Report - m.vasvas.click/c/n/208448/2911?sc=&cid=wurobl88hd4r1egmiq8m9oei

Report Overview

Submitted URL
m.vasvas.click/c/n/208448/2911?sc=&cid=wurobl88hd4r1egmiq8m9oei
IP
96.126.96.125
ASN
#63949 Linode, LLC
Submitted
2023-02-09 06:03:04
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
7
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
m.vasvas.click	unknown	2022-06-03T18:04:46Z	2023-03-13T11:34:18Z	394 B	445 B	96.126.96.125
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	55 kB	34.120.237.76
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-13T08:02:41Z	532 B	1.0 kB	64.233.163.154
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	488 B	730 B	142.250.74.164
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-13T06:26:15Z	514 B	578 B	142.250.74.163
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.7 kB	7.1 kB	95.101.11.115
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.164.121.101
notify.dcbprotect.com	112896	2018-06-07T00:28:10Z	2023-03-13T00:03:49Z	510 B	300 B	54.155.29.255
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.7 kB	5.6 kB	142.250.74.163
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	795 B	1.1 kB	142.250.74.110
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
offers.krakenbaker.com	unknown	2022-08-25T01:20:33Z	2023-03-13T09:58:34Z	576 B	319 B	80.240.19.207
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	700 B	1.9 kB	54.230.245.110
img.dcbprotect.com	unknown	2022-09-22T09:55:48Z	2023-03-11T13:26:35Z	933 B	1.0 kB	54.155.29.255
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	341 B	922 B	93.184.220.29
m.trend-tech.net	303339	2018-06-24T06:20:24Z	2023-03-11T16:06:37Z	5.1 kB	126 kB	176.53.48.26

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-09 06:03:53	high	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-02-09 06:03:53	high	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-02-09 06:03:53	high	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-02-09 06:03:54	high	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-02-09 06:03:55	high	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-02-09 06:03:56	high	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-02-09 06:03:59	high	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	m.trend-tech.net/landings/view/js/landing.js	99 kB	2023-03-11	2024-01-04
Pretty URL m.trend-tech.net/landings/view/js/landing.js IP 176.53.48.26 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:51:35 Last Seen2024-01-04 22:54:38 Times Seen37 Hash c0724bf47bca748ff9f6e732d608f354 97b98981fc694edd8ba01e570b50a5609d20b610 36818f0949c295471bade2ea61a5f41192ac6ecd50d52444cef486623186fb03 Loading...

	m.trend-tech.net/landings/fun/nwpr279/view/js/landing-logo.js	0 B	2023-03-07	2024-04-19
Pretty URL m.trend-tech.net/landings/fun/nwpr279/view/js/landing-logo.js IP 176.53.48.26 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 23:23:42 Times Seen36968508 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	m.trend-tech.net/landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd	6.1 kB	2023-03-11	2023-04-05
Pretty URL m.trend-tech.net/landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd IP 176.53.48.26 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:51:35 Last Seen2023-04-05 01:43:11 Times Seen8 Hash 25c901d794b849884436645416fe6a06 ae4ff98c55075918ba3112ffc9f6c44fbd57d255 511924c159ef2033fa43d53e63dc05ce1b2e7eb6b28dd2721db0a0703e05a440 Loading...

	m.trend-tech.net/landings/view/js/footer.js?time=1675922575	3.0 kB	2023-03-11	2024-01-04
Pretty URL m.trend-tech.net/landings/view/js/footer.js?time=1675922575 IP 176.53.48.26 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:51:35 Last Seen2024-01-04 22:54:38 Times Seen37 Hash 04f149225d6f19d4ee2f37cf6fd45448 25f4d7ff1ab74e4cb79eceadbf8ecf67f3f72df0 3f1cccf42e747ba4455174ee3ce5012c645051bc22287d79c19658954fcdaa68 Loading...

	m.trend-tech.net/landings/view/js/analytics.js	35 kB	2023-03-11	2023-07-24
Pretty URL m.trend-tech.net/landings/view/js/analytics.js IP 176.53.48.26 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:51:35 Last Seen2023-07-24 12:39:16 Times Seen23 Hash 6985a7f294e1bb15ce3d4f7b183cf50d f3bceb1668cf77541e4f8f1a3a20688c3c7b8c72 ed2c810d4ee01fe084c1f02d7a3466bf6fcdd4eff80159dffd53234d58f1db67 Loading...

	m.trend-tech.net/landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd	93 kB	2023-03-13	2023-03-13
Pretty URL m.trend-tech.net/landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd IP 176.53.48.26 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 20:15:26 Last Seen2023-03-13 20:15:26 Times Seen1 Hash 501406b5a84c0f9ced84a675a305503e f6c8ef21e80cfd23a9fcb3b0baa4484ed530543b 979e641d96eb8c66de4def03e9a0b566d046a159dcc1a41dc3cd96866aeab310 Loading...

HTTP Transactions (49)

	URL	IP	Response	Size
	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a cfdba5bc597130461dd67bf6cda53183be592493 60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D" Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3548 Expires: Thu, 09 Feb 2023 07:02:01 GMT Date: Thu, 09 Feb 2023 06:02:53 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash b7407cc102d62a5acd5e61f8a79bed36 c2f4890a62454e514962b55b7fc14228339c8e90 be282de92da261128a7c8471f3067466aa9930fd0ab2a2cdda8cd2d6ce2bbd74 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BE282DE92DA261128A7C8471F3067466AA9930FD0AB2A2CDDA8CD2D6CE2BBD74" Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8832 Expires: Thu, 09 Feb 2023 08:30:05 GMT Date: Thu, 09 Feb 2023 06:02:53 GMT Connection: keep-alive`

	m.vasvas.click/c/n/208448/2911?sc=&cid=wurobl88hd4r1egmiq8m9oei	96.126.96.125	302 Found	0 B
URL HTTP/1.1 m.vasvas.click/c/n/208448/2911?sc=&cid=wurobl88hd4r1egmiq8m9oei IP 96.126.96.125:0 ASN #63949 Linode, LLC File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /c/n/208448/2911?sc=&cid=wurobl88hd4r1egmiq8m9oei HTTP/1.1 Host: m.vasvas.click User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 302 Found Server: nginx/1.18.0 Date: Thu, 09 Feb 2023 06:02:53 GMT Content-Length: 0 Connection: keep-alive Set-Cookie: uk=92f01b854aca486e95bf4a20aed4abe6; Domain=vasvas.click; Expires=Tue, 27-Feb-2091 09:17:00 GMT; Path=/; HttpOnly Location: https://offers.krakenbaker.com/2mdkvq/83s9k/?sourceID={YOUR_SOURCE_ID}&trafficType={YOUR_TRAFFIC_TYPE}&pubID=2911_&clickID=635aff499205494ea65023ad72dfe921 Cache-Control: no-transform`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash cc14b0d2f7c451f6431dc87ba54d1d60 bab8bfda6fa3e2f17125353f5147211787dc25d0 b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD" Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3081 Expires: Thu, 09 Feb 2023 06:54:15 GMT Date: Thu, 09 Feb 2023 06:02:54 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash ff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Thu, 09 Feb 2023 05:34:15 GMT content-type: application/json age: 1719 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e76071a28ee566dababb3834f46d68ed aebb4e68c1ba2de0f90025283e8ed8470944fde0 78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: 0AxfK1ZgchZQp4cvuvDrN3kadyj+KP4dAtkbHTtrDOpwAozR0QckGhfU88+nyXsOKX5eJjamFwVnfMFxJz9O1g== x-amz-request-id: RY8MZWARHSEDJ2MZ content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Thu, 09 Feb 2023 05:46:16 GMT age: 998 last-modified: Sun, 29 Jan 2023 18:44:47 GMT etag: "e76071a28ee566dababb3834f46d68ed" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Thu, 09 Feb 2023 06:02:54 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 6d15066f417bc38ac91482d497d0d3b1 76fc63620f3a96c3dfb8641502c9c6a16ccc7452 a4525c952fc0fc61fc7782059cf2ddeae82229a80c91cda11700fa84372ef612 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A4525C952FC0FC61FC7782059CF2DDEAE82229A80C91CDA11700FA84372EF612" Last-Modified: Mon, 06 Feb 2023 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21600 Expires: Thu, 09 Feb 2023 12:02:54 GMT Date: Thu, 09 Feb 2023 06:02:54 GMT Connection: keep-alive`

	offers.krakenbaker.com/2mdkvq/83s9k/?sourceID={YOUR_SOURCE_ID}&trafficType={YOUR_TRAFFIC_TYPE}&pubID=2911_&clickID=635aff499205494ea65023ad72dfe921	80.240.19.207	302 Found	0 B
URL HTTP/2 offers.krakenbaker.com/2mdkvq/83s9k/?sourceID={YOUR_SOURCE_ID}&trafficType={YOUR_TRAFFIC_TYPE}&pubID=2911_&clickID=635aff499205494ea65023ad72dfe921 IP 80.240.19.207:0 ASN #20473 AS-CHOOPA File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /2mdkvq/83s9k/?sourceID={YOUR_SOURCE_ID}&trafficType={YOUR_TRAFFIC_TYPE}&pubID=2911_&clickID=635aff499205494ea65023ad72dfe921 HTTP/1.1 Host: offers.krakenbaker.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 `HTTP/2 302 Found server: nginx date: Thu, 09 Feb 2023 06:02:54 GMT content-type: text/html; charset=UTF-8 content-length: 0 location: https://m.trend-tech.net/landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd x-powered-by: PHP/7.4.33, PleskLin X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Thu, 09 Feb 2023 05:51:21 GMT age: 693 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 248ce16379b12f11927ecc3142aec450 fa5b189f2d9182479170cb61cc1723571e437bd2 a8d259b331bdefb00625b9bf057d44d0b3290fda0734c57eda187b04e23d59d4 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A8D259B331BDEFB00625B9BF057D44D0B3290FDA0734C57EDA187B04E23D59D4" Last-Modified: Wed, 08 Feb 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9886 Expires: Thu, 09 Feb 2023 08:47:40 GMT Date: Thu, 09 Feb 2023 06:02:54 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	727 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 727 B (727 bytes) Hash bae15797289c69b605936bc09fdf59dd 9ef6b19868e7d33ac8373320e1faed0060400798 1df031305ee50b2baf34b4706c99ba752c4d74ed5bda04dab94339bf4e91689d HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Thu, 09 Feb 2023 06:02:54 GMT Etag: "63e3ab18-2d7" Server: ECS (amb/6B9B) Content-Length: 727`

	push.services.mozilla.com/	35.164.121.101	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 35.164.121.101:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: dKxiXRKYgmWBdqX9E191zA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: z5gDO4XoggpKMGcxCg/ZH6S4sXQ=`

	m.trend-tech.net/landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd	176.53.48.26	200 OK	41 kB
URL HTTP/1.1 m.trend-tech.net/landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65260) Size 41 kB (41296 bytes) Hash a67e6c8f168e9acd1771576845b8f074 21fc8c07ca58c16955890393618c3bd9823c7d72 d2a3646c2f94a4730aecdb6076776bb3b4b06f65e0460f4e717a0533865f7946 HTTP Headers GET /landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/1.1 200 OK Date: Thu, 09 Feb 2023 06:02:54 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Set-Cookie: PHPSESSID=645gopq5e3oj1qelid480mnal7; expires=Thu, 09-Feb-2023 06:42:54 GMT; Max-Age=2400; path=/landings/fun/nwpr279; HttpOnly Expires: 0 Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Vary: Accept-Encoding Content-Encoding: gzip X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Content-Length: 41296 Connection: close Content-Type: text/html; charset=UTF-8

	m.trend-tech.net/landings/view/css/landing.css?v=24	176.53.48.26	200 OK	2.2 kB
URL HTTP/1.1 m.trend-tech.net/landings/view/css/landing.css?v=24 IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type ASCII text, with very long lines (575) Size 2.2 kB (2183 bytes) Hash 1f8ee17351a2be76132c1d81730f3ce7 913f9d255fe3875d6453fee092a418453d357b78 3f4c711e87e0d19c43cd75903178875654da1177b23f3b08ae5c8b2b1e6ecf67 HTTP Headers `GET /landings/view/css/landing.css?v=24 HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Date: Thu, 09 Feb 2023 06:02:55 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Last-Modified: Wed, 23 Nov 2022 08:40:04 GMT ETag: "181f-5ee1f3c24e100-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 Content-Length: 2183 Connection: close Content-Type: text/css

	m.trend-tech.net/landings/fun/nwpr279/view/js/landing-logo.js	176.53.48.26	200 OK	0 B
URL HTTP/1.1 m.trend-tech.net/landings/fun/nwpr279/view/js/landing-logo.js IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /landings/fun/nwpr279/view/js/landing-logo.js HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd Cookie: PHPSESSID=645gopq5e3oj1qelid480mnal7 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Date: Thu, 09 Feb 2023 06:02:55 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Expires: 0 Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Content-Length: 0 Connection: close Content-Type: application/javascript

	m.trend-tech.net/landings/view/js/footer.js?time=1675922575	176.53.48.26	200 OK	958 B
URL HTTP/1.1 m.trend-tech.net/landings/view/js/footer.js?time=1675922575 IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type ASCII text, with very long lines (3016), with no line terminators Size 958 B (958 bytes) Hash e4f81c77698d3463e9621b4431a7c425 b4b51ef387aa2b60373c2a73e3830c84cfb66346 b6c95f68076c7aedf04cf5331d5321ef765bd014a25a0f0e3084657ef0931a1d HTTP Headers `GET /landings/view/js/footer.js?time=1675922575 HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Date: Thu, 09 Feb 2023 06:02:55 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Last-Modified: Wed, 23 Nov 2022 08:40:04 GMT ETag: "bc8-5ee1f3c24e100-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 Content-Length: 958 Connection: close Content-Type: text/javascript

	m.trend-tech.net/landings/view/js/landing.js	176.53.48.26	200 OK	34 kB
URL HTTP/1.1 m.trend-tech.net/landings/view/js/landing.js IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type ASCII text, with very long lines (32062) Size 34 kB (34289 bytes) Hash 6f62c594944348973ee44e86202536a3 53f15a77e6402723aed2f8046c09167dcc6a1765 79af229b03e57efa17301d41415bb90344b33181906713c1c7966e7a683eae90 HTTP Headers `GET /landings/view/js/landing.js HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Date: Thu, 09 Feb 2023 06:02:55 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Last-Modified: Wed, 23 Nov 2022 08:40:04 GMT ETag: "18477-5ee1f3c24e100-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 Content-Length: 34289 Connection: close Content-Type: text/javascript

	m.trend-tech.net/landings/view/img/double-arrow.gif	176.53.48.26	200 OK	1.5 kB
URL HTTP/1.1 m.trend-tech.net/landings/view/img/double-arrow.gif IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type GIF image data, version 89a, 50 x 50\012- data Size 1.5 kB (1460 bytes) Hash 908d662d2e20e5b8ffda3baacace5b81 527a7dd315ec53ac00ee4bd62928c97ee0c61448 6619e55ea4aae166f32ec8c188f0704570a6fc7e60e58aa59966d99014bba25b HTTP Headers `GET /landings/view/img/double-arrow.gif HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Date: Thu, 09 Feb 2023 06:02:55 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Last-Modified: Wed, 23 Nov 2022 08:40:04 GMT ETag: "5b4-5ee1f3c24e100" Accept-Ranges: bytes Content-Length: 1460 X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 Connection: close Content-Type: image/gif

	m.trend-tech.net/landings/view/img/branches/new2_trans.png	176.53.48.26	200 OK	23 kB
URL HTTP/1.1 m.trend-tech.net/landings/view/img/branches/new2_trans.png IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type PNG image data, 980 x 700, 8-bit/color RGBA, non-interlaced\012- data Size 23 kB (22990 bytes) Hash 53dfd8799044e4fb06dcec8bbecb9e95 92b6b772de8986c2b352829c35aa1e8327df4cc7 3634dd08ba2c53753a629a95f88814a97a23926f45b0cb6c4dac34916b6c3c3b HTTP Headers GET /landings/view/img/branches/new2_trans.png HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Date: Thu, 09 Feb 2023 06:02:55 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Last-Modified: Wed, 25 Jan 2023 12:05:02 GMT ETag: "59ce-5f3157132c201" Accept-Ranges: bytes Content-Length: 22990 X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Connection: close Content-Type: image/png

	m.trend-tech.net/landings/view/img/error.png	176.53.48.26	200 OK	1.8 kB
URL HTTP/1.1 m.trend-tech.net/landings/view/img/error.png IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type PNG image data, 31 x 29, 8-bit/color RGB, non-interlaced\012- data Size 1.8 kB (1836 bytes) Hash b3401f67af618a6580676f64ec53c93c f29ff7f3e0c98cff047703f35c075a3e7cc2929f 75e4cf7c486ac22dff7da9aa47234cf6e91f23f77118bd771391200b42e48d92 HTTP Headers `GET /landings/view/img/error.png HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/view/css/landing.css?v=24 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Date: Thu, 09 Feb 2023 06:02:56 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Accept-Ranges: bytes Content-Length: 1836 X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Expires: Thu, 1 Jan 1970 00:00:00 GMT Pragma: no-cache Cache-Control: max-age=0, no-cache, no-store, must-revalidate Connection: close Content-Type: image/png

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19" Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12282 Expires: Thu, 09 Feb 2023 09:27:38 GMT Date: Thu, 09 Feb 2023 06:02:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19" Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12282 Expires: Thu, 09 Feb 2023 09:27:38 GMT Date: Thu, 09 Feb 2023 06:02:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19" Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12282 Expires: Thu, 09 Feb 2023 09:27:38 GMT Date: Thu, 09 Feb 2023 06:02:56 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3509a9bb-f5d1-4723-96d3-e2a87a28bbf4.jpeg	34.120.237.76	200 OK	6.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3509a9bb-f5d1-4723-96d3-e2a87a28bbf4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.5 kB (6471 bytes) Hash e6c45da743665658afcfbf2309e1594b 04d025452dcec571f3eb6068499290d86e0c4c30 3ddfcf83ea18ba20700364c7095750a142a15575c988ba5688ed2f4dbbba4ee8 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3509a9bb-f5d1-4723-96d3-e2a87a28bbf4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6471 x-amzn-requestid: ab4c8119-a2f0-4b3d-bbed-b34c5a0a7a30 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ACiGaGsjoAMFmZA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e416f5-7298e0530bee8f997b552e6e;Sampled=0 x-amzn-remapped-date: Wed, 08 Feb 2023 21:41:09 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: qxzdVgRauaFA1GnS6m2WJr7zkXVIpFUNZN0r_mdAQvkDu4nzYanjzQ== via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google date: Wed, 08 Feb 2023 22:10:41 GMT age: 28335 etag: "04d025452dcec571f3eb6068499290d86e0c4c30" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F718f24db-3c28-422f-953f-730a3ae78cb5.jpeg	34.120.237.76	200 OK	3.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F718f24db-3c28-422f-953f-730a3ae78cb5.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 3.0 kB (3014 bytes) Hash 28ae39b238f62d6c0aee7bb16ff863d5 3c2247e40747c3ca72dd7877facee9a9fecf0f59 c530ba92455ea45e14410f497d2df04cc1321e2937cc7e81aa75f4fc14206a7c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F718f24db-3c28-422f-953f-730a3ae78cb5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 3014 x-amzn-requestid: bec40915-584b-48fc-94c2-293e96567474 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: AChJKGrGoAMFelg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e4156d-2250ff00772341353151dd34;Sampled=0 x-amzn-remapped-date: Wed, 08 Feb 2023 21:34:37 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: lmJxNCnPKUD5O4HCWIjqeVaanXL50KZ60Xu1iOC6bisRBDJNkVXvww== via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google date: Wed, 08 Feb 2023 21:42:38 GMT etag: "3c2247e40747c3ca72dd7877facee9a9fecf0f59" content-type: image/jpeg age: 30018 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg	34.120.237.76	200 OK	7.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.5 kB (7450 bytes) Hash ce710ab5746832fe637fada3e6d63abf d545c85d4a8cf92dc8b88db0a056623d1ef7a943 40bae4a2fb9dd60e9339d15ad0838f3ca83b5b6275c35cd22878b6783fcd6247 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7450 x-amzn-requestid: c3dabd4b-797b-4bbe-8824-5f502ff477b0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fmJ2aG-IoAMFfnQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d8bcf5-68de905b2ed5bfe46a87e688;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:13 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: AX-TsURes3Bn0RrAnH7TnsouJdkcOpbq7f7KAzPMWq4RMBH8FWMz7g== via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google date: Wed, 08 Feb 2023 17:45:22 GMT age: 44254 etag: "d545c85d4a8cf92dc8b88db0a056623d1ef7a943" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4930c104-0ac3-49ae-9506-13702874f821.jpeg	34.120.237.76	200 OK	3.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4930c104-0ac3-49ae-9506-13702874f821.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 3.5 kB (3474 bytes) Hash 2c1f5626e7ff7e681468c3c5820f3633 a8bb267f929b734a53b3dab0283c717270f6eb43 38d81274cc9f71f149091f72494c74872d99909c69d612a595c930c4755c4da3 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4930c104-0ac3-49ae-9506-13702874f821.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 3474 x-amzn-requestid: 1b0f88cf-460b-4ed2-8235-86c9e3e3ff93 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ffW2uG3LIAMF3cg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d604f7-42e5c38315bdbd47615985b6;Sampled=0 x-amzn-remapped-date: Sun, 29 Jan 2023 05:32:39 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: nfLYmz3SEBzBp32-FDPDF-rqh4-pAjLixYD4abVqF5fl3awttBNRUA== via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google date: Wed, 08 Feb 2023 22:47:56 GMT age: 26100 etag: "a8bb267f929b734a53b3dab0283c717270f6eb43" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg	34.120.237.76	200 OK	15 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 15 kB (15019 bytes) Hash 95081172f8e19d19921acc802488e019 8531c150cb11de44361a95624b11cf46b9e0ba02 7a2d8f012c7d590f3f39ad834d4f3f9fb729143b7395bc588bd608b5bdee039b HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 15019 x-amzn-requestid: 574e3e2c-2fbe-4215-9500-021147338832 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f583LHiioAMFqkQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e0a82d-4f12aac524c39f822ca4f422;Sampled=0 x-amzn-remapped-date: Mon, 06 Feb 2023 07:11:41 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: _3jIo3Giw3zmTmnSkJArAllT6uigN7EEzLPfkGpd6168_mSdqdk_Cg== via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google date: Wed, 08 Feb 2023 08:24:16 GMT age: 77920 etag: "8531c150cb11de44361a95624b11cf46b9e0ba02" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f087272-940e-484d-ad9d-2c67bcd6dccd.jpeg	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f087272-940e-484d-ad9d-2c67bcd6dccd.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (12811 bytes) Hash bb7c8b758fe17f6c06ce2bebb5008495 032d747cf20951f6ca6fd51489fefd7c09c4948d 835d89e028ec4c85a845f2835cb5eddb9653937f6736e2713b671419474608ed HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f087272-940e-484d-ad9d-2c67bcd6dccd.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12811 x-amzn-requestid: be33f9ef-31cb-4572-9f22-0a433423e195 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: AChzZFiWIAMFgmA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e4167b-70ed2a756b8da4372ccc1f83;Sampled=0 x-amzn-remapped-date: Wed, 08 Feb 2023 21:39:07 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: HB03bmBiXVTrYbU01OssMQ_EbKhhFPhoUa-qcze2ZgD9Hr48Q8mEbQ== via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google date: Wed, 08 Feb 2023 22:15:23 GMT age: 28053 etag: "032d747cf20951f6ca6fd51489fefd7c09c4948d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	m.trend-tech.net/landings/view/js/analytics.js	176.53.48.26	200 OK	14 kB
URL HTTP/1.1 m.trend-tech.net/landings/view/js/analytics.js IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type ASCII text, with very long lines (1626) Size 14 kB (14125 bytes) Hash 9862b24873766ee42eeb258453894f82 dee93320afc062c6bcd18ef1568214e758306bac e529b4304bae33d3ec308887bce3412d663e2012a979d1d3fc412490cf6c54ea HTTP Headers `GET /landings/view/js/analytics.js HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Date: Thu, 09 Feb 2023 06:02:56 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Last-Modified: Wed, 23 Nov 2022 08:40:04 GMT ETag: "89cf-5ee1f3c24e100-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 Content-Length: 14125 Connection: close Content-Type: text/javascript

	ocsp.sca1b.amazontrust.com/	54.230.245.110	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.110:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash d2d638f8122dbb29daafb895c552eb5d 851d14ca199cb2390822649f20ec05681113099a a6f8921c36b77c9a4b903fa32e2f3949226e899aa89fffa68f5b5cf7d24c9629 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=90363 Date: Thu, 09 Feb 2023 06:02:56 GMT Etag: "63e33aa9-1d7" Expires: Fri, 10 Feb 2023 07:08:59 GMT Last-Modified: Wed, 08 Feb 2023 06:01:13 GMT Server: ECS (dcb/7EEF) X-Cache: Miss from cloudfront Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: QFzs61Z1Y6A7zXcAG3F9M_kbILgrS5t2owRLJgREM7MrKJt8k_6YrQ== Age: 4066

	img.dcbprotect.com/A698929301526419468682284628282666000022884080664/eyJ0aW1lIjoyMTgsInNpZ25hdHVyZSI6IjE3NTkifQ==	54.155.29.255	200 OK	189 B
URL HTTP/1.1 img.dcbprotect.com/A698929301526419468682284628282666000022884080664/eyJ0aW1lIjoyMTgsInNpZ25hdHVyZSI6IjE3NTkifQ== IP 54.155.29.255:0 ASN #16509 AMAZON-02 File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with no line terminators Size 189 B (189 bytes) Hash 350f3f42fe4bac928be53d4d54014f95 f77c6c8bc575e0652111475d769019c2f9976e5f 6188dd65f314b66f9a73b8aa9844191fc5e433cf3cc52d10452989d90b84c5c8 HTTP Headers `GET /A698929301526419468682284628282666000022884080664/eyJ0aW1lIjoyMTgsInNpZ25hdHVyZSI6IjE3NTkifQ== HTTP/1.1 Host: img.dcbprotect.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Date: Thu, 09 Feb 2023 06:02:56 GMT Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept`

	ocsp.sca1b.amazontrust.com/	54.230.245.110	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.110:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash d2d638f8122dbb29daafb895c552eb5d 851d14ca199cb2390822649f20ec05681113099a a6f8921c36b77c9a4b903fa32e2f3949226e899aa89fffa68f5b5cf7d24c9629 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Cache-Control: 'max-age=158059' Date: Thu, 09 Feb 2023 06:02:56 GMT Etag: "63e33aa9-1d7" Server: ECS (dcb/7F82) X-Cache: Miss from cloudfront Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 6aiJEQoyXhOc2kRRczmSGgk5Re3ZErRDluU0vWEYIrtunCDurdwwVA==`

	img.dcbprotect.com/pixel.ico	54.155.29.255	200 OK	189 B
URL HTTP/1.1 img.dcbprotect.com/pixel.ico IP 54.155.29.255:0 ASN #16509 AMAZON-02 File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with no line terminators Size 189 B (189 bytes) Hash 350f3f42fe4bac928be53d4d54014f95 f77c6c8bc575e0652111475d769019c2f9976e5f 6188dd65f314b66f9a73b8aa9844191fc5e433cf3cc52d10452989d90b84c5c8 HTTP Headers `GET /pixel.ico HTTP/1.1 Host: img.dcbprotect.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Language: A698929301526419468682284628282666000022884080664 Origin: https://m.trend-tech.net Connection: keep-alive Referer: https://m.trend-tech.net/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Date: Thu, 09 Feb 2023 06:02:56 GMT Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept,Content-Language ETag: d4f1016176ddd944f746c31670d320b39947f54becf5676c30a6b97aae9d7cdec54d4727045aefca86e0915aea6c047241d5fdaf4e4b7b4c9ad775268af7f1db`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c99599d6628f41d54430edaa40f5c533 4bbd35fd1097784ae5e1e046ba35595eb49ac57f 3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 09 Feb 2023 06:02:56 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google-analytics.com/r/collect?v=1&_v=j63&a=941752640&t=pageview&_s=1&dl=https%3A%2F%2Fm.trend-tech.net%2Flandings%2Ffun%2Fnwpr279%3Fhash%3D241ff1de774005f8da13f42943881c655f%26kID%3D63e48c8e581501675922574re9zkq5nd&ul=en-us&de=UTF-8&dt=Portfun.mobi%20-%20Yeni&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABI~&jid=1112219775&gjid=1763860804&cid=1852561455.1675922634&tid=UA-123913825-1&_gid=510497187.1675922634&_r=1&z=1902709071	142.250.74.110	302 Found	420 B
URL HTTP/2 www.google-analytics.com/r/collect?v=1&_v=j63&a=941752640&t=pageview&_s=1&dl=https%3A%2F%2Fm.trend-tech.net%2Flandings%2Ffun%2Fnwpr279%3Fhash%3D241ff1de774005f8da13f42943881c655f%26kID%3D63e48c8e581501675922574re9zkq5nd&ul=en-us&de=UTF-8&dt=Portfun.mobi%20-%20Yeni&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABI~&jid=1112219775&gjid=1763860804&cid=1852561455.1675922634&tid=UA-123913825-1&_gid=510497187.1675922634&_r=1&z=1902709071 IP 142.250.74.110:0 ASN #15169 GOOGLE File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators Size 420 B (420 bytes) Hash b8b5d181a8e7c5aba478cfc67fbe2af4 9748089a19ab1348bba72c304621d7761ef33bb1 69da0978f885e08c4a731b773296a8e5cef20909cb23ad93c2ace8f36bc9106d HTTP Headers GET /r/collect?v=1&_v=j63&a=941752640&t=pageview&_s=1&dl=https%3A%2F%2Fm.trend-tech.net%2Flandings%2Ffun%2Fnwpr279%3Fhash%3D241ff1de774005f8da13f42943881c655f%26kID%3D63e48c8e581501675922574re9zkq5nd&ul=en-us&de=UTF-8&dt=Portfun.mobi%20-%20Yeni&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABI~&jid=1112219775&gjid=1763860804&cid=1852561455.1675922634&tid=UA-123913825-1&_gid=510497187.1675922634&_r=1&z=1902709071 HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 302 Found location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-123913825-1&cid=1852561455.1675922634&jid=1112219775&_gid=510497187.1675922634&gjid=1763860804&_v=j63&z=1902709071 access-control-allow-origin: * date: Thu, 09 Feb 2023 06:02:56 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT cross-origin-resource-policy: cross-origin content-type: text/html; charset=UTF-8 server: Golfe2 content-length: 420 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c99599d6628f41d54430edaa40f5c533 4bbd35fd1097784ae5e1e046ba35595eb49ac57f 3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 09 Feb 2023 06:02:56 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	m.trend-tech.net/favicon.ico	176.53.48.26	200 OK	1.2 kB
URL HTTP/1.1 m.trend-tech.net/favicon.ico IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data Size 1.2 kB (1150 bytes) Hash 3c3314d92687c336c220df9c16d1f73c f155b2d2beac788571e5ee9f813df4c9e8e6d0bf 7cc3b38331320c61d9a163ab58bb0fb19bd0c80dc3162d352b1194353e9b220c HTTP Headers GET /favicon.ico HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/nwpr279?hash=241ff1de774005f8da13f42943881c655f&kID=63e48c8e581501675922574re9zkq5nd Cookie: _ga=GA1.2.1852561455.1675922634; _gid=GA1.2.510497187.1675922634; _gat=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Date: Thu, 09 Feb 2023 06:02:56 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Last-Modified: Wed, 23 Nov 2022 08:40:04 GMT ETag: "47e-5ee1f3c24e100" Accept-Ranges: bytes Content-Length: 1150 X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 Connection: close Content-Type: image/vnd.microsoft.icon

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash a746d459d4fbc7da99072462ed09b456 6ca7c899101b7ddcc1228f148cdcf16113a805f7 cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 09 Feb 2023 06:02:56 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-123913825-1&cid=1852561455.1675922634&jid=1112219775&_gid=510497187.1675922634&gjid=1763860804&_v=j63&z=1902709071	64.233.163.154	302 Found	368 B
URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-123913825-1&cid=1852561455.1675922634&jid=1112219775&_gid=510497187.1675922634&gjid=1763860804&_v=j63&z=1902709071 IP 64.233.163.154:0 ASN #15169 GOOGLE File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators Size 368 B (368 bytes) Hash f329a40c7766b590613c1a195f14385c 3eeb2cca5b49c678fc9e2ff7bbcdc935dadaebba 3dc121bce9d5a4c84b50f09b1500f67aee841076307e6428e4d51857588de330 HTTP Headers GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-123913825-1&cid=1852561455.1675922634&jid=1112219775&_gid=510497187.1675922634&gjid=1763860804&_v=j63&z=1902709071 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.trend-tech.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 302 Found location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1852561455.1675922634&jid=1112219775&_v=j63&z=1902709071 access-control-allow-origin: * strict-transport-security: max-age=10886400; includeSubDomains; preload date: Thu, 09 Feb 2023 06:02:56 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT cross-origin-resource-policy: cross-origin content-type: text/html; charset=UTF-8 server: Golfe2 content-length: 368 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 84889b914548f7820766f27a40699cfa bc674cdb5819759b5ecd5aabfde47f56127f5d89 e2a69fe4edd028d00a8a744b62ef51dada2aff144da0cd9813efc887a11f70a8 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 09 Feb 2023 06:02:56 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash a746d459d4fbc7da99072462ed09b456 6ca7c899101b7ddcc1228f148cdcf16113a805f7 cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 09 Feb 2023 06:02:57 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1852561455.1675922634&jid=1112219775&_v=j63&z=1902709071	142.250.74.164	302 Found	0 B
URL HTTP/2 www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1852561455.1675922634&jid=1112219775&_v=j63&z=1902709071 IP 142.250.74.164:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1852561455.1675922634&jid=1112219775&_v=j63&z=1902709071 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.trend-tech.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 302 Found p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Thu, 09 Feb 2023 06:02:57 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1852561455.1675922634&jid=1112219775&_v=j63&z=1902709071&slf_rd=1&random=1355495818 content-type: text/html; charset=UTF-8 x-content-type-options: nosniff server: cafe content-length: 0 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 44fc0cb48c26edb9ce36736707b9182a 62de7faa3e8171c0d38a2e03a604d2545a3ede7f 9e511ad6ed9e7c5f28f573422e3891d2f4e5c2ba5107f7eda808c529a95931a2 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 09 Feb 2023 06:02:57 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 72226fa2f9513f894889fa652cb2a8bf 8a1b4f108db687c34b334a94e6d931544fd7508e a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 09 Feb 2023 06:02:57 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1852561455.1675922634&jid=1112219775&_v=j63&z=1902709071&slf_rd=1&random=1355495818	142.250.74.163	200 OK	42 B
URL HTTP/2 www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1852561455.1675922634&jid=1112219775&_v=j63&z=1902709071&slf_rd=1&random=1355495818 IP 142.250.74.163:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1852561455.1675922634&jid=1112219775&_v=j63&z=1902709071&slf_rd=1&random=1355495818 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.trend-tech.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Thu, 09 Feb 2023 06:02:57 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 72226fa2f9513f894889fa652cb2a8bf 8a1b4f108db687c34b334a94e6d931544fd7508e a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 09 Feb 2023 06:02:57 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	notify.dcbprotect.com/A698929301526419468682284628282666000022884080664	54.155.29.255	200 OK	20 B
URL HTTP/1.1 notify.dcbprotect.com/A698929301526419468682284628282666000022884080664 IP 54.155.29.255:0 ASN #16509 AMAZON-02 File type data Size 20 B (20 bytes) Hash 7029066c27ac6f5ef18d660d5741979a 46c6643f07aa7f6bfe7118de926b86defc5087c4 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2 HTTP Headers `POST /A698929301526419468682284628282666000022884080664 HTTP/1.1 Host: notify.dcbprotect.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 23971 Origin: https://m.trend-tech.net Connection: keep-alive Referer: https://m.trend-tech.net/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Date: Thu, 09 Feb 2023 06:02:57 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept Content-Encoding: gzip`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (49)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type