	ScriptElement	14 kB	2024-08-20	2024-08-20
Pretty URL saviorwindows.com/_app/immutable/nodes/0.7ffd88a3.js IP 18.155.173.117 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 16:19 Last Seen2024-08-20 16:19 Times Seen3 Hash c685d1218cac38690a2c757a0e21b20a 39834ed5e5aa03a42965cad1193bba274020e082 3831ff7beb4865a0701ced1732bc52fddd6d91ad0b22b7dc0e29fb6dceca0448 Loading...

	saviorwindows.com/_app/immutable/chunks/each.e59479a4.js	ImportedModule	87 B	2023-08-11	2025-04-10
Pretty URL saviorwindows.com/_app/immutable/chunks/each.e59479a4.js IP 18.155.173.117 ASN #0 Introduced by importedModule Embedded in HTML false Observations First Seen2023-08-11 10:21 Last Seen2025-04-10 23:46 Times Seen178 Hash ed718622d3e979028d80d2ede958f7bb c7f1f87a58fc18f497fdcca79d57cffb740e0f80 6106934f04548d18ce76b1233f1618343336dd172c6c3919f44333d4b6715ac6 Loading...

	saviorwindows.com/_app/immutable/nodes/2.08d23dbe.js	ScriptElement	350 kB	2024-08-20	2024-08-20
Pretty URL saviorwindows.com/_app/immutable/nodes/2.08d23dbe.js IP 18.155.173.117 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 16:19 Last Seen2024-08-20 16:19 Times Seen3 Hash fd2334a06ebd5d68c71ba8602c3ec519 27582f179af27b1e4e67d3ddfe58c04716f449b9 201ddd99963868579806e03428a228f79bd583259441d1cd6056e3c14e728170 Loading...

	unknown	ScriptElement	469 B	2023-03-07	2025-04-14
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22 Last Seen2025-04-14 21:17 Times Seen144 Hash f461fac99641f2f76a1898844de0f796 0f20432867043a6d148d2b44cc4a3771071f7ee5 ad345023850e140ba95f8e171742f696b6687246b6561cf891f9b7ee0e03b2ce Loading...

	unknown	ScriptElement	424 B	2023-03-07	2025-04-14
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22 Last Seen2025-04-14 21:17 Times Seen222 Hash 417a803e50c906cd1d5f36f87804e842 1f36c84d916a9b89299b72d7cd6a09aab6ec432e adbf8243b42d3d7c611e2db1efe3210431c38ed495c94a2e8a5779f6929bebdf Loading...

		Size	First Seen	Last Seen
	#1 Eval - 5923e6a91fd004cc0815f0a5494f6368	14 B	2023-03-07 01:03	2025-05-08 21:06
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-05-08 21:06 Times Seen1647 Hash 5923e6a91fd004cc0815f0a5494f6368 6f0cc8f774ac9d8240ffe81a9c659c9612d7bb70 0510de046e8325540849bad09f31eaaa3e9256fafd330c5d57327dc948812a33 Loading...

HTTP Transactions (95)

	URL	IP	Response	Size
	trkthat5.com/?OO=k4CRrIyD6JwWJhYtyKXNmDG7Dj/rHPqx&s1=127699_windows_FAFC_SCREFI_12.8.23-47&s2=22546205&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine@slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1	52.10.152.42	302 Found	444 B
URL User Request GET HTTP/1.1 trkthat5.com/?OO=k4CRrIyD6JwWJhYtyKXNmDG7Dj/rHPqx&s1=127699_windows_FAFC_SCREFI_12.8.23-47&s2=22546205&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine@slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 IP 52.10.152.42:443 ASN #16509 AMAZON-02 Certificate IssuerGlobalSign nv-sa Subject.trkthat5.com Fingerprint13:02:4E:11:09:90:4E:31:BA:38:D5:B4:64:6C:E4:E8:C9:B6:DA:B6 ValidityThu, 04 May 2023 23:03:51 GMT - Tue, 04 Jun 2024 23:03:50 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (372), with CRLF line terminators Size 444 B (444 bytes) Hash b460f5655e14b2736a16c6c5f1a25057 f2aeded65a52aa8749f5f3a241a7f6936537c383 42ce07769d0461c8d1d17d627619cd96ccce4f4100235b62a774c5de86da33bb HTTP Headers GET /?OO=k4CRrIyD6JwWJhYtyKXNmDG7Dj/rHPqx&s1=127699_windows_FAFC_SCREFI_12.8.23-47&s2=22546205&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine@slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 HTTP/1.1 Host: trkthat5.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 302 Found date: Fri, 08 Dec 2023 23:06:56 GMT content-type: text/html; charset=utf-8 content-length: 444 cache-control: private location: https://sbalcstrk.com/?OO=k4CRrIyD6JwWJhYtyKXNmDG7Dj/rHPqx&s1=127699_windows_FAFC_SCREFI_12.8.23-47&s2=22546205&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine@slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1&ckmguid=a0a17066-f25e-4333-bf59-eff36f5ebc1a`

	sbalcstrk.com/?OO=k4CRrIyD6JwWJhYtyKXNmDG7Dj/rHPqx&s1=127699_windows_FAFC_SCREFI_12.8.23-47&s2=22546205&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine@slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1&ckmguid=a0a17066-f25e-4333-bf59-eff36f5ebc1a	44.226.93.191	302 Found	465 B
URL User Request GET HTTP/1.1 sbalcstrk.com/?OO=k4CRrIyD6JwWJhYtyKXNmDG7Dj/rHPqx&s1=127699_windows_FAFC_SCREFI_12.8.23-47&s2=22546205&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine@slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1&ckmguid=a0a17066-f25e-4333-bf59-eff36f5ebc1a IP 44.226.93.191:443 ASN #16509 AMAZON-02 Certificate IssuerGlobalSign nv-sa Subject.sbalcstrk.com FingerprintF8:71:7B:F0:4A:1F:A7:B8:73:63:A9:64:AF:66:F7:EE:11:A0:B1:87 ValidityTue, 22 Aug 2023 04:42:13 GMT - Sun, 22 Sep 2024 04:42:12 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (393), with CRLF line terminators Size 465 B (465 bytes) Hash 8415b25f15756f28e263999ffb7f2c71 df99ed789aa275b89798f18793f478981fbfe0f0 fe1f668e393d98f8bcaa5696561e0bdaf897f18fbf02a06d110cfb510c42aa0b HTTP Headers GET /?OO=k4CRrIyD6JwWJhYtyKXNmDG7Dj/rHPqx&s1=127699_windows_FAFC_SCREFI_12.8.23-47&s2=22546205&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine@slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1&ckmguid=a0a17066-f25e-4333-bf59-eff36f5ebc1a HTTP/1.1 Host: sbalcstrk.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found date: Fri, 08 Dec 2023 23:06:57 GMT content-type: text/html; charset=utf-8 content-length: 465 cache-control: private location: https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" set-cookie: st=jsaTNADZBgkYGCIDCYmED1Ie2n21M8cmtBajBljrt7n+lxyAkhvvNQ==; domain=.sbalcstrk.com; path=/; HttpOnly tfl=+3h8jFVlY8oPpn7WIPu0IFIe2n21M8cmtBajBljrt7n+lxyAkhvvNQ==; domain=.sbalcstrk.com; expires=Mon, 08-Dec-2025 23:06:57 GMT; path=/; HttpOnly c4737=jsaTNADZBgmJVeZSxdoFM5ZOVKaUv3KZUk5pHiJKbDNg50OkfpiaHg==; domain=.sbalcstrk.com; expires=Sat, 09-Dec-2023 23:06:57 GMT; path=/; HttpOnly

	ocsp.r2m03.amazontrust.com/	143.204.53.97		471 B
URL ocsp.r2m03.amazontrust.com/ IP 143.204.53.97:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 444ed710324cc177b5dd3ef56ba1fbe0 16f5b4c776b2e1176e93be19b2b102e39d57b2a6 84404fd54930bb87d3c02e118387dff522d13dcda9aa4a4a88130377e15b9a26 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m03.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Cache-Control: max-age=7200 Date: Fri, 08 Dec 2023 23:06:58 GMT Server: ECAcc (amb/6B6A) X-Cache: Miss from cloudfront Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: YoETNEBgUqmbSsjYOIsN2gCOlLmVMUXv5JSeXBoMZDBpvhbavXfylw==`

	saviorwindows.com/favicon.png	18.155.173.117	200 OK	2.3 kB
URL GET HTTP/2 saviorwindows.com/favicon.png IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data Size 2.3 kB (2264 bytes) Hash 3f4206364907c09c8a5f19e009853f42 56495fa70c62ae2e9443e76d85f0f05755437598 4c71ca965e55fea5a8fd4889b7ecfc01dce9301bba91c23f14d79107bc3b5b68 HTTP Headers GET /favicon.png HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/png content-length: 2264 x-amz-meta-content-md5: 3f4206364907c09c8a5f19e009853f42 last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: ycblZKV2.DTeIHQ_qm.Y_71CxUlGnjUx server: AmazonS3 date: Fri, 08 Dec 2023 23:07:00 GMT cache-control: max-age=604810, no-cache etag: "3f4206364907c09c8a5f19e009853f42" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: wOwGFdQn3krtFBcAPyHHLvIdVls2UPx1IUecRZ2bdZMpo76-5s2yMQ== X-Firefox-Spdy: h2

	saviorwindows.com/_app/immutable/chunks/preload-helper.cf010ec4.js	18.155.173.117	200 OK	876 B
URL GET HTTP/2 saviorwindows.com/_app/immutable/chunks/preload-helper.cf010ec4.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type ASCII text, with very long lines (875) Size 876 B (876 bytes) Hash 011f1ff33a32d1fe9914054e5f26aec8 f04b590d8406e40c40286cbf1ca16a4bf2ade3cf c72ccd4fdb1e96772af462ba6ea54ef471e24a8c0b85f9213142b99603d9f416 HTTP Headers `GET /_app/immutable/chunks/preload-helper.cf010ec4.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/_app/immutable/entry/app.b9f34b1f.js Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: application/javascript content-length: 876 x-amz-meta-content-md5: 011f1ff33a32d1fe9914054e5f26aec8 last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: 1jWDqqk4M5Z3AF21u6_mTl06VcGqNH4Y server: AmazonS3 date: Fri, 08 Dec 2023 23:07:00 GMT cache-control: max-age=604810, no-cache etag: "011f1ff33a32d1fe9914054e5f26aec8" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: _Mfkl2oLJZHBmw83t2Ol4k8gbGTYHY8bjzugKA1C2SnGLM9TgDdA-w== X-Firefox-Spdy: h2

	saviorwindows.com/_app/immutable/chunks/subDomainCheck.a1fd7b9d.js	18.155.173.117	200 OK	137 B
URL GET HTTP/2 saviorwindows.com/_app/immutable/chunks/subDomainCheck.a1fd7b9d.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type ASCII text Size 137 B (137 bytes) Hash 0dde73b8f523c093c873024a7665c39c 58d0a28876a1d3d90e86f9cdfd1a2bce556517b7 d336e666c48ab4fbc3aa63958b993b180f63bb9d3907fbc5c412e9e773da0360 HTTP Headers `GET /_app/immutable/chunks/subDomainCheck.a1fd7b9d.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/_app/immutable/nodes/0.7ffd88a3.js Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: application/javascript content-length: 137 x-amz-meta-content-md5: 0dde73b8f523c093c873024a7665c39c last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: En8JFjxdn0b.DGP4Be0QK9dJoA1v3dnx server: AmazonS3 date: Fri, 08 Dec 2023 23:07:01 GMT cache-control: max-age=604810, no-cache etag: "0dde73b8f523c093c873024a7665c39c" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: dzIrMbCiPuIx9TAHa1OoPlgZHz8AFZ6vyQrVyZAtgQqp9nkKplP1EQ== X-Firefox-Spdy: h2

	fonts.googleapis.com/css2?family=News+Cycle:wght@400;700&display=swap	142.250.74.106	200 OK	880 B
URL GET HTTP/2 fonts.googleapis.com/css2?family=News+Cycle:wght@400;700&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type gzip compressed data, max compression\012- data Size 880 B (880 bytes) Hash 3bf194fe0513a30de097efe69ac56ae7 3629ecfd4164870c740a3f041435f6d6cba9a4e9 3650803e46e31ee9aecfd1f81f8910f5a967e3baaf5c90e1033726323286fe25 HTTP Headers `GET /css2?family=News+Cycle:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 08 Dec 2023 23:06:59 GMT date: Fri, 08 Dec 2023 23:06:59 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	saviorwindows.com/_app/immutable/chunks/webhookTrack.06553620.js	18.155.173.117	200 OK	422 B
URL GET HTTP/2 saviorwindows.com/_app/immutable/chunks/webhookTrack.06553620.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (418) Size 422 B (422 bytes) Hash 72fdf3ebed43599dd5ec602ed0ecb6a5 8c85367c6d4166f376fdcd8c4ea0c8f61f329582 e5af35560a91e3ce8a3554febb2fe725c33357c16ec3e270f31f2cff2a772cd4 HTTP Headers `GET /_app/immutable/chunks/webhookTrack.06553620.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/_app/immutable/nodes/0.7ffd88a3.js Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: application/javascript content-length: 422 x-amz-meta-content-md5: 72fdf3ebed43599dd5ec602ed0ecb6a5 last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: YAHnxDXjcISvxS2zSLFHMZjTA8kpSbyk server: AmazonS3 date: Fri, 08 Dec 2023 23:07:01 GMT cache-control: max-age=604810, no-cache etag: "72fdf3ebed43599dd5ec602ed0ecb6a5" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: sO2qEqU54vDzYI9hikZsjJ_K69snzN-DgayjiRtclju6f758qrh8ew== X-Firefox-Spdy: h2

	saviorwindows.com/_app/immutable/chunks/globals.7f7f1b26.js	18.155.173.117	200 OK	89 B
URL GET HTTP/2 saviorwindows.com/_app/immutable/chunks/globals.7f7f1b26.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type ASCII text Size 89 B (89 bytes) Hash 42f21db36ad72c8c36a737b4c5a568d1 391a315c736001175c1cea254c588b932260d880 31a34028cf64a9c5415fd0e5e5920a4057fadd0b5974adda1d13eb45aaffbfc6 HTTP Headers `GET /_app/immutable/chunks/globals.7f7f1b26.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/_app/immutable/nodes/0.7ffd88a3.js Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: application/javascript content-length: 89 x-amz-meta-content-md5: 42f21db36ad72c8c36a737b4c5a568d1 last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: vYbPGwUw1b0YiDxXiKWTWNQ7vcxAvtir server: AmazonS3 date: Fri, 08 Dec 2023 23:07:01 GMT cache-control: max-age=604810, no-cache etag: "42f21db36ad72c8c36a737b4c5a568d1" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: LXLYqApog54OZaJtVRZ96BI_eZYBIYcVTrbDYJJOz9cT73ESrfs0fg== X-Firefox-Spdy: h2

	saviorwindows.com/favicon.png	18.155.173.117	200 OK	2.3 kB
URL GET HTTP/2 saviorwindows.com/favicon.png IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data Size 2.3 kB (2264 bytes) Hash 3f4206364907c09c8a5f19e009853f42 56495fa70c62ae2e9443e76d85f0f05755437598 4c71ca965e55fea5a8fd4889b7ecfc01dce9301bba91c23f14d79107bc3b5b68 HTTP Headers GET /favicon.png HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/png content-length: 2264 x-amz-meta-content-md5: 3f4206364907c09c8a5f19e009853f42 last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: ycblZKV2.DTeIHQ_qm.Y_71CxUlGnjUx server: AmazonS3 date: Fri, 08 Dec 2023 23:07:01 GMT cache-control: max-age=604810, no-cache etag: "3f4206364907c09c8a5f19e009853f42" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: ryRjsDwAl4Fg5F9hBo6lCU9AxWWmLJR1CUU4ecStsI_VofSLgu9hmA== X-Firefox-Spdy: h2

	saviorwindows.com/_app/immutable/chunks/each.e59479a4.js	18.155.173.117	200 OK	87 B
URL GET HTTP/2 saviorwindows.com/_app/immutable/chunks/each.e59479a4.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type ASCII text Size 87 B (87 bytes) Hash ed718622d3e979028d80d2ede958f7bb c7f1f87a58fc18f497fdcca79d57cffb740e0f80 6106934f04548d18ce76b1233f1618343336dd172c6c3919f44333d4b6715ac6 HTTP Headers `GET /_app/immutable/chunks/each.e59479a4.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/_app/immutable/nodes/2.08d23dbe.js Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: application/javascript content-length: 87 x-amz-meta-content-md5: ed718622d3e979028d80d2ede958f7bb last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: Sw03uSQSc_Tpzqy0f.7hMAATdvaQelPf server: AmazonS3 date: Fri, 08 Dec 2023 23:07:01 GMT cache-control: max-age=604810, no-cache etag: "ed718622d3e979028d80d2ede958f7bb" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: x1CRZHMovyBuKxEfqoWnGM2LI_k4hhjZvVlDQd7in7VpJYpmzO6PAg== X-Firefox-Spdy: h2

	o400074.ingest.sentry.io/api/4504498136612864/envelope/?sentry_key=91f43cc5d1c549cc8a7e95fc4e4b4d77&sentry_version=7&sentry_client=sentry.javascript.svelte%2F7.73.0	34.120.195.249	429 Too Many Requests	41 B
URL POST HTTP/2 o400074.ingest.sentry.io/api/4504498136612864/envelope/?sentry_key=91f43cc5d1c549cc8a7e95fc4e4b4d77&sentry_version=7&sentry_client=sentry.javascript.svelte%2F7.73.0 IP 34.120.195.249:443 ASN #15169 GOOGLE Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerDigiCert Inc Subjectingest.sentry.io Fingerprint60:82:0B:58:64:CD:37:FD:3F:C0:84:4F:0B:69:CF:58:05:15:97:9A ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 41 B (41 bytes) Hash dd928f34776b29e6913c5c783bc51844 bda03fe07482305a4c2ae81cbab9b3669b43cba0 3691dd63a1e23760d1025442423a20c5f20b1ad31b7a5a0f1d02d6379a5b1343 HTTP Headers POST /api/4504498136612864/envelope/?sentry_key=91f43cc5d1c549cc8a7e95fc4e4b4d77&sentry_version=7&sentry_client=sentry.javascript.svelte%2F7.73.0 HTTP/1.1 Host: o400074.ingest.sentry.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://saviorwindows.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 14034 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Fri, 08 Dec 2023 23:07:00 GMT content-type: application/json content-length: 41 access-control-allow-origin: * vary: origin,access-control-request-method,access-control-request-headers access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after cross-origin-resource-policy: cross-origin x-envoy-upstream-service-time: 0 strict-transport-security: max-age=31536000; includeSubDomains; preload via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.nextinsure.com/listingdisplay/loader/sh	104.110.13.205	200 OK	33 kB
URL GET HTTP/2 www.nextinsure.com/listingdisplay/loader/sh IP 104.110.13.205:443 ASN #16625 AKAMAI-AS Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerDigiCert Inc Subjectwww.quinstreet.com Fingerprint14:F3:E3:64:D7:D4:73:24:97:23:7C:C6:D6:33:5D:D5:DA:2E:6F:DF ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (42152), with CRLF line terminators Size 33 kB (33312 bytes) Hash ce8292d30d18ebc10a27b4d892492dc6 828905840093d0ddb844d9c5b61c2b30f008a5ac aa4ca46b0e424222e07ef9bd49299211bc1b6a429fb19c44458ec0456f06b922 HTTP Headers `GET /listingdisplay/loader/sh HTTP/1.1 Host: www.nextinsure.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=utf-8 last-modified: Fri, 08 Dec 2023 15:25:12 GMT access-control-allow-origin: * timing-allow-origin: * content-security-policy-report-only: default-src 'self'; connect-src 'self' .nextinsure.com .anura.io; font-src 'self' .nextinsure.com .gstatic.com .bootstrapcdn.com assets.intuitcdn.net i.pretected.com; style-src .googleapis.com 'unsafe-inline';script-src 'self' 'unsafe-inline' 'unsafe-eval' .anura.io nextinsure.com .nextinsure.com .googleapis.com .bootstrapcdn.com code.jquery.com .linksynergy.com i.pretected.com; script-src-elem 'self' 'unsafe-inline' 'unsafe-eval' .anura.io nextinsure.com .nextinsure.com .googleapis.com .bootstrapcdn.com code.jquery.com .linksynergy.com i.pretected.com; img-src * data:; style-src-elem * 'unsafe-inline';frame-ancestors 'none';form-action 'self';upgrade-insecure-requests;block-all-mixed-content;object-src 'none'; report-uri /ListingDisplay/handlers/csp.ashx; content-encoding: gzip content-length: 33312 cache-control: public, max-age=21600 expires: Sat, 09 Dec 2023 05:07:00 GMT date: Fri, 08 Dec 2023 23:07:00 GMT vary: Accept-Encoding strict-transport-security: max-age=15768000 ; includeSubDomains x-xss-protection: 1; mode=block x-content-type-options: nosniff x-cfg-version: v133 X-Firefox-Spdy: h2

	saviorwindows.com/_app/immutable/chunks/backupSiteData.d489cda6.js	18.155.173.117	200 OK	1.6 kB
URL GET HTTP/2 saviorwindows.com/_app/immutable/chunks/backupSiteData.d489cda6.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type gzip compressed data, from Unix\012- data Size 1.6 kB (1628 bytes) Hash 69bfdcad5595f82ac4d279975ce6170c 5c6b225057e464fac6bec09d7287f29f18e865ed 1c055db29e194882e67d77e35f4fed7808983e8d738785fcaf9b755ab2e14942 HTTP Headers `GET /_app/immutable/chunks/backupSiteData.d489cda6.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/_app/immutable/nodes/0.7ffd88a3.js Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: application/javascript x-amz-meta-content-md5: c4ef469f1f989c9d09682e0b22b9921e last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: cNIpz_swnc8mzo0WtDs3a3e0zh8Xo0Rv server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:07:01 GMT cache-control: max-age=604810, no-cache etag: W/"c4ef469f1f989c9d09682e0b22b9921e" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: I8OuPxHZStgpXBmPBhrvfqRG181-uEiFMlYFRAFFk1M4htEvmfQZIQ== X-Firefox-Spdy: h2

	www.googletagmanager.com/gtag/js?id=G-BZYYM64FTN	142.250.74.168	200 OK	81 kB
URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-BZYYM64FTN IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT File type ASCII text, with very long lines (5955) Size 81 kB (81249 bytes) Hash 08d90d453997bff2f60676b9ad2ad595 3387aa921c267309220c6f82c8a5dc9ad66a6bb5 5b80d31eadc9a1d5599855208878d37b6ac74c62dd9ee55e4139c87be8fc07d7 HTTP Headers `GET /gtag/js?id=G-BZYYM64FTN HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Fri, 08 Dec 2023 23:07:00 GMT expires: Fri, 08 Dec 2023 23:07:00 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 81249 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Poppins:400,500,600,700,800	142.250.74.106	200 OK	22 kB
URL GET HTTP/2 fonts.googleapis.com/css?family=Poppins:400,500,600,700,800 IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type ASCII text, with very long lines (33878) Size 22 kB (22402 bytes) Hash 242410281f743ce16201c2a3e599122b cc942a2542b41621a22d56386f8d3fe1a03f81d2 aa903fe7fe952cd5ba74bef12a59b51a72e7d2268cbd752dbbca2982e3347d22 HTTP Headers `GET /css?family=Poppins:400,500,600,700,800 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 08 Dec 2023 23:06:59 GMT date: Fri, 08 Dec 2023 23:06:59 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	offers.printfingertech.net/js/jtksplits.js	143.204.55.119	200 OK	17 kB
URL GET HTTP/2 offers.printfingertech.net/js/jtksplits.js IP 143.204.55.119:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfingertech.net Fingerprint23:D5:35:93:30:1A:0F:05:49:4E:41:1D:C1:28:0C:73:29:CF:EB:44 ValidityThu, 20 Apr 2023 00:00:00 GMT - Sat, 18 May 2024 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (35212) Size 17 kB (16779 bytes) Hash 5e666eb301e54ebbb96f2121af92e6a8 8e7f7139c4a1dc90f2b136ca27888d2ffe268805 438332b5954bf287f4ab5e3c772c476d2ccf92246e8e3c8eeed3dc77c9889af5 HTTP Headers `GET /js/jtksplits.js HTTP/1.1 Host: offers.printfingertech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript date: Fri, 08 Dec 2023 21:56:22 GMT last-modified: Wed, 11 Oct 2023 18:33:47 GMT x-amz-version-id: .Xc8by2ukjCz1d4Q9LPE1AD2Y9lOqwB8 etag: W/"5e666eb301e54ebbb96f2121af92e6a8" server: AmazonS3 content-encoding: br vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: x0Kr4tqaWDQgSTwdK1fLg_XkoppDT5MYo9bm7hxeQOforouRZyaB8g== age: 4239 X-Firefox-Spdy: h2

	fonts.googleapis.com/css2?family=DM+Sans:ital,opsz,wght@0,9..40,100;0,9..40,200;0,9..40,300;0,9..40,400;0,9..40,500;0,9..40,600;0,9..40,700;0,9..40,800;0,9..40,900;0,9..40,1000;1,9..40,100;1,9..40,200;1,9..40,300;1,9..40,400;1,9..40,500;1,9..40,600;1,9..40,700;1,9..40,800;1,9..40,900;1,9..40,1000&display=swap	142.250.74.106	200 OK	79 kB
URL GET HTTP/2 fonts.googleapis.com/css2?family=DM+Sans:ital,opsz,wght@0,9..40,100;0,9..40,200;0,9..40,300;0,9..40,400;0,9..40,500;0,9..40,600;0,9..40,700;0,9..40,800;0,9..40,900;0,9..40,1000;1,9..40,100;1,9..40,200;1,9..40,300;1,9..40,400;1,9..40,500;1,9..40,600;1,9..40,700;1,9..40,800;1,9..40,900;1,9..40,1000&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type gzip compressed data, max compression\012- data Size 79 kB (78689 bytes) Hash b7b13922d9cb971285ace66cc35c42ce 1efa4bb423c449bd3db5340931ca52565cc9690c 2db0da8b39616ab46d8a00738411ac375dc0f1636723de06012eaa888e0adbc6 HTTP Headers GET /css2?family=DM+Sans:ital,opsz,wght@0,9..40,100;0,9..40,200;0,9..40,300;0,9..40,400;0,9..40,500;0,9..40,600;0,9..40,700;0,9..40,800;0,9..40,900;0,9..40,1000;1,9..40,100;1,9..40,200;1,9..40,300;1,9..40,400;1,9..40,500;1,9..40,600;1,9..40,700;1,9..40,800;1,9..40,900;1,9..40,1000&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 08 Dec 2023 23:06:59 GMT date: Fri, 08 Dec 2023 23:06:59 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	external.printfinger.tech:7106/api/GetSplitsData?SiteUrl=saviorwindows.com&isActiveOnly=true	35.83.198.99	204 No Content	0 B
URL OPTIONS HTTP/2 external.printfinger.tech:7106/api/GetSplitsData?SiteUrl=saviorwindows.com&isActiveOnly=true IP 35.83.198.99:7106 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/GetSplitsData?SiteUrl=saviorwindows.com&isActiveOnly=true HTTP/1.1 Host: external.printfinger.tech:7106 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: authorization,content-type,method Referer: https://saviorwindows.com/ Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content date: Fri, 08 Dec 2023 23:07:02 GMT server: Kestrel access-control-allow-headers: authorization,content-type,method access-control-allow-methods: GET access-control-allow-origin: * X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2	216.58.207.227	200 OK	16 kB
URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data Size 16 kB (15752 bytes) Hash b20371a6daf29d4a1f2e85dbbf40fb20 0355a01c1ccb45cb728e7e07c41c8ebf456f70bb 7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e HTTP Headers GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15752 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 07 Dec 2023 04:57:15 GMT expires: Fri, 06 Dec 2024 04:57:15 GMT cache-control: public, max-age=31536000 age: 151787 last-modified: Wed, 11 May 2022 19:24:56 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2	216.58.207.227	200 OK	16 kB
URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size 16 kB (15744 bytes) Hash 15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615 HTTP Headers GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 07 Dec 2023 04:57:34 GMT expires: Fri, 06 Dec 2024 04:57:34 GMT cache-control: public, max-age=31536000 age: 151768 last-modified: Wed, 11 May 2022 19:24:48 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2	216.58.207.227	200 OK	16 kB
URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Size 16 kB (15860 bytes) Hash e9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860 HTTP Headers GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15860 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 07 Dec 2023 15:46:25 GMT expires: Fri, 06 Dec 2024 15:46:25 GMT cache-control: public, max-age=31536000 last-modified: Wed, 11 May 2022 19:24:42 GMT content-type: font/woff2 age: 112837 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	external.printfinger.tech:7106/api/GetSplitsData?SiteUrl=saviorwindows.com&isActiveOnly=true	35.83.198.99	204 No Content	7.0 kB
URL OPTIONS HTTP/2 external.printfinger.tech:7106/api/GetSplitsData?SiteUrl=saviorwindows.com&isActiveOnly=true IP 35.83.198.99:7106 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type JSON data\012- data Size 7.0 kB (6960 bytes) Hash ba6ee0c13e63aeae1466f4e8ca58a8b5 5dc1f20143806ffe0e8b9b64c1cdd320d1f92b08 81896a8591a588f37bc02dcc4e89ce28977fe537e8b971deebbe8be54cb04a08 HTTP Headers GET /api/GetSplitsData?SiteUrl=saviorwindows.com&isActiveOnly=true HTTP/1.1 Host: external.printfinger.tech:7106 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://saviorwindows.com/ method: GET Content-Type: application/json Authorization: Bearer RzUxTERMWW1GV1hOZm1MT2FzaFczMDRERnJFV3piVFg1b29Xem1lSTJLdlF4SVlIZk9zZW9GWlBBeEZXSEN4bkNBUzE3eVl4TllkdEZuUTZTNjFrc3pzME9aVkNnSUIwV0hPdzBoSnF6NVFQbHFLWGdKREtLTTROU2NuaWRXUkZYblc3WmVHdnhMdXhpY09oUDhmWEUwcEtNQWVYNGxNZG9MMjhUTTdDQ1NYOWJIb3pPRlRm Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:02 GMT content-type: application/json; charset=utf-8 server: Kestrel access-control-allow-origin: * X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2	216.58.207.227	200 OK	16 kB
URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data Size 16 kB (15740 bytes) Hash b9c29351c46f3e8c8631c4002457f48a e57e59c5780995ff2937ab2b511a769212974a87 f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef HTTP Headers GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15740 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 06 Dec 2023 21:36:53 GMT expires: Thu, 05 Dec 2024 21:36:53 GMT cache-control: public, max-age=31536000 age: 178209 last-modified: Wed, 11 May 2022 19:24:56 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.googletagmanager.com/gtm.js?id=GTM-T4JRFCN&l=scData	142.250.74.168	200 OK	79 kB
URL GET HTTP/3 www.googletagmanager.com/gtm.js?id=GTM-T4JRFCN&l=scData IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT File type ASCII text, with very long lines (17126) Size 79 kB (78611 bytes) Hash 4eef7342ecf85ea591bd5fdc865e372b a51b2f757f612385d81943dc0460d614eb2375f0 effe4cd3fd2091fcd9418149d893a148a97663e4f6850b711a1f80197d0ac3ff HTTP Headers `GET /gtm.js?id=GTM-T4JRFCN&l=scData HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Fri, 08 Dec 2023 23:07:03 GMT expires: Fri, 08 Dec 2023 23:07:03 GMT cache-control: private, max-age=900 last-modified: Fri, 08 Dec 2023 21:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 78611 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	external.printfinger.tech:7106/api/GetSplitsData?SiteUrl=saviorwindows.com&isActiveOnly=true	35.83.198.99	204 No Content	473 B
URL OPTIONS HTTP/2 external.printfinger.tech:7106/api/GetSplitsData?SiteUrl=saviorwindows.com&isActiveOnly=true IP 35.83.198.99:7106 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type JSON data\012- data Size 473 B (473 bytes) Hash a2788112b15faefc92a96b194b72b05f 40e2134af14fe9c4ac47e0f357cfe0ca3943dbca 74cd57e78e615d36d52c4c4039098fb42a540837b869f9396aad8f0a9b54396b HTTP Headers GET /api/GetSplitsData?SiteUrl=saviorwindows.com&isActiveOnly=true HTTP/1.1 Host: external.printfinger.tech:7106 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://saviorwindows.com/ method: GET Content-Type: application/json Authorization: Bearer RzUxTERMWW1GV1hOZm1MT2FzaFczMDRERnJFV3piVFg1b29Xem1lSTJLdlF4SVlIZk9zZW9GWlBBeEZXSEN4bkNBUzE3eVl4TllkdEZuUTZTNjFrc3pzME9aVkNnSUIwV0hPdzBoSnF6NVFQbHFLWGdKREtLTTROU2NuaWRXUkZYblc3WmVHdnhMdXhpY09oUDhmWEUwcEtNQWVYNGxNZG9MMjhUTTdDQ1NYOWJIb3pPRlRm Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:02 GMT content-type: application/json; charset=utf-8 server: Kestrel access-control-allow-origin: * X-Firefox-Spdy: h2`

	external.printfinger.tech:7102/api/StorePrePop	35.83.198.99	200 OK	0 B
URL POST HTTP/2 external.printfinger.tech:7102/api/StorePrePop IP 35.83.198.99:7102 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/StorePrePop HTTP/1.1 Host: external.printfinger.tech:7102 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: authorization,content-type,crossdomain,signal,uuid Referer: https://saviorwindows.com/ Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content date: Fri, 08 Dec 2023 23:07:03 GMT server: Kestrel access-control-allow-headers: authorization,content-type,crossdomain,signal,uuid access-control-allow-methods: POST access-control-allow-origin: * X-Firefox-Spdy: h2`

	external.printfinger.tech:7105/api/CheckRules	35.83.198.99	200 OK	0 B
URL POST HTTP/2 external.printfinger.tech:7105/api/CheckRules IP 35.83.198.99:7105 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/CheckRules HTTP/1.1 Host: external.printfinger.tech:7105 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: authorization,content-type,crossdomain,signal,uuid Referer: https://saviorwindows.com/ Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content date: Fri, 08 Dec 2023 23:07:03 GMT server: Kestrel access-control-allow-headers: authorization,content-type,crossdomain,signal,uuid access-control-allow-methods: POST access-control-allow-origin: * X-Firefox-Spdy: h2`

	saviorwindows.com/_app/immutable/entry/app.b9f34b1f.js	18.155.173.117	200 OK	127 kB
URL GET HTTP/2 saviorwindows.com/_app/immutable/entry/app.b9f34b1f.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type gzip compressed data, from Unix\012- data Size 127 kB (126690 bytes) Hash b19f0489474ec9328b6897d8c788adb3 57de1840e63171c88198caab6baa354f529262b2 d1a1ddb54976971caebafcfdd79411ba7286443b0d3b1cd37eaaf4b02b87c11f HTTP Headers GET /_app/immutable/entry/app.b9f34b1f.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: application/javascript x-amz-meta-content-md5: 2b7613e76aea991701c494365cd1b6ba last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: iTZUc7geBu.SPat1gWxKY0hI8ZenUOEP server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:06:59 GMT cache-control: max-age=604810, no-cache etag: W/"2b7613e76aea991701c494365cd1b6ba" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: qOLXsJX_uOrExmxI1ZgwB73FpDLbRxovG35MeBeNlHvqTxGGROxykw== X-Firefox-Spdy: h2

	api.trustedform.com/certs	3.221.201.84	201 Created	475 B
URL POST HTTP/2 api.trustedform.com/certs IP 3.221.201.84:443 ASN #14618 AMAZON-AES Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.trustedform.com Fingerprint7B:FF:D3:7A:7E:7A:64:8E:2F:D4:D7:B8:FE:F4:D3:8E:F0:CA:C1:D8 ValidityFri, 11 Aug 2023 00:00:00 GMT - Sat, 07 Sep 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with very long lines (475), with no line terminators Size 475 B (475 bytes) Hash 3d9609cce5486494c54db45df41cac90 cb753b2831b7e824d81f19d69a5e92de030abf3c f043a8d18f8e21799aa1857729981af0453bc6aced1a23c016114bf67ac15bf4 HTTP Headers `POST /certs HTTP/1.1 Host: api.trustedform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 847 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 201 Created date: Fri, 08 Dec 2023 23:07:03 GMT content-type: application/json; charset=utf-8 content-length: 475 access-control-allow-credentials: true access-control-allow-origin: * access-control-expose-headers: cache-control: max-age=0, private, must-revalidate server: Cowboy X-Firefox-Spdy: h2`

	external.printfinger.tech:7102/api/StorePrePop	35.83.198.99	200 OK	0 B
URL POST HTTP/2 external.printfinger.tech:7102/api/StorePrePop IP 35.83.198.99:7102 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /api/StorePrePop HTTP/1.1 Host: external.printfinger.tech:7102 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://saviorwindows.com/ Authorization: Bearer RzUxTERMWW1GV1hOZm1MT2FzaFczMDRERnJFV3piVFg1b29Xem1lSTJLdlF4SVlIZk9zZW9GWlBBeEZXSEN4bkNBUzE3eVl4TllkdEZuUTZTNjFrc3pzME9aVkNnSUIwV0hPdzBoSnF6NVFQbHFLWGdKREtLTTROU2NuaWRXUkZYblc3WmVHdnhMdXhpY09oUDhmWEUwcEtNQWVYNGxNZG9MMjhUTTdDQ1NYOWJIb3pPRlRm Content-Type: application/json crossDomain: true signal: [object AbortSignal] uuid: 9640d5d3-958c-4fc7-95e4-b4f9177cc399 Content-Length: 346 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:03 GMT content-length: 0 server: Kestrel access-control-allow-origin: * X-Firefox-Spdy: h2`

	ads.anura.io/showads.js?868337040980	54.230.111.16	200 OK	63 B
URL GET HTTP/2 ads.anura.io/showads.js?868337040980 IP 54.230.111.16:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectads.anura.io Fingerprint69:66:FA:26:E2:E4:89:00:9A:F7:DE:2C:F6:5A:C2:B9:58:04:5D:E6 ValidityTue, 30 May 2023 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT File type gzip compressed data, max speed, from Unix\012- data Size 63 B (63 bytes) Hash 3915e7db2773215baa8b809f35d1ab18 2bf6795a2987aff3df0dcac61074e20cf047ca09 2924757ec855bb24f0678319ccd6a354ebfd8895877aac6cd42518576c8d29cd HTTP Headers `GET /showads.js?868337040980 HTTP/1.1 Host: ads.anura.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: application/javascript; charset=utf-8 date: Fri, 08 Dec 2023 19:41:45 GMT server: nginx access-control-allow-origin: * access-control-allow-methods: GET content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: f7WLFZlVg7xPT9-rF8Zh_H3hJoxRVei2CJUQ07WdQ04M1HX-BMFnvw== age: 12318 X-Firefox-Spdy: h2`

	create.lidstatic.com/campaign/f21bcfe7-421d-0b59-65fe-3d36e8d9c8d6.js?snippet_version=2&f=reset&callback=jornayaLeadId	104.22.38.182	200 OK	39 kB
URL GET HTTP/2 create.lidstatic.com/campaign/f21bcfe7-421d-0b59-65fe-3d36e8d9c8d6.js?snippet_version=2&f=reset&callback=jornayaLeadId IP 104.22.38.182:443 ASN #13335 CLOUDFLARENET Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerCloudflare, Inc. Subjectlidstatic.com FingerprintF7:D5:3C:A9:3E:B6:D5:BF:11:CB:69:9F:0B:34:88:4F:18:79:BC:88 ValidityTue, 28 Feb 2023 00:00:00 GMT - Wed, 28 Feb 2024 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators Size 39 kB (39433 bytes) Hash 8f00a9e178b385d20465c4165b8d46e1 8e0177eeb890958503aecbdcb16df9410065f9a4 0906c1dbea41e07bb15cd35840c48860f0fff618755c43e2039784eaa91f8789 HTTP Headers `GET /campaign/f21bcfe7-421d-0b59-65fe-3d36e8d9c8d6.js?snippet_version=2&f=reset&callback=jornayaLeadId HTTP/1.1 Host: create.lidstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:03 GMT content-type: text/javascript x-amz-id-2: CnO9z07DbxkEuM2BCgwuR+aJUvj8wp34gUhmxTFrsgRVn4haD74tdUagYhas+y7dzQd7sOg+l+SEbdkG4Qk5cXwmp5iCx9rK x-amz-request-id: 0K704MD374AFJKXN x-amz-replication-status: COMPLETED last-modified: Fri, 10 Jun 2022 16:41:26 GMT etag: W/"d95eb4757eae1af8ccec1c1e74e8f7bf" x-amz-server-side-encryption: AES256 cache-control: max-age=1800 x-amz-version-id: EBYnnRkv0TelUZ4goVtGo3IOOMs5bLCh cf-cache-status: HIT age: 1714 vary: Accept-Encoding server: cloudflare cf-ray: 8328a991edac15dc-ARN content-encoding: gzip X-Firefox-Spdy: h2

	external.printfinger.tech:7105/api/CheckRules	35.83.198.99	200 OK	94 kB
URL POST HTTP/2 external.printfinger.tech:7105/api/CheckRules IP 35.83.198.99:7105 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65434), with no line terminators Size 94 kB (94455 bytes) Hash 28a85cb5a1ca99aa7a81682d91510dd2 f274bc192a9276ed28eeba3ac74d389de88e09f3 3fa8ca189a4dd66477d2c3b6f6dc338bee5c8aebac5593c69a561ce6059d46bd HTTP Headers POST /api/CheckRules HTTP/1.1 Host: external.printfinger.tech:7105 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://saviorwindows.com/ Authorization: Bearer RzUxTERMWW1GV1hOZm1MT2FzaFczMDRERnJFV3piVFg1b29Xem1lSTJLdlF4SVlIZk9zZW9GWlBBeEZXSEN4bkNBUzE3eVl4TllkdEZuUTZTNjFrc3pzME9aVkNnSUIwV0hPdzBoSnF6NVFQbHFLWGdKREtLTTROU2NuaWRXUkZYblc3WmVHdnhMdXhpY09oUDhmWEUwcEtNQWVYNGxNZG9MMjhUTTdDQ1NYOWJIb3pPRlRm Content-Type: application/json crossDomain: true signal: [object AbortSignal] uuid: 9640d5d3-958c-4fc7-95e4-b4f9177cc399 Content-Length: 121 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:03 GMT content-type: application/json; charset=utf-8 content-length: 94455 server: Kestrel access-control-allow-origin: * X-Firefox-Spdy: h2`

	api.trustedform.com/certs/79482554c37ad3aed7d189c2b64b1f45ef628bcc/snapshot	3.221.201.84	204 No Content	0 B
URL POST HTTP/2 api.trustedform.com/certs/79482554c37ad3aed7d189c2b64b1f45ef628bcc/snapshot IP 3.221.201.84:443 ASN #14618 AMAZON-AES Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.trustedform.com Fingerprint7B:FF:D3:7A:7E:7A:64:8E:2F:D4:D7:B8:FE:F4:D3:8E:F0:CA:C1:D8 ValidityFri, 11 Aug 2023 00:00:00 GMT - Sat, 07 Sep 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /certs/79482554c37ad3aed7d189c2b64b1f45ef628bcc/snapshot HTTP/1.1 Host: api.trustedform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 11711 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 204 No Content date: Fri, 08 Dec 2023 23:07:04 GMT access-control-allow-credentials: true access-control-allow-origin: * access-control-expose-headers: cache-control: max-age=0, private, must-revalidate server: Cowboy X-Firefox-Spdy: h2`

	api.trustedform.com/certs/79482554c37ad3aed7d189c2b64b1f45ef628bcc/fingerprints	3.221.201.84	204 No Content	0 B
URL POST HTTP/2 api.trustedform.com/certs/79482554c37ad3aed7d189c2b64b1f45ef628bcc/fingerprints IP 3.221.201.84:443 ASN #14618 AMAZON-AES Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.trustedform.com Fingerprint7B:FF:D3:7A:7E:7A:64:8E:2F:D4:D7:B8:FE:F4:D3:8E:F0:CA:C1:D8 ValidityFri, 11 Aug 2023 00:00:00 GMT - Sat, 07 Sep 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /certs/79482554c37ad3aed7d189c2b64b1f45ef628bcc/fingerprints HTTP/1.1 Host: api.trustedform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 520 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 204 No Content date: Fri, 08 Dec 2023 23:07:04 GMT access-control-allow-credentials: true access-control-allow-origin: * access-control-expose-headers: cache-control: max-age=0, private, must-revalidate server: Cowboy X-Firefox-Spdy: h2`

	edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5	35.161.176.122	200 OK	0 B
URL POST HTTP/2 edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 IP 35.161.176.122:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 HTTP/1.1 Host: edwapi-prod.printfinger.tech User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,x-edw-secret-token Referer: https://saviorwindows.com/ Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content server: awselb/2.0 date: Fri, 08 Dec 2023 23:07:04 GMT access-control-allow-headers: * access-control-allow-methods: GET,POST access-control-allow-origin: https://saviorwindows.com X-Firefox-Spdy: h2`

	edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5	35.161.176.122	200 OK	0 B
URL POST HTTP/2 edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 IP 35.161.176.122:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 HTTP/1.1 Host: edwapi-prod.printfinger.tech User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,x-edw-secret-token Referer: https://saviorwindows.com/ Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content server: awselb/2.0 date: Fri, 08 Dec 2023 23:07:04 GMT access-control-allow-headers: * access-control-allow-methods: GET,POST access-control-allow-origin: https://saviorwindows.com X-Firefox-Spdy: h2`

	edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5	35.161.176.122	200 OK	0 B
URL POST HTTP/2 edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 IP 35.161.176.122:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 HTTP/1.1 Host: edwapi-prod.printfinger.tech User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,x-edw-secret-token Referer: https://saviorwindows.com/ Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content server: awselb/2.0 date: Fri, 08 Dec 2023 23:07:04 GMT access-control-allow-headers: * access-control-allow-methods: GET,POST access-control-allow-origin: https://saviorwindows.com X-Firefox-Spdy: h2`

	edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5	35.161.176.122	200 OK	0 B
URL POST HTTP/2 edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 IP 35.161.176.122:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 HTTP/1.1 Host: edwapi-prod.printfinger.tech User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,x-edw-secret-token Referer: https://saviorwindows.com/ Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content server: awselb/2.0 date: Fri, 08 Dec 2023 23:07:04 GMT access-control-allow-headers: * access-control-allow-methods: GET,POST access-control-allow-origin: https://saviorwindows.com X-Firefox-Spdy: h2`

	edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5	35.161.176.122	200 OK	0 B
URL POST HTTP/2 edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 IP 35.161.176.122:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 HTTP/1.1 Host: edwapi-prod.printfinger.tech User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,x-edw-secret-token Referer: https://saviorwindows.com/ Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content server: awselb/2.0 date: Fri, 08 Dec 2023 23:07:04 GMT access-control-allow-headers: * access-control-allow-methods: GET,POST access-control-allow-origin: https://saviorwindows.com X-Firefox-Spdy: h2`

	edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5	35.161.176.122	200 OK	0 B
URL POST HTTP/2 edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 IP 35.161.176.122:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 HTTP/1.1 Host: edwapi-prod.printfinger.tech User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,x-edw-secret-token Referer: https://saviorwindows.com/ Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content server: awselb/2.0 date: Fri, 08 Dec 2023 23:07:04 GMT access-control-allow-headers: * access-control-allow-methods: GET,POST access-control-allow-origin: https://saviorwindows.com X-Firefox-Spdy: h2`

	api.trustedform.com/certs/79482554c37ad3aed7d189c2b64b1f45ef628bcc/events	3.221.201.84	204 No Content	0 B
URL POST HTTP/2 api.trustedform.com/certs/79482554c37ad3aed7d189c2b64b1f45ef628bcc/events IP 3.221.201.84:443 ASN #14618 AMAZON-AES Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.trustedform.com Fingerprint7B:FF:D3:7A:7E:7A:64:8E:2F:D4:D7:B8:FE:F4:D3:8E:F0:CA:C1:D8 ValidityFri, 11 Aug 2023 00:00:00 GMT - Sat, 07 Sep 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /certs/79482554c37ad3aed7d189c2b64b1f45ef628bcc/events HTTP/1.1 Host: api.trustedform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1494 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 204 No Content date: Fri, 08 Dec 2023 23:07:05 GMT access-control-allow-credentials: true access-control-allow-origin: * access-control-expose-headers: cache-control: max-age=0, private, must-revalidate server: Cowboy X-Firefox-Spdy: h2`

	edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5	35.161.176.122	200 OK	23 B
URL POST HTTP/2 edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 IP 35.161.176.122:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 23 B (23 bytes) Hash eec2dd962eef21f5d833df737b8a46e4 15afe4156ad11bd679905856538ec9542d31d19f 098763ba07104fbbfcd28fa3a5f3e36878ad0cf34804921c65bd7af80f719f9a HTTP Headers POST /webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 HTTP/1.1 Host: edwapi-prod.printfinger.tech User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://saviorwindows.com/ X-Edw-Secret-Token: CD9T/QZcPKxai+Frv/6++XvOtliX9+gnykE23Vmcsdo Content-Type: application/json Content-Length: 96 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: awselb/2.0 date: Fri, 08 Dec 2023 23:07:05 GMT content-type: application/json content-length: 23 access-control-allow-headers: * access-control-allow-methods: GET,POST access-control-allow-origin: https://saviorwindows.com X-Firefox-Spdy: h2`

	saviorwindows.com/_app/immutable/chunks/WindowsThankYouHeader.svelte_svelte_type_style_lang.9d2422d6.js	18.155.173.117	200 OK	94 kB
URL GET HTTP/2 saviorwindows.com/_app/immutable/chunks/WindowsThankYouHeader.svelte_svelte_type_style_lang.9d2422d6.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type gzip compressed data, from Unix\012- data Size 94 kB (94146 bytes) Hash 072180e31b407daa4bd97727d24e9479 45d1ba4ac3d96c0ecfc48a62ae94aef7cad64c0b 528134e19369a7cb80bfb3f1eb929d2b1f0984455a4868c840d350f2ed9545e5 HTTP Headers GET /_app/immutable/chunks/WindowsThankYouHeader.svelte_svelte_type_style_lang.9d2422d6.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/_app/immutable/nodes/0.7ffd88a3.js Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: application/javascript x-amz-meta-content-md5: 114145855a58b62a20cec50db2fa671e last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: ezv4dU1q1xxCHZH19ijFc_WJ5qETrXrc server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:07:01 GMT cache-control: max-age=604810, no-cache etag: W/"114145855a58b62a20cec50db2fa671e" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: 27ZRlZA5xbBXfy2Rc2NIp7lgK02JLArrqBjMtDMrqFkoJ0_5B15JQw== X-Firefox-Spdy: h2

	create.leadid.com/2.11.13/InitFormData?msn=4&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&_=794241336	18.208.87.65	200 OK	43 B
URL POST HTTP/2 create.leadid.com/2.11.13/InitFormData?msn=4&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&_=794241336 IP 18.208.87.65:443 ASN #14618 AMAZON-AES Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectcreate.leadid.com Fingerprint46:54:4A:B9:70:8B:37:98:4E:C9:BF:96:0A:86:0B:9A:ED:A7:07:49 ValidityMon, 21 Aug 2023 00:00:00 GMT - Tue, 17 Sep 2024 23:59:59 GMT File type gzip compressed data, from Unix\012- data Size 43 B (43 bytes) Hash 2d9f742375b5ff4886f9860c378244aa 1ef7bbd1fb9b57de404cfdab7b6e7e9c649cd56f b762a1d1722155263c3e459456d50fd8cd1416d244f000382958b2aa2dbc8af4 HTTP Headers POST /2.11.13/InitFormData?msn=4&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&_=794241336 HTTP/1.1 Host: create.leadid.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 1076 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:04 GMT content-type: text/plain;charset=UTF-8 server: nginx set-cookie: rgisanonymous=false; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ rguserid=3eca8dbb-be19-4462-9594-e7ac05f20dbe; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ cache-control: no-cache, must-revalidate expires: Sat, 26 Jul 1997 05:00:00 GMT access-control-allow-origin: * access-control-allow-headers: X-Requested-With, Content-Type access-control-max-age: 1728000 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2

	edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5	35.161.176.122	200 OK	23 B
URL POST HTTP/2 edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 IP 35.161.176.122:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 23 B (23 bytes) Hash eec2dd962eef21f5d833df737b8a46e4 15afe4156ad11bd679905856538ec9542d31d19f 098763ba07104fbbfcd28fa3a5f3e36878ad0cf34804921c65bd7af80f719f9a HTTP Headers POST /webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 HTTP/1.1 Host: edwapi-prod.printfinger.tech User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://saviorwindows.com/ X-Edw-Secret-Token: CD9T/QZcPKxai+Frv/6++XvOtliX9+gnykE23Vmcsdo Content-Type: application/json Content-Length: 67 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: awselb/2.0 date: Fri, 08 Dec 2023 23:07:05 GMT content-type: application/json content-length: 23 access-control-allow-headers: * access-control-allow-methods: GET,POST access-control-allow-origin: https://saviorwindows.com X-Firefox-Spdy: h2`

	edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5	35.161.176.122	200 OK	23 B
URL POST HTTP/2 edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 IP 35.161.176.122:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 23 B (23 bytes) Hash eec2dd962eef21f5d833df737b8a46e4 15afe4156ad11bd679905856538ec9542d31d19f 098763ba07104fbbfcd28fa3a5f3e36878ad0cf34804921c65bd7af80f719f9a HTTP Headers POST /webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 HTTP/1.1 Host: edwapi-prod.printfinger.tech User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://saviorwindows.com/ X-Edw-Secret-Token: CD9T/QZcPKxai+Frv/6++XvOtliX9+gnykE23Vmcsdo Content-Type: application/json Content-Length: 564 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: awselb/2.0 date: Fri, 08 Dec 2023 23:07:05 GMT content-type: application/json content-length: 23 access-control-allow-headers: * access-control-allow-methods: GET,POST access-control-allow-origin: https://saviorwindows.com X-Firefox-Spdy: h2`

	edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5	35.161.176.122	200 OK	23 B
URL POST HTTP/2 edwapi-prod.printfinger.tech/webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 IP 35.161.176.122:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfinger.tech FingerprintD3:2B:69:79:6E:E2:06:EF:67:87:1B:A2:C6:93:F6:EB:71:0C:BC:E2 ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 23 B (23 bytes) Hash eec2dd962eef21f5d833df737b8a46e4 15afe4156ad11bd679905856538ec9542d31d19f 098763ba07104fbbfcd28fa3a5f3e36878ad0cf34804921c65bd7af80f719f9a HTTP Headers POST /webhook/13cc5ce4-4f2e-4811-a886-c20eeabd1dd5 HTTP/1.1 Host: edwapi-prod.printfinger.tech User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://saviorwindows.com/ X-Edw-Secret-Token: CD9T/QZcPKxai+Frv/6++XvOtliX9+gnykE23Vmcsdo Content-Type: application/json Content-Length: 97 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: awselb/2.0 date: Fri, 08 Dec 2023 23:07:05 GMT content-type: application/json content-length: 23 access-control-allow-headers: * access-control-allow-methods: GET,POST access-control-allow-origin: https://saviorwindows.com X-Firefox-Spdy: h2`

	bat.bing.com/bat.js	13.107.21.200	200 OK	13 kB
URL GET HTTP/2 bat.bing.com/bat.js IP 13.107.21.200:443 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerMicrosoft Corporation Subjectwww.bing.com FingerprintA5:EC:34:1F:AB:B3:69:71:54:88:69:BA:64:CC:E2:9B:32:B6:65:CD ValidityTue, 24 Oct 2023 07:42:22 GMT - Sun, 21 Apr 2024 07:42:22 GMT File type Unicode text, UTF-8 text, with very long lines (46103), with no line terminators Size 13 kB (13175 bytes) Hash 7f75f159026f3a2c8cccda487b43157b 021cf5c854db063cd79bf0394c24eb994e095640 5e319852607809336b2534ffeb96f6933f26994dd040f535302c84f59cc0a214 HTTP Headers `GET /bat.js HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK cache-control: private,max-age=1800 content-length: 13175 content-type: application/javascript content-encoding: gzip last-modified: Fri, 10 Nov 2023 20:09:55 GMT accept-ranges: bytes etag: "80abcdf1114da1:0" vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: 3D513C8D63E64F1382C43597EBDA5E7A Ref B: OSL30EDGE0309 Ref C: 2023-12-08T23:07:05Z date: Fri, 08 Dec 2023 23:07:05 GMT X-Firefox-Spdy: h2

	create.leadid.com/2.11.13/SaveDeviceId.js?lac=2B26B722-D668-EC71-D186-45FE6EC4DDE1&lck=F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6&methods=48&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&uuid=17131c1079b5442aaa16adcb53cbb899	18.208.87.65	200 OK	6.3 kB
URL GET HTTP/2 create.leadid.com/2.11.13/SaveDeviceId.js?lac=2B26B722-D668-EC71-D186-45FE6EC4DDE1&lck=F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6&methods=48&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&uuid=17131c1079b5442aaa16adcb53cbb899 IP 18.208.87.65:443 ASN #14618 AMAZON-AES Requested by https://deviceid.trueleadid.com/iframe.html?token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.13&lck=F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6&lac=2B26B722-D668-EC71-D186-45FE6EC4DDE1 Certificate IssuerAmazon Subjectcreate.leadid.com Fingerprint46:54:4A:B9:70:8B:37:98:4E:C9:BF:96:0A:86:0B:9A:ED:A7:07:49 ValidityMon, 21 Aug 2023 00:00:00 GMT - Tue, 17 Sep 2024 23:59:59 GMT File type ASCII text, with very long lines (18187), with no line terminators Size 6.3 kB (6282 bytes) Hash 5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91 HTTP Headers GET /2.11.13/SaveDeviceId.js?lac=2B26B722-D668-EC71-D186-45FE6EC4DDE1&lck=F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6&methods=48&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&uuid=17131c1079b5442aaa16adcb53cbb899 HTTP/1.1 Host: create.leadid.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://deviceid.trueleadid.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:04 GMT content-type: text/javascript;charset=UTF-8 server: nginx set-cookie: rgisanonymous=false; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ rguserid=b0386879-c50b-4154-aa9c-67a528a7b7c1; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ cache-control: no-cache, must-revalidate expires: Sat, 26 Jul 1997 05:00:00 GMT access-control-allow-origin: * access-control-allow-headers: X-Requested-With, Content-Type access-control-max-age: 1728000 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2

	s.yimg.com/wi/ytc.js	87.248.119.252	200 OK	6.3 kB
URL GET HTTP/2 s.yimg.com/wi/ytc.js IP 87.248.119.252:443 ASN #203220 Yahoo! UK Services Limited Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerDigiCert Inc Subject.api.fantasysports.yahoo.com Fingerprint73:32:A8:90:C9:6F:41:1C:ED:AA:2A:95:41:24:4E:E2:B2:AB:FB:D6 ValidityMon, 06 Nov 2023 00:00:00 GMT - Wed, 27 Dec 2023 23:59:59 GMT File type ASCII text, with very long lines (18187), with no line terminators Size 6.3 kB (6262 bytes) Hash 5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91 HTTP Headers `GET /wi/ytc.js HTTP/1.1 Host: s.yimg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK x-amz-id-2: m+n39mx/iKxn+cqzifVT7O+zQ8oFO9UbmNE09QvUkbcuLsyUFEHp2k3BTWBdVDaRnKghjgu5UgY= x-amz-request-id: V5R2N7RQAVBYEVF4 date: Fri, 08 Dec 2023 22:34:59 GMT last-modified: Mon, 26 Jun 2023 09:26:35 GMT x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle" etag: "5c6ed25dce803fd84288922b8928409e-df" x-amz-server-side-encryption: AES256 cache-control: public,max-age=3600 x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW accept-ranges: bytes content-type: application/javascript server: ATS referrer-policy: no-referrer-when-downgrade vary: Origin, Accept-Encoding age: 1927 content-encoding: gzip content-length: 6262 strict-transport-security: max-age=31536000 expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only" x-xss-protection: 1; mode=block x-content-type-options: nosniff ats-carp-promotion: 1, 1 X-Firefox-Spdy: h2

	s.yimg.com/wi/ytc.js	87.248.119.252	200 OK	6.3 kB
URL GET HTTP/2 s.yimg.com/wi/ytc.js IP 87.248.119.252:443 ASN #203220 Yahoo! UK Services Limited Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerDigiCert Inc Subject.api.fantasysports.yahoo.com Fingerprint73:32:A8:90:C9:6F:41:1C:ED:AA:2A:95:41:24:4E:E2:B2:AB:FB:D6 ValidityMon, 06 Nov 2023 00:00:00 GMT - Wed, 27 Dec 2023 23:59:59 GMT File type ASCII text, with very long lines (18187), with no line terminators Size 6.3 kB (6262 bytes) Hash 5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91 HTTP Headers `GET /wi/ytc.js HTTP/1.1 Host: s.yimg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK x-amz-id-2: m+n39mx/iKxn+cqzifVT7O+zQ8oFO9UbmNE09QvUkbcuLsyUFEHp2k3BTWBdVDaRnKghjgu5UgY= x-amz-request-id: V5R2N7RQAVBYEVF4 date: Fri, 08 Dec 2023 22:34:59 GMT last-modified: Mon, 26 Jun 2023 09:26:35 GMT x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle" etag: "5c6ed25dce803fd84288922b8928409e-df" x-amz-server-side-encryption: AES256 cache-control: public,max-age=3600 x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW accept-ranges: bytes content-type: application/javascript server: ATS referrer-policy: no-referrer-when-downgrade vary: Origin, Accept-Encoding age: 1927 content-encoding: gzip content-length: 6262 strict-transport-security: max-age=31536000 expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only" x-xss-protection: 1; mode=block x-content-type-options: nosniff ats-carp-promotion: 1, 1 X-Firefox-Spdy: h2

	saviorwindows.com/favicon.png	18.155.173.117	200 OK	2.3 kB
URL GET HTTP/2 saviorwindows.com/favicon.png IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data Size 2.3 kB (2264 bytes) Hash 3f4206364907c09c8a5f19e009853f42 56495fa70c62ae2e9443e76d85f0f05755437598 4c71ca965e55fea5a8fd4889b7ecfc01dce9301bba91c23f14d79107bc3b5b68 HTTP Headers GET /favicon.png HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Cookie: _ga_BZYYM64FTN=GS1.1.1702076829.1.1.1702076830.0.0.0; _ga=GA1.1.913432773.1702076830; _gcl_au=1.1.1183305215.1702076830; MgidSensorNVis=1; MgidSensorHref=https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1#first-frame; leadid_token-2B26B722-D668-EC71-D186-45FE6EC4DDE1-F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/png content-length: 2264 x-amz-meta-content-md5: 3f4206364907c09c8a5f19e009853f42 last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: ycblZKV2.DTeIHQ_qm.Y_71CxUlGnjUx server: AmazonS3 date: Fri, 08 Dec 2023 23:07:06 GMT cache-control: max-age=604810, no-cache etag: "3f4206364907c09c8a5f19e009853f42" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: xUPCub83AvCZGh9a4kty735LwE19BOzjai9QpTEcMskGAPzyqOtYhw== X-Firefox-Spdy: h2

	saviorwindows.com/_app/immutable/chunks/scheduler.a2328b60.js	18.155.173.117	200 OK	5.1 kB
URL GET HTTP/2 saviorwindows.com/_app/immutable/chunks/scheduler.a2328b60.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type gzip compressed data, from Unix\012- data Size 5.1 kB (5058 bytes) Hash 1396a90220f863838b90b244ac4e2f03 33bc3ae8439fd6e5b7b1d68300cc57e7d1d9ff68 9cf919d8201a221120d868a73477014143c51d89048e71e693cf0073b0b4a9b6 HTTP Headers `GET /_app/immutable/chunks/scheduler.a2328b60.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/_app/immutable/entry/app.b9f34b1f.js Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: application/javascript x-amz-meta-content-md5: dfa6386056be23e5a44150bb210bb6ff last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: do0t_chRnVisf6W5gd1ip9EpgZsEVRxl server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:07:00 GMT cache-control: max-age=604810, no-cache etag: W/"dfa6386056be23e5a44150bb210bb6ff" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: -iCbrdpWUuNJAw_D9PskC4Q9HX1EluWKqxHWCY5Gzv7ZmLOHjMSG4A== X-Firefox-Spdy: h2

	s.yimg.com/wi/config/10148348.json	87.248.119.252	200 OK	2 B
URL GET HTTP/2 s.yimg.com/wi/config/10148348.json IP 87.248.119.252:443 ASN #203220 Yahoo! UK Services Limited Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerDigiCert Inc Subject.api.fantasysports.yahoo.com Fingerprint73:32:A8:90:C9:6F:41:1C:ED:AA:2A:95:41:24:4E:E2:B2:AB:FB:D6 ValidityMon, 06 Nov 2023 00:00:00 GMT - Wed, 27 Dec 2023 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 2 B (2 bytes) Hash 99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a HTTP Headers `GET /wi/config/10148348.json HTTP/1.1 Host: s.yimg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK access-control-allow-origin: * access-control-allow-methods: GET vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method x-amz-request-id: 7XW5WN6J0818HP8V x-amz-id-2: iFhyYoolP/MM3VmJAMPdIFba+VEVYm+tZFCTzhOSqjYNEhzQbdZASM9yN8Ya20pKTHXOz4MbLlQ= content-type: application/json date: Fri, 08 Dec 2023 23:07:01 GMT server: ATS referrer-policy: no-referrer-when-downgrade cache-control: public,max-age=3600 content-length: 2 age: 5 ats-carp-promotion: 1 strict-transport-security: max-age=31536000 expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only" x-xss-protection: 1; mode=block x-content-type-options: nosniff X-Firefox-Spdy: h2

	s.yimg.com/wi/config/10062478.json	87.248.119.252	200 OK	22 B
URL GET HTTP/2 s.yimg.com/wi/config/10062478.json IP 87.248.119.252:443 ASN #203220 Yahoo! UK Services Limited Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerDigiCert Inc Subject.api.fantasysports.yahoo.com Fingerprint73:32:A8:90:C9:6F:41:1C:ED:AA:2A:95:41:24:4E:E2:B2:AB:FB:D6 ValidityMon, 06 Nov 2023 00:00:00 GMT - Wed, 27 Dec 2023 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 22 B (22 bytes) Hash 99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a HTTP Headers `GET /wi/config/10062478.json HTTP/1.1 Host: s.yimg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK access-control-allow-origin: * access-control-allow-methods: GET vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding x-amz-request-id: YYGWGCD97Q01ECYP x-amz-id-2: Nc94xr8vs78wDy70AoxCx+EulHOp/nRi/pXx8dcDut0ylPoUigAK972e3o3Cl94ZplurfSXqVkM= content-type: application/json date: Fri, 08 Dec 2023 23:07:05 GMT server: ATS referrer-policy: no-referrer-when-downgrade cache-control: public,max-age=3600 content-encoding: gzip content-length: 22 age: 0 strict-transport-security: max-age=31536000 expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only" x-xss-protection: 1; mode=block x-content-type-options: nosniff X-Firefox-Spdy: h2

	bat.bing.com/p/action/56315087.js	13.107.21.200	204 No Content	0 B
URL GET HTTP/2 bat.bing.com/p/action/56315087.js IP 13.107.21.200:443 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerMicrosoft Corporation Subjectwww.bing.com FingerprintA5:EC:34:1F:AB:B3:69:71:54:88:69:BA:64:CC:E2:9B:32:B6:65:CD ValidityTue, 24 Oct 2023 07:42:22 GMT - Sun, 21 Apr 2024 07:42:22 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /p/action/56315087.js HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 204 No Content cache-control: private,max-age=1800 strict-transport-security: max-age=31536000; includeSubDomains; preload x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: 58CAD841D2884A11A19D4AC0F76896AE Ref B: OSL30EDGE0309 Ref C: 2023-12-08T23:07:05Z date: Fri, 08 Dec 2023 23:07:05 GMT X-Firefox-Spdy: h2`

	bat.bing.com/action/0?ti=56315087&Ver=2&mid=0f2e40d7-17a4-4fde-86be-fd0245c1f165&sid=853f9920961e11ee8720955abdf4fe1a&vid=853fbbc0961e11ee88325336602c5ef0&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Savior%20Windows&p=https%3A%2F%2Fsaviorwindows.com%2F%3Fsced%3D0%26req_id%3D512535608%26s1%3D127699_windows_FAFC_SCREFI_12.8.23-47%26a%3D2307%26o%3D4737%26cpid%3D48070%26s2%3D22546205%26s3%3D%26s4%3D%26s5%3D%26rvup%3D1%26FirstName%3DCatherine%26LastName%3DTaylor%26Address%3D1227Cloverdale%26Email%3Dcatherine%2540slurpmail.net%26ZipCode%3D75080%26PhoneNumber%3D%26cpn%3D1%26np%3D1%23first-frame&r=&lt=6011&evt=pageLoad&sv=1&rn=972018	13.107.21.200	204 No Content	0 B
URL GET HTTP/2 bat.bing.com/action/0?ti=56315087&Ver=2&mid=0f2e40d7-17a4-4fde-86be-fd0245c1f165&sid=853f9920961e11ee8720955abdf4fe1a&vid=853fbbc0961e11ee88325336602c5ef0&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Savior%20Windows&p=https%3A%2F%2Fsaviorwindows.com%2F%3Fsced%3D0%26req_id%3D512535608%26s1%3D127699_windows_FAFC_SCREFI_12.8.23-47%26a%3D2307%26o%3D4737%26cpid%3D48070%26s2%3D22546205%26s3%3D%26s4%3D%26s5%3D%26rvup%3D1%26FirstName%3DCatherine%26LastName%3DTaylor%26Address%3D1227Cloverdale%26Email%3Dcatherine%2540slurpmail.net%26ZipCode%3D75080%26PhoneNumber%3D%26cpn%3D1%26np%3D1%23first-frame&r=&lt=6011&evt=pageLoad&sv=1&rn=972018 IP 13.107.21.200:443 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerMicrosoft Corporation Subjectwww.bing.com FingerprintA5:EC:34:1F:AB:B3:69:71:54:88:69:BA:64:CC:E2:9B:32:B6:65:CD ValidityTue, 24 Oct 2023 07:42:22 GMT - Sun, 21 Apr 2024 07:42:22 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /action/0?ti=56315087&Ver=2&mid=0f2e40d7-17a4-4fde-86be-fd0245c1f165&sid=853f9920961e11ee8720955abdf4fe1a&vid=853fbbc0961e11ee88325336602c5ef0&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Savior%20Windows&p=https%3A%2F%2Fsaviorwindows.com%2F%3Fsced%3D0%26req_id%3D512535608%26s1%3D127699_windows_FAFC_SCREFI_12.8.23-47%26a%3D2307%26o%3D4737%26cpid%3D48070%26s2%3D22546205%26s3%3D%26s4%3D%26s5%3D%26rvup%3D1%26FirstName%3DCatherine%26LastName%3DTaylor%26Address%3D1227Cloverdale%26Email%3Dcatherine%2540slurpmail.net%26ZipCode%3D75080%26PhoneNumber%3D%26cpn%3D1%26np%3D1%23first-frame&r=&lt=6011&evt=pageLoad&sv=1&rn=972018 HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 204 No Content cache-control: no-cache, must-revalidate pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT set-cookie: MUID=3006B984F3CC634C3CBCAA65F29B62B8; domain=.bing.com; expires=Wed, 01-Jan-2025 23:07:05 GMT; path=/; SameSite=None; Secure; Priority=High; strict-transport-security: max-age=31536000; includeSubDomains; preload access-control-allow-origin: * x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: EAB4A4C5C77A4C79BDC64A1F7F22442D Ref B: OSL30EDGE0309 Ref C: 2023-12-08T23:07:05Z date: Fri, 08 Dec 2023 23:07:05 GMT X-Firefox-Spdy: h2

	api.trustedform.com/certs/79482554c37ad3aed7d189c2b64b1f45ef628bcc/events	3.221.201.84	204 No Content	0 B
URL POST HTTP/2 api.trustedform.com/certs/79482554c37ad3aed7d189c2b64b1f45ef628bcc/events IP 3.221.201.84:443 ASN #14618 AMAZON-AES Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.trustedform.com Fingerprint7B:FF:D3:7A:7E:7A:64:8E:2F:D4:D7:B8:FE:F4:D3:8E:F0:CA:C1:D8 ValidityFri, 11 Aug 2023 00:00:00 GMT - Sat, 07 Sep 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /certs/79482554c37ad3aed7d189c2b64b1f45ef628bcc/events HTTP/1.1 Host: api.trustedform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1290 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 204 No Content date: Fri, 08 Dec 2023 23:07:06 GMT access-control-allow-credentials: true access-control-allow-origin: * access-control-expose-headers: cache-control: max-age=0, private, must-revalidate server: Cowboy X-Firefox-Spdy: h2`

	o400074.ingest.sentry.io/api/4504498136612864/envelope/?sentry_key=91f43cc5d1c549cc8a7e95fc4e4b4d77&sentry_version=7&sentry_client=sentry.javascript.svelte%2F7.73.0	34.120.195.249	429 Too Many Requests	198 B
URL POST HTTP/2 o400074.ingest.sentry.io/api/4504498136612864/envelope/?sentry_key=91f43cc5d1c549cc8a7e95fc4e4b4d77&sentry_version=7&sentry_client=sentry.javascript.svelte%2F7.73.0 IP 34.120.195.249:443 ASN #15169 GOOGLE Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerDigiCert Inc Subjectingest.sentry.io Fingerprint60:82:0B:58:64:CD:37:FD:3F:C0:84:4F:0B:69:CF:58:05:15:97:9A ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 198 B (198 bytes) Hash 478b411c59eb87249bea32cf7c7be5d2 023907c62eb55758905bb3c0e640b5b204ae0652 bac10d17440dcd6f6c6c4e0bd7eca2e1a7eec030ef3b1143d4be3791dcf91263 HTTP Headers POST /api/4504498136612864/envelope/?sentry_key=91f43cc5d1c549cc8a7e95fc4e4b4d77&sentry_version=7&sentry_client=sentry.javascript.svelte%2F7.73.0 HTTP/1.1 Host: o400074.ingest.sentry.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://saviorwindows.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 51968 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 429 Too Many Requests server: nginx date: Fri, 08 Dec 2023 23:07:09 GMT content-type: application/json content-length: 198 retry-after: 60 x-sentry-rate-limits: 60:transaction;profile:organization:transaction_usage_exceeded access-control-allow-origin: * vary: origin,access-control-request-method,access-control-request-headers access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after cross-origin-resource-policy: cross-origin x-envoy-upstream-service-time: 1 strict-transport-security: max-age=31536000; includeSubDomains; preload via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	offers.printfingertech.net/js/jtknet.js	143.204.55.119	200 OK	496 kB
URL GET HTTP/2 offers.printfingertech.net/js/jtknet.js IP 143.204.55.119:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfingertech.net Fingerprint23:D5:35:93:30:1A:0F:05:49:4E:41:1D:C1:28:0C:73:29:CF:EB:44 ValidityThu, 20 Apr 2023 00:00:00 GMT - Sat, 18 May 2024 23:59:59 GMT File type Size 496 kB (496297 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /js/jtknet.js HTTP/1.1 Host: offers.printfingertech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript date: Fri, 08 Dec 2023 21:53:50 GMT last-modified: Fri, 08 Dec 2023 21:48:52 GMT x-amz-version-id: WV0RmCmutBwBcW0vsBKo7a7IltqUS2s2 etag: W/"70407c3af0fdc924c099ed2c0a5bed2b" server: AmazonS3 content-encoding: br vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: hewtvxnSmPXxrJ7qNaEvqdoJ_lU7dgsZe4FGzwX0QAzbGbSrAD6XGg== age: 4391 X-Firefox-Spdy: h2

	saviorwindows.com/_app/immutable/entry/start.420c404f.js	18.155.173.117	200 OK	24 kB
URL GET HTTP/2 saviorwindows.com/_app/immutable/entry/start.420c404f.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type ASCII text, with very long lines (22620) Size 24 kB (24063 bytes) Hash 881ade63135500e0ccc3fbfbdbe82fe1 d004707b6dff1e5cc05e538bd7066df0f47a1162 5206fb179abf00d12c3f9c7ed1cb15a284d155fb607666d8e5c9fd34bf629f60 HTTP Headers GET /_app/immutable/entry/start.420c404f.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: application/javascript x-amz-meta-content-md5: 881ade63135500e0ccc3fbfbdbe82fe1 last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: rPv_6GZigO4QIo80u__aWY5hCOyHwEHf server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:06:59 GMT cache-control: max-age=604810, no-cache etag: W/"881ade63135500e0ccc3fbfbdbe82fe1" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: LJ0RPNohy3Kp4xB4YOZxXsAo6fAQaIwG1g5qLmwMBU5ehWjc_VIO6A== X-Firefox-Spdy: h2

	create.leadid.com/2.11.13/Snap?msn=5&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&_=794241337	18.208.87.65	200 OK	0 B
URL POST HTTP/2 create.leadid.com/2.11.13/Snap?msn=5&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&_=794241337 IP 18.208.87.65:443 ASN #14618 AMAZON-AES Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectcreate.leadid.com Fingerprint46:54:4A:B9:70:8B:37:98:4E:C9:BF:96:0A:86:0B:9A:ED:A7:07:49 ValidityMon, 21 Aug 2023 00:00:00 GMT - Tue, 17 Sep 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /2.11.13/Snap?msn=5&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&_=794241337 HTTP/1.1 Host: create.leadid.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 218976 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:07 GMT content-type: text/plain;charset=UTF-8 server: nginx set-cookie: rgisanonymous=false; expires=Sun, 07-Jan-2024 23:07:07 GMT; Max-Age=2592000; path=/ rguserid=b82c40e4-833c-4b36-9b4c-5f9191619c48; expires=Sun, 07-Jan-2024 23:07:07 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Sun, 07-Jan-2024 23:07:07 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Sun, 07-Jan-2024 23:07:07 GMT; Max-Age=2592000; path=/ cache-control: no-cache, must-revalidate expires: Sat, 26 Jul 1997 05:00:00 GMT access-control-allow-origin: * access-control-allow-headers: X-Requested-With, Content-Type access-control-max-age: 1728000 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2

	saviorwindows.com/_app/immutable/assets/styles.d5d471fc.css	18.155.173.117	200 OK	11 kB
URL GET HTTP/2 saviorwindows.com/_app/immutable/assets/styles.d5d471fc.css IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type ASCII text, with very long lines (10733) Size 11 kB (10734 bytes) Hash 745b16b87485344089a1f2807c673a91 f17be3444c26a2c02d631efb2f297d76ae2be78c d5d471fccb0ee86031f461281be4dc9cf47e84bd7c114f28eeae08ca0bda4e02 HTTP Headers GET /_app/immutable/assets/styles.d5d471fc.css HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/css x-amz-meta-content-md5: 745b16b87485344089a1f2807c673a91 last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: .FY78raWz1u4orNy.RsUyEm_mW77Iett server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:07:03 GMT cache-control: max-age=604810, no-cache etag: W/"745b16b87485344089a1f2807c673a91" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: IsLuDRVOlxqYksSgDvQz9gE_vQSfw5OhLqdgw8ujGJ3agV2fWaaOZw== X-Firefox-Spdy: h2

	d2m2wsoho8qq12.cloudfront.net/iframe.html?token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.13&lck=F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6&lac=2B26B722-D668-EC71-D186-45FE6EC4DDE1	143.204.42.49	200 OK	3.5 kB
URL GET HTTP/1.1 d2m2wsoho8qq12.cloudfront.net/iframe.html?token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.13&lck=F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6&lac=2B26B722-D668-EC71-D186-45FE6EC4DDE1 IP 143.204.42.49:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3675), with no line terminators Size 3.5 kB (3515 bytes) Hash f296cf3fca2786c12a670712ef7f00bc da1b0e716af4460dcf59ade38450cb62798954d1 eabbab0c6023ae05e66d758837fa85258b724f04781c69ce36225c586a0c8db7 HTTP Headers GET /iframe.html?token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.13&lck=F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6&lac=2B26B722-D668-EC71-D186-45FE6EC4DDE1 HTTP/1.1 Host: d2m2wsoho8qq12.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive Server: nginx Last-Modified: Fri, 27 Oct 2023 21:28:23 GMT Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Content-Encoding: gzip Date: Fri, 08 Dec 2023 01:56:51 GMT ETag: W/"653c2b77-dbb" X-Cache: Hit from cloudfront Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: fUnJJGgMwrfZux8_G80-nPN0Q6eIK8XoLpiYv0oOOxhHNj5lYhF2Ow== Age: 76888

	saviorwindows.com/_app/immutable/nodes/1.35bc8963.js	18.155.173.117	200 OK	1.0 kB
URL GET HTTP/2 saviorwindows.com/_app/immutable/nodes/1.35bc8963.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type ASCII text, with very long lines (1050), with no line terminators Size 1.0 kB (1027 bytes) Hash 110bbd186025df58cf8355d43910458d dd8da45f8c461c30d8427d8b89fe6b38ea49535c be075b9d70852a97390bbe46e65708a5904c0ceabc464561bc0a5525796b01b4 HTTP Headers `GET /_app/immutable/nodes/1.35bc8963.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/_app/immutable/entry/app.b9f34b1f.js Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript x-amz-meta-content-md5: 917ff12704ceb9ea2463076a10b7b73d last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: 2tzk9Bi_VQUiMug4R4JrQpXLIb89i0uB server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:07:00 GMT cache-control: max-age=604810, no-cache etag: W/"917ff12704ceb9ea2463076a10b7b73d" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: fFJZ9wPdAMG_M8DJZ4k2jCgk9yWhKCX2AtroYF3Zlt6WVTB-9HY-kQ== X-Firefox-Spdy: h2

	api.lincx.com/load	216.58.207.211	200 OK	67 kB
URL GET HTTP/2 api.lincx.com/load IP 216.58.207.211:443 ASN #15169 GOOGLE Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerGoogle Trust Services LLC Subjectapi.lincx.com FingerprintE4:19:0F:46:FF:9D:5A:AC:2E:A7:61:BE:F5:88:C7:7E:30:92:54:77 ValiditySat, 11 Nov 2023 10:20:47 GMT - Fri, 09 Feb 2024 11:07:55 GMT File type ASCII text, with very long lines (39141) Size 67 kB (67071 bytes) Hash 7c175659416dbe9631b2efe6fdf9ab5c 3eeab691fe0ef609f8ca013fe1eaafd4f429e6db f63336ab14b9a67ae63592871a01ab5469d0861f7bd40a32e240161fbc7d6428 HTTP Headers `GET /load HTTP/1.1 Host: api.lincx.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:01 GMT content-type: text/javascript content-length: 21884 x-request-id: clpx8lcmv40q206o1drr96pzx content-encoding: gzip via: 1.1 google X-Firefox-Spdy: h2`

	deviceid.trueleadid.com/iframe.html?token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.13&lck=F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6&lac=2B26B722-D668-EC71-D186-45FE6EC4DDE1	52.206.18.199	200 OK	4.2 kB
URL GET HTTP/2 deviceid.trueleadid.com/iframe.html?token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.13&lck=F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6&lac=2B26B722-D668-EC71-D186-45FE6EC4DDE1 IP 52.206.18.199:443 ASN #14618 AMAZON-AES Requested by https://d2m2wsoho8qq12.cloudfront.net/iframe.html?token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.13&lck=F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6&lac=2B26B722-D668-EC71-D186-45FE6EC4DDE1 Certificate IssuerAmazon Subjectdeviceid.trueleadid.com FingerprintD4:F1:26:4A:F3:A4:8C:2E:A3:50:64:16:57:48:1E:A0:69:E6:7B:74 ValidityWed, 08 Nov 2023 00:00:00 GMT - Fri, 06 Dec 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4323), with no line terminators Size 4.2 kB (4169 bytes) Hash 27a57862137bf0b580930f288703c507 20114057bbb1f8a2ca6f1b6a2d81fe7f2b75c64a b0019d4447d91be93f68b8fb233b8fcccc542e3dffc16d4dc9c9f71bc9704550 HTTP Headers GET /iframe.html?token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.13&lck=F21BCFE7-421D-0B59-65FE-3D36E8D9C8D6&lac=2B26B722-D668-EC71-D186-45FE6EC4DDE1 HTTP/1.1 Host: deviceid.trueleadid.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://d2m2wsoho8qq12.cloudfront.net/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:04 GMT content-type: text/html server: nginx last-modified: Wed, 15 Nov 2023 14:10:29 GMT etag: W/"6554d155-1049" expires: Sat, 09 Dec 2023 23:07:04 GMT p3p: CP="NOI DSP COR NID CUR ADM DEV OUR BUS" cache-control: max-age=86400, public content-encoding: gzip X-Firefox-Spdy: h2`

	offers.printfingertech.net/json/everflow.json	143.204.55.119	200 OK	10 kB
URL GET HTTP/2 offers.printfingertech.net/json/everflow.json IP 143.204.55.119:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subject.printfingertech.net Fingerprint23:D5:35:93:30:1A:0F:05:49:4E:41:1D:C1:28:0C:73:29:CF:EB:44 ValidityThu, 20 Apr 2023 00:00:00 GMT - Sat, 18 May 2024 23:59:59 GMT File type JSON data\012- , ASCII text Size 10 kB (10235 bytes) Hash 0e9873a36f20dc7ef971a7049c664928 15dc00398930ce0a06c43ca2f2de8ad84e137db3 8a5abd9bd5257d972d443d16e6741706bd2abadb386b248009c678dda03c4b9b HTTP Headers `GET /json/everflow.json HTTP/1.1 Host: offers.printfingertech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://saviorwindows.com/ Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/json date: Fri, 08 Dec 2023 21:56:24 GMT access-control-allow-origin: * access-control-allow-methods: PUT, POST, GET, HEAD access-control-max-age: 3000 last-modified: Wed, 29 Nov 2023 19:30:59 GMT x-amz-version-id: grxLNxT_NaUhg5EmeU29Q1b4c8nrNr0c etag: W/"0e9873a36f20dc7ef971a7049c664928" server: AmazonS3 content-encoding: br vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: WDrnrIAVb1ctAad-g_sIJExMuSK7v4PZvO84JyvnpkkyjbowLnZN3Q== age: 4239 X-Firefox-Spdy: h2

	saviorwindows.com/_app/immutable/nodes/0.7ffd88a3.js	18.155.173.117	200 OK	14 kB
URL GET HTTP/2 saviorwindows.com/_app/immutable/nodes/0.7ffd88a3.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type Size 14 kB (14292 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /_app/immutable/nodes/0.7ffd88a3.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/_app/immutable/entry/app.b9f34b1f.js Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript x-amz-meta-content-md5: c685d1218cac38690a2c757a0e21b20a last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: yo.PvxRrgBEB0tUALW0xblB4SWwsXGIW server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:07:00 GMT cache-control: max-age=604810, no-cache etag: W/"c685d1218cac38690a2c757a0e21b20a" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: gcEsjFZQHcUCd2M-TCJzuvESucdxVwEdHsxJUClc1we4NAfyBi1j3A== X-Firefox-Spdy: h2

	cdn.trustedform.com/trustedform-1.9.4.js	54.230.111.111	200 OK	86 kB
URL GET HTTP/2 cdn.trustedform.com/trustedform-1.9.4.js IP 54.230.111.111:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectcdn.trustedform.com Fingerprint03:8C:42:F7:8D:D4:F5:93:A1:2D:50:88:50:23:67:7B:A1:CD:4B:99 ValidityWed, 15 Mar 2023 00:00:00 GMT - Fri, 12 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 86 kB (86046 bytes) Hash f46641519eee44fe450f02ae72e64a74 af388dad525a6e17e8057bdd4e3abbd6e165fc62 daec1d32a4f211884695930cbc2443467f28e7bd1b1ae1afb7f2eb16349aacfe HTTP Headers `GET /trustedform-1.9.4.js HTTP/1.1 Host: cdn.trustedform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript last-modified: Wed, 08 Nov 2023 19:52:40 GMT x-amz-version-id: gtnb1Uxu8qLJRc.iYT4wVelhc0u4qkAi server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:07:00 GMT etag: W/"f46641519eee44fe450f02ae72e64a74" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: H8Jwiq8u1lxOZOYmB0Q3v6pj3_6tOlaB6eO7tlfj2YApSt0eESOaog== age: 8 X-Firefox-Spdy: h2

	script.anura.io/result.json	3.8.43.133	200 OK	105 B
URL POST HTTP/2 script.anura.io/result.json IP 3.8.43.133:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectscript.anura.io Fingerprint83:CF:23:67:0B:B9:DB:BB:65:3F:31:44:AD:06:8B:B2:7E:B4:E1:20 ValidityMon, 16 Oct 2023 00:00:00 GMT - Wed, 13 Nov 2024 23:59:59 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 105 B (105 bytes) Hash 05d6c702b5910874eb86696a61517065 1c488efe9b8560275f293a7c5712ab6a67d3c980 2d3080b2d9f361419412adb9c4a03e5dad27996cc10b1372243b6aa7e049ebc7 HTTP Headers `POST /result.json HTTP/1.1 Host: script.anura.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 60 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:04 GMT content-type: application/json; charset=utf-8 server: nginx vary: Accept-Encoding access-control-allow-origin: * access-control-allow-methods: GET, POST expires: Sun, 28 Dec 1980 18:57:00 EST cache-control: private, no-cache, no-store, must-revalidate, max-age=0, post-check=0, pre-check=0 pragma: no-cache x-content-type-options: nosniff content-encoding: gzip X-Firefox-Spdy: h2`

	fonts.googleapis.com/css2?family=Poppins:wght@100;200;300;400;500;600;700;800;900&display=swap	142.250.74.106	200 OK	10 kB
URL GET HTTP/2 fonts.googleapis.com/css2?family=Poppins:wght@100;200;300;400;500;600;700;800;900&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type ASCII text Size 10 kB (10073 bytes) Hash 1750f5cf20d33ee7c9681561118f472f d9ff873206fe50705817c7b7d2977dc01ac189ef ad26ec8a3728c7ab759a937b415be68bb65886fb81ac6a3d1c050d2989c512a8 HTTP Headers `GET /css2?family=Poppins:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 08 Dec 2023 23:06:59 GMT date: Fri, 08 Dec 2023 23:06:59 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	s.yimg.com/wi/config/10004409.json	87.248.119.252	200 OK	2 B
URL GET HTTP/2 s.yimg.com/wi/config/10004409.json IP 87.248.119.252:443 ASN #203220 Yahoo! UK Services Limited Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerDigiCert Inc Subject.api.fantasysports.yahoo.com Fingerprint73:32:A8:90:C9:6F:41:1C:ED:AA:2A:95:41:24:4E:E2:B2:AB:FB:D6 ValidityMon, 06 Nov 2023 00:00:00 GMT - Wed, 27 Dec 2023 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 2 B (2 bytes) Hash 99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a HTTP Headers `GET /wi/config/10004409.json HTTP/1.1 Host: s.yimg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-allow-methods: GET vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method x-amz-request-id: H3S6XG04BRMXAPH0 x-amz-id-2: rLREM7zzHkDm7c1r13J8GJAVL0k1OMg+JLJIdW61BMJiVW3tZ+IxVLAMhlN4WExQ2YN9wgtTzAs= content-type: application/json date: Fri, 08 Dec 2023 23:07:01 GMT server: ATS referrer-policy: no-referrer-when-downgrade cache-control: public,max-age=3600 content-length: 2 age: 4 ats-carp-promotion: 1 strict-transport-security: max-age=31536000 expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only" x-xss-protection: 1; mode=block x-content-type-options: nosniff X-Firefox-Spdy: h2

	saviorwindows.com/_app/immutable/nodes/2.08d23dbe.js	18.155.173.117	200 OK	350 kB
URL GET HTTP/2 saviorwindows.com/_app/immutable/nodes/2.08d23dbe.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type Size 350 kB (349744 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /_app/immutable/nodes/2.08d23dbe.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/_app/immutable/entry/app.b9f34b1f.js Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript x-amz-meta-content-md5: fd2334a06ebd5d68c71ba8602c3ec519 last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: dLHOOOVlnFY.iTKRVIKl7EaU5XJJBSs2 server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:07:00 GMT cache-control: max-age=604810, no-cache etag: W/"fd2334a06ebd5d68c71ba8602c3ec519" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: sW0v0dAazZwl6AxNvV5Dzi-kfDVyy1nWuQGmXeT1VUzbcTnIse4bLg== X-Firefox-Spdy: h2

	a.mgid.com/mgsensor.js?d=1702076830045	104.19.129.76	200 OK	16 kB
URL GET HTTP/2 a.mgid.com/mgsensor.js?d=1702076830045 IP 104.19.129.76:443 ASN #13335 CLOUDFLARENET Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint44:BF:9D:AD:98:A7:1A:F2:1D:18:EF:4E:3E:BE:C0:D8:28:4D:9F:04 ValidityTue, 11 Apr 2023 00:00:00 GMT - Wed, 10 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (15803), with no line terminators Size 16 kB (15803 bytes) Hash 067883a7474453c336f468c028977d2b 83fc595bba09e63f196b9af4fa71d978fddf662d fab2f44ed2c54018f566702de911e32e0d0502e41768f5b16227576589f42e68 HTTP Headers `GET /mgsensor.js?d=1702076830045 HTTP/1.1 Host: a.mgid.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:03 GMT content-type: application/javascript vary: Accept-Encoding x-mg-request-uuid: f53bc075-de87-49ce-8503-69805f94984c cf-cache-status: DYNAMIC set-cookie: __cf_bm=IOf3CagpS.DHtBysQEKWYu0hkGYcY4GdXojUKmHqxjo-1702076823-1-Ad/twD1hSAxN/4pahyaBg0qd85F4H0uPCPZK5buK4kDdqneyA4U0AsbB5bs344URRiBcvJ9Vy0P+AYbChlz2cMs=; path=/; expires=Fri, 08-Dec-23 23:37:03 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None strict-transport-security: max-age=15552000; includeSubDomains; preload server: cloudflare cf-ray: 8328a991c94a56af-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	create.leadid.com/2.11.13/GenerateToken?msn=1&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&_=794241333	18.208.87.65	200 OK	36 B
URL POST HTTP/2 create.leadid.com/2.11.13/GenerateToken?msn=1&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&_=794241333 IP 18.208.87.65:443 ASN #14618 AMAZON-AES Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectcreate.leadid.com Fingerprint46:54:4A:B9:70:8B:37:98:4E:C9:BF:96:0A:86:0B:9A:ED:A7:07:49 ValidityMon, 21 Aug 2023 00:00:00 GMT - Tue, 17 Sep 2024 23:59:59 GMT File type ASCII text, with no line terminators Size 36 B (36 bytes) Hash 71acc299f6cf63088efe8801d65757eb 74075db5e784db01e527a2a6578fc65ba2bc977c 9c065be07daf435e91003627c1c5b60c30c10252acf6a0a4bfab03d3bf42fba8 HTTP Headers POST /2.11.13/GenerateToken?msn=1&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&_=794241333 HTTP/1.1 Host: create.leadid.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 507 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:03 GMT content-type: text/plain;charset=UTF-8 server: nginx set-cookie: rgisanonymous=false; expires=Sun, 07-Jan-2024 23:07:03 GMT; Max-Age=2592000; path=/ rguserid=0da81232-6ea4-4d4c-a805-b5c777f46213; expires=Sun, 07-Jan-2024 23:07:03 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Sun, 07-Jan-2024 23:07:03 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Sun, 07-Jan-2024 23:07:03 GMT; Max-Age=2592000; path=/ cache-control: no-cache, must-revalidate expires: Sat, 26 Jul 1997 05:00:00 GMT access-control-allow-origin: * access-control-allow-headers: X-Requested-With, Content-Type access-control-max-age: 1728000 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2

	script.anura.io/response.json	3.8.43.133	200 OK	151 B
URL POST HTTP/2 script.anura.io/response.json IP 3.8.43.133:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectscript.anura.io Fingerprint83:CF:23:67:0B:B9:DB:BB:65:3F:31:44:AD:06:8B:B2:7E:B4:E1:20 ValidityMon, 16 Oct 2023 00:00:00 GMT - Wed, 13 Nov 2024 23:59:59 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 151 B (151 bytes) Hash 24fabc363ff6a17641379f13ec48d80f ec51e12d3a794da8f159189105886e900caae3f5 36a3f9b0c5b6e924080a15b0d9d7cb7f24c0b223191a95941a7af39ea65b8e0a HTTP Headers POST /response.json HTTP/1.1 Host: script.anura.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 5610 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:04 GMT content-type: application/json; charset=utf-8 server: nginx vary: Accept-Encoding access-control-allow-origin: * access-control-allow-methods: POST expires: Sun, 28 Dec 1980 18:57:00 EST cache-control: private, no-cache, no-store, must-revalidate, max-age=0, post-check=0, pre-check=0 pragma: no-cache x-content-type-options: nosniff content-encoding: gzip X-Firefox-Spdy: h2`

	saviorwindows.com/_app/immutable/assets/global.097f51fe.webp	18.155.173.117	200 OK	7.0 kB
URL GET HTTP/2 saviorwindows.com/_app/immutable/assets/global.097f51fe.webp IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 7.0 kB (6958 bytes) Hash 5d6fb16bce1f49f0a79fc6dff6f16690 bc1fc30c32c0d4e24ff3bcac1c696cf89bdee3db 097f51feefddcf04e48b11cd345ef4c3f1bbc2d5c7ffce0ecbb6b2bb45fefac0 HTTP Headers GET /_app/immutable/assets/global.097f51fe.webp HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: image/webp content-length: 6958 x-amz-meta-content-md5: 5d6fb16bce1f49f0a79fc6dff6f16690 last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: GCuGgIqIjhJLQx.S86pZBjmWQ7YQWNvx server: AmazonS3 date: Fri, 08 Dec 2023 23:07:03 GMT cache-control: max-age=604810, no-cache etag: "5d6fb16bce1f49f0a79fc6dff6f16690" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: Z_WLzLRVlNj7Yuh0K5Zc1EecMKBn40EnSHYgyhY_4JQ2G0p47tF9qw== X-Firefox-Spdy: h2

	create.leadid.com/2.11.13/InitFormData?msn=3&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&_=794241335	18.208.87.65	200 OK	0 B
URL POST HTTP/2 create.leadid.com/2.11.13/InitFormData?msn=3&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&_=794241335 IP 18.208.87.65:443 ASN #14618 AMAZON-AES Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectcreate.leadid.com Fingerprint46:54:4A:B9:70:8B:37:98:4E:C9:BF:96:0A:86:0B:9A:ED:A7:07:49 ValidityMon, 21 Aug 2023 00:00:00 GMT - Tue, 17 Sep 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /2.11.13/InitFormData?msn=3&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&_=794241335 HTTP/1.1 Host: create.leadid.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 822 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:04 GMT content-type: text/plain;charset=UTF-8 server: nginx set-cookie: rgisanonymous=false; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ rguserid=3996d087-0cb5-44f9-b794-9f0742143d55; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ cache-control: no-cache, must-revalidate expires: Sat, 26 Jul 1997 05:00:00 GMT access-control-allow-origin: * access-control-allow-headers: X-Requested-With, Content-Type access-control-max-age: 1728000 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2

	cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=17020768295260.19294446243172725&invert_field_sensitivity=false	54.230.111.111	200 OK	8.1 kB
URL GET HTTP/2 cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=17020768295260.19294446243172725&invert_field_sensitivity=false IP 54.230.111.111:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectcdn.trustedform.com Fingerprint03:8C:42:F7:8D:D4:F5:93:A1:2D:50:88:50:23:67:7B:A1:CD:4B:99 ValidityWed, 15 Mar 2023 00:00:00 GMT - Fri, 12 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (8375), with no line terminators Size 8.1 kB (8137 bytes) Hash 2063e1e804423960c4d2f3d32be5dc7b dbc5e785cd85707b20d2f2bf2c179fa73bfd3971 7b1d3316481675277912a73130f706a0d48c879deedbda18d2d7365c6a95a23c HTTP Headers GET /bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=17020768295260.19294446243172725&invert_field_sensitivity=false HTTP/1.1 Host: cdn.trustedform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK content-type: application/javascript date: Fri, 08 Dec 2023 23:07:04 GMT last-modified: Wed, 08 Nov 2023 19:52:40 GMT x-amz-version-id: D_l7Wi1wOYgTC52uzRMI5HnwJykAKtLr etag: W/"e11406d1e7ba652ddbe0623e1207c210" server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Miss from cloudfront via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: uXLXiRUDEFCLChzqbleB2Qzes5izZu-jcfXk1uHsndP45wL95iIuKw== X-Firefox-Spdy: h2`

	saviorwindows.com/_app/immutable/assets/WindowsThankYouHeader.8587f643.css	18.155.173.117	200 OK	124 kB
URL GET HTTP/2 saviorwindows.com/_app/immutable/assets/WindowsThankYouHeader.8587f643.css IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type Size 124 kB (124024 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /_app/immutable/assets/WindowsThankYouHeader.8587f643.css HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/css x-amz-meta-content-md5: 198deac452443ea920ef982d93ddf0d9 last-modified: Thu, 07 Dec 2023 18:09:04 GMT x-amz-version-id: jROTNDnXXHx6OkejLdXpGmSSVKMiyTaP server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:07:00 GMT cache-control: max-age=604810, no-cache etag: W/"198deac452443ea920ef982d93ddf0d9" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: JNpscfCns_VkypmwGDNsJuLIUTKap5H3uYn5uD5pzV_-8tIZg7ltgg== X-Firefox-Spdy: h2

	fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap	142.250.74.106	200 OK	20 kB
URL GET HTTP/2 fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type ASCII text Size 20 kB (20219 bytes) Hash 18d2cce11fe908a626c18d219c2740e7 b059f796986d8bb7b23486da15588b4f836e6a59 a44f5d561cd3e602e092304c1356809a206492fa189be1c11d923e8e768b06b5 HTTP Headers GET /css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 08 Dec 2023 23:06:59 GMT date: Fri, 08 Dec 2023 23:06:59 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700;900&display=swap	142.250.74.106	200 OK	14 kB
URL GET HTTP/3 fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700;900&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42 ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text Size 14 kB (13669 bytes) Hash 5035f6aab41e95d53aedb4c25b168ae7 cd301675e0dd2d54cc04ed526ab076c68b5d2fb6 b92f631c8cf38be6724c9b0ef9dcc762b7314ee2197ced3608efb40e02618fac HTTP Headers `GET /css2?family=Roboto:wght@100;300;400;500;700;900&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 08 Dec 2023 23:07:00 GMT date: Fri, 08 Dec 2023 23:07:00 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	a.mgid.com/1x1.gif?id=282523&type=c&tg=&r=https%3A%2F%2Fsaviorwindows.com%2F%3Fsced%3D0%26req_id%3D512535608%26s1%3D127699_windows_FAFC_SCREFI_12.8.23-47%26a%3D2307%26o%3D4737%26cpid%3D48070%26s2%3D22546205%26s3%3D%26s4%3D%26s5%3D%26rvup%3D1%26FirstName%3DCatherine%26LastName%3DTaylor%26Address%3D1227Cloverdale%26Email%3Dcatherine%2540slurpmail.net%26ZipCode%3D75080%26PhoneNumber%3D%26cpn%3D1%26np%3D1%23first-frame&nv=1&clid=&d=1702076830514	104.19.129.76	200 OK	43 B
URL GET HTTP/3 a.mgid.com/1x1.gif?id=282523&type=c&tg=&r=https%3A%2F%2Fsaviorwindows.com%2F%3Fsced%3D0%26req_id%3D512535608%26s1%3D127699_windows_FAFC_SCREFI_12.8.23-47%26a%3D2307%26o%3D4737%26cpid%3D48070%26s2%3D22546205%26s3%3D%26s4%3D%26s5%3D%26rvup%3D1%26FirstName%3DCatherine%26LastName%3DTaylor%26Address%3D1227Cloverdale%26Email%3Dcatherine%2540slurpmail.net%26ZipCode%3D75080%26PhoneNumber%3D%26cpn%3D1%26np%3D1%23first-frame&nv=1&clid=&d=1702076830514 IP 104.19.129.76:443 ASN #13335 CLOUDFLARENET Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint44:BF:9D:AD:98:A7:1A:F2:1D:18:EF:4E:3E:BE:C0:D8:28:4D:9F:04 ValidityTue, 11 Apr 2023 00:00:00 GMT - Wed, 10 Apr 2024 23:59:59 GMT File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash 57f187c7a868faeac558007a8eb6cb2e 11ab10ab109fdb53d91d444ac781101f5a6360c6 aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22 HTTP Headers GET /1x1.gif?id=282523&type=c&tg=&r=https%3A%2F%2Fsaviorwindows.com%2F%3Fsced%3D0%26req_id%3D512535608%26s1%3D127699_windows_FAFC_SCREFI_12.8.23-47%26a%3D2307%26o%3D4737%26cpid%3D48070%26s2%3D22546205%26s3%3D%26s4%3D%26s5%3D%26rvup%3D1%26FirstName%3DCatherine%26LastName%3DTaylor%26Address%3D1227Cloverdale%26Email%3Dcatherine%2540slurpmail.net%26ZipCode%3D75080%26PhoneNumber%3D%26cpn%3D1%26np%3D1%23first-frame&nv=1&clid=&d=1702076830514 HTTP/1.1 Host: a.mgid.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Cookie: __cf_bm=IOf3CagpS.DHtBysQEKWYu0hkGYcY4GdXojUKmHqxjo-1702076823-1-Ad/twD1hSAxN/4pahyaBg0qd85F4H0uPCPZK5buK4kDdqneyA4U0AsbB5bs344URRiBcvJ9Vy0P+AYbChlz2cMs= Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Fri, 08 Dec 2023 23:07:03 GMT content-type: image/gif content-length: 43 cf-cache-status: DYNAMIC strict-transport-security: max-age=15552000; includeSubDomains; preload server: cloudflare cf-ray: 8328a9942b705695-OSL alt-svc: h3=":443"; ma=86400`

	script.anura.io/request.js?instance=560907681&source=4737&campaign=2307&exid=9640d5d3-958c-4fc7-95e4-b4f9177cc399&variable=optionalResponseObjectVariable&callback=89&485959207363	3.8.43.133	200 OK	56 kB
URL GET HTTP/2 script.anura.io/request.js?instance=560907681&source=4737&campaign=2307&exid=9640d5d3-958c-4fc7-95e4-b4f9177cc399&variable=optionalResponseObjectVariable&callback=89&485959207363 IP 3.8.43.133:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectscript.anura.io Fingerprint83:CF:23:67:0B:B9:DB:BB:65:3F:31:44:AD:06:8B:B2:7E:B4:E1:20 ValidityMon, 16 Oct 2023 00:00:00 GMT - Wed, 13 Nov 2024 23:59:59 GMT File type ASCII text, with very long lines (1912) Size 56 kB (55837 bytes) Hash 752576dceed28d057cb239a358d4c040 9ba10af2f30eda9e23dcb24cad7b3cfab4f9ab96 07b4590a64f95a6214c3aefebee6431a218e9c851ad9212df28816bf99c62ab2 HTTP Headers GET /request.js?instance=560907681&source=4737&campaign=2307&exid=9640d5d3-958c-4fc7-95e4-b4f9177cc399&variable=optionalResponseObjectVariable&callback=89&485959207363 HTTP/1.1 Host: script.anura.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:03 GMT content-type: application/javascript; charset=utf-8 server: nginx vary: Accept-Encoding expires: Sun, 28 Dec 1980 18:57:00 EST cache-control: private, no-cache, no-store, must-revalidate, max-age=0, post-check=0, pre-check=0 pragma: no-cache x-content-type-options: nosniff content-encoding: gzip X-Firefox-Spdy: h2`

	saviorwindows.com/_app/immutable/chunks/Moon.6ba9b2dc.js	18.155.173.117	200 OK	2.0 kB
URL GET HTTP/2 saviorwindows.com/_app/immutable/chunks/Moon.6ba9b2dc.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type ASCII text, with very long lines (2051), with no line terminators Size 2.0 kB (1958 bytes) Hash 509f3db14c78600be4869dd335676fd3 9a80d1e2e62592b751f2272d8a85345b5b2e12de fe4c135695f99bba39459e697af0e987c080f8d03d4fac1d147e202e806c9f6e HTTP Headers `GET /_app/immutable/chunks/Moon.6ba9b2dc.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/_app/immutable/nodes/0.7ffd88a3.js Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript x-amz-meta-content-md5: 902b2f9af03bd95872e17d3146472ea9 last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: 0QvX8Z1J_ejSIuJCUvaCXHIzd2k_eo8Z server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:07:01 GMT cache-control: max-age=604810, no-cache etag: W/"902b2f9af03bd95872e17d3146472ea9" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: kLgbMcVjBPLqP39Bx5jz0XOwxOxmE5DJcpSUMVK6Adn9fTlMX88obA== X-Firefox-Spdy: h2

	saviorwindows.com/_app/immutable/chunks/index.4658e706.js	18.155.173.117	200 OK	5.7 kB
URL GET HTTP/2 saviorwindows.com/_app/immutable/chunks/index.4658e706.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type ASCII text, with very long lines (5808), with no line terminators Size 5.7 kB (5742 bytes) Hash e061bc56e20b24a216a8f1f9eb9e05c3 f7dc397143ce0c979934b32661fe1d797e9b68ef d2597db598dec8b75cf679bd5c9a92587d7c60bfc4987d5850897c3cd5657da1 HTTP Headers `GET /_app/immutable/chunks/index.4658e706.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/_app/immutable/entry/app.b9f34b1f.js Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript x-amz-meta-content-md5: da80a5b8c30d644dab78788401cc130d last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: PCwtta25Z92oqiHnyIXriNi0EZdx7ZV2 server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:07:00 GMT cache-control: max-age=604810, no-cache etag: W/"da80a5b8c30d644dab78788401cc130d" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: zCPEhIzpLmHmbyJqjQ43yhzesch_N_tIxRP6ej7FY9zf6f68rfLyvA== X-Firefox-Spdy: h2

	saviorwindows.com/_app/immutable/chunks/singletons.c7ccfe2f.js	18.155.173.117	200 OK	2.9 kB
URL GET HTTP/2 saviorwindows.com/_app/immutable/chunks/singletons.c7ccfe2f.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type ASCII text, with very long lines (2971), with no line terminators Size 2.9 kB (2911 bytes) Hash 7fffd16e51a1d5110b30d2953ca8c47e 2db05cb46d8dbe83aaf5f92519c991785a6a7144 c07ed7d51babe9f7e307663a3325da09427db2978e5cea725cc4fad8514b5671 HTTP Headers `GET /_app/immutable/chunks/singletons.c7ccfe2f.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/_app/immutable/entry/start.420c404f.js Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript x-amz-meta-content-md5: a82505e5a76b27422a6e2f275a76db1f last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: 3J7sKWyDphsZBbPNYZdulLfxrDXmcxS_ server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:07:00 GMT cache-control: max-age=604810, no-cache etag: W/"a82505e5a76b27422a6e2f275a76db1f" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: sOBEvnFm4Xgy8xS0E8nmnteC-bzONZ5uBaMM56W1X7oDnEUCjly4bQ== X-Firefox-Spdy: h2

	saviorwindows.com/_app/immutable/chunks/index.5ef5ee76.js	18.155.173.117	200 OK	4.4 kB
URL GET HTTP/2 saviorwindows.com/_app/immutable/chunks/index.5ef5ee76.js IP 18.155.173.117:443 ASN #0 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (4511), with no line terminators Size 4.4 kB (4367 bytes) Hash 73520752301d6cdd623f25c68fd15aa2 bbd047f5bd5c546ddeba5047492e9580509d04d2 381c66cba8765b296bcb154ac3ef3cf77dfb1d285983582ba4523d1a7caabb94 HTTP Headers `GET /_app/immutable/chunks/index.5ef5ee76.js HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/_app/immutable/nodes/2.08d23dbe.js Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript x-amz-meta-content-md5: 50beab1d7ba333846e34ff4c08c792e6 last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: QbUUzPPkMhku52R0Dhwr4MudAVR2oLUY server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:07:01 GMT cache-control: max-age=604810, no-cache etag: W/"50beab1d7ba333846e34ff4c08c792e6" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: wQHhn2WayVgdJvOYBLcDml6FLvbKJ8akmw3P3KD24H2SCHDQo0l6-w== X-Firefox-Spdy: h2

	saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1	18.155.173.117	200 OK	1.2 kB
URL User Request GET HTTP/2 saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 IP 18.155.173.117:443 ASN #0 Certificate IssuerAmazon Subjectsaviorwindows.com Fingerprint49:72:40:E2:91:A7:F5:C9:DA:5C:DA:27:63:5C:05:B6:DA:5D:C0:D7 ValidityWed, 18 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1444), with no line terminators Size 1.2 kB (1229 bytes) Hash 7db1579d91a7f0bfef8958bdb010404a ffe18d0af28171e207a772ba1652fbcf1b0fcc69 e8391bba7ef68434d748ae0713ed802961aebf9fd2124d93c69aed4615f7b69b HTTP Headers GET /?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 HTTP/1.1 Host: saviorwindows.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/html x-amz-meta-content-md5: 97bd612441296453fcb79b151713e2ac last-modified: Thu, 07 Dec 2023 18:09:05 GMT x-amz-version-id: 3U2_x9Tnk3yVP5FmY49PQMhJBQ3ABSjp server: AmazonS3 content-encoding: gzip date: Fri, 08 Dec 2023 23:06:59 GMT cache-control: max-age=604810, no-cache etag: W/"97bd612441296453fcb79b151713e2ac" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 291e5869d77d73ace45923113579d8d8.cloudfront.net (CloudFront) x-amz-cf-pop: PHX50-P1 x-amz-cf-id: uGOD95nBLmoZSImuotcx-1CegC_n50ID6ynzisCDcjYtsCdbe2cV8g== X-Firefox-Spdy: h2

	create.leadid.com/2.11.13/Snap?msn=6&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&_=794241338	18.208.87.65	200 OK	0 B
URL POST HTTP/2 create.leadid.com/2.11.13/Snap?msn=6&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&_=794241338 IP 18.208.87.65:443 ASN #14618 AMAZON-AES Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectcreate.leadid.com Fingerprint46:54:4A:B9:70:8B:37:98:4E:C9:BF:96:0A:86:0B:9A:ED:A7:07:49 ValidityMon, 21 Aug 2023 00:00:00 GMT - Tue, 17 Sep 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /2.11.13/Snap?msn=6&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&_=794241338 HTTP/1.1 Host: create.leadid.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 218976 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:07 GMT content-type: text/plain;charset=UTF-8 server: nginx set-cookie: rgisanonymous=false; expires=Sun, 07-Jan-2024 23:07:07 GMT; Max-Age=2592000; path=/ rguserid=9d3ed683-58a7-41b6-8e09-7a9266f9c244; expires=Sun, 07-Jan-2024 23:07:07 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Sun, 07-Jan-2024 23:07:07 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Sun, 07-Jan-2024 23:07:07 GMT; Max-Age=2592000; path=/ cache-control: no-cache, must-revalidate expires: Sat, 26 Jul 1997 05:00:00 GMT access-control-allow-origin: * access-control-allow-headers: X-Requested-With, Content-Type access-control-max-age: 1728000 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2

	create.leadid.com/2.11.13/SaveDom?msn=2&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&_=794241334	18.208.87.65	200 OK	0 B
URL POST HTTP/2 create.leadid.com/2.11.13/SaveDom?msn=2&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&_=794241334 IP 18.208.87.65:443 ASN #14618 AMAZON-AES Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectcreate.leadid.com Fingerprint46:54:4A:B9:70:8B:37:98:4E:C9:BF:96:0A:86:0B:9A:ED:A7:07:49 ValidityMon, 21 Aug 2023 00:00:00 GMT - Tue, 17 Sep 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /2.11.13/SaveDom?msn=2&pid=747221b9-2c16-4c65-ab48-eac9b6b4a85c&token=70CE9C19-A4D1-36B9-8A22-AFDEE56ECBD7&_=794241334 HTTP/1.1 Host: create.leadid.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 512 Origin: https://saviorwindows.com DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Fri, 08 Dec 2023 23:07:04 GMT content-type: text/plain;charset=UTF-8 server: nginx set-cookie: rgisanonymous=false; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ rguserid=21d09d21-1550-4bbc-94cb-6611a2ac9743; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Sun, 07-Jan-2024 23:07:04 GMT; Max-Age=2592000; path=/ cache-control: no-cache, must-revalidate expires: Sat, 26 Jul 1997 05:00:00 GMT access-control-allow-origin: * access-control-allow-headers: X-Requested-With, Content-Type access-control-max-age: 1728000 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2

	cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=17020768295530.6712922802404381&invert_field_sensitivity=false	54.230.111.111	200 OK	8.1 kB
URL GET HTTP/2 cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=17020768295530.6712922802404381&invert_field_sensitivity=false IP 54.230.111.111:443 ASN #16509 AMAZON-02 Requested by https://saviorwindows.com/?sced=0&req_id=512535608&s1=127699_windows_FAFC_SCREFI_12.8.23-47&a=2307&o=4737&cpid=48070&s2=22546205&s3=&s4=&s5=&rvup=1&FirstName=Catherine&LastName=Taylor&Address=1227Cloverdale&Email=catherine%40slurpmail.net&ZipCode=75080&PhoneNumber=&cpn=1&np=1 Certificate IssuerAmazon Subjectcdn.trustedform.com Fingerprint03:8C:42:F7:8D:D4:F5:93:A1:2D:50:88:50:23:67:7B:A1:CD:4B:99 ValidityWed, 15 Mar 2023 00:00:00 GMT - Fri, 12 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (8375), with no line terminators Size 8.1 kB (8137 bytes) Hash 2063e1e804423960c4d2f3d32be5dc7b dbc5e785cd85707b20d2f2bf2c179fa73bfd3971 7b1d3316481675277912a73130f706a0d48c879deedbda18d2d7365c6a95a23c HTTP Headers GET /bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=17020768295530.6712922802404381&invert_field_sensitivity=false HTTP/1.1 Host: cdn.trustedform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://saviorwindows.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK content-type: application/javascript date: Fri, 08 Dec 2023 23:07:04 GMT last-modified: Wed, 08 Nov 2023 19:52:40 GMT x-amz-version-id: D_l7Wi1wOYgTC52uzRMI5HnwJykAKtLr etag: W/"e11406d1e7ba652ddbe0623e1207c210" server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Miss from cloudfront via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: IcZDNU5obfs39YZ59M97ii8Uz5Xlpt-Y4BQxzOm_AB9O5jz5TGpmRg== X-Firefox-Spdy: h2`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (46)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash