Report - blog.tugo.com

Report Overview

Submitted URL
blog.tugo.com
IP
162.159.134.42
ASN
#13335 CLOUDFLARENET
Submitted
2022-11-30 18:56:48
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	9.7 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.1 kB	8.4 kB	142.250.74.131
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	382 B	44 kB	142.250.74.40
js.zohocdn.com	14060	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	408 B	13 kB	185.20.209.147
blog.tugo.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	788 B	1.8 kB	162.159.134.42
js-agent.newrelic.com	378	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.9 kB	17 kB	151.101.66.137
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	513 B	694 B	142.250.74.35
static.addtoany.com	4091	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	919 B	1.5 kB	104.22.71.197
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.89.136.7
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	518 B	18 kB	216.58.207.227
salesiq.zoho.com	15939	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	44 kB	136.143.191.67
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	370 B	21 kB	142.250.74.110
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	601 B	805 B	64.233.165.154
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	514 B	694 B	142.250.74.132
bam.nr-data.net	630	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	868 B	505 B	162.247.241.14
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.6 kB	93.184.220.29
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	55 kB	34.120.237.76
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.9 kB	104.18.32.68
css.zohocdn.com	15316	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	952 B	7.5 kB	185.20.209.147
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	746 B	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (30)

	URL	Size	First Seen	Last Seen
	blog.tugo.com/wp-includes/js/wp-embed.min.js?ver=5.7.8	1.4 kB	2023-03-07	2024-05-04
Pretty URL blog.tugo.com/wp-includes/js/wp-embed.min.js?ver=5.7.8 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-05-04 17:23:58 Times Seen6905 Hash 905225d5711b559d3092387d5ffbedbd 6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d 5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991 Loading...

	js-agent.newrelic.com/290.2d6a2503-1220.js	8.6 kB	2023-03-08	2023-04-10
Pretty URL js-agent.newrelic.com/290.2d6a2503-1220.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:39:22 Last Seen2023-04-10 08:37:00 Times Seen3 Hash 13898fbb4d7a1f83fc6722c4c12faf40 4be4e86a3b56733c67c789223989450b6d0ef351 e0a26a1ea9be40cca40ba8fa9085fc9114e14171022777b7e9010638cbde935b Loading...

	static.addtoany.com/menu/page.js	3.1 kB	2023-03-08	2023-03-12
Pretty URL static.addtoany.com/menu/page.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:33 Last Seen2023-03-12 21:05:42 Times Seen1 Hash ce8f01200b636efb824d18c1707fd846 b3bc0d5c0334700652cf36e2e47b7e87ba6d9a6c 5592b1f799f3bff73a1b1d87deb4a32a820db0e2dd4a561050c7f1d27116d9a1 Loading...

	blog.tugo.com/	409 B	2023-03-11	2023-03-11
Pretty URL blog.tugo.com/ IP 162.159.134.42 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:09:03 Last Seen2023-03-11 23:09:03 Times Seen1 Hash da03cd1e3fc0ea8f4e2602d589a24a7b 7abfacdfa719855f7998eacebace161af985a897 77562898bb7540e5328e69b8e9f2f963623804fe87faa76a838e4d5cf5f3e11e Loading...

	blog.tugo.com/	770 B	2023-03-11	2023-03-11
Pretty URL blog.tugo.com/ IP 162.159.134.42 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:09:03 Last Seen2023-03-11 23:09:03 Times Seen1 Hash 8f8862526fc2c402da693d64c746b6af e8934aaa99ca6ebbf28b38eab34498e3793670b7 2922c0f7afa137aaee5a78bad0af56e49c73af965a068f23f08463aab7eed98d Loading...

	js-agent.newrelic.com/768.2d6a2503-1220.js	5.6 kB	2023-03-08	2023-04-10
Pretty URL js-agent.newrelic.com/768.2d6a2503-1220.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:39:22 Last Seen2023-04-10 08:37:00 Times Seen3 Hash d6cc8b42eda6fd7734014b03b87b5787 c0e66d0f7274bbb6404012b6b57ff74333818a13 2e0409a5c07795fdd2e472e5fc8a723cf7076de849d5050966b5e2cc58741df5 Loading...

	static.addtoany.com/menu/modules/core.9b4ec89f.js	72 kB	2023-03-08	2023-03-12
Pretty URL static.addtoany.com/menu/modules/core.9b4ec89f.js IP 104.22.71.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:33 Last Seen2023-03-12 21:05:42 Times Seen1 Hash 6e87cc21fd82f2e8cc67e65b91df08ab 06a16e2cf3d75286bbb9cc072040c165e0c2d8ff b84b58bc5684e07213ce13351d3bf6b45f8fabc346f45f4a1ea17a4bbafbdd13 Loading...

	js.zohocdn.com/salesiq/js/floatbutton1_ee9d7d655e980a26fd64f927e1657cb0_.js	37 kB	2023-03-08	2023-03-11
Pretty URL js.zohocdn.com/salesiq/js/floatbutton1_ee9d7d655e980a26fd64f927e1657cb0_.js IP 185.20.209.147 ASN #41913 Computerline GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:39:49 Last Seen2023-03-11 23:16:48 Times Seen1 Hash ee9d7d655e980a26fd64f927e1657cb0 05e3deefcbd334cf3e50d48c6d4dba89b3e10464 fe2c7e2f159c2fbda2f3006c603eaac05dff2c607030947c8257dc9d9d09a240 Loading...

	bam.nr-data.net/1/53764b2d87?a=536759433&v=1220.PROD&to=NVIENRRXWREAVBBcDQwYJwISX1gMTl8LWAc%3D&rst=4619&ck=0&s=0271b6e0f4ac5136&ref=https://blog.tugo.com/&ap=283&be=1599&fe=2900&dc=1311&perf=%7B%22timing%22:%7B%22of%22:1669834596099,%22n%22:0,%22f%22:645,%22dn%22:646,%22dne%22:647,%22c%22:647,%22s%22:651,%22ce%22:861,%22rq%22:861,%22rp%22:1415,%22rpe%22:1415,%22dl%22:1424,%22di%22:2820,%22ds%22:2909,%22de%22:2913,%22dc%22:4498,%22l%22:4498,%22le%22:4502%7D,%22navigation%22:%7B%7D%7D&fcp=2914&at=GRUHQ1xNSh8%3D&jsonp=NREUM.setToken	49 B	2023-03-07	2023-05-22
Pretty URL bam.nr-data.net/1/53764b2d87?a=536759433&v=1220.PROD&to=NVIENRRXWREAVBBcDQwYJwISX1gMTl8LWAc%3D&rst=4619&ck=0&s=0271b6e0f4ac5136&ref=https://blog.tugo.com/&ap=283&be=1599&fe=2900&dc=1311&perf=%7B%22timing%22:%7B%22of%22:1669834596099,%22n%22:0,%22f%22:645,%22dn%22:646,%22dne%22:647,%22c%22:647,%22s%22:651,%22ce%22:861,%22rq%22:861,%22rp%22:1415,%22rpe%22:1415,%22dl%22:1424,%22di%22:2820,%22ds%22:2909,%22de%22:2913,%22dc%22:4498,%22l%22:4498,%22le%22:4502%7D,%22navigation%22:%7B%7D%7D&fcp=2914&at=GRUHQ1xNSh8%3D&jsonp=NREUM.setToken IP 162.247.241.14 ASN #23467 NEWRELIC-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:29 Last Seen2023-05-22 08:03:01 Times Seen332 Hash f34efd1229ae6c1fec6c67f7fa8e20f9 477f40b6d9cb8a306b0aca97462caef4ab26cb6f a83848cf5c3d96caefe490c19e41659609b3691dd4c531cf925016c084d8e1b0 Loading...

	blog.tugo.com/	2.9 kB	2023-03-11	2023-03-11
Pretty URL blog.tugo.com/ IP 162.159.134.42 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:09:03 Last Seen2023-03-11 23:09:03 Times Seen1 Hash 0f28da53290783f7a038a2f4f3e709e2 622ac51ca1fa3122546939197710fd177130ff34 8b2d5ddedd76e6aa4a2f6bf9798fd2306f525a43ac0d461be1d347455d214e82 Loading...

	www.googletagmanager.com/gtag/js?id=UA-7998416-19	112 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=UA-7998416-19 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:09:03 Last Seen2023-03-11 23:09:03 Times Seen1 Hash 3a209914349611ccbb78211ebd4a8676 1d93108f1ee2cf64005416dd8c3e2986fd17f53c 691b48490f22ee5f0bf00e209e76cb258047b388048f4f6fb78daffdb041154e Loading...

	blog.tugo.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-05-04
Pretty URL blog.tugo.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-04 19:27:15 Times Seen68967 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	salesiq.zoho.com/widget	117 kB	2023-03-08	2023-03-11
Pretty URL salesiq.zoho.com/widget IP 136.143.191.67 ASN #2639 ZOHO-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:39:49 Last Seen2023-03-11 23:16:47 Times Seen1 Hash 7dd647a722021ae99fbd054d18c1827c 5bf4bdbefe1f91ed84afdb309a39ee13fa56df98 5a34fdf0ddf6e6e068f1c645b2811f9c06d0b67fb487427a296b2303175cf6ae Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-05-04
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-05-04 19:13:00 Times Seen1637 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	js-agent.newrelic.com/552.2d6a2503-1220.js	22 kB	2023-03-08	2023-04-10
Pretty URL js-agent.newrelic.com/552.2d6a2503-1220.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:39:22 Last Seen2023-04-10 08:37:00 Times Seen6 Hash 777ac0df4dba632ad1b2955c88dd51ac bd51770555ea92df71f7d5d102dbf8cdc583abf6 2b2f88606e0e67ca512cb458ab89f1c48a1ea9109e28c7be9f925b59e478bafc Loading...

	blog.tugo.com/	33 kB	2023-03-11	2023-03-11
Pretty URL blog.tugo.com/ IP 162.159.134.42 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:09:03 Last Seen2023-03-11 23:09:03 Times Seen1 Hash a0f5c9e2628276622bc8946fa11acd35 a45acf1dbde5916d4736156ab4d654e715512c6d 956647a09b8207fddf083f39799a8795fc481a5ae65df7286ff1377183c1fe43 Loading...

	blog.tugo.com/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1	129 B	2023-03-07	2024-05-04
Pretty URL blog.tugo.com/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:19 Last Seen2024-05-04 15:22:10 Times Seen5041 Hash 5ef26b5e47e6951f43ecf2b1fc645222 081afb52577f6f3bb044fdea6d34a632c3cce7e8 50679e0e3933c945348a2db0cc128bb14b57a60a74fabf8cae13acc14efbb2e1 Loading...

	blog.tugo.com/	265 B	2023-03-11	2023-03-11
Pretty URL blog.tugo.com/ IP 162.159.134.42 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:09:03 Last Seen2023-03-11 23:09:03 Times Seen1 Hash d4a273e415b339c160ea95d5df09f49d efa27f7e6099ff5a07a87236c2c0f627a1496370 353149d91c8d6ab3d78351cd149b48ccd2d6d6da2a9ccf70f3255d4ef6a67958 Loading...

	blog.tugo.com/	342 B	2023-03-11	2023-03-11
Pretty URL blog.tugo.com/ IP 162.159.134.42 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:09:03 Last Seen2023-03-11 23:09:03 Times Seen1 Hash 0aa761b61b015faaee15436f2a0eee25 e3c1ff0c4ddcb2a310e45a9111b4f0709ce81606 81b5987247007d7ce88ebdc659e9a87e38dca1ca1747290268f950789c277625 Loading...

	blog.tugo.com/	718 B	2023-03-11	2023-03-11
Pretty URL blog.tugo.com/ IP 162.159.134.42 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:09:03 Last Seen2023-03-11 23:09:03 Times Seen1 Hash 9b59b4c292e31c36c742d594363ff85b 00aca3eeabed25cb2822dc0eedb6d22ae6dd3b0f d461bcb9f5b66e6f68a9fffd525f71c547bb02c002086d39bd7c5454089c6646 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PVRW43Q	96 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PVRW43Q IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:09:03 Last Seen2023-03-11 23:09:03 Times Seen1 Hash 758483c2d74b007e1f128b3bed1b07ad 7801517c5a58d77ab1245b97dc692803b3c63fc7 8429b9e04fb3830b9dc981e35cb855b363492f8f28ad3d5dbe56635324b8184e Loading...

	js-agent.newrelic.com/775.2d6a2503-1220.js	1.2 kB	2023-03-08	2023-04-10
Pretty URL js-agent.newrelic.com/775.2d6a2503-1220.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:39:22 Last Seen2023-04-10 08:37:00 Times Seen3 Hash 1dfdb74c0491489bf04c6deadb56add2 09c28f9e93c01cb3870d7a8083658c594d5ee42b 321caf3b5deae5f4be6261374b509b793eacc09762074aa1ae7471f7ad6369a3 Loading...

	js-agent.newrelic.com/368.2d6a2503-1220.js	3.5 kB	2023-03-08	2023-04-10
Pretty URL js-agent.newrelic.com/368.2d6a2503-1220.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:39:22 Last Seen2023-04-10 08:37:00 Times Seen3 Hash 16b4f3676c3859e1378a2ccdebbad675 e08f86ca1dc56c2ed885404d2819f540c7905cae b82a7e3de0f28545976b6ea127ed6d815e1e675322e869f21532184a7244fc56 Loading...

	blog.tugo.com/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1	21 kB	2023-03-07	2024-05-04
Pretty URL blog.tugo.com/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-05-04 18:29:43 Times Seen5751 Hash 49fa677b9cd7ddf221dc06537b35e10f 7485f3f99c3c1a57197f2b099f3f8d68b8609d06 0cd851e5b33af0fbb354df65506da39807b998e07723f3d08aba5179fa2ed97e Loading...

	blog.tugo.com/wp-includes/js/jquery/jquery.min.js?ver=3.5.1	90 kB	2023-03-07	2024-05-04
Pretty URL blog.tugo.com/wp-includes/js/jquery/jquery.min.js?ver=3.5.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2024-05-04 18:29:43 Times Seen9514 Hash b6f7093369a0e8b83703914ce731b13c d1889f5c173c2a4b20288f1f84758599afd346ef 60240d5a27ede94fd35fea44bd110b88c7d8cfc08127f032d13b0c622b8be827 Loading...

	blog.tugo.com/wp-content/themes/tugo/js/child-theme.min.js?ver=0.2	76 kB	2023-03-09	2024-04-03
Pretty URL blog.tugo.com/wp-content/themes/tugo/js/child-theme.min.js?ver=0.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:09:47 Last Seen2024-04-03 09:00:21 Times Seen9 Hash 8e3af2c8890f1e692195e14c11de1344 fdf620106fd9ddbbcab297815da204a0f24e2621 aa601bc79a422cf8e29e20f43b57ab5e030f85caf5777e7aafb11510ef1701c4 Loading...

	blog.tugo.com/	449 B	2023-03-11	2023-03-11
Pretty URL blog.tugo.com/ IP 162.159.134.42 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:09:03 Last Seen2023-03-11 23:09:03 Times Seen1 Hash a287ff5854b4564e403eaa84a4165cf1 27ff0da077ddb70ffe39270e2a6ba302a7de2fff c048b9712d9bac93e6261050ee1c822ef5f9876b0df50845ca5cc0557363475b Loading...

	blog.tugo.com/	276 B	2023-03-11	2023-03-11
Pretty URL blog.tugo.com/ IP 162.159.134.42 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:09:03 Last Seen2023-03-11 23:09:03 Times Seen1 Hash e5678ef8d538de7be5f2f7b88b2f927d 404e351f53804bb0bed6095248490fbc29332c61 91a40d9dddab9bf2e4c7d2eb083a49e0a4cf1c2e2e9a36dbb5c7781ddf32a87f Loading...

	static.addtoany.com/menu/sm.24.html#type=core&event=load	551 B	2023-03-08	2023-04-05
Pretty URL static.addtoany.com/menu/sm.24.html#type=core&event=load IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:33 Last Seen2023-04-05 02:10:42 Times Seen517 Hash d51b83b6cab0a31d7e631829656a22b1 cd7bc9245b65c5c851e03a04541d4785c550b1f4 82e320c0c3f2224c9bdeadab1078c0e5b4b705b8e2da82700b6f305bbdf380f9 Loading...

		Size	First Seen	Last Seen
	#1 Write - bf83868ad5aeda1a69771ce2eda9099b	27 B	2023-03-07	2024-05-03
Pretty Observations First Seen2023-03-07 12:03:11 Last Seen2024-05-03 06:03:47 Times Seen240 Hash bf83868ad5aeda1a69771ce2eda9099b 72e11d761e99cc2726f87af543ccaa7a017c2e75 0fa72b460ae8d3683c7a20ad552b12a4ceffbba396a27a760ddc497eac2861cf Loading...

HTTP Transactions (59)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a5daf4dc99951793ae2315d4795e8146 4427507ca4d3a5632cc8f598afbc85e2195d00bd 94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4821 Expires: Wed, 30 Nov 2022 20:16:58 GMT Date: Wed, 30 Nov 2022 18:56:37 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash f3cf023c797da81728c0ac84c8759331 fa07c5e39e4b0741ea484101cccb2202acea9d9c 5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6283 Cache-Control: max-age=148765 Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:37 GMT Etag: "638730f7-1d7" Expires: Fri, 02 Dec 2022 12:16:02 GMT Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT Server: ECS (ska/F709) X-Cache: HIT Content-Length: 471`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 6d9d34c96b9a826ae5676640c966469c 8052a16d41a637e420478b7de1ff5a2dc951fccd f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12721 Expires: Wed, 30 Nov 2022 22:28:38 GMT Date: Wed, 30 Nov 2022 18:56:37 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	34.102.187.140	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 34.102.187.140:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 14cd9a0afb6ba9a763651d5112760d1e 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Wed, 30 Nov 2022 18:18:03 GMT cache-control: public,max-age=3600 content-type: application/json age: 2314 alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: sBqT+A6Z7dtpg6XV24aDRZYxHLWJOactcZtWKIq71nT6/UUh4DlZPVC5gPRcKd+WAKzMwm8V2/A= x-amz-request-id: EY2A4TCESXTPYK80 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Wed, 30 Nov 2022 18:45:20 GMT age: 677 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Wed, 30 Nov 2022 18:56:37 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	blog.tugo.com/	162.159.134.42	301 Moved Permanently	162 B
URL HTTP/1.1 blog.tugo.com/ IP 162.159.134.42:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET / HTTP/1.1 Host: blog.tugo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Wed, 30 Nov 2022 18:56:37 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://blog.tugo.com/ CF-Ray: 7725cdd9ce100b06-OSL CF-Cache-Status: DYNAMIC ki-cache-type: None Ki-CF-Cache-Status: BYPASS ki-edge: v=17.9 X-Content-Type-Options: nosniff X-Edge-Location-Klb: 1 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OBsKTvt%2FLsvwuI%2BXUDBSHrvutkNKxwXGVdlR4JRdjhmzuzaT73oVG%2Fb3Tl8Ul7ZaGnE6PWgEznj8osuuKmlCrbyIKr5yXWQ5CdB4NGS6gXfDutHU8Ttdb%2BlQmj%2B9hEY%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	34.102.187.140	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 34.102.187.140:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Wed, 30 Nov 2022 18:11:14 GMT cache-control: public,max-age=3600 age: 2724 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	278 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 278 B (278 bytes) Hash c86f737149a31b299392d78470410d5f 916f35e3bbbbd01b7454a20ab0e8047430de406c c5f954f40db150abdd38fdf0eaa07a1b2f27c436711f1799ec218b44ed0499ee HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:38 GMT Server: ECS (amb/6B7A) Content-Length: 278`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash cfdd00e67ee6ca21712b867eb5288ab6 b61d5d6ec3b7ad71619e13e32c87f2d01871b88a f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6278 Cache-Control: max-age=143691 Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:38 GMT Etag: "63871d2b-1d7" Expires: Fri, 02 Dec 2022 10:51:29 GMT Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT Server: ECS (ska/F709) X-Cache: HIT Content-Length: 471`

	push.services.mozilla.com/	52.89.136.7	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.89.136.7:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: t0eH25r/JFWs0b7ERvboRA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: i3/zID7yLEIhtGVvPvAbwW8rC7Q=`

	ocsp.digicert.com/	93.184.220.29	200 OK	278 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 278 B (278 bytes) Hash c86f737149a31b299392d78470410d5f 916f35e3bbbbd01b7454a20ab0e8047430de406c c5f954f40db150abdd38fdf0eaa07a1b2f27c436711f1799ec218b44ed0499ee HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 0 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:38 GMT Last-Modified: Wed, 30 Nov 2022 18:56:38 GMT Server: ECS (ska/F709) X-Cache: HIT Content-Length: 278`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 33f732b4dfbd5fb3ed7345eba2896fe6 2652f214cf7127302cc65b1d4e42f48a80907d5d 904ce722469d356f8ec20c14bd51ca3ce459012ea0869f7d14821a963310a494 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtag/js?id=UA-7998416-19	142.250.74.40	200 OK	44 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-7998416-19 IP 142.250.74.40:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1921) Size 44 kB (43548 bytes) Hash 2ad8a6596d3e2063e43e0c43ce76971c 6fb13c2e816c8c813b9ce720ef99d3a4edf8804b e87209a5dd13b493a6e1056be3d90d98a188ea2ed37955a48a9aac37bd944d48 HTTP Headers `GET /gtag/js?id=UA-7998416-19 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Wed, 30 Nov 2022 18:56:39 GMT expires: Wed, 30 Nov 2022 18:56:39 GMT cache-control: private, max-age=900 last-modified: Wed, 30 Nov 2022 18:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 43548 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 33f732b4dfbd5fb3ed7345eba2896fe6 2652f214cf7127302cc65b1d4e42f48a80907d5d 904ce722469d356f8ec20c14bd51ca3ce459012ea0869f7d14821a963310a494 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	23.36.76.226	200 OK	4.8 kB
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 4.8 kB (4838 bytes) Hash 1f3670c6089db2a52a697b983c335046 6b8a61c710f511671f18f2642a797bf4d9d56bcb 32b6e6d9e77e73d6ae8a0171057c73657212185d0211530b1548761959898b6a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15030 Expires: Wed, 30 Nov 2022 23:07:09 GMT Date: Wed, 30 Nov 2022 18:56:39 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash ac3edd07bb0a4ebdaae6ec26e91d2079 b6efe3811dfa37cdcde1e9d411c171732ac7e12a c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15030 Expires: Wed, 30 Nov 2022 23:07:09 GMT Date: Wed, 30 Nov 2022 18:56:39 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash ac3edd07bb0a4ebdaae6ec26e91d2079 b6efe3811dfa37cdcde1e9d411c171732ac7e12a c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15030 Expires: Wed, 30 Nov 2022 23:07:09 GMT Date: Wed, 30 Nov 2022 18:56:39 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash ac3edd07bb0a4ebdaae6ec26e91d2079 b6efe3811dfa37cdcde1e9d411c171732ac7e12a c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15030 Expires: Wed, 30 Nov 2022 23:07:09 GMT Date: Wed, 30 Nov 2022 18:56:39 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c269b8c-3d4d-44ba-8e91-4a2a42d194b9.png	34.120.237.76	200 OK	3.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c269b8c-3d4d-44ba-8e91-4a2a42d194b9.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 3.7 kB (3711 bytes) Hash 89e1a735e16f55c78fa75ae434294029 6c56f4015305eff04a99cec9758cd40bf4e5f704 26e8b042c0bbef2c7f93f77451563cf6e12af282251ef864652574be2b2c5b15 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c269b8c-3d4d-44ba-8e91-4a2a42d194b9.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 3711 x-amzn-requestid: 502d7eed-f24a-49e8-b14e-759778b717ed x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cbWQSFNnIAMFpxQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63879d9b-5eb88e757ff3eeaa26dd7de2;Sampled=0 x-amzn-remapped-date: Wed, 30 Nov 2022 18:14:51 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: hrGJk_aF0hgdEXNUAqj74wYkXby2ptGRqWKFi4sxlvs_QN9WhC6vOw== via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 18:25:55 GMT age: 1844 etag: "6c56f4015305eff04a99cec9758cd40bf4e5f704" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg	34.120.237.76	200 OK	9.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.7 kB (9674 bytes) Hash 5508d05a290b663fd89ead9b58f2efd8 53650399f9a986ba54addd668b4557109d12003b 65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9674 x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYgEoHVAoAMFvAQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: ym_L3s5E6MLy6BxqNkVxok6L6hA4c-ilSsEqt42j2IbiXYPb4c6-VQ== via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 21:52:51 GMT age: 75828 etag: "53650399f9a986ba54addd668b4557109d12003b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10176 bytes) Hash 03014221d7f49b50ffc2d1b0a0e75457 772d86ad983042a728ee3490630a9cf1134ad0dd 81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10176 x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cMpbgEFOIAMF71A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g== via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 04:55:46 GMT age: 50453 etag: "772d86ad983042a728ee3490630a9cf1134ad0dd" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg	34.120.237.76	200 OK	7.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type data Size 7.4 kB (7408 bytes) Hash e049f20aaa37ab2c284e909867f8f10d 782a0a06acb35947f859abc1aac9a4b119f3d13a 5547f5b23329eb16fcd9e951b8f87eefb50ec20892e91982c6f76d0cd15ae879 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7298 x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYgDcE3poAMFaAA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 8heT2eN5oLbO14R9qLq78Vma_TkteufTyKM5i3K2XoJYXfWNwLMEwQ== via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 21:56:25 GMT age: 75614 etag: "e4ddf955e8ac1986045ed55880c43c69e588a021" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg	34.120.237.76	200 OK	6.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type data Size 6.0 kB (6042 bytes) Hash 46cb5da80bda9df7c7100554f9ea3e60 960244bf5a5c510791aa57179694589353943b6a cabd0174d3665e69c717f74c3a895f1a6551754dca5a3efa9fe1a0b3bc2e160a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5785 x-amzn-requestid: ee77265b-8e90-4035-8ef1-92a2d26aaefa x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYgDaHdWoAMFqmw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867a15-0d10d74030e7aee74804b654;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT x-amz-cf-pop: SFO5-P2, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: QhUrNKIJUxXTYFTgfCwizAd9L4PdLMVLbqv1sHmmnrWya0xz1MTSiw== via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 22:08:46 GMT etag: "f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b" content-type: image/jpeg age: 74873 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type data Size 12 kB (11854 bytes) Hash 17e6611ed6ae20d1f9bd62deeda757cf f6b11af6e21a139665f903445f9f2f25f38529ab c59796a38e6c4e76c33cfefc9ccaa17377b12fcf527018abe22abb4ab34684f6 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10958 x-amzn-requestid: abfea5b0-58f5-49e1-b78e-7cf456d03cb3 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYgFHF9oIAMF5lg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867a20-5ab719292d440d083b07a478;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:12 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: gCt9oHpZ68tLCYHIYpI1XLtADkScxwf12kDFnU0o5WoQIVSzWlqozw== via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 22:16:52 GMT etag: "57e1d34f146d5ccd9943aa97bcc3158f7103bb07" content-type: image/jpeg age: 74387 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 146dac10a93604a686550631e14eefb9 b4af601ce6d515d9ec124938ce626060e0d43099 bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 146dac10a93604a686550631e14eefb9 b4af601ce6d515d9ec124938ce626060e0d43099 bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 608e4d04a251ebcd51660e801f388303 fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2	216.58.207.227	200 OK	17 kB
URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data Size 17 kB (16740 bytes) Hash e43b535855a4ae53bd5b07a6eeb3bf67 6507312d9491156036316484bf8dc41e8b52ddd9 b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681 HTTP Headers GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://blog.tugo.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 16740 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 28 Nov 2022 18:52:55 GMT expires: Tue, 28 Nov 2023 18:52:55 GMT cache-control: public, max-age=31536000 age: 173025 last-modified: Mon, 15 Aug 2022 18:14:44 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 608e4d04a251ebcd51660e801f388303 fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.sectigo.com/	104.18.32.68	200 OK	472 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 104.18.32.68:0 ASN #13335 CLOUDFLARENET File type data Size 472 B (472 bytes) Hash 08a1a290608282a869757a88184cabee c1d1f8b4fa0b97ce1a7688bd60caf75e618e9094 6b92880972ae8e28d68969aa8a246c5a4999b26543dccb8d1c059e791b9fc02b HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 30 Nov 2022 18:56:40 GMT Content-Type: application/ocsp-response Content-Length: 472 Connection: keep-alive Last-Modified: Tue, 29 Nov 2022 02:49:13 GMT Expires: Tue, 06 Dec 2022 02:49:12 GMT Etag: "c1d1f8b4fa0b97ce1a7688bd60caf75e618e9094" Cache-Control: max-age=459751,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb6 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7725cded4f09b4ed-OSL`

	salesiq.zoho.com/widget	136.143.191.67	200	34 kB
URL HTTP/1.1 salesiq.zoho.com/widget IP 136.143.191.67:0 ASN #2639 ZOHO-AS File type ASCII text, with very long lines (65536), with no line terminators Size 34 kB (34398 bytes) Hash 9a0b88a0b0158eeb2237b0f9c4dcfc1a e194f19dcc0eaac0d96447566d2cf3de566c97c3 0dc2907ea8478159570b520ab4664af18cb274ead3871d4fdd55443345ff38a1 HTTP Headers `GET /widget HTTP/1.1 Host: salesiq.zoho.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 Server: ZGS Date: Wed, 30 Nov 2022 18:56:40 GMT Content-Type: text/javascript;charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: 663a60c55d=72a44fbf24dc483ad09878165cb87aed; Path=/ Access-Control-Allow-Origin: * Cache-Control: must-revalidate Pragma: Expires: Wed, 30 Nov 2022 19:01:40 GMT ETag: W/542090a4a026d7a6a17e21c328cd2bb4f57cbcf110026cd04403b62d8f1d1de2 vary: accept-encoding Content-Encoding: gzip Strict-Transport-Security: max-age=63072000`

	salesiq.zoho.com/visitor/v2/channels/website?widgetcode=68b8dc16444f58acd9b75fb5ef7a2c148e6df1b8cd40dd77fa21a66bf7ab2eb0ac5a0ffaa90abb14918766b7afa6b70c&internal_channel_req=true&language_api=true&browser_language=en&current_domain=https%3A%2F%2Fblog.tugo.com&pagetitle=TuGo%20Travel%20Blog%20-%20Inspiring%20people%20from%20all%20walks%20of%20life%20to%20get%20out%20and%20experience%20the%20world.&include_fields=avuid	136.143.191.67	200	8.4 kB
URL HTTP/1.1 salesiq.zoho.com/visitor/v2/channels/website?widgetcode=68b8dc16444f58acd9b75fb5ef7a2c148e6df1b8cd40dd77fa21a66bf7ab2eb0ac5a0ffaa90abb14918766b7afa6b70c&internal_channel_req=true&language_api=true&browser_language=en&current_domain=https%3A%2F%2Fblog.tugo.com&pagetitle=TuGo%20Travel%20Blog%20-%20Inspiring%20people%20from%20all%20walks%20of%20life%20to%20get%20out%20and%20experience%20the%20world.&include_fields=avuid IP 136.143.191.67:0 ASN #2639 ZOHO-AS File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (19802), with no line terminators Size 8.4 kB (8360 bytes) Hash cf51b8c0d5084a7801702d181c67c859 c7f8e93823ecc44f16fe09821d771dd90a7f0219 815cf0560496176df92fe5caf6090c6ebbbb8b7f7c07d2543907c7d10dd5b09c HTTP Headers GET /visitor/v2/channels/website?widgetcode=68b8dc16444f58acd9b75fb5ef7a2c148e6df1b8cd40dd77fa21a66bf7ab2eb0ac5a0ffaa90abb14918766b7afa6b70c&internal_channel_req=true&language_api=true&browser_language=en&current_domain=https%3A%2F%2Fblog.tugo.com&pagetitle=TuGo%20Travel%20Blog%20-%20Inspiring%20people%20from%20all%20walks%20of%20life%20to%20get%20out%20and%20experience%20the%20world.&include_fields=avuid HTTP/1.1 Host: salesiq.zoho.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://blog.tugo.com Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/1.1 200 Server: ZGS Date: Wed, 30 Nov 2022 18:56:41 GMT Content-Type: application/json;charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive X-Content-Type-Options: nosniff Encoding: UTF-8 X-XSS-Protection: 1 Set-Cookie: 663a60c55d=e9529bf0eb00bf128a234a3c3276df42; Path=/ LS_CSRF_TOKEN=ce15059c-bef4-41ab-a971-91a834d83f0c;path=/;SameSite=None;Secure;priority=high _zcsr_tmp=ce15059c-bef4-41ab-a971-91a834d83f0c;path=/;SameSite=Strict;Secure;priority=high uesign=e811b5d3c75d01ea6f2d0c86da1c02219a9fea0541cea7facc35ea3fe229ca86038e224bb6f2979e6e61065c6e428c57;Max-Age=2592000;Path=/;Secure;SameSite=None;priority=high X-Frame-Options: SAMEORIGIN Access-Control-Allow-Headers: Content-Type,x-siq-internal-channel Access-Control-Allow-Origin: https://blog.tugo.com Access-Control-Allow-Methods: GET Access-Control-Allow-Credentials: true Cache-Control: no-cache Content-Language: en-US Strict-Transport-Security: max-age=63072000 Content-Encoding: gzip

	ocsp.sectigo.com/	104.18.32.68	200 OK	471 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 104.18.32.68:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash 25eb4af5d42605a129115e6acb55982b ffbde06b9c51726022ceca1fdb2d9311f3aaf84d 3000147ff670ae4cf1dff3d51059658f783134a08aa87c7258df5b99c5768426 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 30 Nov 2022 18:56:41 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Mon, 28 Nov 2022 15:09:34 GMT Expires: Mon, 05 Dec 2022 15:09:33 GMT Etag: "ffbde06b9c51726022ceca1fdb2d9311f3aaf84d" Cache-Control: max-age=417771,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb2 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7725cdf30f39b4ed-OSL`

	js.zohocdn.com/salesiq/js/floatbutton1_ee9d7d655e980a26fd64f927e1657cb0_.js	185.20.209.147	200 OK	13 kB
URL HTTP/2 js.zohocdn.com/salesiq/js/floatbutton1_ee9d7d655e980a26fd64f927e1657cb0_.js IP 185.20.209.147:0 ASN #41913 Computerline GmbH File type ASCII text, with very long lines (36929), with no line terminators Size 13 kB (12588 bytes) Hash 9c78d6fd86cbe9850adb7d8f631a0a54 db506f744b0a41e4c8018dc43af86667b3b70fb2 0dcdeeaa064f9a85d8873b37bf874961ff0e10a74fb4d233c80c41a6c6890c83 HTTP Headers `GET /salesiq/js/floatbutton1_ee9d7d655e980a26fd64f927e1657cb0_.js HTTP/1.1 Host: js.zohocdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: ZGS date: Wed, 30 Nov 2022 18:56:41 GMT content-type: application/javascript;charset=UTF-8 content-length: 12588 x-content-type-options: nosniff x-xss-protection: 1 cache-control: public, max-age=7776000, immutable etag: "9c78d6fd86cbe9850adb7d8f631a0a54" content-language: en-US last-modified: Mon, 28 Nov 2022 12:24:15 GMT content-encoding: br access-control-expose-headers: * access-control-allow-origin: * vary: Accept-Encoding strict-transport-security: max-age=15768000 timing-allow-origin: * x-cache: HIT nb-request-id: 208d05894fec5de1f2273a6fb77e8153 z-origin-id: ex1-8c3cced27396460b93e17d190f0101e6 cross-origin-resource-policy: cross-origin accept-ranges: bytes X-Firefox-Spdy: h2

	www.google-analytics.com/analytics.js	142.250.74.110	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 142.250.74.110:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1325) Size 20 kB (20039 bytes) Hash 47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20039 date: Wed, 30 Nov 2022 18:41:08 GMT expires: Wed, 30 Nov 2022 20:41:08 GMT cache-control: public, max-age=7200 age: 933 last-modified: Tue, 27 Sep 2022 22:01:05 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.sectigo.com/	104.18.32.68	200 OK	471 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 104.18.32.68:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash 25eb4af5d42605a129115e6acb55982b ffbde06b9c51726022ceca1fdb2d9311f3aaf84d 3000147ff670ae4cf1dff3d51059658f783134a08aa87c7258df5b99c5768426 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 30 Nov 2022 18:56:41 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Mon, 28 Nov 2022 15:09:34 GMT Expires: Mon, 05 Dec 2022 15:09:33 GMT Etag: "ffbde06b9c51726022ceca1fdb2d9311f3aaf84d" Cache-Control: max-age=417771,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb6 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7725cdf34b46b52d-OSL`

	css.zohocdn.com/salesiq/styles/floatbutton1_c9188aeca3b06066a1bbd79727ce3c9e_.css	185.20.209.147	200 OK	5.1 kB
URL HTTP/2 css.zohocdn.com/salesiq/styles/floatbutton1_c9188aeca3b06066a1bbd79727ce3c9e_.css IP 185.20.209.147:0 ASN #41913 Computerline GmbH File type ASCII text, with very long lines (22437), with no line terminators Size 5.1 kB (5133 bytes) Hash 75b7713ffc3951a8cf36c1ba4ee313ae 89a6f4377fce71d66669ea25f6777bd3d83c7dea c210a73ac38e3b97b4ea0110d9e35bffe6e34b4f9dde9be396d4ecd8f780e228 HTTP Headers `GET /salesiq/styles/floatbutton1_c9188aeca3b06066a1bbd79727ce3c9e_.css HTTP/1.1 Host: css.zohocdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: ZGS date: Wed, 30 Nov 2022 18:56:41 GMT content-type: text/css;charset=UTF-8 content-length: 5133 x-content-type-options: nosniff x-xss-protection: 1 cache-control: public, max-age=7776000, immutable etag: "75b7713ffc3951a8cf36c1ba4ee313ae" content-language: en-US last-modified: Wed, 16 Nov 2022 12:59:28 GMT content-encoding: br access-control-expose-headers: * access-control-allow-origin: * vary: Accept-Encoding strict-transport-security: max-age=15768000 timing-allow-origin: * x-cache: HIT nb-request-id: 735da9e6a100aca44ff022fc30d919c1 z-origin-id: ex1-85ac1a578e5c4b338fc7297894abc9e2 cross-origin-resource-policy: cross-origin accept-ranges: bytes X-Firefox-Spdy: h2

	css.zohocdn.com/salesiq/styles/fonts/float/float_8be4374c3228dfc95e54d8ea8096342a_.ttf	185.20.209.147	200 OK	906 B
URL HTTP/2 css.zohocdn.com/salesiq/styles/fonts/float/float_8be4374c3228dfc95e54d8ea8096342a_.ttf IP 185.20.209.147:0 ASN #41913 Computerline GmbH File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data Size 906 B (906 bytes) Hash 4c5578b6975e326c3bfea8954ffaa2d4 e8bb6004bf5f8d5e9c924be3141bcb714e1f9bf1 fc68c05be81e1f500126b80887730661ecac5282453149d5b7641457cb7d9da7 HTTP Headers GET /salesiq/styles/fonts/float/float_8be4374c3228dfc95e54d8ea8096342a_.ttf HTTP/1.1 Host: css.zohocdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://blog.tugo.com Connection: keep-alive Referer: https://css.zohocdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK server: ZGS date: Wed, 30 Nov 2022 18:56:41 GMT content-type: font/ttf content-length: 906 x-content-type-options: nosniff x-xss-protection: 1 cache-control: public, max-age=7776000, immutable etag: "4c5578b6975e326c3bfea8954ffaa2d4" content-language: en-US last-modified: Wed, 16 Nov 2022 12:59:57 GMT content-encoding: br access-control-expose-headers: * access-control-allow-origin: * vary: Accept-Encoding strict-transport-security: max-age=15768000 timing-allow-origin: * x-cache: HIT nb-request-id: 031abb4b1623517b2e5d6bb90ddad040 z-origin-id: ex1-56c886d01da14a7d9e1703d0330c436d cross-origin-resource-policy: cross-origin accept-ranges: bytes X-Firefox-Spdy: h2

	ocsp.sectigo.com/	104.18.32.68	200 OK	472 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 104.18.32.68:0 ASN #13335 CLOUDFLARENET File type data Size 472 B (472 bytes) Hash 4bee46a4b2940d0942dbb09dd846176d ca6ac87bf9572fea5c4be5adfe71f8ba1ac2e396 d45effaaa2fd57ffe2ebe841c9370c8b45fcecbe48cadd34bf78588ae5d35948 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 30 Nov 2022 18:56:41 GMT Content-Type: application/ocsp-response Content-Length: 472 Connection: keep-alive Last-Modified: Mon, 28 Nov 2022 10:34:41 GMT Expires: Mon, 05 Dec 2022 10:34:40 GMT Etag: "ca6ac87bf9572fea5c4be5adfe71f8ba1ac2e396" Cache-Control: max-age=401278,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb6 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7725cdf4a945b4ed-OSL`

	js-agent.newrelic.com/552.2d6a2503-1220.js	151.101.66.137	200 OK	5.9 kB
URL HTTP/2 js-agent.newrelic.com/552.2d6a2503-1220.js IP 151.101.66.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (21423) Size 5.9 kB (5890 bytes) Hash 097ef34c5f5d635a147bca3721bd605b 3b31ef3cfb1d62d9884d631ec2467b9d6b0d46e2 3e05d4e42c1e87b516b525574b20d2570dccc50d1bd1b2956d6421699aa19914 HTTP Headers `GET /552.2d6a2503-1220.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: PnZFPtaQ6Oa8SvsR598yLCynwQMleyjLyE8+/6kXxv1ZfRit6gnSEEKUHnQ2vqYi8syHn+Nxcq4= x-amz-request-id: XM6WHM0J4M8X38WQ last-modified: Wed, 05 Oct 2022 14:53:43 GMT etag: "777ac0df4dba632ad1b2955c88dd51ac" x-amz-version-id: 7EjqUQ3uiXAFqO0VnIOp2ymSTJq3JZwD content-type: application/javascript server: AmazonS3 cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 30 Nov 2022 18:56:41 GMT via: 1.1 varnish x-served-by: cache-bma1648-BMA x-cache: HIT x-cache-hits: 878 x-timer: S1669834602.895571,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 5890 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 5d950b70d3b1532276ed817249b72618 dca7faf727b8afdd481c8f8bcc3e9129fdadadc3 afe3fbe5f269179e18a66ca806664b7f96b903150b364129e2f2b30087198e34 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:41 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	js-agent.newrelic.com/290.2d6a2503-1220.js	151.101.66.137	200 OK	3.4 kB
URL HTTP/2 js-agent.newrelic.com/290.2d6a2503-1220.js IP 151.101.66.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (8544) Size 3.4 kB (3424 bytes) Hash b9baa2cb6a3b1a3d0fda03cd7db51631 42d37467e05182e3cab2fcb54577dc462adcf50b 31a8b4d47298cae24c66e37256a51474ae88a745fdfec79f99b2d43608e6d822 HTTP Headers `GET /290.2d6a2503-1220.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: w13KyJHc6nZxbdEwslB41w8/Eu8hqTxWFthe9Ce9ktH5t1CQfPDcADzeIbbM0XmVboDReCBCqwPazqB/yCHcHQ== x-amz-request-id: ENM21W9CJ64N9SCW last-modified: Wed, 05 Oct 2022 14:53:42 GMT etag: "13898fbb4d7a1f83fc6722c4c12faf40" x-amz-version-id: C4hj6k9j4I7xXuTBZvcbX78Bf.Ep8KMk content-type: application/javascript server: AmazonS3 access-control-allow-origin: * cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 30 Nov 2022 18:56:41 GMT via: 1.1 varnish x-served-by: cache-bma1648-BMA x-cache: HIT x-cache-hits: 553 x-timer: S1669834602.932473,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 3424 X-Firefox-Spdy: h2

	js-agent.newrelic.com/775.2d6a2503-1220.js	151.101.66.137	200 OK	632 B
URL HTTP/2 js-agent.newrelic.com/775.2d6a2503-1220.js IP 151.101.66.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (1169) Size 632 B (632 bytes) Hash 661520fd0dfebb919d68a69b60ca426f b85ef80a0e0d95bf4904f9ce4fad56c49ae035be ecd489671c6255fee8370fc1f8f4e99519ef8d4c4c0ab06640b0c021642e1db7 HTTP Headers `GET /775.2d6a2503-1220.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: 7LFMHtjJh1S3I7Y2nadjyW3qD5GSEUAPkhvRiGWUqI2yNIsj2jxS1WztietgESJCTo8b+MSjBS8= x-amz-request-id: XM6WXR7ZNKJZ7WDR last-modified: Wed, 05 Oct 2022 14:53:42 GMT etag: "1dfdb74c0491489bf04c6deadb56add2" x-amz-version-id: y1AQ2bnjUbwuFOuSS5MP1vew1dGw.1iz content-type: application/javascript server: AmazonS3 cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 30 Nov 2022 18:56:41 GMT via: 1.1 varnish x-served-by: cache-bma1648-BMA x-cache: HIT x-cache-hits: 301 x-timer: S1669834602.936380,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 632 X-Firefox-Spdy: h2

	js-agent.newrelic.com/368.2d6a2503-1220.js	151.101.66.137	200 OK	1.4 kB
URL HTTP/2 js-agent.newrelic.com/368.2d6a2503-1220.js IP 151.101.66.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (3382) Size 1.4 kB (1443 bytes) Hash fa50a55750d1d0978fca32be5dbc3988 a7f447621d48b3ecf7fc0192b515d506d3d1ad18 c621038fb07e536af8a1ec6d260853dfe69055dc2fb526700919c53b3b7e5f20 HTTP Headers `GET /368.2d6a2503-1220.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: GUwozRedGseijuU5ypA/WbbnDIf/u5E5/2u5+kb3ugz/wj5jQhWm8oFz9CQSV79o7P1yeeJAp+M= x-amz-request-id: K9T2FMDPRF0ZCE4Q last-modified: Wed, 05 Oct 2022 14:53:42 GMT etag: "16b4f3676c3859e1378a2ccdebbad675" x-amz-version-id: zC.KoTaM7bjdFj.W4KQMilxtjXXSNPks content-type: application/javascript server: AmazonS3 cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 30 Nov 2022 18:56:41 GMT via: 1.1 varnish x-served-by: cache-bma1648-BMA x-cache: HIT x-cache-hits: 881 x-timer: S1669834602.936780,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 1443 X-Firefox-Spdy: h2

	js-agent.newrelic.com/768.2d6a2503-1220.js	151.101.66.137	200 OK	2.2 kB
URL HTTP/2 js-agent.newrelic.com/768.2d6a2503-1220.js IP 151.101.66.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (5523) Size 2.2 kB (2225 bytes) Hash 98a96a3306b7723c0b8c4bff074cdd9f e9070da7daa34fa2d8ac2e4ec00e3c499ea37516 a6079d50fa4c72b521fd865e67be080b5b21c336a71dbf7a1800a12ad42384f7 HTTP Headers `GET /768.2d6a2503-1220.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: P4mBsEL/DTAFzpZmpgTrdkaNBJrByz58gWXjGItRhFpF6Y8vCPU2Lz0KL/HwWqBLBPUd/7ipab8= x-amz-request-id: XM6J50R0X1MZPD9F last-modified: Wed, 05 Oct 2022 14:53:42 GMT etag: "d6cc8b42eda6fd7734014b03b87b5787" x-amz-version-id: 0CJw6LdyBdZcjhOiVrtC0pLcOFtA3d5G content-type: application/javascript server: AmazonS3 cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 30 Nov 2022 18:56:41 GMT via: 1.1 varnish x-served-by: cache-bma1648-BMA x-cache: HIT x-cache-hits: 1066 x-timer: S1669834602.936691,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 2225 X-Firefox-Spdy: h2

	stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-7998416-19&cid=1804585499.1669834600&jid=1265519216&gjid=98473883&_gid=2082770572.1669834600&_u=YGBACUAABAAAACAAI~&z=1922138607	64.233.165.154	200 OK	101 B
URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-7998416-19&cid=1804585499.1669834600&jid=1265519216&gjid=98473883&_gid=2082770572.1669834600&_u=YGBACUAABAAAACAAI~&z=1922138607 IP 64.233.165.154:0 ASN #15169 GOOGLE File type data Size 101 B (101 bytes) Hash 288407a11d8dbf13d5d119de88e6decf ddc798a058b9e3b9c50d1f8400c7cd9f5522d0e1 a7cb24c6973abc967ada55e7ad7662f02c2d0ae2d5c3dd05dbd52741fce302dd HTTP Headers POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-7998416-19&cid=1804585499.1669834600&jid=1265519216&gjid=98473883&_gid=2082770572.1669834600&_u=YGBACUAABAAAACAAI~&z=1922138607 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://blog.tugo.com Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://blog.tugo.com strict-transport-security: max-age=10886400; includeSubDomains; preload date: Wed, 30 Nov 2022 18:56:41 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 4 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 5d950b70d3b1532276ed817249b72618 dca7faf727b8afdd481c8f8bcc3e9129fdadadc3 afe3fbe5f269179e18a66ca806664b7f96b903150b364129e2f2b30087198e34 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 8f58cd30443a495eed3ec0d9827550c1 fd0f53d2acc63ae015b7b42155136ade5841ebc7 333a3cae36081ea37371e32dc9587faacfda5970daa476b3b36cd6f587ce1594 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 3402a11f28d369c1ad537c8e44ba5568 17c9fc852ca71dc4d46f786537adda4ee0e9a3ef dd142866516f3293fab9f67f092d37b70c39fc58512734c8e88dab5c5faf7264 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-7998416-19&cid=1804585499.1669834600&jid=1265519216&_u=YGBACUAABAAAACAAI~&z=386218370	142.250.74.35	200 OK	42 B
URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-7998416-19&cid=1804585499.1669834600&jid=1265519216&_u=YGBACUAABAAAACAAI~&z=386218370 IP 142.250.74.35:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-7998416-19&cid=1804585499.1669834600&jid=1265519216&_u=YGBACUAABAAAACAAI~&z=386218370 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Wed, 30 Nov 2022 18:56:42 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-7998416-19&cid=1804585499.1669834600&jid=1265519216&_u=YGBACUAABAAAACAAI~&z=386218370	142.250.74.132	200 OK	42 B
URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-7998416-19&cid=1804585499.1669834600&jid=1265519216&_u=YGBACUAABAAAACAAI~&z=386218370 IP 142.250.74.132:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-7998416-19&cid=1804585499.1669834600&jid=1265519216&_u=YGBACUAABAAAACAAI~&z=386218370 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Wed, 30 Nov 2022 18:56:42 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	static.addtoany.com/menu/sm.24.html	104.22.71.197	200 OK	392 B
URL HTTP/2 static.addtoany.com/menu/sm.24.html IP 104.22.71.197:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (677), with no line terminators Size 392 B (392 bytes) Hash 5683ff79e5da42d61eeaee3ef8b87674 dbae01f0f905e3d94b4f8d7f177a7fbeb79e8d19 4cb372ab3d27a1e85b1f1c7528957ff4eac5c6adddb3999f778b8e17a0d5f8d9 HTTP Headers `GET /menu/sm.24.html HTTP/1.1 Host: static.addtoany.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://blog.tugo.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Wed, 30 Nov 2022 18:56:40 GMT content-type: text/html; charset=utf-8 via: e3s last-modified: Fri, 18 Nov 2022 00:47:55 GMT etag: W/"2a5-5edb40e6d10d8" cache-control: max-age=315360000, immutable age: 730039 vary: Accept-Encoding cf-cache-status: HIT strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 7725cdebf8a5990e-ARN content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 3402a11f28d369c1ad537c8e44ba5568 17c9fc852ca71dc4d46f786537adda4ee0e9a3ef dd142866516f3293fab9f67f092d37b70c39fc58512734c8e88dab5c5faf7264 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash cd528f6c2c45e38c52095a73a9cd8c68 dca2df874a830edac932136d474453c18d933024 4c7e75aaccb4b74e227ada3b56829f52cb7f14ad05454f7bd6eccf3e94185218 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 18:56:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	bam.nr-data.net/1/53764b2d87?a=536759433&v=1220.PROD&to=NVIENRRXWREAVBBcDQwYJwISX1gMTl8LWAc%3D&rst=4619&ck=0&s=0271b6e0f4ac5136&ref=https://blog.tugo.com/&ap=283&be=1599&fe=2900&dc=1311&perf=%7B%22timing%22:%7B%22of%22:1669834596099,%22n%22:0,%22f%22:645,%22dn%22:646,%22dne%22:647,%22c%22:647,%22s%22:651,%22ce%22:861,%22rq%22:861,%22rp%22:1415,%22rpe%22:1415,%22dl%22:1424,%22di%22:2820,%22ds%22:2909,%22de%22:2913,%22dc%22:4498,%22l%22:4498,%22le%22:4502%7D,%22navigation%22:%7B%7D%7D&fcp=2914&at=GRUHQ1xNSh8%3D&jsonp=NREUM.setToken	162.247.241.14	200 OK	68 B
URL HTTP/1.1 bam.nr-data.net/1/53764b2d87?a=536759433&v=1220.PROD&to=NVIENRRXWREAVBBcDQwYJwISX1gMTl8LWAc%3D&rst=4619&ck=0&s=0271b6e0f4ac5136&ref=https://blog.tugo.com/&ap=283&be=1599&fe=2900&dc=1311&perf=%7B%22timing%22:%7B%22of%22:1669834596099,%22n%22:0,%22f%22:645,%22dn%22:646,%22dne%22:647,%22c%22:647,%22s%22:651,%22ce%22:861,%22rq%22:861,%22rp%22:1415,%22rpe%22:1415,%22dl%22:1424,%22di%22:2820,%22ds%22:2909,%22de%22:2913,%22dc%22:4498,%22l%22:4498,%22le%22:4502%7D,%22navigation%22:%7B%7D%7D&fcp=2914&at=GRUHQ1xNSh8%3D&jsonp=NREUM.setToken IP 162.247.241.14:0 ASN #23467 NEWRELIC-AS-1 File type ASCII text, with no line terminators Size 68 B (68 bytes) Hash e829d6920aac3b5ee796d82072946200 e0b99606d82951f1f95ee56d70f3e2fc25f17b02 785d1dd5650b792d59d3f1f9c719296ffe5c6f0cfd112c13e9422dae94b826d1 HTTP Headers GET /1/53764b2d87?a=536759433&v=1220.PROD&to=NVIENRRXWREAVBBcDQwYJwISX1gMTl8LWAc%3D&rst=4619&ck=0&s=0271b6e0f4ac5136&ref=https://blog.tugo.com/&ap=283&be=1599&fe=2900&dc=1311&perf=%7B%22timing%22:%7B%22of%22:1669834596099,%22n%22:0,%22f%22:645,%22dn%22:646,%22dne%22:647,%22c%22:647,%22s%22:651,%22ce%22:861,%22rq%22:861,%22rp%22:1415,%22rpe%22:1415,%22dl%22:1424,%22di%22:2820,%22ds%22:2909,%22de%22:2913,%22dc%22:4498,%22l%22:4498,%22le%22:4502%7D,%22navigation%22:%7B%7D%7D&fcp=2914&at=GRUHQ1xNSh8%3D&jsonp=NREUM.setToken HTTP/1.1 Host: bam.nr-data.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Date: Wed, 30 Nov 2022 18:56:42 GMT Content-Type: text/javascript Transfer-Encoding: chunked Connection: keep-alive CF-Ray: 7725cdf668d1b4e8-OSL Access-Control-Allow-Origin: * CF-Cache-Status: DYNAMIC access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS Cross-Origin-Resource-Policy: cross-origin Vary: Accept-Encoding Server: cloudflare Content-Encoding: gzip`

	static.addtoany.com/menu/modules/core.9b4ec89f.js	104.22.71.197	200 OK	0 B
URL HTTP/2 static.addtoany.com/menu/modules/core.9b4ec89f.js IP 104.22.71.197:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /menu/modules/core.9b4ec89f.js HTTP/1.1 Host: static.addtoany.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://blog.tugo.com Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Wed, 30 Nov 2022 18:56:40 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=315360000, immutable cf-bgj: minify access-control-allow-origin: * age: 6154 etag: W/"117a5-5ee0ab045ab91" last-modified: Tue, 22 Nov 2022 08:09:17 GMT vary: Accept-Encoding via: e3s x-content-type-options: nosniff cf-cache-status: HIT strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 7725cdebf8a6990e-ARN content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	blog.tugo.com/	162.159.134.42	200 OK	0 B
URL HTTP/2 blog.tugo.com/ IP 162.159.134.42:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET / HTTP/1.1 Host: blog.tugo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Wed, 30 Nov 2022 18:56:38 GMT content-type: text/html; charset=UTF-8 cf-ray: 7725cddecc140b41-OSL link: <https://blog.tugo.com/wp-json/>; rel="https://api.w.org/" vary: Accept-Encoding cf-cache-status: DYNAMIC cf-edge-cache: cache,platform=wordpress ki-cache-type: None ki-cf-cache-status: BYPASS ki-edge: v=17.9 x-content-type-options: nosniff x-edge-location-klb: 1 x-kinsta-cache: HIT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KXJx4zhbG7PvTMb4V7Zyz4UzdjIPv%2FDkQYjXeoQ5jEYsG86oyE7lgo8eEkL6zlDX6GcYGxH8aI3upvo94z4V5JP1OJvC4MNI8Ba%2FzBRYKN9PptKpDc23d5wCCo7ZLV4%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} server: cloudflare content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Open+Sans&display=swap	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans&display=swap IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Open+Sans&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://blog.tugo.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 30 Nov 2022 18:56:40 GMT date: Wed, 30 Nov 2022 18:56:40 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (30)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations