Report - proxy.quickmail.com/click/1/525907046/d7922513779afdc35f2d6c99bef13405/8abf978e378c026b58cec8653cba9422/next

Report Overview

Submitted URL
proxy.quickmail.com/click/1/525907046/d7922513779afdc35f2d6c99bef13405/8abf978e378c026b58cec8653cba9422/next
IP
54.91.6.89
ASN
#14618 AMAZON-AES
Submitted
2023-01-09 19:57:49
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
proxy.quickmail.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	976 B	1.0 kB	54.91.6.89
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	142.250.74.131
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	58 kB	34.120.237.76
accounts.google.com	81	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	484 B	104 kB	142.250.74.77
platform.linkedin.com	3785	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	841 B	7.7 kB	95.101.11.48
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	796 B	93.184.220.29
static.licdn.com	12070	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.9 kB	277 kB	95.101.11.57
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.36.77.32
www.linkedin.com	608	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	22 kB	34 kB	13.107.42.14
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.40.156.74
ps.azurewaf.microsoft.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	787 B	13.107.227.53

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-09	medium	proxy.quickmail.com/click/1/525907046/d7922513779afdc35f2d6c99bef13405/8abf978e378c026b58cec8653cba9422/next	Phishing
2023-01-09	medium	proxy.quickmail.com/click/1/525907046/d7922513779afdc35f2d6c99bef13405/8abf978e378c026b58cec8653cba9422/next	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	static.licdn.com/sc/h/b39mllzjzea0ex5odqm0ojejf	559 kB	2023-03-08	2023-03-13
Pretty URL static.licdn.com/sc/h/b39mllzjzea0ex5odqm0ojejf IP 95.101.11.57 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:03:36 Last Seen2023-03-13 06:52:58 Times Seen1 Hash bb5617900e4830ae777df13fceafc85b 8e2b5acdef1c090ce32de1042cf3f0e60dcb0ae4 bf9d3121bb1d77452f7e91b254ce5c2bc09d4f4078a7be9744384e81b67ff65a Loading...

	static.licdn.com/sc/h/98lptr8kagfxge22q7k1fps8	223 kB	2023-03-07	2024-04-26
Pretty URL static.licdn.com/sc/h/98lptr8kagfxge22q7k1fps8 IP 95.101.11.57 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:07 Last Seen2024-04-26 21:23:24 Times Seen338 Hash 0455bdf0d67047723a204a280faf9148 462430ba34af9bb60fc8a3fa8cf04845d9d34df1 190472cc8b749d317cc6d4c27a5022d250df931fb04507c307ef640a452200da Loading...

	static.licdn.com/sc/h/5vm7gg2up6z612zbbmjfuk2co	50 kB	2023-03-07	2023-04-10
Pretty URL static.licdn.com/sc/h/5vm7gg2up6z612zbbmjfuk2co IP 95.101.11.57 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:01:46 Last Seen2023-04-10 14:54:02 Times Seen29 Hash 634a6770e0851dc42913e9523c6d72e8 8b08c38c219ad0daad36dc2b57e194a36a22491b 26c8a8f579effc0bdad5c032eb4c42bc8fe4c587af69a6141f212f64f3b01173 Loading...

	www.linkedin.com/in/mindiknebel/	1.5 kB	2023-03-07	2023-04-05
Pretty URL www.linkedin.com/in/mindiknebel/ IP 13.107.42.14 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:07 Last Seen2023-04-05 02:02:33 Times Seen24 Hash 988c3655c0a85dbfaa88a1e626a8220b 1a8a9bd843588d10079f0d48e1c2f903116319d6 c32e03be5116f4f1cf206bd0256e96bf8c280526bfd0b247b3c2c7b015555c2b Loading...

	www.linkedin.com/authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F	392 B	2023-03-07	2024-05-11
Pretty URL www.linkedin.com/authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F IP 13.107.42.14 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:07 Last Seen2024-05-11 00:04:41 Times Seen2142 Hash e0a4dd818cea4496e55b30782ebd8da5 cf5eba9f6f20b2fa835908cf62af6f6b5bf62e8f 0dab6c146a09f20164cf3c68e3b3aeefa599fb74013ce407b41bbda7d6f70e10 Loading...

	static.licdn.com/sc/h/avzjesp0yrbz0c8qa81r63x7m	186 kB	2023-03-08	2023-03-13
Pretty URL static.licdn.com/sc/h/avzjesp0yrbz0c8qa81r63x7m IP 95.101.11.57 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:51 Last Seen2023-03-13 06:52:58 Times Seen1 Hash b7eb9fe93fca3ce64dc595bc384eece2 d90bca3eeaae751326fea09793492b2148d76be5 8f31dc56914b010257901126859b48c6afae74dee334d67a3c3c83544a14503b Loading...

	static.licdn.com/sc/h/6m72nwm0qwbluhdie8pkavpnf	108 kB	2023-03-07	2023-07-20
Pretty URL static.licdn.com/sc/h/6m72nwm0qwbluhdie8pkavpnf IP 95.101.11.57 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:07 Last Seen2023-07-20 05:54:36 Times Seen109 Hash 6fc305c39f6393c4d9b00cf6dfec3d9b 23cb4da504dbb3c74a5c76d89afc66192658d27b da24b61af1e6da7f2389ece9a26cd05be607d766f49f4eb8a78f6d933419fb6a Loading...

	www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.IdpIFrameHttp.en_US.zbzz8TiKOgY.es5.O/d=1/rs=AOaEmlH7J7SipPY1FOfzZkFANnHs2vXVWQ/m=base	102 kB	2023-03-12	2023-03-12
Pretty URL www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.IdpIFrameHttp.en_US.zbzz8TiKOgY.es5.O/d=1/rs=AOaEmlH7J7SipPY1FOfzZkFANnHs2vXVWQ/m=base IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:21:29 Last Seen2023-03-12 21:28:04 Times Seen1 Hash 74a1de108799360a8f6d1be8493cefbe 50dbc9737f45736d15c5970f8685cd01cc78aca4 17ac15f734a50c4c42c0e49018451ea055ab4865b193f083ed6574905dadc976 Loading...

	platform.linkedin.com/litms/utag/seo-directory-frontend/utag.js?cb=1673294100000	21 kB	2023-03-09	2023-03-13
Pretty URL platform.linkedin.com/litms/utag/seo-directory-frontend/utag.js?cb=1673294100000 IP 95.101.11.48 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 07:19:49 Last Seen2023-03-13 06:52:58 Times Seen1 Hash 7d9d3851ace805e4f6bac99097cb970b 06628090923e9e4886803035dca5415c04b91edf c52bb182e130910e41c549eccba3a3f9e64ba9d374693af87271eb4e2d8ca68d Loading...

	accounts.google.com/o/oauth2/iframe#origin=https%3A%2F%2Fwww.linkedin.com&rpcToken=631391813.270457	31 B	2023-03-07	2024-05-07
Pretty URL accounts.google.com/o/oauth2/iframe#origin=https%3A%2F%2Fwww.linkedin.com&rpcToken=631391813.270457 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-05-07 13:26:32 Times Seen2608 Hash 671ffb739b15d1f76fe0bfda3211d6a4 cdd0e50d2d0ab5e871821f1e5b1245343edf17bf 1efcb4c5cb4522989514356d42b18a77598da23e50a212d4f74d084ff80b8c33 Loading...

HTTP Transactions (62)

URL IP Response Size

proxy.quickmail.com/click/1/525907046/d7922513779afdc35f2d6c99bef13405/8abf978e378c026b58cec8653cba9422/next

54.91.6.89

301 Moved Permanently

0 B

URL HTTP/1.1
proxy.quickmail.com/click/1/525907046/d7922513779afdc35f2d6c99bef13405/8abf978e378c026b58cec8653cba9422/next
IP
54.91.6.89:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /click/1/525907046/d7922513779afdc35f2d6c99bef13405/8abf978e378c026b58cec8653cba9422/next HTTP/1.1
Host: proxy.quickmail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: Cowboy
Date: Mon, 09 Jan 2023 19:57:37 GMT
Connection: keep-alive
Content-Type: text/html
Location: https://proxy.quickmail.com/click/1/525907046/d7922513779afdc35f2d6c99bef13405/8abf978e378c026b58cec8653cba9422/next
Transfer-Encoding: chunked
Via: 1.1 vegur

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b782882bdabaf3b08e64120922b4a4b7
2035ed7fc9fb5b6ee9715601ba43de5f94d0c0e9
3fe7d1a9a55b86ec25d02634749ccfae11f3477033ba8cd7ac4131b7948ba619

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FE7D1A9A55B86EC25D02634749CCFAE11F3477033BA8CD7AC4131B7948BA619"
Last-Modified: Sat, 07 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14589
Expires: Tue, 10 Jan 2023 00:00:47 GMT
Date: Mon, 09 Jan 2023 19:57:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
eecebe0566883e33558e8e67beaccb29
acdd8fd09e2066ed5ecfbc3f11c4a2d61218ecc7
65e21170242bf41eb529fa422385dbe5af65a61e374e6dd5669e7e5f927948af

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65E21170242BF41EB529FA422385DBE5AF65A61E374E6DD5669E7E5F927948AF"
Last-Modified: Mon, 09 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5265
Expires: Mon, 09 Jan 2023 21:25:23 GMT
Date: Mon, 09 Jan 2023 19:57:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
89a058935fd04697c87e9441fbb466a9
59b5b08119374b1da34cff7e43a7c6dc80103f6e
3a3261f495323ff0f60067b2930b8d0e5e4e5cd6ae9b14929a88047587b735da

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A3261F495323FF0F60067B2930B8D0E5E4E5CD6AE9B14929A88047587B735DA"
Last-Modified: Sat, 07 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14343
Expires: Mon, 09 Jan 2023 23:56:41 GMT
Date: Mon, 09 Jan 2023 19:57:38 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 09 Jan 2023 19:41:42 GMT
content-type: application/json
age: 956
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 7WqSEiD7gcNhuEkk0IicDCLbwb4DQ+bwT2UDCBePyA3xfat4A7Xnb+jF2FrM2MlA2SHCBm0bPUTaToawaQq2qw==
x-amz-request-id: NP4TGHJ3RGG2YWF2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 09 Jan 2023 19:01:21 GMT
age: 3377
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 09 Jan 2023 19:57:38 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7482566dbb6a52b82baccf1206e570b8
0800f1b6f1d0b7fd03d1bbd3d15d6839b734fb96
f71604e7fc35658489ec7ef92a229b442bef44f5b0e1ff67acefc21cf06d43da

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F71604E7FC35658489EC7EF92A229B442BEF44F5B0E1FF67ACEFC21CF06D43DA"
Last-Modified: Mon, 09 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 10 Jan 2023 01:57:38 GMT
Date: Mon, 09 Jan 2023 19:57:38 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 09 Jan 2023 19:17:22 GMT
age: 2416
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

proxy.quickmail.com/click/1/525907046/d7922513779afdc35f2d6c99bef13405/8abf978e378c026b58cec8653cba9422/next

34.201.80.84

301 Moved Permanently

106 B

URL HTTP/1.1
proxy.quickmail.com/click/1/525907046/d7922513779afdc35f2d6c99bef13405/8abf978e378c026b58cec8653cba9422/next
IP
34.201.80.84:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document, ASCII text, with no line terminators
Size
106 B (106 bytes)
Hash
87b3bc4345a6bcda31362ad27025e8a6
393ef6d25787be7f5c7812f74dad51801a2a5f7c
d96b773fb561772ac83b818d5d3ab205694cb73d0d2c73652a4e1c28c0872f7a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /click/1/525907046/d7922513779afdc35f2d6c99bef13405/8abf978e378c026b58cec8653cba9422/next HTTP/1.1
Host: proxy.quickmail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 301 Moved Permanently
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Location: https://www.linkedin.com/in/mindiknebel/
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache
X-Request-Id: e87a5409-5150-4181-9029-82f39d1e21b5
X-Runtime: 0.140675
Server: 
Date: 
Last-Modified: 
Strict-Transport-Security: max-age=63072000; includeSubDomains
Transfer-Encoding: chunked
Via: 1.1 vegur

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e8e0c910ffff02061a1806b1aa8cf9d2
c5bf0e7ad96e89b17a657fcb1e1cd1aa6d15ab89
896f08fa0030a1313df1f05ef47c5d1f11caa9094380fc026b95193164005448

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 796
Cache-Control: max-age=134546
Content-Type: application/ocsp-response
Date: Mon, 09 Jan 2023 19:57:38 GMT
Etag: "63bbd928-1d7"
Expires: Wed, 11 Jan 2023 09:20:04 GMT
Last-Modified: Mon, 09 Jan 2023 09:06:48 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

www.linkedin.com/in/mindiknebel/

13.107.42.14

999 No Reason Phrase

1.5 kB

URL HTTP/2
www.linkedin.com/in/mindiknebel/
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
1.5 kB (1530 bytes)
Hash
895d2a337cecd4bf36e6ff9a7e669a63
9176c614fa5aca9af6ceba4996cc9128842803f7
644031a68bde879af85bcc9cb3e6fa1e9a6b0f61d49307581974b5dbc09d3de8

HTTP Headers

GET /in/mindiknebel/ HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_gc=MTswOzE2NTMzNTk5NDI7MjswMjGUwmdulP1Odielt+uL7VqWyUjl6vuj1QmpUWsBM00u7Q==; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 999 No Reason Phrase
cache-control: no-cache, no-store
pragma: no-cache
content-length: 1530
content-type: text/html
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: trkCode=bf; Max-Age=5
trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=; Max-Age=5
rtc=AQGcslhckFZ3wgAAAYWYHB9QgDmA0DOGbwLsC8zkFd7S5b662vN120k5brAG7zglNGEI1rwoJt4chn7S2A39O66zr4j_OSFuSaA-QNieB7WQltdeY5VCWyKn7MCZCP-Ov3to2Xxfa3GoDkPWjw5At41Cy85ZNxnoYVrvPNf4EPIxm4AqchwXfxaWF8wUvQKDgb5IT_ki3SD60CJNkWZoZRwcqD2fcQ==; Max-Age=120; path=/; domain=.linkedin.com
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXx2i3oHG0N/KGiz8kZxA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 3AB962E17B0F4F3B8B45C79E28A5923B Ref B: OSL30EDGE0412 Ref C: 2023-01-09T19:57:38Z
date: Mon, 09 Jan 2023 19:57:38 GMT
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.40.156.74

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.40.156.74:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tOrvfQy1keGk/rwPr3qiVQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: L9kNsKvkA7d7JirlOBXuWj9h3sg=

www.linkedin.com/authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F

13.107.42.14

200 OK

8.4 kB

URL HTTP/2
www.linkedin.com/authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (948)
Size
8.4 kB (8392 bytes)
Hash
04ad8013d8ef5347726c414950a81d83
22c224d275e94a9d6f64283fd96e6035956bd9ab
6d5f4978b086a997ca626ee324834e1c8f4a0bd514b38894d2c3bf9df11a37e6

HTTP Headers

GET /authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/in/mindiknebel/
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_gc=MTswOzE2NTMzNTk5NDI7MjswMjGUwmdulP1Odielt+uL7VqWyUjl6vuj1QmpUWsBM00u7Q==; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQGcslhckFZ3wgAAAYWYHB9QgDmA0DOGbwLsC8zkFd7S5b662vN120k5brAG7zglNGEI1rwoJt4chn7S2A39O66zr4j_OSFuSaA-QNieB7WQltdeY5VCWyKn7MCZCP-Ov3to2Xxfa3GoDkPWjw5At41Cy85ZNxnoYVrvPNf4EPIxm4AqchwXfxaWF8wUvQKDgb5IT_ki3SD60CJNkWZoZRwcqD2fcQ==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-length: 8392
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
set-cookie: fid=AQHl2IRbnlMUiAAAAYWYHCP4aFPRRRwbF3NMPwuFu7fb8GBS9t7-_i1ZvWjLAU_JKt5cgQGJIBfNMA; Max-Age=604800; Expires=Mon, 16 Jan 2023 19:57:39 GMT; Path=/
JSESSIONID=ajax:1768336887567766781; Domain=.www.linkedin.com; Path=/; Secure; SameSite=None
lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; Domain=.linkedin.com; Expires=Tue, 09-Jan-2024 19:57:39 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; Domain=.www.linkedin.com; Expires=Tue, 09-Jan-2024 19:57:39 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=; Domain=.linkedin.com; Expires=Thu, 01 Jan 1970 00:00:00 UTC; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2440:u=1:x=1:i=1673294259:t=1673380659:v=2:sig=AQGKTh8QbMsg9Aw_NgxR87EWE8yGIb_l"; Expires=Tue, 10 Jan 2023 19:57:39 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
x-fs-uuid: 0005f1da2debdf72eef10ada20901ad9
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXx2i3r33Lu8QraIJAa2Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: EA43CDF0523F405BB6A9BECED25C821C Ref B: OSL30EDGE0412 Ref C: 2023-01-09T19:57:39Z
date: Mon, 09 Jan 2023 19:57:38 GMT
X-Firefox-Spdy: h2

static.licdn.com/sc/h/84y7li75duusderb9uyzdnul0

95.101.11.57

200 OK

39 kB

URL HTTP/2
static.licdn.com/sc/h/84y7li75duusderb9uyzdnul0
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
39 kB (39429 bytes)
Hash
c44998e42da88ccb6552ea478c870263
45629dcf710aac0f8beb9eb33a4620ba74e6d13b
340c5ca84057a68afcc5b0bea2b6ae8d2a38de04820451b797011294590108fc

HTTP Headers

GET /sc/h/84y7li75duusderb9uyzdnul0 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Play
expires: Wed, 06 Dec 2023 00:32:21 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/css
x-li-fabric: prod-lor1
x-fs-uuid: 0005ef1defed27a2d6d85d58d22ec427
x-li-source-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXvHe/tJ6LW2F1Y0i7EJw==
remote-cache-status: TCP_HIT, TCP_HIT
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 09 Jan 2023 19:57:39 GMT
content-length: 39429
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/1k1xa20mhrefbm4mu6uim2qxw

95.101.11.57

200 OK

166 kB

URL HTTP/2
static.licdn.com/sc/h/1k1xa20mhrefbm4mu6uim2qxw
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (65410)
Size
166 kB (165481 bytes)
Hash
3a96d4c591acfe471fd0b199c89e539f
33a7c026f8eeb457fb88d22143a111bc3372754a
01a6ac86f664086e43057c14f0ca82d8ceb3f2dbae4e44f2ae0e7b07a3446453

HTTP Headers

GET /sc/h/1k1xa20mhrefbm4mu6uim2qxw HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Play
expires: Fri, 17 Nov 2023 23:09:42 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005edb2af31ed9992c0f5260224d0fd
x-li-fabric: prod-lor1
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXtsq8x7ZmSwPUmAiTQ/Q==
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 09 Jan 2023 19:57:39 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/8fkga714vy9b2wk5auqo5reeb

95.101.11.57

200 OK

1.2 kB

URL HTTP/2
static.licdn.com/sc/h/8fkga714vy9b2wk5auqo5reeb
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (664)
Size
1.2 kB (1209 bytes)
Hash
c1e1c64d789b81d27d6bb19ac7b2e7f7
75a1bf886b4f3aba8a9ed666ecd558b0b7f9d418
1b11ad6ab9bc256f2e2bb1d6bf3904af5cfa724a393302af36e540dd7df39eed

HTTP Headers

GET /sc/h/8fkga714vy9b2wk5auqo5reeb HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Tue, 19 Apr 2022 23:57:19 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/svg+xml
x-fs-uuid: 1bd23adfb96777166068f1c3842b0000
x-li-fabric: prod-lva1
x-li-pop: prod-edc2
x-li-proto: http/1.1
x-li-uuid: G9I637lndxZgaPHDhCsAAA==
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 09 Jan 2023 19:57:40 GMT
content-length: 1209
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/5oas73nreunfgygkpe5iwmgrs

95.101.11.57

200 OK

391 B

URL HTTP/2
static.licdn.com/sc/h/5oas73nreunfgygkpe5iwmgrs
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
391 B (391 bytes)
Hash
5fdb7b403b3a41faa26c73b1aaaf7668
c46a275d28b78b77460e42ba248317378a91b70e
55e3d046df49b2754cec5ecee990e526dbb272e70eb5bea625b4e68e64ce1715

HTTP Headers

GET /sc/h/5oas73nreunfgygkpe5iwmgrs HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
expires: Wed, 15 Mar 2023 06:44:11 GMT
cache-control: max-age=31536000, immutable
x-li-fabric: prod-lor1
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXaPB/lxS6DQU9aWrGlQw==
server: Play
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/svg+xml
x-fs-uuid: 8a4340de2da5771690b181aa7e2b0000
content-length: 391
remote-cache-status: TCP_HIT, TCP_HIT
date: Mon, 09 Jan 2023 19:57:40 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/gs508lg3t2o81tq7pmcgn6m2

95.101.11.57

200 OK

274 B

URL HTTP/2
static.licdn.com/sc/h/gs508lg3t2o81tq7pmcgn6m2
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
274 B (274 bytes)
Hash
07dfbaf5f85030efc27e4a012488e13a
b4e6ac4f3dcd094bd4d326b537960328200384f6
5843ed3527bc1e0e105b4e4b15fbbff78c6d44efa024e2ae4a08a0e8c82e5d4c

HTTP Headers

GET /sc/h/gs508lg3t2o81tq7pmcgn6m2 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
expires: Wed, 15 Mar 2023 06:38:54 GMT
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
cache-control: max-age=31536000, immutable
unused62: 8096267
server: Play
x-li-static-content: 1
content-type: image/svg+xml
x-fs-uuid: 5a66db2eefa47716900e9795272b0000
x-li-fabric: prod-ltx1
x-li-pop: prod-eda6
x-li-proto: http/1.1
x-li-uuid: WmbbLu+kdxaQDpeVJysAAA==
content-length: 274
remote-cache-status: TCP_HIT
date: Mon, 09 Jan 2023 19:57:40 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/b4jgwnrrzl0qfc47qjfws95pj

95.101.11.57

200 OK

820 B

URL HTTP/2
static.licdn.com/sc/h/b4jgwnrrzl0qfc47qjfws95pj
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
820 B (820 bytes)
Hash
bbef0b818a81de5579827911c1af5127
59f7afad4f4b744adacbeff7b6598d197a06d9d8
affe486de5aeb7dcfa7eaa5a69b6866b138243413e68600554a32958420576f3

HTTP Headers

GET /sc/h/b4jgwnrrzl0qfc47qjfws95pj HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
expires: Wed, 15 Mar 2023 06:40:34 GMT
cache-control: max-age=31536000, immutable
x-li-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXaPBL2/B2F8x4vikAsJA==
server: Play
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/svg+xml
x-fs-uuid: ee407623f6a47716006000e5862b0000
content-length: 820
remote-cache-status: TCP_HIT, TCP_HIT
date: Mon, 09 Jan 2023 19:57:40 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/b4jgwnrrzl0qfc47qjfws95pj

95.101.11.57

200 OK

820 B

URL HTTP/2
static.licdn.com/sc/h/b4jgwnrrzl0qfc47qjfws95pj
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
820 B (820 bytes)
Hash
bbef0b818a81de5579827911c1af5127
59f7afad4f4b744adacbeff7b6598d197a06d9d8
affe486de5aeb7dcfa7eaa5a69b6866b138243413e68600554a32958420576f3

HTTP Headers

GET /sc/h/b4jgwnrrzl0qfc47qjfws95pj HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
expires: Wed, 15 Mar 2023 06:40:34 GMT
cache-control: max-age=31536000, immutable
x-li-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXaPBL2/B2F8x4vikAsJA==
server: Play
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/svg+xml
x-fs-uuid: ee407623f6a47716006000e5862b0000
content-length: 820
remote-cache-status: TCP_HIT, TCP_HIT
date: Mon, 09 Jan 2023 19:57:40 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/ddi43qwelxeqjxdd45pe3fvs1

95.101.11.57

200 OK

903 B

URL HTTP/2
static.licdn.com/sc/h/ddi43qwelxeqjxdd45pe3fvs1
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (355)
Size
903 B (903 bytes)
Hash
52607677c7773adecb8d49e15826c534
e0967a35189a8d07f382d215e9f9a877bc6727b5
2c385e5a99ad80990a4e9d8df2113ffb5cddf19a809eb5d7e6cac9b4c120750c

HTTP Headers

GET /sc/h/ddi43qwelxeqjxdd45pe3fvs1 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Wed, 20 Apr 2022 18:39:25 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/svg+xml
x-fs-uuid: e407d770f5a477162074ae6e852b0000
x-li-fabric: prod-ltx1
x-li-pop: prod-eda6
x-li-proto: http/1.1
x-li-uuid: 5AfXcPWkdxYgdK5uhSsAAA==
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 09 Jan 2023 19:57:40 GMT
content-length: 903
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/ddi43qwelxeqjxdd45pe3fvs1

95.101.11.57

200 OK

903 B

URL HTTP/2
static.licdn.com/sc/h/ddi43qwelxeqjxdd45pe3fvs1
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (355)
Size
903 B (903 bytes)
Hash
52607677c7773adecb8d49e15826c534
e0967a35189a8d07f382d215e9f9a877bc6727b5
2c385e5a99ad80990a4e9d8df2113ffb5cddf19a809eb5d7e6cac9b4c120750c

HTTP Headers

GET /sc/h/ddi43qwelxeqjxdd45pe3fvs1 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Wed, 20 Apr 2022 18:39:25 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/svg+xml
x-fs-uuid: e407d770f5a477162074ae6e852b0000
x-li-fabric: prod-ltx1
x-li-pop: prod-eda6
x-li-proto: http/1.1
x-li-uuid: 5AfXcPWkdxYgdK5uhSsAAA==
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 09 Jan 2023 19:57:40 GMT
content-length: 903
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/b39mllzjzea0ex5odqm0ojejf

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/b39mllzjzea0ex5odqm0ojejf
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/b39mllzjzea0ex5odqm0ojejf HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Wed, 06 Dec 2023 00:57:12 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-length: 0
content-type: text/javascript
x-li-fabric: prod-lor1
x-fs-uuid: 0005ef1e48bf56f5e2f4c344d15c1be3
x-li-source-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXvHki/VvXi9MNE0Vwb4w==
x-edgeconnect-midmile-rtt: 6
x-edgeconnect-origin-mex-latency: 213
date: Mon, 09 Jan 2023 19:57:40 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/al2o9zrvru7aqj8e1x2rzsrca

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/al2o9zrvru7aqj8e1x2rzsrca
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/al2o9zrvru7aqj8e1x2rzsrca HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Wed, 20 Apr 2022 18:38:58 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/x-icon
x-fs-uuid: 51dc0021efa477165078f2ca252b0000
x-li-fabric: prod-ltx1
x-li-pop: prod-eda6
x-li-proto: http/1.1
x-li-uuid: UdwAIe+kdxZQePLKJSsAAA==
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 09 Jan 2023 19:57:40 GMT
content-length: 1446
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/84y7li75duusderb9uyzdnul0

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/84y7li75duusderb9uyzdnul0
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/84y7li75duusderb9uyzdnul0 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Wed, 06 Dec 2023 00:32:52 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/css
x-li-fabric: prod-lva1
x-fs-uuid: 0005ef1e48bf4feac4ca78aaacbe4f57
x-li-source-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXvHki/T+rEyniqrL5PVw==
x-edgeconnect-midmile-rtt: 6
x-edgeconnect-origin-mex-latency: 180
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 09 Jan 2023 19:57:40 GMT
content-length: 20
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/avzjesp0yrbz0c8qa81r63x7m

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/avzjesp0yrbz0c8qa81r63x7m
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/avzjesp0yrbz0c8qa81r63x7m HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Fri, 17 Nov 2023 23:09:42 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005edb2af31c7af3acd14ce221ab9ce
x-li-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXtsq8xx686zRTOIhq5zg==
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 09 Jan 2023 19:57:40 GMT
content-length: 20
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/6m72nwm0qwbluhdie8pkavpnf

95.101.11.57

200 OK

37 kB

URL HTTP/2
static.licdn.com/sc/h/6m72nwm0qwbluhdie8pkavpnf
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (594)
Size
37 kB (36578 bytes)
Hash
a0a26f9898197d9cf4ea0c2108cc9228
733bc125b057c0099996a369504fa1cf8d6b09e7
cec1d615dc73d04aa7caf3785e9bad6543160307ce329e62605c46f796f0017f

HTTP Headers

GET /sc/h/6m72nwm0qwbluhdie8pkavpnf HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Tue, 20 Sep 2022 19:18:29 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 5bc31937e29da616401c4a8acb2a0000
x-li-fabric: prod-lva1
x-li-pop: prod-edc2
x-li-proto: http/1.1
x-li-uuid: W8MZN+KdphZAHEqKyyoAAA==
remote-cache-status: TCP_HIT, TCP_HIT
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 09 Jan 2023 19:57:40 GMT
content-length: 36578
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/1k1xa20mhrefbm4mu6uim2qxw

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/1k1xa20mhrefbm4mu6uim2qxw
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/1k1xa20mhrefbm4mu6uim2qxw HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Fri, 17 Nov 2023 23:09:42 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005edb2af31ed9992c0f5260224d0fd
x-li-fabric: prod-lor1
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXtsq8x7ZmSwPUmAiTQ/Q==
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 09 Jan 2023 19:57:40 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/5vm7gg2up6z612zbbmjfuk2co

95.101.11.57

200 OK

17 kB

URL HTTP/2
static.licdn.com/sc/h/5vm7gg2up6z612zbbmjfuk2co
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (50281)
Size
17 kB (16800 bytes)
Hash
b81057bab616fc98e7def69ea7843e81
1710c47ec94f53d04322c7ef877accaedf4fd3d0
a1a8fd6fbd57e85005f1779b25f653ae8ec87f8801d531f1603dde982ae7133d

HTTP Headers

GET /sc/h/5vm7gg2up6z612zbbmjfuk2co HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Wed, 28 Jun 2023 17:56:36 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005e285c1fa92c1252109c9c9926b5e
x-li-fabric: prod-lva1
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXihcH6ksElIQnJyZJrXg==
remote-cache-status: TCP_HIT
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 09 Jan 2023 19:57:40 GMT
content-length: 16800
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f1f6da1c087bab740a0e1a8e3c6f8183
69a7fda93f860bef1f83762bb65d639ee756d6b4
adb042adf90611bcac74c2693303e75a9e93cfa2c436e167966ec41a68d1ec83

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 09 Jan 2023 19:57:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.linkedin.com/directory/api/ingraphs/gauge

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/directory/api/ingraphs/gauge
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /directory/api/ingraphs/gauge HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-li-pageInstance: urn:li:page:auth_wall_desktop_profile_jsbeacon;wbFbxeChSVy0teaOuEq1WQ==
Csrf-Token: ajax:1768336887567766781
Content-Length: 96
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQGcslhckFZ3wgAAAYWYHB9QgDmA0DOGbwLsC8zkFd7S5b662vN120k5brAG7zglNGEI1rwoJt4chn7S2A39O66zr4j_OSFuSaA-QNieB7WQltdeY5VCWyKn7MCZCP-Ov3to2Xxfa3GoDkPWjw5At41Cy85ZNxnoYVrvPNf4EPIxm4AqchwXfxaWF8wUvQKDgb5IT_ki3SD60CJNkWZoZRwcqD2fcQ==; fid=AQHl2IRbnlMUiAAAAYWYHCP4aFPRRRwbF3NMPwuFu7fb8GBS9t7-_i1ZvWjLAU_JKt5cgQGJIBfNMA; JSESSIONID=ajax:1768336887567766781; lang=v=2&lang=en-us; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2440:u=1:x=1:i=1673294259:t=1673380659:v=2:sig=AQGKTh8QbMsg9Aw_NgxR87EWE8yGIb_l"
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: li_gc=MTswOzE2NzMyOTQyNjA7MjswMjEOUz3FoEWsGccxsfe7kDiy1LfTIsuldmVHa+scRMVHnQ==; Domain=.linkedin.com; Expires=Sat, 08 Jul 2023 19:57:40 GMT; Path=/; Secure; SameSite=None
x-fs-uuid: 0005f1da2dfa847151228d4c9a87852e
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXx2i36hHFRIo1MmoeFLg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 074FFEAEDC7C4E31890DD71CCE2E7034 Ref B: OSL30EDGE0412 Ref C: 2023-01-09T19:57:40Z
date: Mon, 09 Jan 2023 19:57:39 GMT
content-length: 0
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7172ba8ac61060c9f94ad799db6af44
253917924d50c99a5b2fd83a816135846f7a9b80
3c2eee988ef973aca8d53e8c23e6475f9eb8311dff948fbe64106fd20b217d81

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C2EEE988EF973ACA8D53E8C23E6475F9EB8311DFF948FBE64106FD20B217D81"
Last-Modified: Mon, 09 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6407
Expires: Mon, 09 Jan 2023 21:44:27 GMT
Date: Mon, 09 Jan 2023 19:57:40 GMT
Connection: keep-alive

www.linkedin.com/litms/api/metadata/user

13.107.42.14

200 OK

226 B

URL HTTP/2
www.linkedin.com/litms/api/metadata/user
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JSON data\012- , ASCII text, with very long lines (345), with no line terminators
Size
226 B (226 bytes)
Hash
34f79ca813bef4510700273db4ef17d8
0b6a9f3f43a59a7487c68456c52bf507f81cca1d
292a8a11e91a11e0d307cbc378306adadc29e7f6641c7f4827c9e42d9aa447ae

HTTP Headers

GET /litms/api/metadata/user HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQGcslhckFZ3wgAAAYWYHB9QgDmA0DOGbwLsC8zkFd7S5b662vN120k5brAG7zglNGEI1rwoJt4chn7S2A39O66zr4j_OSFuSaA-QNieB7WQltdeY5VCWyKn7MCZCP-Ov3to2Xxfa3GoDkPWjw5At41Cy85ZNxnoYVrvPNf4EPIxm4AqchwXfxaWF8wUvQKDgb5IT_ki3SD60CJNkWZoZRwcqD2fcQ==; fid=AQHl2IRbnlMUiAAAAYWYHCP4aFPRRRwbF3NMPwuFu7fb8GBS9t7-_i1ZvWjLAU_JKt5cgQGJIBfNMA; JSESSIONID=ajax:1768336887567766781; lang=v=2&lang=en-us; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2440:u=1:x=1:i=1673294259:t=1673380659:v=2:sig=AQGKTh8QbMsg9Aw_NgxR87EWE8yGIb_l"
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-length: 226
content-type: application/json
content-encoding: gzip
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Origin,Accept-Encoding
set-cookie: li_gc=MTswOzE2NzMyOTQyNjA7MjswMjEOUz3FoEWsGccxsfe7kDiy1LfTIsuldmVHa+scRMVHnQ==; Domain=.linkedin.com; Expires=Sat, 08 Jul 2023 19:57:40 GMT; Path=/; Secure; SameSite=None
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXx2i377927IqlNqoyjrg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A32254EE80CF4A4AA5A8251FCBDADC3D Ref B: OSL30EDGE0412 Ref C: 2023-01-09T19:57:40Z
date: Mon, 09 Jan 2023 19:57:39 GMT
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7172ba8ac61060c9f94ad799db6af44
253917924d50c99a5b2fd83a816135846f7a9b80
3c2eee988ef973aca8d53e8c23e6475f9eb8311dff948fbe64106fd20b217d81

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C2EEE988EF973ACA8D53E8C23E6475F9EB8311DFF948FBE64106FD20B217D81"
Last-Modified: Mon, 09 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6407
Expires: Mon, 09 Jan 2023 21:44:27 GMT
Date: Mon, 09 Jan 2023 19:57:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7172ba8ac61060c9f94ad799db6af44
253917924d50c99a5b2fd83a816135846f7a9b80
3c2eee988ef973aca8d53e8c23e6475f9eb8311dff948fbe64106fd20b217d81

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C2EEE988EF973ACA8D53E8C23E6475F9EB8311DFF948FBE64106FD20B217D81"
Last-Modified: Mon, 09 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6407
Expires: Mon, 09 Jan 2023 21:44:27 GMT
Date: Mon, 09 Jan 2023 19:57:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7172ba8ac61060c9f94ad799db6af44
253917924d50c99a5b2fd83a816135846f7a9b80
3c2eee988ef973aca8d53e8c23e6475f9eb8311dff948fbe64106fd20b217d81

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C2EEE988EF973ACA8D53E8C23E6475F9EB8311DFF948FBE64106FD20B217D81"
Last-Modified: Mon, 09 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6407
Expires: Mon, 09 Jan 2023 21:44:27 GMT
Date: Mon, 09 Jan 2023 19:57:40 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab696bdd-92ae-4c01-855b-6bbe0e8165ad.jpeg

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab696bdd-92ae-4c01-855b-6bbe0e8165ad.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8866 bytes)
Hash
e0189748e9478c37ab22a71c0826ca99
08186f7c9717eb7165ee8b9b803760da967b82e7
40a9b3a38f6799c2005bc7cc2716104b175a2178efc8029188b9aff19e598483

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab696bdd-92ae-4c01-855b-6bbe0e8165ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8866
x-amzn-requestid: b4a6c607-98b7-4689-96c3-646756db23df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZblsHkmIAMFzKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba0c8a-02beb65706f8d3d44a812788;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 00:21:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: srbfQR2lJE50a5MosYUJWfF3NH981wGEoH63Oz2n1MptH8LlKJZ-ZQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 05:43:51 GMT
age: 51229
etag: "08186f7c9717eb7165ee8b9b803760da967b82e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f66a423-2d06-442e-9b60-52f1638487d5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.7 kB (4687 bytes)
Hash
f0defc5fd929d3ca7df12b102b551453
f44e4ac4a10991e12994e3b5d6f3cc1b1658967a
f551a1c156ec30405668d66bff9e1359805b773457602e44748be80cbb1f8a23

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f66a423-2d06-442e-9b60-52f1638487d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4687
x-amzn-requestid: 18bf71d4-030e-4a08-ae18-48fe037e6e0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWhZ7GzXIAMFnFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8e2a5-710f414a2d1b239f6d59d73a;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 03:10:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wkKw4Bgb_vxuY641mGDczUNQUfGXiozbOtpFwfK6aThfJj_q5T_IDg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 03:49:53 GMT
age: 58067
etag: "f44e4ac4a10991e12994e3b5d6f3cc1b1658967a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
53e4963971e19408d4cf264bd653599d
271fa6d9b5843b97d579a713fbb48b388c61eba0
c3245e3793f7aab542ba2b4b719f5145a45ba29d536456ad629a364ab2df400b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 09 Jan 2023 19:57:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46239df3-17a1-48a0-95bc-7ac540c3def6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12971 bytes)
Hash
0b75a93b9f0106516f046eb424b0c8d9
c9509f976390441bbd3bd7521cb1848f4f481fd0
0b69fd368ef68510387a871acfffe82afc4414163c661f76e574dffdcc94104a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46239df3-17a1-48a0-95bc-7ac540c3def6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12971
x-amzn-requestid: ed6346eb-d3ae-4343-8eab-b4321aad3135
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eXEBqG97IAMF3Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b91a0a-4eb212756fcc0d3175dd0225;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 07:06:50 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: m2BuFpIx0utir3G3NvMxAz8nTBmTl_nKgyMuEcM80DMRc9uinAl-mw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 f958a3846d80a3925f664b320dfad9c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 05:40:49 GMT
age: 51411
etag: "c9509f976390441bbd3bd7521cb1848f4f481fd0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faede32e1-a6ef-46a9-8048-2bc4b3382d7b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9674 bytes)
Hash
a0473691ea0d4426c66441d3e049b139
2ba1b24cc0f903a534458642236adc8495d87519
5475d4935fea484eabbac57be8e5604952f59374e1ccf26392c3283d39b96a8d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faede32e1-a6ef-46a9-8048-2bc4b3382d7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 173c95c5-690c-4381-9cf1-cb31e4456f14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eQd8LF0YoAMFTUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b676b4-0b9191ab25e33cb436995203;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 07:05:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ugd6PvgcQYjFctkOjVM5zXz3muWfr3o-8qf2hLbu-B_orF1ruOiTGQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 06:00:42 GMT
age: 50218
etag: "2ba1b24cc0f903a534458642236adc8495d87519"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca7956cf-b613-4307-88cb-8cc1a3fda11c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9594 bytes)
Hash
aa9ed964b2f5f08ec571b525992f1566
9de0dfe9d1018726f1504b26964629f419700a49
d75747ac8726cbbe7583c48c2522cecc0c3ed6a0fa3694513c694876847b5944

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca7956cf-b613-4307-88cb-8cc1a3fda11c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9594
x-amzn-requestid: 4019d06f-0759-4d75-b349-100cb39dc757
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ecZt8FzxoAMFb7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bb3cbf-5a39912c2194b09536deb76e;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 21:59:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 12jvOrrQ_7Zt3RNX8Ro_essztAfvOZedtIOnBOilPBmw5yv65ocP8Q==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 08:43:20 GMT
age: 40460
etag: "9de0dfe9d1018726f1504b26964629f419700a49"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5578 bytes)
Hash
e832123ea0c92a446b5894e75efc86ae
bb438ca635b43819701067ef07a3d910ad29a0c7
e1b0c6cd873f304de15664f96af6b6914e13fbbfb3e2179ba43369e116446773

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5578
x-amzn-requestid: 405085aa-d0f5-4786-8fd7-46d74a6e8d1e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ecaIxGdkIAMFaBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bb3d6b-07f34cbf7e1df2fa7a4d8982;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 22:02:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mRyiYL1hTv7MvjLg92gwPBszcW1mqdKadIcQVG_rsQ6b15uyGkyZbQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 02:16:11 GMT
age: 63689
etag: "bb438ca635b43819701067ef07a3d910ad29a0c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2c4b7b4dc5383dd277a7c79aae915be1
308dc2d2ad250a4e05fdbbe7520558f77959490a
ddf86e1a0a2912dc58e41cf439e09b522aeffec51399311c7483ff493b79a2cc

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 09 Jan 2023 19:57:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

accounts.google.com/o/oauth2/iframe

142.250.74.77

200 OK

103 kB

URL HTTP/2
accounts.google.com/o/oauth2/iframe
IP
142.250.74.77:0
ASN
#15169 GOOGLE

File type
data
Size
103 kB (102767 bytes)
Hash
a3e5f7634a89981c1341aba5995853f7
f9a102c87b95f7be8d07cf94f8a60d6227f8850f
fc6903aecb9a5d8f6951932b17c2db868ecae313c29af8b449c57c533b0a00e5

HTTP Headers

GET /o/oauth2/iframe HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 09 Jan 2023 19:57:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-feHzabhrjasPIqwK4RD5xA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/IdpIFrameHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/IdpIFrameHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/IdpIFrameHttp/cspreport
report-to: {"group":"IdpIFrameHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/IdpIFrameHttp/external"}]}
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin; report-to="IdpIFrameHttp"
cross-origin-embedder-policy: require-corp
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

platform.linkedin.com/litms/utag/seo-directory-frontend/utag.js?cb=1673294100000

95.101.11.48

200 OK

7.2 kB

URL HTTP/2
platform.linkedin.com/litms/utag/seo-directory-frontend/utag.js?cb=1673294100000
IP
95.101.11.48:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (20739), with no line terminators
Size
7.2 kB (7228 bytes)
Hash
1a41883e93362f4c343ace4bd4e78c47
4c90a888f691409a3c7337ec41d5c60cc96fe70c
3022ad96f715c9084b0a1efb918798caceaf9f2d915dfc17c2450dfe4c285122

HTTP Headers

GET /litms/utag/seo-directory-frontend/utag.js?cb=1673294100000 HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; rtc=AQGcslhckFZ3wgAAAYWYHB9QgDmA0DOGbwLsC8zkFd7S5b662vN120k5brAG7zglNGEI1rwoJt4chn7S2A39O66zr4j_OSFuSaA-QNieB7WQltdeY5VCWyKn7MCZCP-Ov3to2Xxfa3GoDkPWjw5At41Cy85ZNxnoYVrvPNf4EPIxm4AqchwXfxaWF8wUvQKDgb5IT_ki3SD60CJNkWZoZRwcqD2fcQ==; lang=v=2&lang=en-us; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2440:u=1:x=1:i=1673294259:t=1673380659:v=2:sig=AQGKTh8QbMsg9Aw_NgxR87EWE8yGIb_l"
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
etag: "5f2bc9da96df860735425827994d840e6722b5ba"
server: Play
accept-ranges: bytes
cache-control: max-age=300
last-modified: Mon, 09 Jan 2023 16:17:04 GMT
content-encoding: gzip
content-length: 7228
content-type: application/javascript; charset=utf-8
x-li-fabric: prod-lor1
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
x-li-uuid: AAXx2iSBv8YUjeR4MdrcRA==
date: Mon, 09 Jan 2023 19:57:40 GMT
vary: Accept-Encoding
x-cdn-client-ip-version: IPV4
x-cdn: AKAM
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
6845714035871de50607bf6185f94f64
c8b0da305ef4c6a587307d87224ce7ae19ac31dc
75d805e1f96447b58ac3f8226c16c4b13d4e664e1e508be26e9968510145017a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 09 Jan 2023 19:57:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.linkedin.com/sc/h/bxullzz73p3hhf78t6sj3w6pb

13.107.42.14

200 OK

1.7 kB

URL HTTP/2
www.linkedin.com/sc/h/bxullzz73p3hhf78t6sj3w6pb
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (523)
Size
1.7 kB (1672 bytes)
Hash
526e654805f1fc57a5a9923b00c509b5
195cf74d9fa852a646de70aa3388e31c2583f4a3
498d56bddf2407a18dc16b84b3dc418c0fcddc7909de19c6617e286f02dca6ef

HTTP Headers

GET /sc/h/bxullzz73p3hhf78t6sj3w6pb HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQGcslhckFZ3wgAAAYWYHB9QgDmA0DOGbwLsC8zkFd7S5b662vN120k5brAG7zglNGEI1rwoJt4chn7S2A39O66zr4j_OSFuSaA-QNieB7WQltdeY5VCWyKn7MCZCP-Ov3to2Xxfa3GoDkPWjw5At41Cy85ZNxnoYVrvPNf4EPIxm4AqchwXfxaWF8wUvQKDgb5IT_ki3SD60CJNkWZoZRwcqD2fcQ==; fid=AQHl2IRbnlMUiAAAAYWYHCP4aFPRRRwbF3NMPwuFu7fb8GBS9t7-_i1ZvWjLAU_JKt5cgQGJIBfNMA; JSESSIONID=ajax:1768336887567766781; lang=v=2&lang=en-us; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2440:u=1:x=1:i=1673294259:t=1673380659:v=2:sig=AQGKTh8QbMsg9Aw_NgxR87EWE8yGIb_l"; li_gc=MTswOzE2NzMyOTQyNjA7MjswMjEOUz3FoEWsGccxsfe7kDiy1LfTIsuldmVHa+scRMVHnQ==
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=31536000, immutable
content-length: 1672
content-type: text/javascript
content-encoding: gzip
expires: Tue, 09 Jan 2024 19:55:43 GMT
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
vary: Accept-Encoding
x-li-static-content: 1
access-control-allow-origin: *
x-fs-uuid: 0005f1da2707c8bbcc0a39ad83febac0
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-cdn-client-ip-version: IPV6
x-cdn-proto: HTTP1
x-li-uuid: AAXx2i3/06Rct3lLmKEXuQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 5AACDA6A825D4030BC1327157390467C Ref B: OSL30EDGE0412 Ref C: 2023-01-09T19:57:40Z
date: Mon, 09 Jan 2023 19:57:39 GMT
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 8424
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQGcslhckFZ3wgAAAYWYHB9QgDmA0DOGbwLsC8zkFd7S5b662vN120k5brAG7zglNGEI1rwoJt4chn7S2A39O66zr4j_OSFuSaA-QNieB7WQltdeY5VCWyKn7MCZCP-Ov3to2Xxfa3GoDkPWjw5At41Cy85ZNxnoYVrvPNf4EPIxm4AqchwXfxaWF8wUvQKDgb5IT_ki3SD60CJNkWZoZRwcqD2fcQ==; fid=AQHl2IRbnlMUiAAAAYWYHCP4aFPRRRwbF3NMPwuFu7fb8GBS9t7-_i1ZvWjLAU_JKt5cgQGJIBfNMA; JSESSIONID=ajax:1768336887567766781; lang=v=2&lang=en-us; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2440:u=1:x=1:i=1673294259:t=1673380659:v=2:sig=AQGKTh8QbMsg9Aw_NgxR87EWE8yGIb_l"; li_gc=MTswOzE2NzMyOTQyNjA7MjswMjEOUz3FoEWsGccxsfe7kDiy1LfTIsuldmVHa+scRMVHnQ==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXx2i4ACFRtdzIGO6YEdQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: F7965F39D7284B89AA3F3BF90A1958D6 Ref B: OSL30EDGE0412 Ref C: 2023-01-09T19:57:40Z
date: Mon, 09 Jan 2023 19:57:39 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/platform-telemetry/li/collect

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/platform-telemetry/li/collect
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /platform-telemetry/li/collect HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 1893
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQGcslhckFZ3wgAAAYWYHB9QgDmA0DOGbwLsC8zkFd7S5b662vN120k5brAG7zglNGEI1rwoJt4chn7S2A39O66zr4j_OSFuSaA-QNieB7WQltdeY5VCWyKn7MCZCP-Ov3to2Xxfa3GoDkPWjw5At41Cy85ZNxnoYVrvPNf4EPIxm4AqchwXfxaWF8wUvQKDgb5IT_ki3SD60CJNkWZoZRwcqD2fcQ==; fid=AQHl2IRbnlMUiAAAAYWYHCP4aFPRRRwbF3NMPwuFu7fb8GBS9t7-_i1ZvWjLAU_JKt5cgQGJIBfNMA; JSESSIONID=ajax:1768336887567766781; lang=v=2&lang=en-us; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2440:u=1:x=1:i=1673294259:t=1673380659:v=2:sig=AQGKTh8QbMsg9Aw_NgxR87EWE8yGIb_l"; li_gc=MTswOzE2NzMyOTQyNjA7MjswMjEOUz3FoEWsGccxsfe7kDiy1LfTIsuldmVHa+scRMVHnQ==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: fcookie=AQGvCpfzmLszDwAAAYWYHCkoPYcZSUMYIywy1OFHOYreQxmZIt9NKnHWNNlCUiWKBdOK4H_GNftN1p-pSg-rDjkdeioEYI0I6vMCh7T9dUdJrlSJp3k2GZcjEBj3yF2Bf_gFho_FW4sm95Vb08bdAwG-MN6vWmGMykSTrfInZDpbKj72k2mUyZ9ERIVuQ_DQ4PcNIl3rvAwrHbWphsLnZqBDPRocDEoGSHV9wM_hioQgrihQu2wsqbDfjEqClYN2b-fV6mNj-Kemx1XsCZDrJuJoULCsnHbfX5RKrn7oX+ghBsqD4dB2KJNL9WbaKqU0GsaDSjBDx6q/uOa+ggC+6DU6VIJ2ZGDFfBbnNw==; Max-Age=604800; Expires=Mon, 16 Jan 2023 19:57:40 GMT; SameSite=None; Path=/; Secure
bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 09-Jan-2024 19:57:40 GMT; SameSite=None
bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; domain=.www.linkedin.com; Path=/; Secure; Expires=Tue, 09-Jan-2024 19:57:40 GMT; HttpOnly; SameSite=None
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXx2i3/X8vUVVHaVA4KWg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 203189B96F53437CBE1FE8172D7424A8 Ref B: OSL30EDGE0412 Ref C: 2023-01-09T19:57:40Z
date: Mon, 09 Jan 2023 19:57:39 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/directory/api/ingraphs/counter

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/directory/api/ingraphs/counter
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /directory/api/ingraphs/counter HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Csrf-Token: ajax:1768336887567766781
Content-Length: 99
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQGcslhckFZ3wgAAAYWYHB9QgDmA0DOGbwLsC8zkFd7S5b662vN120k5brAG7zglNGEI1rwoJt4chn7S2A39O66zr4j_OSFuSaA-QNieB7WQltdeY5VCWyKn7MCZCP-Ov3to2Xxfa3GoDkPWjw5At41Cy85ZNxnoYVrvPNf4EPIxm4AqchwXfxaWF8wUvQKDgb5IT_ki3SD60CJNkWZoZRwcqD2fcQ==; fid=AQHl2IRbnlMUiAAAAYWYHCP4aFPRRRwbF3NMPwuFu7fb8GBS9t7-_i1ZvWjLAU_JKt5cgQGJIBfNMA; JSESSIONID=ajax:1768336887567766781; lang=v=2&lang=en-us; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2440:u=1:x=1:i=1673294259:t=1673380659:v=2:sig=AQGKTh8QbMsg9Aw_NgxR87EWE8yGIb_l"; li_gc=MTswOzE2NzMyOTQyNjA7MjswMjEOUz3FoEWsGccxsfe7kDiy1LfTIsuldmVHa+scRMVHnQ==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-fs-uuid: 0005f1da2e00a3f053423419e751a5a5
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXx2i4Ao/BTQjQZ51GlpQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 771A474CA29C4FA8BFD8D9BFD68A14B0 Ref B: OSL30EDGE0412 Ref C: 2023-01-09T19:57:40Z
date: Mon, 09 Jan 2023 19:57:39 GMT
content-length: 0
X-Firefox-Spdy: h2

ps.azurewaf.microsoft.com/event?correlationId=d9a62bfc-c36a-429a-a2b6-9dc2c5f0e039&type=ping

13.107.227.53

204 No Content

0 B

URL HTTP/2
ps.azurewaf.microsoft.com/event?correlationId=d9a62bfc-c36a-429a-a2b6-9dc2c5f0e039&type=ping
IP
13.107.227.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /event?correlationId=d9a62bfc-c36a-429a-a2b6-9dc2c5f0e039&type=ping HTTP/1.1
Host: ps.azurewaf.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: *
request-context: appId=cid-v1:b972f5ff-0dbf-487c-8b8c-19607927d2c0
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0tHG8YwAAAACJDVmMFk3VS7/4oSvTlvTNT1NMMjMxMDUwMjA1MDQ5ADM2ZDJlY2JmLTYwZDAtNDlhZS05YTI3LTZiZmE4YjUwZTQ4ZA==
date: Mon, 09 Jan 2023 19:57:39 GMT
X-Firefox-Spdy: h2

ps.azurewaf.microsoft.com/event?correlationId=d9a62bfc-c36a-429a-a2b6-9dc2c5f0e039&type=ping

13.107.227.53

200 OK

0 B

URL HTTP/2
ps.azurewaf.microsoft.com/event?correlationId=d9a62bfc-c36a-429a-a2b6-9dc2c5f0e039&type=ping
IP
13.107.227.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /event?correlationId=d9a62bfc-c36a-429a-a2b6-9dc2c5f0e039&type=ping HTTP/1.1
Host: ps.azurewaf.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 603
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
request-context: appId=cid-v1:b972f5ff-0dbf-487c-8b8c-19607927d2c0
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0tHG8YwAAAACfCYWODABgRbiXPkW9ivLKT1NMMjMxMDUwMjA1MDQ5ADM2ZDJlY2JmLTYwZDAtNDlhZS05YTI3LTZiZmE4YjUwZTQ4ZA==
date: Mon, 09 Jan 2023 19:57:40 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 14972
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQGcslhckFZ3wgAAAYWYHB9QgDmA0DOGbwLsC8zkFd7S5b662vN120k5brAG7zglNGEI1rwoJt4chn7S2A39O66zr4j_OSFuSaA-QNieB7WQltdeY5VCWyKn7MCZCP-Ov3to2Xxfa3GoDkPWjw5At41Cy85ZNxnoYVrvPNf4EPIxm4AqchwXfxaWF8wUvQKDgb5IT_ki3SD60CJNkWZoZRwcqD2fcQ==; fid=AQHl2IRbnlMUiAAAAYWYHCP4aFPRRRwbF3NMPwuFu7fb8GBS9t7-_i1ZvWjLAU_JKt5cgQGJIBfNMA; JSESSIONID=ajax:1768336887567766781; lang=v=2&lang=en-us; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2440:u=1:x=1:i=1673294259:t=1673380659:v=2:sig=AQGKTh8QbMsg9Aw_NgxR87EWE8yGIb_l"; li_gc=MTswOzE2NzMyOTQyNjA7MjswMjEOUz3FoEWsGccxsfe7kDiy1LfTIsuldmVHa+scRMVHnQ==; fcookie=AQGvCpfzmLszDwAAAYWYHCkoPYcZSUMYIywy1OFHOYreQxmZIt9NKnHWNNlCUiWKBdOK4H_GNftN1p-pSg-rDjkdeioEYI0I6vMCh7T9dUdJrlSJp3k2GZcjEBj3yF2Bf_gFho_FW4sm95Vb08bdAwG-MN6vWmGMykSTrfInZDpbKj72k2mUyZ9ERIVuQ_DQ4PcNIl3rvAwrHbWphsLnZqBDPRocDEoGSHV9wM_hioQgrihQu2wsqbDfjEqClYN2b-fV6mNj-Kemx1XsCZDrJuJoULCsnHbfX5RKrn7oX+ghBsqD4dB2KJNL9WbaKqU0GsaDSjBDx6q/uOa+ggC+6DU6VIJ2ZGDFfBbnNw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXx2i4F3aeE9MASarTk4g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 132C1D391CEC44FCB39117BEA01066EB Ref B: OSL30EDGE0412 Ref C: 2023-01-09T19:57:40Z
date: Mon, 09 Jan 2023 19:57:40 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1038
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQGcslhckFZ3wgAAAYWYHB9QgDmA0DOGbwLsC8zkFd7S5b662vN120k5brAG7zglNGEI1rwoJt4chn7S2A39O66zr4j_OSFuSaA-QNieB7WQltdeY5VCWyKn7MCZCP-Ov3to2Xxfa3GoDkPWjw5At41Cy85ZNxnoYVrvPNf4EPIxm4AqchwXfxaWF8wUvQKDgb5IT_ki3SD60CJNkWZoZRwcqD2fcQ==; fid=AQHl2IRbnlMUiAAAAYWYHCP4aFPRRRwbF3NMPwuFu7fb8GBS9t7-_i1ZvWjLAU_JKt5cgQGJIBfNMA; JSESSIONID=ajax:1768336887567766781; lang=v=2&lang=en-us; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2440:u=1:x=1:i=1673294259:t=1673380659:v=2:sig=AQGKTh8QbMsg9Aw_NgxR87EWE8yGIb_l"; li_gc=MTswOzE2NzMyOTQyNjA7MjswMjEOUz3FoEWsGccxsfe7kDiy1LfTIsuldmVHa+scRMVHnQ==; fcookie=AQGvCpfzmLszDwAAAYWYHCkoPYcZSUMYIywy1OFHOYreQxmZIt9NKnHWNNlCUiWKBdOK4H_GNftN1p-pSg-rDjkdeioEYI0I6vMCh7T9dUdJrlSJp3k2GZcjEBj3yF2Bf_gFho_FW4sm95Vb08bdAwG-MN6vWmGMykSTrfInZDpbKj72k2mUyZ9ERIVuQ_DQ4PcNIl3rvAwrHbWphsLnZqBDPRocDEoGSHV9wM_hioQgrihQu2wsqbDfjEqClYN2b-fV6mNj-Kemx1XsCZDrJuJoULCsnHbfX5RKrn7oX+ghBsqD4dB2KJNL9WbaKqU0GsaDSjBDx6q/uOa+ggC+6DU6VIJ2ZGDFfBbnNw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXx2i4Izp6RnhY7lIOtuA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 665ACA3362C5445A9131EB4E6D491765 Ref B: OSL30EDGE0412 Ref C: 2023-01-09T19:57:40Z
date: Mon, 09 Jan 2023 19:57:40 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1021
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQGcslhckFZ3wgAAAYWYHB9QgDmA0DOGbwLsC8zkFd7S5b662vN120k5brAG7zglNGEI1rwoJt4chn7S2A39O66zr4j_OSFuSaA-QNieB7WQltdeY5VCWyKn7MCZCP-Ov3to2Xxfa3GoDkPWjw5At41Cy85ZNxnoYVrvPNf4EPIxm4AqchwXfxaWF8wUvQKDgb5IT_ki3SD60CJNkWZoZRwcqD2fcQ==; fid=AQHl2IRbnlMUiAAAAYWYHCP4aFPRRRwbF3NMPwuFu7fb8GBS9t7-_i1ZvWjLAU_JKt5cgQGJIBfNMA; JSESSIONID=ajax:1768336887567766781; lang=v=2&lang=en-us; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2440:u=1:x=1:i=1673294259:t=1673380659:v=2:sig=AQGKTh8QbMsg9Aw_NgxR87EWE8yGIb_l"; li_gc=MTswOzE2NzMyOTQyNjA7MjswMjEOUz3FoEWsGccxsfe7kDiy1LfTIsuldmVHa+scRMVHnQ==; fcookie=AQGvCpfzmLszDwAAAYWYHCkoPYcZSUMYIywy1OFHOYreQxmZIt9NKnHWNNlCUiWKBdOK4H_GNftN1p-pSg-rDjkdeioEYI0I6vMCh7T9dUdJrlSJp3k2GZcjEBj3yF2Bf_gFho_FW4sm95Vb08bdAwG-MN6vWmGMykSTrfInZDpbKj72k2mUyZ9ERIVuQ_DQ4PcNIl3rvAwrHbWphsLnZqBDPRocDEoGSHV9wM_hioQgrihQu2wsqbDfjEqClYN2b-fV6mNj-Kemx1XsCZDrJuJoULCsnHbfX5RKrn7oX+ghBsqD4dB2KJNL9WbaKqU0GsaDSjBDx6q/uOa+ggC+6DU6VIJ2ZGDFfBbnNw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXx2i4ZjvHezsSL/h0gow==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 8F77360C91E24D70B140CF9686812195 Ref B: OSL30EDGE0412 Ref C: 2023-01-09T19:57:42Z
date: Mon, 09 Jan 2023 19:57:41 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1021
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQGcslhckFZ3wgAAAYWYHB9QgDmA0DOGbwLsC8zkFd7S5b662vN120k5brAG7zglNGEI1rwoJt4chn7S2A39O66zr4j_OSFuSaA-QNieB7WQltdeY5VCWyKn7MCZCP-Ov3to2Xxfa3GoDkPWjw5At41Cy85ZNxnoYVrvPNf4EPIxm4AqchwXfxaWF8wUvQKDgb5IT_ki3SD60CJNkWZoZRwcqD2fcQ==; fid=AQHl2IRbnlMUiAAAAYWYHCP4aFPRRRwbF3NMPwuFu7fb8GBS9t7-_i1ZvWjLAU_JKt5cgQGJIBfNMA; JSESSIONID=ajax:1768336887567766781; lang=v=2&lang=en-us; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2440:u=1:x=1:i=1673294259:t=1673380659:v=2:sig=AQGKTh8QbMsg9Aw_NgxR87EWE8yGIb_l"; li_gc=MTswOzE2NzMyOTQyNjA7MjswMjEOUz3FoEWsGccxsfe7kDiy1LfTIsuldmVHa+scRMVHnQ==; fcookie=AQGvCpfzmLszDwAAAYWYHCkoPYcZSUMYIywy1OFHOYreQxmZIt9NKnHWNNlCUiWKBdOK4H_GNftN1p-pSg-rDjkdeioEYI0I6vMCh7T9dUdJrlSJp3k2GZcjEBj3yF2Bf_gFho_FW4sm95Vb08bdAwG-MN6vWmGMykSTrfInZDpbKj72k2mUyZ9ERIVuQ_DQ4PcNIl3rvAwrHbWphsLnZqBDPRocDEoGSHV9wM_hioQgrihQu2wsqbDfjEqClYN2b-fV6mNj-Kemx1XsCZDrJuJoULCsnHbfX5RKrn7oX+ghBsqD4dB2KJNL9WbaKqU0GsaDSjBDx6q/uOa+ggC+6DU6VIJ2ZGDFfBbnNw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXx2i44FcAj8E5zmGv0Ag==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 036F60AC9F6B4B859082600D06DD5405 Ref B: OSL30EDGE0412 Ref C: 2023-01-09T19:57:44Z
date: Mon, 09 Jan 2023 19:57:43 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1021
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQESR8OW0DLmjQAAAYWYHB9QUG7eWUTToDyJFG5sesox2G2Xp7N56MZs0Oyd3YuTT307XgbQeFvvsgyvX1FDDx0mqxyKwJpRrIjwUtqHbV8HdnzGBSn3EuNU16DJaqS-VtW3lmI=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fin%2Fmindiknebel%2F
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQGcslhckFZ3wgAAAYWYHB9QgDmA0DOGbwLsC8zkFd7S5b662vN120k5brAG7zglNGEI1rwoJt4chn7S2A39O66zr4j_OSFuSaA-QNieB7WQltdeY5VCWyKn7MCZCP-Ov3to2Xxfa3GoDkPWjw5At41Cy85ZNxnoYVrvPNf4EPIxm4AqchwXfxaWF8wUvQKDgb5IT_ki3SD60CJNkWZoZRwcqD2fcQ==; fid=AQHl2IRbnlMUiAAAAYWYHCP4aFPRRRwbF3NMPwuFu7fb8GBS9t7-_i1ZvWjLAU_JKt5cgQGJIBfNMA; JSESSIONID=ajax:1768336887567766781; lang=v=2&lang=en-us; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2440:u=1:x=1:i=1673294259:t=1673380659:v=2:sig=AQGKTh8QbMsg9Aw_NgxR87EWE8yGIb_l"; li_gc=MTswOzE2NzMyOTQyNjA7MjswMjEOUz3FoEWsGccxsfe7kDiy1LfTIsuldmVHa+scRMVHnQ==; fcookie=AQGvCpfzmLszDwAAAYWYHCkoPYcZSUMYIywy1OFHOYreQxmZIt9NKnHWNNlCUiWKBdOK4H_GNftN1p-pSg-rDjkdeioEYI0I6vMCh7T9dUdJrlSJp3k2GZcjEBj3yF2Bf_gFho_FW4sm95Vb08bdAwG-MN6vWmGMykSTrfInZDpbKj72k2mUyZ9ERIVuQ_DQ4PcNIl3rvAwrHbWphsLnZqBDPRocDEoGSHV9wM_hioQgrihQu2wsqbDfjEqClYN2b-fV6mNj-Kemx1XsCZDrJuJoULCsnHbfX5RKrn7oX+ghBsqD4dB2KJNL9WbaKqU0GsaDSjBDx6q/uOa+ggC+6DU6VIJ2ZGDFfBbnNw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXx2i5WwZoboqnXIm4ZGQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 3254080DDF474558B41866C30EC01C25 Ref B: OSL30EDGE0412 Ref C: 2023-01-09T19:57:46Z
date: Mon, 09 Jan 2023 19:57:45 GMT
content-length: 0
X-Firefox-Spdy: h2

static.licdn.com/sc/h/98lptr8kagfxge22q7k1fps8

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/98lptr8kagfxge22q7k1fps8
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sc/h/98lptr8kagfxge22q7k1fps8 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Tue, 26 Jul 2022 16:09:31 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 27a9e172126395160021dd2f132b0000
x-li-fabric: prod-lva1
x-li-pop: prod-edc2
x-li-proto: http/1.1
x-li-uuid: J6nhchJjlRYAId0vEysAAA==
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 09 Jan 2023 19:57:40 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/avzjesp0yrbz0c8qa81r63x7m

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/avzjesp0yrbz0c8qa81r63x7m
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sc/h/avzjesp0yrbz0c8qa81r63x7m HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Play
expires: Fri, 17 Nov 2023 23:09:42 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005edb2af31c7af3acd14ce221ab9ce
x-li-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXtsq8xx686zRTOIhq5zg==
remote-cache-status: TCP_HIT
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 09 Jan 2023 19:57:39 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/b39mllzjzea0ex5odqm0ojejf

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/b39mllzjzea0ex5odqm0ojejf
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sc/h/b39mllzjzea0ex5odqm0ojejf HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Play
expires: Wed, 06 Dec 2023 00:32:22 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-li-fabric: prod-lor1
x-fs-uuid: 0005ef1deff79f6a02b4b13fc4b8ca64
x-li-source-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXvHe/3n2oCtLE/xLjKZA==
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 09 Jan 2023 19:57:39 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations