www.squadhelp.com/name/38ga?lp=d
104.22.53.96301 Moved Permanently 0 B URL HTTP/1.1 www.squadhelp.com/name/38ga?lp=d
IP 104.22.53.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /name/38ga?lp=d HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 27 Oct 2022 10:51:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 27 Oct 2022 11:51:23 GMT
Location: https://www.squadhelp.com/name/38ga?lp=d
Set-Cookie: __cf_bm=9BeRXF3UNoJgjqdL9jSdVHeOdjl8gS3ZfX2_yyljang-1666867883-0-AYWUgoLSmwHqCtEj8qABLBfguDP9mFbD3BlDUjOP1Mjx36WzOfehZOxGltL5upDLKi1oH4MwbDGweewBU6nsZOA=; path=/; expires=Thu, 27-Oct-22 11:21:23 GMT; domain=.squadhelp.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 760ae05109c80b4d-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4c9ec202b798d350b6582220b7bb8457
d16ca24cd60b349231ad06fa5db32f54a3bc9e09
df036d315a613ac6396b77afb0a4ea5f793091786be0cbf3f3a0d043bc1d1d3c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF036D315A613AC6396B77AFB0A4EA5F793091786BE0CBF3F3A0D043BC1D1D3C"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15639
Expires: Thu, 27 Oct 2022 15:12:02 GMT
Date: Thu, 27 Oct 2022 10:51:23 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 221b3fe9a6458de64d8bbfcd4a8e2f36
988c93428ff15108d46a11865e1c7e2782fbae34
a5ff1b60b9ef85086d0c6617d9d39cf17ae45855bf7b0ee24ec49ad5a863c18e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2471
Cache-Control: max-age=170457
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:23 GMT
Etag: "635a4fdd-1d7"
Expires: Sat, 29 Oct 2022 10:12:20 GMT
Last-Modified: Thu, 27 Oct 2022 09:31:09 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 221b3fe9a6458de64d8bbfcd4a8e2f36
988c93428ff15108d46a11865e1c7e2782fbae34
a5ff1b60b9ef85086d0c6617d9d39cf17ae45855bf7b0ee24ec49ad5a863c18e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3184
Cache-Control: max-age=171170
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:23 GMT
Etag: "635a4fdd-1d7"
Expires: Sat, 29 Oct 2022 10:24:13 GMT
Last-Modified: Thu, 27 Oct 2022 09:31:09 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8db408c487f7d35bba323046736e8d3a
01b91e2dce7c6d3de9adfe6ff4d38f9b24ab7db0
9aeafc72c1a969243e1fc96f68ce18888034a749ee70582208bf814bd40b61a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9AEAFC72C1A969243E1FC96F68CE18888034A749EE70582208BF814BD40B61A5"
Last-Modified: Tue, 25 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2966
Expires: Thu, 27 Oct 2022 11:40:49 GMT
Date: Thu, 27 Oct 2022 10:51:23 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 71a65e3181729c34ea658150f6523497
d58da45e46265e3e35e1378cb0808388860f68c3
49fb81370170630d8c58a71a28ca1162cbf58424af5fb0a88fa253a7bd61d44b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "49FB81370170630D8C58A71A28CA1162CBF58424AF5FB0A88FA253A7BD61D44B"
Last-Modified: Wed, 26 Oct 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10563
Expires: Thu, 27 Oct 2022 13:47:26 GMT
Date: Thu, 27 Oct 2022 10:51:23 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Cd2dY7pY6vY64Qv9qZDCWVQ5+1kyCzzVGipt6uLsC6Ey1StApuB+zPcGwO8GD4wlBO5mggzz1Gg=
x-amz-request-id: R18BJDNPQ8NBGFWD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 27 Oct 2022 10:09:47 GMT
age: 2496
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 10:51:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d72d2f5d05f03753594e43fd34398221
ac6795c1c33f3fa2139e7f8dc601c3e6de6029a5
036c965156cf07faecc342cb2e30b7a20def68ad4a10423951ce871a7a3a6777
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5967
Cache-Control: max-age=168892
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:24 GMT
Etag: "635a3c19-1d7"
Expires: Sat, 29 Oct 2022 09:46:16 GMT
Last-Modified: Thu, 27 Oct 2022 08:06:49 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.216.192.228101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.216.192.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MvdLZjxa/HnpkoeljodIpA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kxkeisXUKA67Rb6hpyeCMZsgVxc=
www.domains168.com/name/38ga.com
34.196.175.210200 OK 15 kB URL HTTP/1.1 www.domains168.com/name/38ga.com
IP 34.196.175.210:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (10270)
Hash f00ab4205310a71ced9bd2103f7c7351
508e197f08165bccaad8145c44a9425cd15937bd
107e9e9a0c6499d1e26c2963616e5138faf7282f41314e3b5bcf76ccdbbee2db
Analyzer Verdict Alert fortinet Phishing
GET /name/38ga.com HTTP/1.1
Host: www.domains168.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 27 Oct 2022 10:51:25 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 15304
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=0
Expires: Thu, 27 Oct 2022 10:51:25 GMT
Backend-location: domains168
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 71a65e3181729c34ea658150f6523497
d58da45e46265e3e35e1378cb0808388860f68c3
49fb81370170630d8c58a71a28ca1162cbf58424af5fb0a88fa253a7bd61d44b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "49FB81370170630D8C58A71A28CA1162CBF58424AF5FB0A88FA253A7BD61D44B"
Last-Modified: Wed, 26 Oct 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10561
Expires: Thu, 27 Oct 2022 13:47:26 GMT
Date: Thu, 27 Oct 2022 10:51:25 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d3d5881718c7c5f122e91f1e77dc6176
a450fea3259cd21a3f081e91aa0af7eda190562f
8c1a7725b79e08d79d7327e028ad74eb92d50787ba39ccda9385a40ac8c8e6f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1487
Cache-Control: max-age=156885
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:25 GMT
Etag: "635a1eb3-117"
Expires: Sat, 29 Oct 2022 06:26:10 GMT
Last-Modified: Thu, 27 Oct 2022 06:01:23 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0dc74b92c364776769c0d25ecd1219ea
3cc57ea76139c50b1298ce9f58b6e13682f1b073
5b0a87a71b1f48608f6a9f215e9c24c08fc700478d9ff2170c3d51996b0b063c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5B0A87A71B1F48608F6A9F215E9C24C08FC700478D9FF2170C3D51996B0B063C"
Last-Modified: Wed, 26 Oct 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8110
Expires: Thu, 27 Oct 2022 13:06:35 GMT
Date: Thu, 27 Oct 2022 10:51:25 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3f987deb9312f9386827ecb7c74f10c3
754fd64a1520ba88655543c011047d0cc2958204
6c3a331441114688f56115d22f8f036c3526067595a702f5dc84b6414de3fc45
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6440
Cache-Control: max-age=156042
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:25 GMT
Etag: "635a080f-117"
Expires: Sat, 29 Oct 2022 06:12:07 GMT
Last-Modified: Thu, 27 Oct 2022 04:24:47 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d3d5881718c7c5f122e91f1e77dc6176
a450fea3259cd21a3f081e91aa0af7eda190562f
8c1a7725b79e08d79d7327e028ad74eb92d50787ba39ccda9385a40ac8c8e6f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1487
Cache-Control: max-age=156885
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:25 GMT
Etag: "635a1eb3-117"
Expires: Sat, 29 Oct 2022 06:26:10 GMT
Last-Modified: Thu, 27 Oct 2022 06:01:23 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
www.squadhelp.com/resources/assets/imgs/image_overlay_new_pricing.jpeg
172.67.31.58200 OK 60 kB URL HTTP/2 www.squadhelp.com/resources/assets/imgs/image_overlay_new_pricing.jpeg
IP 172.67.31.58:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x720, components 3\012- data
Hash 0a89c41707b316e7f63ef103fa67e7aa
67fe3515e4a63d3866a722600f9bad9e26cd06bb
9fe8fa44c5e1a8d1ecd9380861196a24f280f370364d23e287b9512e55d825da
GET /resources/assets/imgs/image_overlay_new_pricing.jpeg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 10:51:25 GMT
content-type: image/jpeg
content-length: 60094
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "62ac8728-eabe"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 17 Jun 2022 13:52:40 GMT
cf-cache-status: HIT
age: 253173
accept-ranges: bytes
set-cookie: __cf_bm=HlAwAmo_MypurF6c5hlS39EhDSCOHYE5tgsevvfwzYQ-1666867885-0-Adupw4AGISvYbJcHS4Te5fMEord//0Xz7KYiN33UEbzPHt03BhASoC9VmtR3IXYe79PxbiMheu4uiV5s3a82abI=; path=/; expires=Thu, 27-Oct-22 11:21:25 GMT; domain=.squadhelp.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 760ae05c5f971c12-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 625ad6aa33dda47097bff081ac75bf05
5f5bc1b567c8322e09f8f4fac2a542d063f83421
d9f85e2da8a3f517763eada5449029a0285aea770bb16be15de5a70d154f9565
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6271
Cache-Control: max-age=123491
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:25 GMT
Etag: "63598991-117"
Expires: Fri, 28 Oct 2022 21:09:36 GMT
Last-Modified: Wed, 26 Oct 2022 19:25:05 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
104.17.25.14200 OK 6.2 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (19015)
Hash 7b4114faa411d059a9a5ac4b5b4d9dee
277da4486916fa3a4ab3375f47bc98f58dbf90f6
60b3528de2f7d48cbb335d19dddef756aaacc70f73d4254a2ef17978a14ca0d9
GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 10:51:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4812310
expires: Tue, 17 Oct 2023 10:51:25 GMT
accept-ranges: bytes
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 760ae05c8e31b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 49743d0334f875796eae903f8c312eef
e240ebec23fe8f99abb923b203090bc323a73b28
dfbcbc73b10bc4340e174233bbd0ff5d5c6ceaca7275ad9de81f48525d999998
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4623
Cache-Control: max-age=91947
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:25 GMT
Etag: "635914c9-116"
Expires: Fri, 28 Oct 2022 12:23:52 GMT
Last-Modified: Wed, 26 Oct 2022 11:06:49 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 625ad6aa33dda47097bff081ac75bf05
5f5bc1b567c8322e09f8f4fac2a542d063f83421
d9f85e2da8a3f517763eada5449029a0285aea770bb16be15de5a70d154f9565
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6271
Cache-Control: max-age=123491
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:25 GMT
Etag: "63598991-117"
Expires: Fri, 28 Oct 2022 21:09:36 GMT
Last-Modified: Wed, 26 Oct 2022 19:25:05 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3f987deb9312f9386827ecb7c74f10c3
754fd64a1520ba88655543c011047d0cc2958204
6c3a331441114688f56115d22f8f036c3526067595a702f5dc84b6414de3fc45
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4382
Cache-Control: max-age=153984
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:25 GMT
Etag: "635a080f-117"
Expires: Sat, 29 Oct 2022 05:37:49 GMT
Last-Modified: Thu, 27 Oct 2022 04:24:47 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d3d5881718c7c5f122e91f1e77dc6176
a450fea3259cd21a3f081e91aa0af7eda190562f
8c1a7725b79e08d79d7327e028ad74eb92d50787ba39ccda9385a40ac8c8e6f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3835
Cache-Control: max-age=159233
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:25 GMT
Etag: "635a1eb3-117"
Expires: Sat, 29 Oct 2022 07:05:18 GMT
Last-Modified: Thu, 27 Oct 2022 06:01:23 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
img.squadhelp.com/story_images/mp_sale_images/sale-image-75912-38ga.jpg?class=showsq
194.242.11.186301 Moved Permanently 0 B URL HTTP/2 img.squadhelp.com/story_images/mp_sale_images/sale-image-75912-38ga.jpg?class=showsq
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /story_images/mp_sale_images/sale-image-75912-38ga.jpg?class=showsq HTTP/1.1
Host: img.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Thu, 27 Oct 2022 10:51:25 GMT
content-length: 0
location: https://img-origin.squadhelp.com/story_images/mp_sale_images/sale-image-75912-38ga.jpg?class=showsq
server: BunnyCDN-NO-830
cdn-pullzone: 720681
cdn-uid: f9d574da-6b07-4a25-a965-8797fec66609
cdn-requestcountrycode: NO
last-modified: Thu, 27 Oct 2022 10:51:25 GMT
x-bo-server: ASB-203
x-downloadsize: 0
x-bo-origindownloadtime: 11
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 301
cdn-cachedat: 10/27/2022 10:51:25
cdn-edgestorageid: 830
cdn-status: 301
cdn-requestid: 48abc3dee200963241389d997fddfa20
cdn-cache: MISS
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 49743d0334f875796eae903f8c312eef
e240ebec23fe8f99abb923b203090bc323a73b28
dfbcbc73b10bc4340e174233bbd0ff5d5c6ceaca7275ad9de81f48525d999998
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4623
Cache-Control: max-age=91947
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:25 GMT
Etag: "635914c9-116"
Expires: Fri, 28 Oct 2022 12:23:52 GMT
Last-Modified: Wed, 26 Oct 2022 11:06:49 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
www.domains168.com/var/3fc4987e701ce39d06150b2d3d487712.css
34.196.175.210200 OK 182 kB URL HTTP/1.1 www.domains168.com/var/3fc4987e701ce39d06150b2d3d487712.css
IP 34.196.175.210:0
File type ASCII text, with very long lines (65371)
Size 182 kB (181823 bytes)
Hash d678be0efe834802d401329663aabe22
fbf0f1f7d6bf62b6fc3c10a469b14839d49917d3
9dd0bfbb5eb3a277510d04ce8d6d39cd4782db1a97464ecec94c1984400c40f4
GET /var/3fc4987e701ce39d06150b2d3d487712.css HTTP/1.1
Host: www.domains168.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/name/38ga.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 27 Oct 2022 10:51:25 GMT
Content-Type: text/css
Content-Length: 181823
Connection: keep-alive
Last-Modified: Fri, 22 Jul 2022 14:02:06 GMT
Vary: Accept-Encoding
ETag: "62daadde-2c63f"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4cdf16c5333628708fae7b304303fc48
23654b66838aa89e8b975a9e6c0251d2f8f18366
6f3935f102b0dcfee703eb07abcf04d9181fdfe13fae4d7566aed743a00beb9c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-M6CM29
142.250.74.168200 OK 103 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M6CM29
IP 142.250.74.168:0
File type ASCII text, with very long lines (53278)
Size 103 kB (103327 bytes)
Hash d0c261881723f77f04c9acadb3d408ed
943ae63c1bf2c08e07b60b364ce0581225b79b48
e2579fa596828f3018ebb43b1e68d8682bf1b78063c266ef825a9761d4e1cea2
GET /gtm.js?id=GTM-M6CM29 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 27 Oct 2022 10:51:25 GMT
expires: Thu, 27 Oct 2022 10:51:25 GMT
cache-control: private, max-age=900
last-modified: Thu, 27 Oct 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 103327
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4cdf16c5333628708fae7b304303fc48
23654b66838aa89e8b975a9e6c0251d2f8f18366
6f3935f102b0dcfee703eb07abcf04d9181fdfe13fae4d7566aed743a00beb9c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.squadhelp.com/story_images/sm_images/1655486497-Domains%20168%20new%20update%201.png
172.67.31.58200 OK 21 kB URL HTTP/2 www.squadhelp.com/story_images/sm_images/1655486497-Domains%20168%20new%20update%201.png
IP 172.67.31.58:0
File type PNG image data, 738 x 246, 8-bit/color RGBA, non-interlaced\012- data
Hash f64f24b93b815c0da894311892d1ee1b
352d4e5f3df92e0948505f06f7c61f1233ad64d4
03b5d2025f4b533a2ee6e6c9dffea40496b9b879be689505fe96cd894b26cb80
GET /story_images/sm_images/1655486497-Domains%20168%20new%20update%201.png HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 10:51:26 GMT
content-type: image/png
content-length: 20627
last-modified: Fri, 17 Jun 2022 17:21:37 GMT
etag: "62acb821-5093"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: MISS
accept-ranges: bytes
set-cookie: __cf_bm=g.X9KXBCzzMW4U0Y3wNnOgK4IuzvKu_9BKdJTp6hhvE-1666867886-0-AYQBIAGjrTeUwlDPZCvjaXW50KXzsf7gmkwfIT765K2nnYVwk2Vy7LmMQU/V+RyLngrsUKZyKNqR/hGqZqD1UBA=; path=/; expires=Thu, 27-Oct-22 11:21:26 GMT; domain=.squadhelp.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 760ae05c5f961c12-OSL
X-Firefox-Spdy: h2
www.domains168.com/var/894356436c1e92039ddfc57bcc243696.js
34.196.175.210200 OK 258 kB URL HTTP/1.1 www.domains168.com/var/894356436c1e92039ddfc57bcc243696.js
IP 34.196.175.210:0
File type ASCII text, with very long lines (65451)
Size 258 kB (257844 bytes)
Hash 894356436c1e92039ddfc57bcc243696
31d6353360dc7356844dc02c5b3e4902355526f1
4495282a2867c33f6e486a3c9cb625ce29e38f5ee9cdaef62713d7f08862d79b
Analyzer Verdict Alert fortinet Phishing
GET /var/894356436c1e92039ddfc57bcc243696.js HTTP/1.1
Host: www.domains168.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/name/38ga.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 27 Oct 2022 10:51:25 GMT
Content-Type: application/x-javascript
Content-Length: 257844
Connection: keep-alive
Last-Modified: Tue, 09 Aug 2022 20:56:39 GMT
Vary: Accept-Encoding
ETag: "62f2ca07-3ef34"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9833
Expires: Thu, 27 Oct 2022 13:35:19 GMT
Date: Thu, 27 Oct 2022 10:51:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9833
Expires: Thu, 27 Oct 2022 13:35:19 GMT
Date: Thu, 27 Oct 2022 10:51:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9833
Expires: Thu, 27 Oct 2022 13:35:19 GMT
Date: Thu, 27 Oct 2022 10:51:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9833
Expires: Thu, 27 Oct 2022 13:35:19 GMT
Date: Thu, 27 Oct 2022 10:51:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9833
Expires: Thu, 27 Oct 2022 13:35:19 GMT
Date: Thu, 27 Oct 2022 10:51:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd660616a-1641-4ad3-bf62-59dfe54ba2e9.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd660616a-1641-4ad3-bf62-59dfe54ba2e9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd902e06ceaeb060cec24c464c11738d
ffdfde08eb38e20b01c550fd4b1bb871304bb0ea
593f5c12c617c7217205d8aa95fe5f0c46014e5be8f2c8d3010cdd876faeb7dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd660616a-1641-4ad3-bf62-59dfe54ba2e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5247
x-amzn-requestid: 7e07eeaa-b95a-4283-8ca7-fb28e9e30258
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRpdhGDJIAMFd7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63508923-4e947c3539ad0d6d777a47cd;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 23:32:51 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -YRLmJMcCGHOfiEy_FwyogtW6h5rmYiu9EMZfXG4Jg8tJRtIxlKKnw==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:51:10 GMT
age: 46816
etag: "ffdfde08eb38e20b01c550fd4b1bb871304bb0ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91ee720c15dc69de45080d0c951353af
5292b31a99d90bcb7071f327b93d52034bdf9dcb
7fbe9f0f6db08fd539f2e8d4ac22e3b4d5ca14f7cde69f8424cce8b361d026e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4524
x-amzn-requestid: a493efe7-11c7-4032-b36b-7f838f8180bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aljicH_6IAMFqpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63587fa9-0f15eae7680ea7b15e5e47ec;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 00:30:33 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OV7g4Y4fcQGijljebzHQtnpKdcPKw6LTxqORxxBJL2lFPYQLLoyNuQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 00:44:24 GMT
age: 36422
etag: "5292b31a99d90bcb7071f327b93d52034bdf9dcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529195e0-f6ac-4fd1-b685-62456b469ad7.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529195e0-f6ac-4fd1-b685-62456b469ad7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c92c49279a7704d715e50836676d1abb
3092b4dbd87f7e5a2eff65c463da9c5103ff748a
6941145d63e68abf0f20081517faa4082eed3c59f8b8a69066f70b29d90fd355
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529195e0-f6ac-4fd1-b685-62456b469ad7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4709
x-amzn-requestid: c2923a57-57c4-4d62-83bc-e4c8b61aa2bd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocuiGeeIAMF9Dg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a7f6-7e47cfe804e333cc540f162a;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: M72Vjcyc06ihmWcqr2_Xrk8dGcC5pCoDidg5rhtRkVddavcUFE6G6w==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:47:37 GMT
etag: "3092b4dbd87f7e5a2eff65c463da9c5103ff748a"
content-type: image/jpeg
age: 47029
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5dac341-2b9d-4d07-ab3f-dafe74f88664.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5dac341-2b9d-4d07-ab3f-dafe74f88664.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2193431d88baf9af6829421cd13743ff
a192ab139ad0dc5cf206986eb06028ddad224e46
c535e09fb4a53ca580f5f5926d1494c50b6ad6c7c9ec78df6b7015213852b737
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5dac341-2b9d-4d07-ab3f-dafe74f88664.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9720
x-amzn-requestid: 6b4749ca-bcb9-4274-a309-e6d463851a6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aV_n6FOSIAMFroA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63524632-56186f1f2a0bf68f6dba843b;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 07:11:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DjRLNrY4BFc3GwHGBW40LIyh-RYT3hshdKPxXok4KE97fGvatXN6yQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 11:12:06 GMT
age: 85160
etag: "a192ab139ad0dc5cf206986eb06028ddad224e46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cba4a5a-0803-4870-b5e5-cbf33536e53e.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cba4a5a-0803-4870-b5e5-cbf33536e53e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3185609c8bfba0bf8d54812276331c42
4a14cc85d23798bd3476516b49a3c3ff7bcd0d98
e57871dad12531fccf75d0bc4930c18c3c95c706b2bfd89e620b1e097b40a08e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cba4a5a-0803-4870-b5e5-cbf33536e53e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6493
x-amzn-requestid: f5ca8ddd-d103-43e2-b3b7-ece16e1312a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ainrUE-pIAMF9rA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63575315-5f7287ea785008c44b0ff490;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 03:08:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LOj8fvtUhiwgFnrZG9v0iJ1At2O4vsdXM6tCPF8Blr-AOA-ALbuIkQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 03:39:20 GMT
age: 25926
etag: "4a14cc85d23798bd3476516b49a3c3ff7bcd0d98"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/search-insights@1.3.1
151.101.85.229200 OK 2.9 kB URL HTTP/2 cdn.jsdelivr.net/npm/search-insights@1.3.1
IP 151.101.85.229:0
File type ASCII text, with very long lines (10262)
Hash f66557a8cde2590db029b6b8304378db
11bbbcd7974761b20ec50d17f4049977315d9d08
9ab7d5c8a5762c81158601720fd131bef233a57193e6daaa8d1ad26e5912f1d3
GET /npm/search-insights@1.3.1 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.3.1
x-jsd-version-type: version
etag: W/"2817-FGLI0cv/s1qAA3nM5zLdFEpck2Q"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 27 Oct 2022 10:51:26 GMT
age: 9797535
x-served-by: cache-fra19130-FRA, cache-bma1681-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2870
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash 211010bb924959f30bb23f6b5eeb1adb
03a49de8695be4a923b65f40b1c0075c8d37f063
9f004a180241bbb1592afb6504b47e304b816cad8fea6a8beaa46f054f3d8d26
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 27 Oct 2022 10:51:26 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "7FC5B7F1A59555D3AFEFB311DC3036B0386A2FC8"
Expires: Thu, 27 Oct 2022 21:00:00 GMT
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1341
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 760ae0614f811c06-OSL
www.redditstatic.com/ads/pixel.js
151.101.85.140200 OK 7.7 kB URL HTTP/2 www.redditstatic.com/ads/pixel.js
IP 151.101.85.140:0
File type ASCII text, with very long lines (25224)
Hash 95212d33cfff78ad59f5af5b20c48c53
9b99a4091a6eb716bc68f1428e3c86eca068b25b
bd69f250efa08cb2c0a06c35d91fda762779820d87779019c25211f4559ebb1d
GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 19 Jul 2022 22:48:09 GMT
etag: "95212d33cfff78ad59f5af5b20c48c53"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 27 Oct 2022 10:51:26 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2
js.chargebee.com/v2/animation.css
143.204.55.121200 OK 758 B URL HTTP/2 js.chargebee.com/v2/animation.css
IP 143.204.55.121:0
Hash f8a79fc47c28375628855b4c78ff6f85
b2fb79a766c233408a6e0dd38a169dee2e88d4b0
e3b7f54cf81a0ff1f16662abce7b1970ed6a8a8191da96cf05dcf6644d203df3
GET /v2/animation.css HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 758
last-modified: Wed, 12 Oct 2022 08:57:27 GMT
x-amz-version-id: VgnJ2jVnsOJJpS2JkBpo9WnpNAL61UxN
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Thu, 27 Oct 2022 10:47:36 GMT
cache-control: max-age=300,public
etag: "f8a79fc47c28375628855b4c78ff6f85"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2wEV8Jn2QrS_9GLAP5miX9BiN-jhHC8jJdmw5fMZMBQJ5zZRPzXkGw==
age: 271
X-Firefox-Spdy: h2
js.chargebee.com/v2/master-8c2e693bf01b264eaca0ecd2143123c9.html
143.204.55.121200 OK 203 B URL HTTP/2 js.chargebee.com/v2/master-8c2e693bf01b264eaca0ecd2143123c9.html
IP 143.204.55.121:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5622f77393cea5ef7bade97ecbbb9f5a
c44498992f1f95f43f2b589d7d2d8c51c7580837
2bed6acc14d599f3fb4ebfd895419459dcbc17ea251f63251d6bbdbea85b9d84
GET /v2/master-8c2e693bf01b264eaca0ecd2143123c9.html HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 203
last-modified: Fri, 21 Oct 2022 07:08:52 GMT
x-amz-version-id: ckxn6wdc4Bu962KyAxueWzsXz1jg2TIj
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Thu, 27 Oct 2022 10:49:42 GMT
cache-control: max-age=300,public
etag: "5622f77393cea5ef7bade97ecbbb9f5a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: I6j3Bp_2hobWdlHYc39IF4hMVpLRDYQuYBfwm3m5bgxs2spzQUaAow==
age: 152
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1011ce734ec16554eef92ce86d51a05c
23040061450f1879b7b5a8f94ea5c5141e67204d
4bf354ab4a247e6b385a5a69bb0bd244c811a4ebbdf6b636525f76b9a37d39b7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BF354AB4A247E6B385A5A69BB0BD244C811A4EBBDF6B636525F76B9A37D39B7"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14253
Expires: Thu, 27 Oct 2022 14:48:59 GMT
Date: Thu, 27 Oct 2022 10:51:26 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 7.0 kB IP 93.184.220.29:0
Hash 3c04a5bab90d02e2baae5658ce90cafb
d4fd28b227863156abd557dc8488120205dacbfa
75ccc4ab0f726e9e4fc311efde42443d5535fdfd7bde21560044a5ac8e49e325
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2120
Cache-Control: max-age=159271
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:26 GMT
Etag: "635a258d-117"
Expires: Sat, 29 Oct 2022 07:05:57 GMT
Last-Modified: Thu, 27 Oct 2022 06:30:37 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 5660b71496e4e0c6cb39c8d3c4519bd4
3857a87e2dbff074d62691f8f0dcfb20148de611
f0655fa71dd108ebd7aaa4819fd5fb5e2f54969ae0523804b5eef0f0d643a52f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1675
Cache-Control: max-age=104833
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:26 GMT
Etag: "635952a4-2d7"
Expires: Fri, 28 Oct 2022 15:58:39 GMT
Last-Modified: Wed, 26 Oct 2022 15:30:44 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 727
www.squadhelp.com/resources/views/frontend/sellers/theme2/stylesheets/fonts/HKGroteskPro-Medium.woff2
172.67.31.58200 OK 39 kB URL HTTP/2 www.squadhelp.com/resources/views/frontend/sellers/theme2/stylesheets/fonts/HKGroteskPro-Medium.woff2
IP 172.67.31.58:0
File type Web Open Font Format (Version 2), CFF, length 39252, version 1.13107\012- data
Hash 3e00014e1cb8fae7e568759d6112193f
a53f5a14eb54b5ab1b2fd97bcbb5c2f9b0da2ccf
b4e244a11e64feea769fb9ca70981932aed7d829386245ff8198a0a6e16ea0f4
GET /resources/views/frontend/sellers/theme2/stylesheets/fonts/HKGroteskPro-Medium.woff2 HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 10:51:26 GMT
content-type: application/octet-stream
content-length: 39252
last-modified: Sun, 24 May 2020 13:31:50 GMT
etag: "5eca7746-9954"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: MISS
accept-ranges: bytes
set-cookie: __cf_bm=g1HmHIvtKU.I6OeG5K8zOLsA6HmuBZKP6Z_iU1C.JoY-1666867886-0-AZ3sIOwSD7yG5mM+euITz4D1lB8c1WMTio4YSNnq+WSSoGOQ3pMpkI2NfYN5A52SIQhcNXhpOnY+J4Gir9T6HZ4=; path=/; expires=Thu, 27-Oct-22 11:21:26 GMT; domain=.squadhelp.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 760ae05f2a351c12-OSL
X-Firefox-Spdy: h2
www.squadhelp.com/resources/views/frontend/sellers/theme2/stylesheets/fonts/HKGroteskPro-Regular.woff2
172.67.31.58200 OK 39 kB URL HTTP/2 www.squadhelp.com/resources/views/frontend/sellers/theme2/stylesheets/fonts/HKGroteskPro-Regular.woff2
IP 172.67.31.58:0
File type Web Open Font Format (Version 2), CFF, length 38644, version 1.13107\012- data
Hash 2fed1725e4fba84fd3d0d701f577be18
23a4ebfbf11f82bef7cdcced324436b9c43d5ea5
d5dd5c6b3e9350e861db9d3ab7e4474f01a016c785f1aa114eb997d65689567d
GET /resources/views/frontend/sellers/theme2/stylesheets/fonts/HKGroteskPro-Regular.woff2 HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 10:51:26 GMT
content-type: application/octet-stream
content-length: 38644
last-modified: Sun, 24 May 2020 13:31:50 GMT
etag: "5eca7746-96f4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: MISS
accept-ranges: bytes
set-cookie: __cf_bm=ih_bY0APjbJ0ja8asa1W6.QBT1VGr1SrTsDTIcW0STM-1666867886-0-AfsBT5PgIq6NmRRNMu4pI7Y88SZGN5X4F0uiL6bx/bfXCbd462nvJUxMl6UD7IbFrdAOimS6WaM/YXkQLtnTLL8=; path=/; expires=Thu, 27-Oct-22 11:21:26 GMT; domain=.squadhelp.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 760ae05f1a341c12-OSL
X-Firefox-Spdy: h2
img-origin.squadhelp.com/story_images/mp_sale_images/sale-image-75912-38ga.jpg?class=showsq
172.67.31.58200 OK 285 kB URL HTTP/2 img-origin.squadhelp.com/story_images/mp_sale_images/sale-image-75912-38ga.jpg?class=showsq
IP 172.67.31.58:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=Adobe Photoshop Lightroom 5.6 (Windows), datetime=2020:08:10 20:00:21], baseline, precision 8, 600x600, components 3\012- data
Size 285 kB (285289 bytes)
Hash 2ce1349fe2108788bbe476ef387d4b70
baadf3c908e300153f245762c7a9c7821ebbaa8f
ab4d3618cfdfbd67b2a7555c603323579c786f03c6582b518f18f38c09ee1feb
GET /story_images/mp_sale_images/sale-image-75912-38ga.jpg?class=showsq HTTP/1.1
Host: img-origin.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.domains168.com/
Connection: keep-alive
Cookie: __cf_bm=HlAwAmo_MypurF6c5hlS39EhDSCOHYE5tgsevvfwzYQ-1666867885-0-Adupw4AGISvYbJcHS4Te5fMEord//0Xz7KYiN33UEbzPHt03BhASoC9VmtR3IXYe79PxbiMheu4uiV5s3a82abI=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 10:51:26 GMT
content-type: image/jpeg
content-length: 285289
last-modified: Thu, 16 Jun 2022 14:19:41 GMT
etag: "62ab3bfd-45a69"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 760ae05d28301c12-OSL
X-Firefox-Spdy: h2
q.quora.com/_/ad/dcf3487c2f234553bf375cb5ea4c260b/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com
52.2.147.16200 OK 43 B URL HTTP/1.1 q.quora.com/_/ad/dcf3487c2f234553bf375cb5ea4c260b/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com
IP 52.2.147.16:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /_/ad/dcf3487c2f234553bf375cb5ea4c260b/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com HTTP/1.1
Host: q.quora.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Thu, 27 Oct 2022 10:51:26 GMT
Server: nginx
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Q-Stat: ,fb7395c86a89efb5e59895998f12aa9a,10.0.0.132,29008,91.90.42.154,,206676220965,1,1666867886.539,0.002,,.,0,0,0.000,0.000,-,0,0,197,111,55,10,26847,,,,,,-,
Content-Length: 43
Connection: keep-alive
vimeo.com/api/oembed.json?url=https%3A%2F%2Fvimeo.com%2F720893092&domain=www.domains168.com&id=720893092&autoplay=0
162.159.138.60200 OK 606 B URL HTTP/1.1 vimeo.com/api/oembed.json?url=https%3A%2F%2Fvimeo.com%2F720893092&domain=www.domains168.com&id=720893092&autoplay=0
IP 162.159.138.60:0
File type JSON data\012- , ASCII text, with very long lines (1207), with no line terminators
Hash 1b8f17b08757f9ca6a8b9a89201b648e
93816ebaa548dcc36c4294e77edbe0de5420dcff
5da5f3386713614c57a271a5aa3c506040b9de4299f633382f61afd8e1605b53
GET /api/oembed.json?url=https%3A%2F%2Fvimeo.com%2F720893092&domain=www.domains168.com&id=720893092&autoplay=0 HTTP/1.1
Host: vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 27 Oct 2022 10:51:26 GMT
Content-Type: application/json
Content-Length: 606
Connection: keep-alive
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
x-content-type-options: nosniff
x-frame-options: sameorigin
last-modified: Thu, 27 Oct 2022 10:47:21 GMT
etag: "0ceb1d19487d64c09ae27aa0ae17810be5b86d61"
x-ua-compatible: IE=edge
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy-report-only: default-src https: data: blob: wss: 'unsafe-inline' 'unsafe-eval'; report-uri /_csp
x-bapp-server: pweb-7c67c4bfdc-llc8r
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: webproxy-rollout-prod-varnish-7
x-backend-proxy: webproxy8
Content-Encoding: gzip
Accept-Ranges: bytes
Age: 0
X-Served-By: cache-iad-kiad7000028-IAD, cache-bma1676-BMA
X-Cache: MISS, MISS
X-Cache-Hits: 0, 0
X-Timer: S1666867886.446118,VS0,VE144
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=Hb45lNWzj1ri3GIDJytXSEyJoNLpT2eBbptg2K86xr8-1666867886-0-AZLFQHRapPvzvIPubUuwYtD2XSR1CLfiT+hPxyvKjep4R6fX+5Ge0lzc9HOE7kCE5QkGiZNeU8IGnXvFG4WY4mE=; path=/; expires=Thu, 27-Oct-22 11:21:26 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 760ae0623e3c1bfa-OSL
www.squadhelp.com/domain_audios/38ga-342.mp3
172.67.31.58206 Partial Content 48 kB URL HTTP/2 www.squadhelp.com/domain_audios/38ga-342.mp3
IP 172.67.31.58:0
File type Audio file with ID3 version 2.4.0, contains:\012- MPEG ADTS, layer III, v2, 48 kbps, 24 kHz, Monaural\012- data
Hash c8f4ad6e6e7cd55d5e2fd273e8d2bf2f
8b0616ba7116f0b6f9d816a02338886476848cd0
506e64e443879131b8c5cef6592c66ca386cfb10d7f71c05dfb656b9d18f1934
GET /domain_audios/38ga-342.mp3 HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.domains168.com/
Cookie: __cf_bm=HlAwAmo_MypurF6c5hlS39EhDSCOHYE5tgsevvfwzYQ-1666867885-0-Adupw4AGISvYbJcHS4Te5fMEord//0Xz7KYiN33UEbzPHt03BhASoC9VmtR3IXYe79PxbiMheu4uiV5s3a82abI=
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Thu, 27 Oct 2022 10:51:26 GMT
content-type: audio/mpeg
content-length: 48141
last-modified: Thu, 27 Oct 2022 08:06:36 GMT
etag: "635a3c0c-bc0d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: MISS
content-range: bytes 0-48140/48141
server: cloudflare
cf-ray: 760ae05f3a5c1c12-OSL
X-Firefox-Spdy: h2
js.chargebee.com/v2/master-2fac716905ef03df0537.js
143.204.55.121200 OK 70 kB URL HTTP/2 js.chargebee.com/v2/master-2fac716905ef03df0537.js
IP 143.204.55.121:0
File type Unicode text, UTF-8 text, with very long lines (61642)
Hash 77aeb34b28c408fbcdf9e7b445631033
7c4e148c8809a8ae90ea4dd650581882e256ea46
34dae9c1eedc265c1ea792ae949d599a0a9ab85c11dcf37f42ecddffd00434c8
GET /v2/master-2fac716905ef03df0537.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-8c2e693bf01b264eaca0ecd2143123c9.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Fri, 21 Oct 2022 07:08:51 GMT
x-amz-version-id: UMU45q15UW0sXNZAQDqphsF3u36njxfM
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Thu, 27 Oct 2022 10:49:42 GMT
cache-control: max-age=300,public
etag: W/"644ace2fdccadefceb312bf94e1ccc27"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: o0p2BatyfOS_7M7TmQr9ZjIihFV4wO7weiEp-9I4oSv6sqxOauSQiQ==
age: 150
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash d70937c3c17e822abec762329bc8a508
0132d70cb64f9c3ebb676a2517740274ba731b13
24fcc71284e2e825ca33385bbed6eb62f5d0b96f87453eef54b924ba02efe39f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5879
Cache-Control: max-age=109068
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:26 GMT
Etag: "635952c3-116"
Expires: Fri, 28 Oct 2022 17:09:14 GMT
Last-Modified: Wed, 26 Oct 2022 15:31:15 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
js.chargebee.com/v2/pi-worker-8c2e693bf01b264eaca0ecd2143123c9.js
143.204.55.121200 OK 21 kB URL HTTP/2 js.chargebee.com/v2/pi-worker-8c2e693bf01b264eaca0ecd2143123c9.js
IP 143.204.55.121:0
Hash 6d9fa77067e2cecc917abb6998f61b84
97fa1f3e8481808abd3ed868b8772ed2f82ec369
254846875087acad44868b27704d6c8199e3448de038e8d796226808612cb833
GET /v2/pi-worker-8c2e693bf01b264eaca0ecd2143123c9.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-8c2e693bf01b264eaca0ecd2143123c9.html
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Fri, 21 Oct 2022 07:08:51 GMT
x-amz-version-id: Nc1CWYfT8B8RguXts_iJGRM47STD.2MB
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Thu, 27 Oct 2022 10:49:43 GMT
cache-control: max-age=300,public
etag: W/"886ff9954ad457eb8480bfe3406389c6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QUu9srrmS6JQVaLx-8c-VAECBSyFbWCj3d2dalMUVBGlL9EkyRC5pw==
age: 105
X-Firefox-Spdy: h2
acsbapp.com/apps/app/dist/js/app.js
138.128.247.123200 OK 142 kB URL HTTP/2 acsbapp.com/apps/app/dist/js/app.js
IP 138.128.247.123:0
File type Unicode text, UTF-8 text, with very long lines (59778), with no line terminators
Size 142 kB (142281 bytes)
Hash c7a2bc5a539e9cf84bd08948e4b85fc6
ed0af98b6410956599424c97283e14d85823c0d9
3faae7feb50d28fd285d65a07fef6161f581f50734e6396c402f6bc912a766a6
GET /apps/app/dist/js/app.js HTTP/1.1
Host: acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Fri, 28 Oct 2022 10:51:26 GMT
content-type: application/x-javascript
last-modified: Sun, 16 Oct 2022 18:20:28 GMT
etag: "6af44-634c4b6c-af3ebb833015feec;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 142281
date: Thu, 27 Oct 2022 10:51:26 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b3f691dd015f1e89124ff513ef96aef9
1f8bc004da03321868fa1218f6c21916a944b2a0
5c74f21a5e9897d6671a87e1100749c46eda882c5d49aae706841f5968c5adab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3339
Cache-Control: max-age=150083
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:26 GMT
Etag: "6359fce6-1d7"
Expires: Sat, 29 Oct 2022 04:32:49 GMT
Last-Modified: Thu, 27 Oct 2022 03:37:10 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
amplify.outbrain.com/cp/obtp.js
23.38.201.81200 OK 3.5 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (8656), with no line terminators
Hash 6cff2cb49ee772adf066904fd18efd9a
8b876016198b0fc9862d2b6e29a80251c5422e72
85d26923c638ce50f36f7b69f9f50d2a6d6863abed574af143e24a14a343f9d2
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "0d5508c59e34b5d35cde5aea2aa1c2fd:1665301953.026714"
Last-Modified: Sun, 09 Oct 2022 07:50:08 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Thu, 27 Oct 2022 11:11:26 GMT
Date: Thu, 27 Oct 2022 10:51:26 GMT
Content-Length: 3471
Connection: keep-alive
insights.algolia.io/1/events?X-Algolia-Application-Id=UY28JH5EE6&X-Algolia-API-Key=eef4bbb1b2bf44af3b7b0b62d16a28fb&X-Algolia-Agent=insights-js%20(1.3.0)%3B%20insights-gtm%20(1.0.1)
34.96.112.9200 OK 29 B URL HTTP/2 insights.algolia.io/1/events?X-Algolia-Application-Id=UY28JH5EE6&X-Algolia-API-Key=eef4bbb1b2bf44af3b7b0b62d16a28fb&X-Algolia-Agent=insights-js%20(1.3.0)%3B%20insights-gtm%20(1.0.1)
IP 34.96.112.9:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ca1d7c9f272503952d3bf37cc4a649bd
7129c38467ef8cd3e902fe034328071f5cd07602
e5ddba99266abd003aa6eef168bc2a2bea5e69b1e0d1fc4373150934ab5dd76a
POST /1/events?X-Algolia-Application-Id=UY28JH5EE6&X-Algolia-API-Key=eef4bbb1b2bf44af3b7b0b62d16a28fb&X-Algolia-Agent=insights-js%20(1.3.0)%3B%20insights-gtm%20(1.0.1) HTTP/1.1
Host: insights.algolia.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 145
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.domains168.com
content-type: application/json
vary: Origin
date: Thu, 27 Oct 2022 10:51:26 GMT
content-length: 29
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash a63ea2903767bb46326d85331e42e34e
b113b248df6025ed117551b7baa1960316122415
4ba54e12a06237d2c396d93e1cf9513b066074df9993ee408ee2bfb365c5f3c6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.121200 OK 471 B URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.121:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (996)
Hash c17466e260bc9c5c2cad7266e46b874a
41baca1a34712ce74304c49bfdd8927e84184ee5
1159a0082f0e3292bea1ae1247fc5ffe02462c3d43b31bdd6e47904cb945d50e
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 22:31:50 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=42053
date: Thu, 27 Oct 2022 10:51:26 GMT
content-length: 471
x-cdn: AKAM
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 27 Oct 2022 10:41:09 GMT
expires: Thu, 27 Oct 2022 12:41:09 GMT
cache-control: public, max-age=7200
age: 617
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57443), with no line terminators
Hash 1e9c4d503a9e162d8b549dc3d9c040e2
1fa99d7d7e878cdd45567af4b0c3c65542036c1d
f936c0124c595fe5d0c7858277f3a5f3bd104de39d36ac92557501fa1dec8563
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Thu, 27 Oct 2022 10:51:26 GMT
x-served-by: cache-iad-kcgs7200165-IAD, cache-bma1637-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 84409c129527969831699eb02cd244b9
e1bd7e37698890246e939b31510f3ab3aac605c6
54a130a13a831b71441be9bfbd1b74d8a7433a8e4bb4ab3f5ed9edde6bcd3964
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: ILFvLhCo9MfW4jtpDyhXkXMFMVB3hzxpV5cPldVC/bO5viDOo/nHQXQpEd7JJ3Nckj+Qy2LDnXenUJmToG3Pyw==
priority: u=3,i
content-length: 27076
x-fb-trip-id: 1904183273
date: Thu, 27 Oct 2022 10:51:26 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/unip/1344021/tfa.js
151.101.85.44200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1344021/tfa.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (58479)
Hash 716ca60b7cbd8e145434b86002ab1e85
70f3bb464c09ffe8f5820444eb440b746f3e5f13
e2775c7afcf3523a3afa8bd144c6ba08eee20aba681dcd3e33bba2bd6b9e3645
GET /libtrc/unip/1344021/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: GNUshgz+jgiwvnSH64p28JNpawrWiv6Mgc5Q8hyWWIpf6mOAibDwz+3zCDooJrKhULMMK2mWTZM=
x-amz-request-id: 1Z4NZ63QJ51PDHCE
x-amz-replication-status: COMPLETED
last-modified: Sun, 23 Oct 2022 11:18:26 GMT
etag: "4ef427b5aef6b2bbf811f1085c65918e"
x-amz-version-id: fiW.jiyrHMffmp83haNDmGEd9PU9j63P
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 27 Oct 2022 10:51:26 GMT
via: 1.1 varnish
age: 125
x-served-by: cache-bma1632-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1666867887.938009,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 80
content-length: 17943
X-Firefox-Spdy: h2
www.domains168.com/favicon.ico
34.196.175.210200 OK 1.0 kB URL HTTP/1.1 www.domains168.com/favicon.ico
IP 34.196.175.210:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 1504f785a65bf56ab21f3fe867a96f0e
4facb4c315e00d52ae2a5862936dd5795678ee05
38565e8e330d53df0489d117e37d016cb9abe5b811d48c2049810a605f55b447
GET /favicon.ico HTTP/1.1
Host: www.domains168.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/name/38ga.com
Cookie: _gcl_au=1.1.1953547515.1666867885; ahash=SYChfUnhb; _ALGOLIA=anonymous-2ffb5985-c8d3-4834-81d5-98d111ef813b; _rdt_uuid=1666867885599.72254f2c-e489-4b0d-ab52-86ba332f66fc; user_navigation_history=/name/38ga.com; lpg=/name/38ga.com; _ga_VJ36JWQDE1=GS1.1.1666867885.1.0.1666867885.0.0.0; _ga=GA1.1.110448244.1666867886; PHPSESSID=9pt484qfhn9l0lnb3pokma42r1; smart_cat_id=1632
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 27 Oct 2022 10:51:26 GMT
Content-Type: image/x-icon
Content-Length: 1005
Connection: keep-alive
Last-Modified: Thu, 13 Aug 2015 11:52:45 GMT
ETag: "55cc850d-3ed"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
bat.bing.com/bat.js
204.79.197.200200 OK 11 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=072713D691796CD60C30019C908C6D0E; domain=.bing.com; expires=Tue, 21-Nov-2023 10:51:26 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 35F8A89E4CA040B39C0B02DBF1944C71 Ref B: OSL30EDGE0505 Ref C: 2022-10-27T10:51:26Z
date: Thu, 27 Oct 2022 10:51:26 GMT
X-Firefox-Spdy: h2
www.google.com/pagead/conversion_async.js
142.250.74.164200 OK 15 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (1654)
Hash 34b6d5b94de5aa9a11745592f84aad0d
85c2890e443bcb8bc4443bf2d57fc0462b797617
39b175887782c7b0586123cc938fb5651c5edb230ae1d45be41de351ac42bff1
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 27 Oct 2022 10:51:26 GMT
expires: Thu, 27 Oct 2022 10:51:26 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 16072662367159696676
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15168
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b3f691dd015f1e89124ff513ef96aef9
1f8bc004da03321868fa1218f6c21916a944b2a0
5c74f21a5e9897d6671a87e1100749c46eda882c5d49aae706841f5968c5adab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3339
Cache-Control: max-age=150083
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:26 GMT
Etag: "6359fce6-1d7"
Expires: Sat, 29 Oct 2022 04:32:49 GMT
Last-Modified: Thu, 27 Oct 2022 03:37:10 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
f.vimeocdn.com/p/4.11.11/css/player.css
151.101.86.109200 OK 20 kB URL HTTP/2 f.vimeocdn.com/p/4.11.11/css/player.css
IP 151.101.86.109:0
File type ASCII text, with very long lines (65494)
Hash 3bca5c365a85ce4f65a9f4e368239501
2d94fddb798fe6c1a93646e12cded85da611e36c
9726a8fab9e6aa919abd916570ffb75c8a7c7011cbaa17e8f9c7297c6c715ed0
GET /p/4.11.11/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 27 Oct 2022 10:51:27 GMT
age: 243846
x-served-by: cache-iad-kjyo7100084-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 33, 60093
x-timer: S1666867887.034182,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20368
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 26e60c83d7af169687cbd74f7ca924e0
00f7ceb935fe1cc423f95718a04076e4f5eca150
a041e2901d418b289c3129ce7c07a66e598f6d3ac076732635b0a9ac6fbabb89
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.vimeocdn.com/video/1451960391-27331ec81e39eb316fde7c35212ed6f1497510379d6f0a68a08f21f2c061fabc-d.jpg?mw=80&q=85
151.101.86.109200 OK 1.9 kB URL HTTP/2 i.vimeocdn.com/video/1451960391-27331ec81e39eb316fde7c35212ed6f1497510379d6f0a68a08f21f2c061fabc-d.jpg?mw=80&q=85
IP 151.101.86.109:0
Hash 102ec94c13b972302312528754026dfa
0e2c6f5b8e06146071cb3a7c93150903e776ce33
88d4e8bc5c323d0755075893a8529e5b6e971c7e66093f547551632c22e86925
GET /video/1451960391-27331ec81e39eb316fde7c35212ed6f1497510379d6f0a68a08f21f2c061fabc-d.jpg?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: 5e87158ee30c950b032e6335be012e5b
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-central1-njkb
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Thu, 27 Oct 2022 10:51:27 GMT
age: 166156
x-served-by: cache-dfw-kdfw8210022-DFW, cache-bma1680-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 532, 1
x-timer: S1666867887.055740,VS0,VE1
content-length: 1518
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash d6b8f4f7a159b2ee4cdb6715c022936a
fa70de69b91f6b3a93b2c1aa93ed5f3cd6b046da
e6685d3c8c7ecaea75fb895c9fa587bf4423622f3a6b3b29ffea9f0ae32920e8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 27 Oct 2022 10:51:27 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 24 Oct 2022 15:27:39 GMT
Expires: Mon, 31 Oct 2022 15:27:38 GMT
Etag: "fa70de69b91f6b3a93b2c1aa93ed5f3cd6b046da"
Cache-Control: max-age=361570,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 760ae065ea470b06-OSL
snap.licdn.com/li.lms-analytics/insight.old.min.js
23.36.76.121200 OK 3.1 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.old.min.js
IP 23.36.76.121:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (7751)
Hash 57efbbeb3e1d23c82b677511c67c8b0e
f927ba115ef4be362694c22850ddbdd1c1b054d1
873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6
GET /li.lms-analytics/insight.old.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 24 Oct 2022 21:02:26 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=19458
date: Thu, 27 Oct 2022 10:51:27 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2
squadhelp.chargebeestaticv2.com/api/internal/1666867500/retrieve_js_info
54.230.111.33202 Accepted 0 B URL HTTP/2 squadhelp.chargebeestaticv2.com/api/internal/1666867500/retrieve_js_info
IP 54.230.111.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/internal/1666867500/retrieve_js_info HTTP/1.1
Host: squadhelp.chargebeestaticv2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-requested-with
Referer: https://js.chargebee.com/
Origin: https://js.chargebee.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
content-length: 0
date: Thu, 27 Oct 2022 10:51:27 GMT
cache-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
pragma: no-cache
access-control-allow-origin: https://js.chargebee.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token
access-control-allow-methods: GET, OPTIONS, POST
server: ChargeBee
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Dx3NzX6tCuiM2W7UnNz0gkOajJVNI-fJll6gempyuynuC-TSEFHDvA==
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.11.11/js/player.module.js
151.101.86.109200 OK 108 kB URL HTTP/2 f.vimeocdn.com/p/4.11.11/js/player.module.js
IP 151.101.86.109:0
File type Unicode text, UTF-8 text, with very long lines (65444)
Size 108 kB (108320 bytes)
Hash 8f39157e220fccb2c942f0a5b624eaed
3dcc06ea8037d6027a2dbde737d4afbf10ec731c
d5078d9f8ec0f5ece9142aa60c06ed01b3c7019f472604b116710ef930907b5e
GET /p/4.11.11/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 27 Oct 2022 10:51:27 GMT
age: 243841
x-served-by: cache-iad-kiad7000126-IAD, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 42, 12442
x-timer: S1666867887.069907,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 108320
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-VJ36JWQDE1>m=2oeaq0&_p=1084934584&cid=110448244.1666867886&ul=en-us&sr=1280x1024&_s=1&sid=1666867885&sct=1&seg=0&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&dt=38ga.com%20is%20for%20sale&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-VJ36JWQDE1>m=2oeaq0&_p=1084934584&cid=110448244.1666867886&ul=en-us&sr=1280x1024&_s=1&sid=1666867885&sct=1&seg=0&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&dt=38ga.com%20is%20for%20sale&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-VJ36JWQDE1>m=2oeaq0&_p=1084934584&cid=110448244.1666867886&ul=en-us&sr=1280x1024&_s=1&sid=1666867885&sct=1&seg=0&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&dt=38ga.com%20is%20for%20sale&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.domains168.com
date: Thu, 27 Oct 2022 10:51:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
squadhelp.chargebeestaticv2.com/api/internal/1666867500/retrieve_js_info
54.230.111.33200 OK 401 B URL HTTP/2 squadhelp.chargebeestaticv2.com/api/internal/1666867500/retrieve_js_info
IP 54.230.111.33:0
File type JSON data\012- , ASCII text, with very long lines (401), with no line terminators
Hash 523a4dc5edb1611719ff8c3f9c5c4864
968605ddb4252d2ba760ae766fef3252732b910a
2331bbc59894461818a6c9e4b9802cd2e5c565c9e8280a5f5740dc9b7c256057
GET /api/internal/1666867500/retrieve_js_info HTTP/1.1
Host: squadhelp.chargebeestaticv2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://js.chargebee.com
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=utf-8
content-length: 401
date: Thu, 27 Oct 2022 10:45:02 GMT
cache-control: max-age=0, must-revalidate, public, s-maxage=3600
expires: Thu, 01 Jan 1970 00:00:00 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: https://js.chargebee.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token
access-control-allow-methods: GET, OPTIONS, POST
server: ChargeBee
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: q76MdQQS6Zk0baTVGxBhmYtSVUs70RSL_UXGTy8nWgrnASCw5TNUiA==
age: 385
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 5e3b5549113a89aacb87caee5910b751
7ae274a9b56a06402f948962279c1f4c855808ad
cdf7002514cfbcb9829fecb32f1179b0ea1832001e486749c48ba05abaaa8278
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=146611
Date: Thu, 27 Oct 2022 10:51:27 GMT
Etag: "6359f71c-1d7"
Expires: Sat, 29 Oct 2022 03:34:58 GMT
Last-Modified: Thu, 27 Oct 2022 03:12:28 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1p9OZaYv0ggwsXMf5I-MWwogVRAr2ghx9GMdey3R_coRl7Gjp7OD4w==
Age: 1350
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 79afc78036a5f81c5fe89cfa184de461
0bdc094878c9308f2dce822cce1c525103f36dab
3f560108d0aa2e8acf4181587897763def4b11c15c112290acf3277b09577314
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5574
Cache-Control: max-age=92164
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:27 GMT
Etag: "635911ed-139"
Expires: Fri, 28 Oct 2022 12:27:31 GMT
Last-Modified: Wed, 26 Oct 2022 10:54:37 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 313
f.vimeocdn.com/p/4.11.11/js/vendor.module.js
151.101.86.109200 OK 116 kB URL HTTP/2 f.vimeocdn.com/p/4.11.11/js/vendor.module.js
IP 151.101.86.109:0
File type ASCII text, with very long lines (65456)
Size 116 kB (116484 bytes)
Hash 7049632ad3bbef06830471365f055895
dc7ff972a2176658783cc7686a52de6f7e55ed28
d13479cca58206c4bf2e7e93a1d0f78c227c0e67036ebe463b4a8b9c2e23b8cd
GET /p/4.11.11/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 27 Oct 2022 10:51:27 GMT
age: 243841
x-served-by: cache-iad-kcgs7200171-IAD, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 45, 15172
x-timer: S1666867887.220316,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 116484
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/events.js
44.199.71.207200 OK 5.4 kB URL HTTP/1.1 tags.srv.stackadapt.com/events.js
IP 44.199.71.207:0
File type ASCII text, with very long lines (16677)
Hash 60c4f9a4fecb541a02361b142f033438
345e31983c2d6ae6f64fbbfe9e66784d3223591a
a873a3183b0038534bc53312ab98a2b00e98e4ff91d2cee6fe6a615b2f0a6e9a
GET /events.js HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: max-age=5
Content-Encoding: gzip
Content-Type: text/javascript
Date: Thu, 27 Oct 2022 10:51:27 GMT
Set-Cookie: sa-user-id=s%3A0-581a55ad-2516-4347-6aa0-9bed141288ca.lnDG4hZWRFvSR3ArjvawXBQ9AbOlFM3YJX%2Bc8SaqpOA; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AWBpVrSUWQ0dqoJvtFBKIyltaKpo.f%2BqxfYulyEmgTsqV8HXlwKs6uLOxKdaYVyDHHpqzM0c; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 5404
Connection: keep-alive
cdn.acsbapp.com/cache/app/domains168.com/config.json
83.229.67.229200 OK 0 B URL HTTP/2 cdn.acsbapp.com/cache/app/domains168.com/config.json
IP 83.229.67.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cache/app/domains168.com/config.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.domains168.com/
Origin: https://www.domains168.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Thu, 27 Oct 2022 10:51:27 GMT
cache-control: no-cache
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
alb.reddit.com/rp.gif?ts=1666867885599&id=t2_bc56g0l6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=72254f2c-e489-4b0d-ab52-86ba332f66fc&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6
151.101.85.140200 OK 42 B URL HTTP/2 alb.reddit.com/rp.gif?ts=1666867885599&id=t2_bc56g0l6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=72254f2c-e489-4b0d-ab52-86ba332f66fc&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6
IP 151.101.85.140:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /rp.gif?ts=1666867885599&id=t2_bc56g0l6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=72254f2c-e489-4b0d-ab52-86ba332f66fc&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Thu, 27 Oct 2022 10:51:27 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=bbfa8308-df98-429b-8829-911214582007&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=c99faf06-b9c5-4001-889a-cfaaa25295ee&tw_document_href=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.27
104.244.42.133200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=bbfa8308-df98-429b-8829-911214582007&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=c99faf06-b9c5-4001-889a-cfaaa25295ee&tw_document_href=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.27
IP 104.244.42.133:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=bbfa8308-df98-429b-8829-911214582007&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=c99faf06-b9c5-4001-889a-cfaaa25295ee&tw_document_href=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.27 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 10:51:26 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=573a16e6-42b1-4f3d-98ac-ce4fdb6e9c13; Max-Age=63072000; Expires=Sat, 26 Oct 2024 10:51:27 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 68c5d557e9f05315
strict-transport-security: max-age=0
x-response-time: 103
x-connection-hash: 385d2c8543b667eb589d966981d1edbca86a6185a8f5ae9ace76b8eba773b51a
X-Firefox-Spdy: h2
f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
151.101.86.109200 OK 997 B URL HTTP/2 f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
IP 151.101.86.109:0
File type ASCII text, with very long lines (1839)
Hash 3d2ec727486c897591d751098283c68f
7b2b2e59063caf74de6bf2c96bffb68b748f257d
10c72391adec6fe62bb10a273adff205864ceafcc63c664bcc4eb7902481ba8b
GET /js_opt/modules/utils/vuid.min.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
cache-control: public, max-age=2592000
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 27 Oct 2022 10:51:27 GMT
age: 668049
x-served-by: cache-iad-kiad7000106-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 139, 120654
x-timer: S1666867887.364966,VS0,VE0
vary: Accept-Encoding,x-http-method-override
content-length: 997
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/sa.css
44.199.71.207200 OK 27 B URL HTTP/1.1 tags.srv.stackadapt.com/sa.css
IP 44.199.71.207:0
Hash 83f5ba33314db5f218488a5a51da1455
87a21689afa235c4c65437334085be4bf5cca170
3f100e5e6ff270dadb43b44878f0118a2389dee0d844acc102b5179d70a824dc
GET /sa.css HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: only-if-cached, no-transform, private, max-age=7776000
Content-Type: text/css
Date: Thu, 27 Oct 2022 10:51:27 GMT
Content-Length: 27
Connection: keep-alive
i.vimeocdn.com/video/1451960391-27331ec81e39eb316fde7c35212ed6f1497510379d6f0a68a08f21f2c061fabc-d?mw=400&mh=225
151.101.86.109200 OK 7.4 kB URL HTTP/2 i.vimeocdn.com/video/1451960391-27331ec81e39eb316fde7c35212ed6f1497510379d6f0a68a08f21f2c061fabc-d?mw=400&mh=225
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash f47dd243092856f9943edfb421fc4d73
f4257acd477ec4a7b3e4fd7620ecabe15f2bcf0e
1827b99aa6a2e3f40f0b7661ae62a2c58e928c829b684443e14ba33b5ed680e9
GET /video/1451960391-27331ec81e39eb316fde7c35212ed6f1497510379d6f0a68a08f21f2c061fabc-d?mw=400&mh=225 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: f47dd243092856f9943edfb421fc4d73
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-dq80
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Thu, 27 Oct 2022 10:51:27 GMT
age: 1703770
x-served-by: cache-dfw-kdfw8210116-DFW, cache-bma1680-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 1169, 1
x-timer: S1666867887.405912,VS0,VE1
vary: Accept
content-length: 7407
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=15226519&tm=gtm002&Ver=2&mid=c55185dc-97e6-4a43-b993-e7cbb7c9de37&sid=4e18534055e511ed9b11f94db45200ea&vid=4e18729055e511ed800861db3cef2daf&vids=0&msclkid=N&pagetype=product&en=Y&sw=1280&sh=1024&sc=24&evt=custom&rn=16395
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=15226519&tm=gtm002&Ver=2&mid=c55185dc-97e6-4a43-b993-e7cbb7c9de37&sid=4e18534055e511ed9b11f94db45200ea&vid=4e18729055e511ed800861db3cef2daf&vids=0&msclkid=N&pagetype=product&en=Y&sw=1280&sh=1024&sc=24&evt=custom&rn=16395
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=15226519&tm=gtm002&Ver=2&mid=c55185dc-97e6-4a43-b993-e7cbb7c9de37&sid=4e18534055e511ed9b11f94db45200ea&vid=4e18729055e511ed800861db3cef2daf&vids=0&msclkid=N&pagetype=product&en=Y&sw=1280&sh=1024&sc=24&evt=custom&rn=16395 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=237D45FD3BFD6574262757B73A0864D1; domain=.bing.com; expires=Tue, 21-Nov-2023 10:51:27 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9546EE641E844D65AE99712CFC588B71 Ref B: OSL30EDGE0505 Ref C: 2022-10-27T10:51:27Z
date: Thu, 27 Oct 2022 10:51:27 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=15226519&tm=gtm002&Ver=2&mid=c55185dc-97e6-4a43-b993-e7cbb7c9de37&sid=4e18534055e511ed9b11f94db45200ea&vid=4e18729055e511ed800861db3cef2daf&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=38ga.com%20is%20for%20sale&p=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&r=<=2787&evt=pageLoad&sv=1&rn=449596
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=15226519&tm=gtm002&Ver=2&mid=c55185dc-97e6-4a43-b993-e7cbb7c9de37&sid=4e18534055e511ed9b11f94db45200ea&vid=4e18729055e511ed800861db3cef2daf&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=38ga.com%20is%20for%20sale&p=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&r=<=2787&evt=pageLoad&sv=1&rn=449596
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=15226519&tm=gtm002&Ver=2&mid=c55185dc-97e6-4a43-b993-e7cbb7c9de37&sid=4e18534055e511ed9b11f94db45200ea&vid=4e18729055e511ed800861db3cef2daf&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=38ga.com%20is%20for%20sale&p=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&r=<=2787&evt=pageLoad&sv=1&rn=449596 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0D5EC604EDC467DE209ED44EEC3166B5; domain=.bing.com; expires=Tue, 21-Nov-2023 10:51:27 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2766C1193C384506BC25991CF6B9714F Ref B: OSL30EDGE0505 Ref C: 2022-10-27T10:51:27Z
date: Thu, 27 Oct 2022 10:51:27 GMT
X-Firefox-Spdy: h2
tr.outbrain.com/cachedClickId?marketerId=00307c4941e2958412d6d5d587832791fc
70.42.32.127200 OK 56 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=00307c4941e2958412d6d5d587832791fc
IP 70.42.32.127:0
File type ASCII text, with no line terminators
Hash 77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
GET /cachedClickId?marketerId=00307c4941e2958412d6d5d587832791fc HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 27 Oct 2022 10:51:27 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: 47c182002f6053c8b9ecd5b56259421f
content-encoding: gzip
tr.outbrain.com/unifiedPixel?marketerId=00307c4941e2958412d6d5d587832791fc&obApiVersion=1.1&obtpVersion=1.10.0&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&optOut=false&bust=022869734747199855&referrer=
70.42.32.127200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00307c4941e2958412d6d5d587832791fc&obApiVersion=1.1&obtpVersion=1.10.0&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&optOut=false&bust=022869734747199855&referrer=
IP 70.42.32.127:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=00307c4941e2958412d6d5d587832791fc&obApiVersion=1.1&obtpVersion=1.10.0&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&optOut=false&bust=022869734747199855&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 27 Oct 2022 10:51:27 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: 9aaedc46bf32d7422223db69a3985dfa
content-encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7d4b826b3cd4f4fffd35abd60c407bdb
28e5a20b197bf6972fd097c3b302c1dd89b68f09
681fd035abbbf788f315fea7402f5e0d77b51f6167e237ff7516335911499b21
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7d4b826b3cd4f4fffd35abd60c407bdb
28e5a20b197bf6972fd097c3b302c1dd89b68f09
681fd035abbbf788f315fea7402f5e0d77b51f6167e237ff7516335911499b21
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash a2005c8e0796684cecebe2123084597b
33a35df21d2304021cbeacd19a76f3b082696b7b
65fe9d3cb8a05bd1d5b2421390197031eafb214de1c63891fc38210680543ffc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6348
Cache-Control: max-age=133974
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:27 GMT
Etag: "6359b239-13a"
Expires: Sat, 29 Oct 2022 00:04:21 GMT
Last-Modified: Wed, 26 Oct 2022 22:18:33 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 314
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
104.18.10.207200 OK 22 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
IP 104.18.10.207:0
File type ASCII text, with very long lines (65325)
Hash cb622cc1721d0cb0fd6360939149659c
16c091b14f7a8f48e185299eb3beadffdaab29ba
0226c2a2d9a168906d4e6cf627658da9aece49ad66e086499039318cea8e1010
GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 10:51:25 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"450fc463b8b1a349df717056fbb3e078"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/20/2022 02:36:43
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 798f7d945b37c3786df9e73f768bea05
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 760ae05c5b9ab51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7d4b826b3cd4f4fffd35abd60c407bdb
28e5a20b197bf6972fd097c3b302c1dd89b68f09
681fd035abbbf788f315fea7402f5e0d77b51f6167e237ff7516335911499b21
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1666867886362&cv=9&fst=1666867886362&num=1&label=47aTCPrYo9kBENGCzOsD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&async=1&rfmt=3&fmt=4
216.58.207.226200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1666867886362&cv=9&fst=1666867886362&num=1&label=47aTCPrYo9kBENGCzOsD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 216.58.207.226:0
File type ASCII text, with very long lines (2317), with no line terminators
Hash 8460749738f9293c299954379f8cc8fc
5bdf69d9bc1d10aba66d93b83253eb9d68e27bb2
eafba12f0bcb29ded0dc9d68413e284e5bd84ce3d3b8bf6342d1a7854f56215b
GET /pagead/viewthroughconversion/1030947153/?random=1666867886362&cv=9&fst=1666867886362&num=1&label=47aTCPrYo9kBENGCzOsD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 27 Oct 2022 10:51:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1074
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 27-Oct-2022 11:06:27 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7d4b826b3cd4f4fffd35abd60c407bdb
28e5a20b197bf6972fd097c3b302c1dd89b68f09
681fd035abbbf788f315fea7402f5e0d77b51f6167e237ff7516335911499b21
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/p/action/15226519.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/15226519.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/15226519.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=3B6189EF94F7688F30479BA595026995; domain=.bing.com; expires=Tue, 21-Nov-2023 10:51:27 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 293CEC76D8394B6498F33AAE506B6ACD Ref B: OSL30EDGE0505 Ref C: 2022-10-27T10:51:27Z
date: Thu, 27 Oct 2022 10:51:27 GMT
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-11585500-1&cid=110448244.1666867886&jid=384792490&gjid=1768820354&_gid=334663067.1666867886&_u=YCDAgEABAAAAAGAAI~&z=683769833
173.194.222.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-11585500-1&cid=110448244.1666867886&jid=384792490&gjid=1768820354&_gid=334663067.1666867886&_u=YCDAgEABAAAAAGAAI~&z=683769833
IP 173.194.222.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-11585500-1&cid=110448244.1666867886&jid=384792490&gjid=1768820354&_gid=334663067.1666867886&_u=YCDAgEABAAAAAGAAI~&z=683769833 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.domains168.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 27 Oct 2022 10:51:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1666867886365&cv=9&fst=1666867886365&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaq0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&async=1&rfmt=3&fmt=4
216.58.207.226200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1666867886365&cv=9&fst=1666867886365&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaq0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 216.58.207.226:0
File type ASCII text, with very long lines (2286), with no line terminators
Hash e4debe6bd70fa0bdba9b2a313e3f6309
ff43719f2509dfaa3f226722947d425635d8ab74
679b73d5d0b804c8bca1491358e2b1d2eddcb51dfad49ded1f93f873d06a8181
GET /pagead/viewthroughconversion/1030947153/?random=1666867886365&cv=9&fst=1666867886365&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaq0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 27 Oct 2022 10:51:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1043
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 27-Oct-2022 11:06:27 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1666867886355&cv=9&fst=1666867886355&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&ig=0&data=ecomm_pagetype%3Dproduct&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&async=1&rfmt=3&fmt=4
216.58.207.226200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1666867886355&cv=9&fst=1666867886355&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&ig=0&data=ecomm_pagetype%3Dproduct&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 216.58.207.226:0
File type ASCII text, with very long lines (2296), with no line terminators
Hash 61f7a7531074807578fa793f3126ffb6
2e14bbface15818b9a208805a15f5a9ad51d5338
3fa2bd9a18cfd41940051b76051e1f76aef6a2bbfd26c60772dd340e4f156b04
GET /pagead/viewthroughconversion/1030947153/?random=1666867886355&cv=9&fst=1666867886355&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&ig=0&data=ecomm_pagetype%3Dproduct&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 27 Oct 2022 10:51:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1045
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 27-Oct-2022 11:06:27 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1666867886363&cv=9&fst=1666867886363&num=1&label=UV3OCIvRm9oBENGCzOsD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&async=1&rfmt=3&fmt=4
216.58.207.226200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1666867886363&cv=9&fst=1666867886363&num=1&label=UV3OCIvRm9oBENGCzOsD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 216.58.207.226:0
File type ASCII text, with very long lines (2315), with no line terminators
Hash b85300237c067a0195b99a59f80d04c2
00a553c4a589058f5c1373173cf07e39f79d32c5
4aa1e088fc21723ac1259bfa85a4171366104c038b1c0c3f88d78f8a5b9e20ae
GET /pagead/viewthroughconversion/1030947153/?random=1666867886363&cv=9&fst=1666867886363&num=1&label=UV3OCIvRm9oBENGCzOsD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 27 Oct 2022 10:51:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1075
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 27-Oct-2022 11:06:27 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7d4b826b3cd4f4fffd35abd60c407bdb
28e5a20b197bf6972fd097c3b302c1dd89b68f09
681fd035abbbf788f315fea7402f5e0d77b51f6167e237ff7516335911499b21
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1666867886358&cv=9&fst=1666867886358&num=1&fmt=3&value=0&label=DP_eCJK8xO0BENGCzOsD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&bttype=purchase&gcp=1&ct_cookie_present=1&async=1
216.58.207.226200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1666867886358&cv=9&fst=1666867886358&num=1&fmt=3&value=0&label=DP_eCJK8xO0BENGCzOsD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&bttype=purchase&gcp=1&ct_cookie_present=1&async=1
IP 216.58.207.226:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/1030947153/?random=1666867886358&cv=9&fst=1666867886358&num=1&fmt=3&value=0&label=DP_eCJK8xO0BENGCzOsD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&bttype=purchase&gcp=1&ct_cookie_present=1&async=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 27 Oct 2022 10:51:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 27-Oct-2022 11:06:27 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ce5d09bafa968f66bc7828927cb90e05
d6445e57629d1fcb89ac2fefdc5071cf82f71a59
e6b4e02dcd04a13ac1c6ce72819b8f20b1b5555a516151264b9a685532c38632
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
trc.taboola.com/1344021/trc/3/json?tim=1666867886347&data=%7B%22id%22%3A216%2C%22ii%22%3A%22%2Fname%2F38ga%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1666867886341%2C%22cv%22%3A%2220221023-7-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dsquadhelp%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1666867886347%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A29%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.85.44200 OK 1.8 kB URL HTTP/2 trc.taboola.com/1344021/trc/3/json?tim=1666867886347&data=%7B%22id%22%3A216%2C%22ii%22%3A%22%2Fname%2F38ga%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1666867886341%2C%22cv%22%3A%2220221023-7-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dsquadhelp%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1666867886347%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A29%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.85.44:0
Hash d1cb36d1f27cd709f47a0d686aac86db
a309d350c26f90300279edcab81c87ac49d1df50
18a9f34b8584717988f4e80a17bd4718e03d416e360baeb358a484bf96646a20
GET /1344021/trc/3/json?tim=1666867886347&data=%7B%22id%22%3A216%2C%22ii%22%3A%22%2Fname%2F38ga%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1666867886341%2C%22cv%22%3A%2220221023-7-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dsquadhelp%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1666867886347%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A29%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Thu, 27 Oct 2022 10:51:27 GMT
via: 1.1 varnish
x-served-by: cache-bma1632-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666867887.408585,VS0,VE103
vary: Accept-Encoding
x-vcl-time-ms: 103
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=bbfa8308-df98-429b-8829-911214582007&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=c99faf06-b9c5-4001-889a-cfaaa25295ee&tw_document_href=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.27
104.244.42.67200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=bbfa8308-df98-429b-8829-911214582007&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=c99faf06-b9c5-4001-889a-cfaaa25295ee&tw_document_href=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.27
IP 104.244.42.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=bbfa8308-df98-429b-8829-911214582007&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=c99faf06-b9c5-4001-889a-cfaaa25295ee&tw_document_href=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.27 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 10:51:27 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_05eDTnKthziE+Afl7z/u5g=="; Max-Age=63072000; Expires=Sat, 26 Oct 2024 10:51:27 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 0a1581fa40f68a04
strict-transport-security: max-age=631138519
x-response-time: 108
x-connection-hash: 1119d9de544a9a9be92cfbad24f2703104d19a760ff510847a969fd28b2627de
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ce5d09bafa968f66bc7828927cb90e05
d6445e57629d1fcb89ac2fefdc5071cf82f71a59
e6b4e02dcd04a13ac1c6ce72819b8f20b1b5555a516151264b9a685532c38632
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
px.ads.linkedin.com/collect?v=2&fmt=js&pid=34987&time=1666867886390&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=34987&time=1666867886390&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=34987&time=1666867886390&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34987%26time%3D1666867886390%26url%3Dhttps%253A%252F%252Fwww.domains168.com%252Fname%252F38ga.com%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQIV8NUs_STa7AAAAYQZEX3q0gIt3dOSrzEiN1PcTALNoCFwxZxAM4nA-mPMTXV_w7ImleC_2V_3qQ; Max-Age=2592000; Expires=Sat, 26 Nov 2022 10:51:27 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQIvXduCefA7IQAAAYQZEX3r4oF6xEV6Zy3dtq0lL56kpjKWWu5eUW1G8zSYlnY66FFZDSBkNLRdAO5_xruUnA; Max-Age=2592000; Expires=Sat, 26 Nov 2022 10:51:27 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&eef95fb2-27ee-429f-820d-b8173533e994"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 27-Oct-2023 10:51:27 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2366:u=1:x=1:i=1666867887:t=1666954287:v=2:sig=AQE0x2juXMhgmHHxgOEu2UEdGdki-4VH"; Expires=Fri, 28 Oct 2022 10:51:27 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXsAexTutMnEdLBBWAfTA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 62C7996044CB4446AE84DB8FE6C41C6E Ref B: OSL30EDGE0511 Ref C: 2022-10-27T10:51:27Z
date: Thu, 27 Oct 2022 10:51:26 GMT
content-length: 0
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=776488579087398&ev=ViewContent&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&rl=&if=false&ts=1666867886864&cd[content_type]=product&cd[content_ids]=%5B%221834699%22%5D&cd[value]=388&cd[currency]=USD&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1666867886860.1351042361&it=1666867886327&coo=false&tm=1&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=776488579087398&ev=ViewContent&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&rl=&if=false&ts=1666867886864&cd[content_type]=product&cd[content_ids]=%5B%221834699%22%5D&cd[value]=388&cd[currency]=USD&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1666867886860.1351042361&it=1666867886327&coo=false&tm=1&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=776488579087398&ev=ViewContent&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&rl=&if=false&ts=1666867886864&cd[content_type]=product&cd[content_ids]=%5B%221834699%22%5D&cd[value]=388&cd[currency]=USD&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1666867886860.1351042361&it=1666867886327&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 27 Oct 2022 10:51:27 GMT
X-Firefox-Spdy: h2
www.google.no/pagead/1p-conversion/1030947153/?random=1666867886358&cv=9&fst=1666867886358&num=1&value=0&label=DP_eCJK8xO0BENGCzOsD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&bttype=purchase&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0
142.250.74.3200 OK 63 B URL HTTP/2 www.google.no/pagead/1p-conversion/1030947153/?random=1666867886358&cv=9&fst=1666867886358&num=1&value=0&label=DP_eCJK8xO0BENGCzOsD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&bttype=purchase&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP 142.250.74.3:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/1030947153/?random=1666867886358&cv=9&fst=1666867886358&num=1&value=0&label=DP_eCJK8xO0BENGCzOsD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&auid=1953547515.1666867885&hn=www.google.com&bttype=purchase&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.domains168.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 27 Oct 2022 10:51:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=776488579087398&ev=WLM_Page_Visitors&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&rl=&if=false&ts=1666867886872&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmSimo-GTM-WebTemplate&ec=4&o=30&fbp=fb.1.1666867886860.1351042361&it=1666867886327&coo=false&tm=2&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=776488579087398&ev=WLM_Page_Visitors&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&rl=&if=false&ts=1666867886872&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmSimo-GTM-WebTemplate&ec=4&o=30&fbp=fb.1.1666867886860.1351042361&it=1666867886327&coo=false&tm=2&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=776488579087398&ev=WLM_Page_Visitors&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&rl=&if=false&ts=1666867886872&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmSimo-GTM-WebTemplate&ec=4&o=30&fbp=fb.1.1666867886860.1351042361&it=1666867886327&coo=false&tm=2&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 27 Oct 2022 10:51:27 GMT
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1030947153/?random=1666867886365&cv=9&fst=1666864800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaq0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&async=1&fmt=3&is_vtc=1&random=3346419370&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1030947153/?random=1666867886365&cv=9&fst=1666864800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaq0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&async=1&fmt=3&is_vtc=1&random=3346419370&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1030947153/?random=1666867886365&cv=9&fst=1666864800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaq0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&async=1&fmt=3&is_vtc=1&random=3346419370&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 27 Oct 2022 10:51:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1030947153/?random=1666867886362&cv=9&fst=1666864800000&num=1&label=47aTCPrYo9kBENGCzOsD&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&async=1&fmt=3&is_vtc=1&random=3208761736&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1030947153/?random=1666867886362&cv=9&fst=1666864800000&num=1&label=47aTCPrYo9kBENGCzOsD&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&async=1&fmt=3&is_vtc=1&random=3208761736&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1030947153/?random=1666867886362&cv=9&fst=1666864800000&num=1&label=47aTCPrYo9kBENGCzOsD&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&async=1&fmt=3&is_vtc=1&random=3208761736&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 27 Oct 2022 10:51:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1030947153/?random=1666867886363&cv=9&fst=1666864800000&num=1&label=UV3OCIvRm9oBENGCzOsD&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&async=1&fmt=3&is_vtc=1&random=104796524&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1030947153/?random=1666867886363&cv=9&fst=1666864800000&num=1&label=UV3OCIvRm9oBENGCzOsD&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&async=1&fmt=3&is_vtc=1&random=104796524&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1030947153/?random=1666867886363&cv=9&fst=1666864800000&num=1&label=UV3OCIvRm9oBENGCzOsD&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&async=1&fmt=3&is_vtc=1&random=104796524&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 27 Oct 2022 10:51:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=776488579087398&ev=PageView&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&rl=&if=false&ts=1666867886870&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmSimo-GTM-WebTemplate&ec=3&o=30&fbp=fb.1.1666867886860.1351042361&it=1666867886327&coo=false&tm=1&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=776488579087398&ev=PageView&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&rl=&if=false&ts=1666867886870&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmSimo-GTM-WebTemplate&ec=3&o=30&fbp=fb.1.1666867886860.1351042361&it=1666867886327&coo=false&tm=1&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=776488579087398&ev=PageView&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&rl=&if=false&ts=1666867886870&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmSimo-GTM-WebTemplate&ec=3&o=30&fbp=fb.1.1666867886860.1351042361&it=1666867886327&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 27 Oct 2022 10:51:27 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=776488579087398&ev=PageView&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&rl=&if=false&ts=1666867886862&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1666867886860.1351042361&it=1666867886327&coo=false&tm=1&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=776488579087398&ev=PageView&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&rl=&if=false&ts=1666867886862&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1666867886860.1351042361&it=1666867886327&coo=false&tm=1&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=776488579087398&ev=PageView&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&rl=&if=false&ts=1666867886862&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1666867886860.1351042361&it=1666867886327&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 27 Oct 2022 10:51:27 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=776488579087398&ev=WLM_Domain_Viewers&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&rl=&if=false&ts=1666867886867&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmSimo-GTM-WebTemplate&ec=2&o=30&fbp=fb.1.1666867886860.1351042361&it=1666867886327&coo=false&tm=2&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=776488579087398&ev=WLM_Domain_Viewers&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&rl=&if=false&ts=1666867886867&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmSimo-GTM-WebTemplate&ec=2&o=30&fbp=fb.1.1666867886860.1351042361&it=1666867886327&coo=false&tm=2&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=776488579087398&ev=WLM_Domain_Viewers&dl=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&rl=&if=false&ts=1666867886867&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmSimo-GTM-WebTemplate&ec=2&o=30&fbp=fb.1.1666867886860.1351042361&it=1666867886327&coo=false&tm=2&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 27 Oct 2022 10:51:27 GMT
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1030947153/?random=1666867886355&cv=9&fst=1666864800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&data=ecomm_pagetype%3Dproduct&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&async=1&fmt=3&is_vtc=1&random=4234187348&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1030947153/?random=1666867886355&cv=9&fst=1666864800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&data=ecomm_pagetype%3Dproduct&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&async=1&fmt=3&is_vtc=1&random=4234187348&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1030947153/?random=1666867886355&cv=9&fst=1666864800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaq0&sendb=1&data=ecomm_pagetype%3Dproduct&frm=0&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&tiba=38ga.com%20is%20for%20sale&async=1&fmt=3&is_vtc=1&random=4234187348&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 27 Oct 2022 10:51:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ce5d09bafa968f66bc7828927cb90e05
d6445e57629d1fcb89ac2fefdc5071cf82f71a59
e6b4e02dcd04a13ac1c6ce72819b8f20b1b5555a516151264b9a685532c38632
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tags.srv.stackadapt.com/sa.jpeg
44.199.71.207200 OK 651 B URL HTTP/1.1 tags.srv.stackadapt.com/sa.jpeg
IP 44.199.71.207:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1x1, components 3\012- data
Hash 1a138f92cbd3cf920a6ba39c1de2f8ed
8098e0e15a5db3483f5c77a8b5fd519c729cde0e
3e2ceb4c1eeb6cfac8ba6472b423996a3b25a1f0e0a1bfc50786d64ea078dab2
GET /sa.jpeg HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.domains168.com/
Origin: https://www.domains168.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: only-if-cached, no-transform, private, max-age=7776000
Content-Type: image/jpeg
Date: Thu, 27 Oct 2022 10:51:27 GMT
Content-Length: 651
Connection: keep-alive
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34987%26time%3D1666867886390%26url%3Dhttps%253A%252F%252Fwww.domains168.com%252Fname%252F38ga.com%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34987%26time%3D1666867886390%26url%3Dhttps%253A%252F%252Fwww.domains168.com%252Fname%252F38ga.com%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34987%26time%3D1666867886390%26url%3Dhttps%253A%252F%252Fwww.domains168.com%252Fname%252F38ga.com%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.domains168.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=34987&time=1666867886390&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&54e0313e-44f5-41bb-8a5e-22c410120c15"; Domain=.linkedin.com; Expires=Fri, 27-Oct-2023 10:51:27 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2022102710512714cf24db-3b26-495f-836b-794f50e1a489AQFsXcXSa-G4jFbhP2htSzJQSrs24N05"; Domain=.www.linkedin.com; Expires=Fri, 27-Oct-2023 10:51:27 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjY4Njc4ODc7MjswMjF+bX71oqJTnOMT1t65UcuDWyhrEeBM44GhmgpdZwZbbg==; Domain=.linkedin.com; Expires=Tue, 25 Apr 2023 10:51:27 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2417:u=1:x=1:i=1666867887:t=1666954287:v=2:sig=AQESrCH8_c2Nn338p5LIlXwYNp_J7f0b"; Expires=Fri, 28 Oct 2022 10:51:27 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com *.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXsAexXYUagOn95u028xw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 40020C5DA59047B9A54C37972A27B526 Ref B: OSL30EDGE0511 Ref C: 2022-10-27T10:51:27Z
date: Thu, 27 Oct 2022 10:51:27 GMT
content-length: 0
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/saq_pxl?uid=tMfPTakOcQhbY9oPuRxQ5Q&is_js=true&landing_url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&t=38ga.com%20is%20for%20sale&tip=zlTfYyAc5DRJzo8U_p93vkbppDXUrQnHnODu4Z2ukK8&host=https://www.domains168.com&sa-user-id-v2=s%253A0-581a55ad-2516-4347-6aa0-9bed141288ca%2524ip%252491.90.42.154.J7BRE9Y7SpN1OSGoEdHydonrfrohydTBFRjhB%252BIkSZY&sa-user-id=s%253A0-581a55ad-2516-4347-6aa0-9bed141288ca.lnDG4hZWRFvSR3ArjvawXBQ9AbOlFM3YJX%252Bc8SaqpOA
44.199.71.207200 OK 94 B URL HTTP/1.1 tags.srv.stackadapt.com/saq_pxl?uid=tMfPTakOcQhbY9oPuRxQ5Q&is_js=true&landing_url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&t=38ga.com%20is%20for%20sale&tip=zlTfYyAc5DRJzo8U_p93vkbppDXUrQnHnODu4Z2ukK8&host=https://www.domains168.com&sa-user-id-v2=s%253A0-581a55ad-2516-4347-6aa0-9bed141288ca%2524ip%252491.90.42.154.J7BRE9Y7SpN1OSGoEdHydonrfrohydTBFRjhB%252BIkSZY&sa-user-id=s%253A0-581a55ad-2516-4347-6aa0-9bed141288ca.lnDG4hZWRFvSR3ArjvawXBQ9AbOlFM3YJX%252Bc8SaqpOA
IP 44.199.71.207:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2d12c1129f6ff37622d03db4a2a5949e
bc44653c4a06e671ce423600755fed86fad8ec24
078f3dd88e751c3c421b2007e1cb27bcb65a95daf278bd25de81ba7b2bf3c4e4
GET /saq_pxl?uid=tMfPTakOcQhbY9oPuRxQ5Q&is_js=true&landing_url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&t=38ga.com%20is%20for%20sale&tip=zlTfYyAc5DRJzo8U_p93vkbppDXUrQnHnODu4Z2ukK8&host=https://www.domains168.com&sa-user-id-v2=s%253A0-581a55ad-2516-4347-6aa0-9bed141288ca%2524ip%252491.90.42.154.J7BRE9Y7SpN1OSGoEdHydonrfrohydTBFRjhB%252BIkSZY&sa-user-id=s%253A0-581a55ad-2516-4347-6aa0-9bed141288ca.lnDG4hZWRFvSR3ArjvawXBQ9AbOlFM3YJX%252Bc8SaqpOA HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: https://www.domains168.com
Content-Type: text/plain; charset=utf-8
Date: Thu, 27 Oct 2022 10:51:27 GMT
Content-Length: 94
Connection: keep-alive
px.ads.linkedin.com/collect?v=2&fmt=js&pid=34987&time=1666867886390&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=34987&time=1666867886390&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=34987&time=1666867886390&url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.domains168.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&4b2006aa-803d-4827-882c-2ac09acdc59f"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 27-Oct-2023 10:51:27 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2406:u=1:x=1:i=1666867887:t=1666954287:v=2:sig=AQGZ7D1RCe4sjgUxADmF54sHfnWFKp0m"; Expires=Fri, 28 Oct 2022 10:51:27 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXsAexZ1Hp7PVShOLfoOQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 2E5A24F7ECD246768A7D037F3E10951F Ref B: OSL30EDGE0511 Ref C: 2022-10-27T10:51:27Z
date: Thu, 27 Oct 2022 10:51:27 GMT
content-length: 0
X-Firefox-Spdy: h2
widget.intercom.io/widget/ld9mkn53
54.230.111.53302 Found 0 B URL HTTP/2 widget.intercom.io/widget/ld9mkn53
IP 54.230.111.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/ld9mkn53 HTTP/1.1
Host: widget.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
location: https://js.intercomcdn.com/shim.latest.js
date: Tue, 18 Oct 2022 14:14:45 GMT
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: unRJ-LryIPerCUi83DVWd48YG3dsdZwBXXpJEP7sidCOe1axcp6z2w==
age: 765404
cache-control: max-age=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
IP 142.250.74.35:0
Hash 882b7a1aec6409327298db754aa66cfd
a74c977588b254ed28369b9f7c155f694330da4e
768ffea0d4df2ca56bbd505779e914c02008d3c85a00781ca0fc093256b457ef
POST /s/gts1d4/QNGijQL5IyE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:28 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
IP 142.250.74.35:0
Hash 882b7a1aec6409327298db754aa66cfd
a74c977588b254ed28369b9f7c155f694330da4e
768ffea0d4df2ca56bbd505779e914c02008d3c85a00781ca0fc093256b457ef
POST /s/gts1d4/QNGijQL5IyE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:28 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.intercomcdn.com/shim.latest.js
143.204.55.3200 OK 6.2 kB URL HTTP/2 js.intercomcdn.com/shim.latest.js
IP 143.204.55.3:0
File type Unicode text, UTF-8 text, with very long lines (18920), with no line terminators
Hash 416b58970257de4cbfa2cb17112c693f
d86904b6bf5ea57a0fa0674499c394e3a50b7f6e
07d8427a16b6d9d0352b03287ab8c58c78696e801ddd590e5abae809f85a0ab1
GET /shim.latest.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.domains168.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 6173
last-modified: Thu, 27 Oct 2022 08:36:15 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: KymxSDaWcpyauGsxs5NQJLyR0tCrFRIU
accept-ranges: bytes
server: AmazonS3
date: Thu, 27 Oct 2022 10:46:31 GMT
cache-control: max-age=300, s-maxage=300, public
etag: "416b58970257de4cbfa2cb17112c693f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: cDTCBouX5oQ_0ib_kX33dblcxNGVuuW-KkRPRpoO3Kbhlx5cjoRQPA==
age: 298
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.intercomcdn.com/frame.3ed73866.js
143.204.55.3200 OK 135 kB URL HTTP/2 js.intercomcdn.com/frame.3ed73866.js
IP 143.204.55.3:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 135 kB (135108 bytes)
Hash 4ad8dbed89f979cd8fb2dbd3f721f27f
497ce5491d2ea8d7208e9b1411197099b7079818
e6eb19f7f37d12bec8101259a4bddd9b46a4cf5d82d3635891b9b2953706198a
GET /frame.3ed73866.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 135108
last-modified: Thu, 27 Oct 2022 08:34:43 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: vG9xCo3X9xazpmRpDgy..5HE6p3_J4_S
accept-ranges: bytes
server: AmazonS3
date: Thu, 27 Oct 2022 10:36:16 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "4ad8dbed89f979cd8fb2dbd3f721f27f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: w3ys_gl_NoLtLBHCmFz3NWcKCX0pGFUS9YcF1XCppQQt_h3quR0h_w==
age: 912
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-test-impression?beacon=1
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-test-impression?beacon=1
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-test-impression?beacon=1 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Thu, 27 Oct 2022 10:51:28 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 05416d6b760afc50887d760b27393c64
630faecf1d2c1cc4c5506b49b34b99fe571e6c47
1147e5543fbc1294ef026a9824ef68dfbf4570065624dc63b93a6549f391da6f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=107148
Date: Thu, 27 Oct 2022 10:51:28 GMT
Etag: "635952c9-1d7"
Expires: Fri, 28 Oct 2022 16:37:16 GMT
Last-Modified: Wed, 26 Oct 2022 15:31:21 GMT
Server: ECS (dcb/7F14)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IQZ01TIfhtNOTwWr2joX8VgC5RxEI2DaHfzDgrALE1Ia7s8K_3iXhQ==
Age: 3955
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=66112e7a198ed38d85acd2f657f98f3cd0014fe21666867886
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=66112e7a198ed38d85acd2f657f98f3cd0014fe21666867886
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=66112e7a198ed38d85acd2f657f98f3cd0014fe21666867886 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1479
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Thu, 27 Oct 2022 10:51:28 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
IP 142.250.74.35:0
Hash 882b7a1aec6409327298db754aa66cfd
a74c977588b254ed28369b9f7c155f694330da4e
768ffea0d4df2ca56bbd505779e914c02008d3c85a00781ca0fc093256b457ef
POST /s/gts1d4/QNGijQL5IyE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:28 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash d3031c49011156f3b8e81228612c60f6
6d9bdf53b6c4555d5a4c76c19a8e89a26e78b5f1
52d81a9cd17dadd472d5e7a0d5309a7124b7da6a8ba473465d41d132b5379606
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=90368
Date: Thu, 27 Oct 2022 10:51:28 GMT
Etag: "635910b0-1d7"
Expires: Fri, 28 Oct 2022 11:57:36 GMT
Last-Modified: Wed, 26 Oct 2022 10:49:20 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: csjaSBtqks2BCRsUmPXJ-InLE5wNlCUDDi9nV3etvgHq7_vrlH6SHQ==
Age: 4096
js-agent.newrelic.com/nr-1216.min.js
151.101.86.137200 OK 14 kB URL HTTP/2 js-agent.newrelic.com/nr-1216.min.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (32022)
Hash b7c09cc097b2847f9edc784adba62dcb
5aa648623cf5e3b4b215fe5d068a7904c59f2925
6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa
GET /nr-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Vf9xsFZHH0UI6bmTnW+KeBzegICGOxvtMLIWtbljNKoJtdkUEk/MfmbYPFui+bgtiUf/4lC5dk8=
x-amz-request-id: 4AV5AVKCCR961CNG
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "9f533d8cd24b2c5e3b4dc886ecbd43e8"
x-amz-version-id: mHHzJIqOizHibcYt0xqAszRr0gQRiNYy
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 27 Oct 2022 10:51:28 GMT
via: 1.1 varnish
x-served-by: cache-bma1661-BMA
x-cache: HIT
x-cache-hits: 1642
x-timer: S1666867888.330501,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 14391
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 730e9fbda51fc507bc33dfdb2efe1000
3c40cb056f8f46abf5b0cd73183ef4dc8816b5f7
f2a02d2a1aa1bdcc5feb7d723d1f0f438b2ab5d886fb686981fb96d94eca01b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3921
Cache-Control: max-age=128698
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 10:51:28 GMT
Etag: "6359a719-1d7"
Expires: Fri, 28 Oct 2022 22:36:26 GMT
Last-Modified: Wed, 26 Oct 2022 21:31:05 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
script.fixel.ai/config/FXL-1150-2383.json
54.230.111.89200 OK 0 B URL HTTP/2 script.fixel.ai/config/FXL-1150-2383.json
IP 54.230.111.89:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /config/FXL-1150-2383.json HTTP/1.1
Host: script.fixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.domains168.com/
Origin: https://www.domains168.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Thu, 27 Oct 2022 10:51:29 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LFZednBjTWsIhA9l6zLjbuU8MBIvcYTRu-vV7dL0St82K7bq1iKgXA==
X-Firefox-Spdy: h2
trc-events.taboola.com/1344021/log/3/unip?en=pre_d_eng_tb&tos=1628&scd=29&ssd=1&est=1666867886343&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1666867887974&vi=1666867886341&ri=f093a01335f660f2b385efa674ccc36b&ref=null&cv=20221023-7-RELEASE&item-url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1344021/log/3/unip?en=pre_d_eng_tb&tos=1628&scd=29&ssd=1&est=1666867886343&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1666867887974&vi=1666867886341&ri=f093a01335f660f2b385efa674ccc36b&ref=null&cv=20221023-7-RELEASE&item-url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1344021/log/3/unip?en=pre_d_eng_tb&tos=1628&scd=29&ssd=1&est=1666867886343&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1666867887974&vi=1666867886341&ri=f093a01335f660f2b385efa674ccc36b&ref=null&cv=20221023-7-RELEASE&item-url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 27 Oct 2022 10:51:28 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.domains168.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
script.fixel.ai/config/FXL-1150-2383.json
54.230.111.89200 OK 152 B URL HTTP/2 script.fixel.ai/config/FXL-1150-2383.json
IP 54.230.111.89:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 651a6d3ba7143f83f44261232093a38c
43e11c4cc441663daf605df0414947c8756f2155
7a5cfb625e89e99af010b95040c9b9fdd6f518b9b87da64206c00fbb120933d1
GET /config/FXL-1150-2383.json HTTP/1.1
Host: script.fixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 152
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Mon, 01 Feb 2021 10:13:36 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: VlbH.UIcLlGlg9QOIym1wMb.PKZS9R_3
accept-ranges: bytes
server: AmazonS3
date: Thu, 27 Oct 2022 10:51:29 GMT
etag: "651a6d3ba7143f83f44261232093a38c"
vary: Origin
x-cache: RefreshHit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IDluUiMSxAsjumu0kwrHYpb-V6Isge64bLs7Pg-bquDBclHxFqjVlQ==
X-Firefox-Spdy: h2
bam.nr-data.net/1/a159e7928d?a=126710130&v=1216.487a282&to=Y1NTZ0ZUDUVRUkZbVloZZEFdGk0cQFlC&rst=4892&ck=1&ref=https://www.domains168.com/name/38ga.com&ap=93&be=1772&fe=4517&dc=2775&perf=%7B%22timing%22:%7B%22of%22:1666867882807,%22n%22:0,%22f%22:1051,%22dn%22:1053,%22dne%22:1090,%22c%22:1090,%22s%22:1194,%22ce%22:1408,%22rq%22:1408,%22rp%22:1650,%22rpe%22:1751,%22dl%22:1759,%22di%22:2696,%22ds%22:2774,%22de%22:2787,%22dc%22:4515,%22l%22:4516,%22le%22:4520%7D,%22navigation%22:%7B%7D%7D&fcp=2394&at=TxRQEQ5OHks%3D&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/a159e7928d?a=126710130&v=1216.487a282&to=Y1NTZ0ZUDUVRUkZbVloZZEFdGk0cQFlC&rst=4892&ck=1&ref=https://www.domains168.com/name/38ga.com&ap=93&be=1772&fe=4517&dc=2775&perf=%7B%22timing%22:%7B%22of%22:1666867882807,%22n%22:0,%22f%22:1051,%22dn%22:1053,%22dne%22:1090,%22c%22:1090,%22s%22:1194,%22ce%22:1408,%22rq%22:1408,%22rp%22:1650,%22rpe%22:1751,%22dl%22:1759,%22di%22:2696,%22ds%22:2774,%22de%22:2787,%22dc%22:4515,%22l%22:4516,%22le%22:4520%7D,%22navigation%22:%7B%7D%7D&fcp=2394&at=TxRQEQ5OHks%3D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/a159e7928d?a=126710130&v=1216.487a282&to=Y1NTZ0ZUDUVRUkZbVloZZEFdGk0cQFlC&rst=4892&ck=1&ref=https://www.domains168.com/name/38ga.com&ap=93&be=1772&fe=4517&dc=2775&perf=%7B%22timing%22:%7B%22of%22:1666867882807,%22n%22:0,%22f%22:1051,%22dn%22:1053,%22dne%22:1090,%22c%22:1090,%22s%22:1194,%22ce%22:1408,%22rq%22:1408,%22rp%22:1650,%22rpe%22:1751,%22dl%22:1759,%22di%22:2696,%22ds%22:2774,%22de%22:2787,%22dc%22:4515,%22l%22:4516,%22le%22:4520%7D,%22navigation%22:%7B%7D%7D&fcp=2394&at=TxRQEQ5OHks%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 27 Oct 2022 10:51:29 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 760ae06fbf4fb500-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=f9721de672b570f; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 60920f00cad9d9e60a509024dc3fd0f8
b6f191e8b225c92d74013112545c734348485a47
459c62ffb4af147d616d8d968d10c5ecaa91ffcb8a5853af324bd94541788817
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=98104
Date: Thu, 27 Oct 2022 10:51:29 GMT
Etag: "63593ee9-1d7"
Expires: Fri, 28 Oct 2022 14:06:33 GMT
Last-Modified: Wed, 26 Oct 2022 14:06:33 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mCrtTU3ylHb-pLagkMb4Ag1unnNTLkPKk6YgvJ4MV_pgiAg0haJ7cQ==
api.fixelapp.com/api/v2/grade/FXL-1150-2383
52.87.6.29503 Service Unavailable: Back-end server is at capacity 0 B URL HTTP/1.1 api.fixelapp.com/api/v2/grade/FXL-1150-2383
IP 52.87.6.29:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/grade/FXL-1150-2383 HTTP/1.1
Host: api.fixelapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 397
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 503 Service Unavailable: Back-end server is at capacity
Content-Length: 0
Connection: keep-alive
nexus-websocket-a.intercom.io/pubsub/5-Bo4LrqdA4OUzpn-2CgLlyPTCztEsLZzfENyt7M9fTyBD6JI2V08MK_mewHkd3GzBDk5i3w2nYG2qwrQcl5ABrRI6Oqb4S7f9uJYu?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined
34.237.73.95101 Switching Protocols 0 B URL HTTP/1.1 nexus-websocket-a.intercom.io/pubsub/5-Bo4LrqdA4OUzpn-2CgLlyPTCztEsLZzfENyt7M9fTyBD6JI2V08MK_mewHkd3GzBDk5i3w2nYG2qwrQcl5ABrRI6Oqb4S7f9uJYu?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined
IP 34.237.73.95:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pubsub/5-Bo4LrqdA4OUzpn-2CgLlyPTCztEsLZzfENyt7M9fTyBD6JI2V08MK_mewHkd3GzBDk5i3w2nYG2qwrQcl5ABrRI6Oqb4S7f9uJYu?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined HTTP/1.1
Host: nexus-websocket-a.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.domains168.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vMAbtVkGuURb9AdnnPi44w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Thu, 27 Oct 2022 10:51:29 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: P7I0zHyL5Z+19X0aztGYYx87I6Y=
api.fixelapp.com/api/v2/grade/FXL-1150-2383
52.87.6.29503 Service Unavailable: Back-end server is at capacity 0 B URL HTTP/1.1 api.fixelapp.com/api/v2/grade/FXL-1150-2383
IP 52.87.6.29:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/grade/FXL-1150-2383 HTTP/1.1
Host: api.fixelapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 187
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 503 Service Unavailable: Back-end server is at capacity
Content-Length: 0
Connection: keep-alive
trc-events.taboola.com/1344021/log/3/unip?en=pre_d_eng_tb&tos=4629&scd=29&ssd=1&est=1666867886343&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1666867890975&vi=1666867886341&ri=f093a01335f660f2b385efa674ccc36b&ref=null&cv=20221023-7-RELEASE&item-url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1344021/log/3/unip?en=pre_d_eng_tb&tos=4629&scd=29&ssd=1&est=1666867886343&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1666867890975&vi=1666867886341&ri=f093a01335f660f2b385efa674ccc36b&ref=null&cv=20221023-7-RELEASE&item-url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1344021/log/3/unip?en=pre_d_eng_tb&tos=4629&scd=29&ssd=1&est=1666867886343&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1666867890975&vi=1666867886341&ri=f093a01335f660f2b385efa674ccc36b&ref=null&cv=20221023-7-RELEASE&item-url=https%3A%2F%2Fwww.domains168.com%2Fname%2F38ga.com HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 27 Oct 2022 10:51:31 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.domains168.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
js.chargebee.com/v2/131-b063266670f64066fce4.js
143.204.55.121200 OK 0 B URL HTTP/2 js.chargebee.com/v2/131-b063266670f64066fce4.js
IP 143.204.55.121:0
GET /v2/131-b063266670f64066fce4.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-8c2e693bf01b264eaca0ecd2143123c9.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Fri, 21 Oct 2022 07:08:51 GMT
x-amz-version-id: ilESot8TExL0tTH7XlanqYJ4mDD88dDH
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Thu, 27 Oct 2022 10:49:43 GMT
cache-control: max-age=300,public
etag: W/"7135eb62df8b436ac4ebe9e9f927da45"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vdSbkRlt6RHrwXCqBM8lIyfk-Fpez1sP3bbEphNuRHJtWfrxjWg8Rg==
age: 149
X-Firefox-Spdy: h2
www.squadhelp.com/name/38ga?lp=d
172.67.31.58302 Found 0 B URL HTTP/2 www.squadhelp.com/name/38ga?lp=d
IP 172.67.31.58:0
GET /name/38ga?lp=d HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Thu, 27 Oct 2022 10:51:24 GMT
content-type: text/html; charset=UTF-8
location: https://www.domains168.com/name/38ga.com
endpoint: sh-live-next
cf-cache-status: BYPASS
set-cookie: __cf_bm=iyDkzdSqfq2C9of8byapBht9JmH_vU3UkOtKJQ3RhAA-1666867884-0-Ae/croSB6emXWooJmehckRtQ8E+Vg+bQewPD2KuWfgLpX/4diWHNG3taS7rCYwjkfpb08ocEuNlD5Pl+4UMNtRs=; path=/; expires=Thu, 27-Oct-22 11:21:24 GMT; domain=.squadhelp.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 760ae052c9820b31-OSL
X-Firefox-Spdy: h2
js.chargebee.com/v2/115-94b9b381e1334549cd23.js
143.204.55.121200 OK 0 B URL HTTP/2 js.chargebee.com/v2/115-94b9b381e1334549cd23.js
IP 143.204.55.121:0
GET /v2/115-94b9b381e1334549cd23.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Fri, 21 Oct 2022 07:08:51 GMT
x-amz-version-id: vzIYic48mt9RJIJBJfS80xtVZNfNpshL
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Thu, 27 Oct 2022 10:49:39 GMT
cache-control: max-age=300,public
etag: W/"e7b13e901e0743221b1a8c7a9a898814"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: g4tv_yXkclpfEcTUI8OqaPgZ0F3XRs0o-Zopax7opbAMEoep6fDT9Q==
age: 109
X-Firefox-Spdy: h2
js.chargebee.com/v2/chargebee.js
143.204.55.121200 OK 0 B URL HTTP/2 js.chargebee.com/v2/chargebee.js
IP 143.204.55.121:0
GET /v2/chargebee.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Fri, 21 Oct 2022 07:08:51 GMT
x-amz-version-id: eaW0kKYdOWyMWBjzKkfPY5MwzUn1lwx4
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Thu, 27 Oct 2022 10:49:24 GMT
cache-control: max-age=300,public
etag: W/"52b88d2d6447c88587edf93bbb5f644e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: e5NHjCN3UkHf6leEvdu-BpQejY8ruzgLGHLkdLyKTeRtMx4kP8ewGA==
age: 123
X-Firefox-Spdy: h2
api-iam.intercom.io/messenger/web/ping
52.73.20.67200 OK 0 B URL HTTP/2 api-iam.intercom.io/messenger/web/ping
IP 52.73.20.67:0
POST /messenger/web/ping HTTP/1.1
Host: api-iam.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 372
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 10:51:29 GMT
content-type: application/json; charset=utf-8
status: 200 OK
cache-control: max-age=0, private, must-revalidate
x-ratelimit-limit: 13333
x-ratelimit-reset: 1666867890
strict-transport-security: max-age=31556952; includeSubDomains; preload
x-ratelimit-remaining: 13312
access-control-allow-origin: https://www.domains168.com
vary: Accept,Accept-Encoding
x-intercom-version: 473f5bd632fb476057eb6506656891aa19bd8aa9
x-xss-protection: 1; mode=block
content-encoding: gzip
x-request-id: 0002d1r1c8gkgm18jjhg
access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, OPTIONS
etag: W/"debda2120ef4ea99efc17697a3d5765a"
x-runtime: 0.409372
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
server: nginx
x-ami-version: ami-08f1d945aaedd67f8
X-Firefox-Spdy: h2
js.chargebee.com/v2/127-2f68758a8df1427ea963.js
143.204.55.121200 OK 0 B URL HTTP/2 js.chargebee.com/v2/127-2f68758a8df1427ea963.js
IP 143.204.55.121:0
GET /v2/127-2f68758a8df1427ea963.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-8c2e693bf01b264eaca0ecd2143123c9.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Fri, 21 Oct 2022 07:08:51 GMT
x-amz-version-id: gEJkDrhWp0HEJqX6H7da0.UXKTLG.r56
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Thu, 27 Oct 2022 10:49:43 GMT
cache-control: max-age=300,public
etag: W/"91e22096cb25c1fe2b0630794520681a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rB4H1CJXgAjWgNitll41wqAlnNgqlaawv_dO2h7TAFLQf1fxn6ItCg==
age: 105
X-Firefox-Spdy: h2
js.intercomcdn.com/vendor.c4b36b3c.js
143.204.55.3200 OK 0 B URL HTTP/2 js.intercomcdn.com/vendor.c4b36b3c.js
IP 143.204.55.3:0
GET /vendor.c4b36b3c.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 108105
last-modified: Wed, 26 Oct 2022 09:25:55 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: oXSY66Av1KU1bxu2cDxVCYsyD9rbbhtf
accept-ranges: bytes
server: AmazonS3
date: Thu, 27 Oct 2022 09:27:22 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "8d9ba0ab99e1bba099ffdacbcf65b54d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: RKDnXshk9OdAd7WaFUu8QTYSFZojHCrHRo5DnzuBW_g9gZ-HMI0KMQ==
age: 5047
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
IP 104.18.10.207:0
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.domains168.com
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 10:51:25 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/20/2022 02:32:25
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 2474ff8541a7bb98ea3e85dd8fb0754a
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 760ae05c8bd4b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.fontawesome.com/ffb2deb018.js
172.64.133.15200 OK 0 B URL HTTP/2 use.fontawesome.com/ffb2deb018.js
IP 172.64.133.15:0
GET /ffb2deb018.js HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 10:51:25 GMT
content-type: text/javascript
x-amz-id-2: 4GgQIUyOS935hAaHkKDu7fcEApbkL0cWehhqXtc5P7uAqwSulLhNGCT6xB/rOMDxSqhCiFgKfBw=
x-amz-request-id: ARY71BHAQ5HVP5T1
last-modified: Thu, 01 Jul 2021 20:48:21 GMT
etag: W/"df7c620f9707f9feebbd5726d119d44d"
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XNRktH0eAlU2ZNNLSWN38ATH%2Ffj3zM0O6RMlSQodQ4ZYH9ej3pC%2B%2BmKrmaMBOitZ%2F1%2Ffkel6LKEC9SDgNuwBHCjxRIZLOI5FO9oR35sg%2Bpjl%2BBbdT15QC6JVKo%2BGDDZeiAh0GsY3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760ae05cbcfa774a-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
script.fixel.ai/script/Fixel.min.js
54.230.111.89200 OK 0 B URL HTTP/2 script.fixel.ai/script/Fixel.min.js
IP 54.230.111.89:0
GET /script/Fixel.min.js HTTP/1.1
Host: script.fixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.domains168.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 31 May 2021 09:44:32 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: qn3ku6T2KTYfiw1ZK.qbHtFFDfyG1XJc
server: AmazonS3
content-encoding: gzip
date: Thu, 27 Oct 2022 10:51:28 GMT
etag: W/"bd757ff2fd05d44091740f66680801be"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: umaCy_70e066bv8Umul-ywy8ZcxsavKxjIJoXy-Cvc0qzYp5LURjuw==
age: 455
X-Firefox-Spdy: h2