Report - suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4

Report Overview

Submitted URL
suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4
IP
18.192.108.151
ASN
#16509 AMAZON-02
Submitted
2022-12-09 09:26:14
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	359 B	1.4 kB	104.18.20.226
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	698 B	31.13.72.36
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	1.4 kB	216.58.207.228
tr.outbrain.com	2017	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	491 B	70.42.32.31
suscoop-comithers.icu	543653	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	389 B	826 B	18.192.108.151
xoomber.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	530 B	827 B	104.200.16.65
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	7.0 kB	142.250.74.131
pixel.mathtag.com	1199	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	3.6 kB	2.18.172.207
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	711 B	64.233.165.156
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
testedforyou.net	428320	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	14 kB	160 kB	45.79.172.174
www.redditstatic.com	1440	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	8.5 kB	151.101.129.140
static.ads-twitter.com	614	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	365 B	16 kB	151.101.244.157
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	764 B	136 kB	142.250.74.168
amplify.outbrain.com	2255	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	367 B	5.7 kB	2.18.173.74
status.thawte.com	5123	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
analytics.twitter.com	526	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	860 B	613 B	104.244.42.131
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.155.171.116
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	373 B	21 kB	216.239.32.178
t.co	569	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	843 B	593 B	104.244.42.5
cdn.taboola.com	1040	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	19 kB	151.101.129.44
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	483 B	694 B	142.250.74.131
mc.yandex.ru	2672	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.2 kB	81 kB	93.158.134.119
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	39 kB	34.120.237.76
trc-events.taboola.com	1779	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	730 B	141.226.228.48
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	8.0 kB	23.33.119.27
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	374 B	29 kB	31.13.72.12
alb.reddit.com	1521	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	654 B	276 B	151.101.129.140
trc.taboola.com	602	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	11 kB	151.101.129.44
region1.analytics.google.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	947 B	563 B	216.239.32.36
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.6 kB	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-09	medium	suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (36)

	URL	Size	First Seen	Last Seen
	www.redditstatic.com/ads/pixel.js	25 kB	2023-03-08	2023-12-01
Pretty URL www.redditstatic.com/ads/pixel.js IP 151.101.129.140 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2023-12-01 19:12:11 Times Seen28 Hash c1c34430d39fb43c9612aebe7ab8a9db 4d7f5cb7b29685a3a5a51c140288465e9553a0a7 4b4e80032e1c164685d3ff6eb4c606785ebaebaa648d3984478b0cc8d114190b Loading...

	pixel.mathtag.com/event/js?mt_id=1564089&mt_adid=249026&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3=	1.5 kB	2023-03-08	2023-03-08
Pretty URL pixel.mathtag.com/event/js?mt_id=1564089&mt_adid=249026&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3= IP 2.18.172.207 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:44:02 Last Seen2023-03-08 23:44:02 Times Seen1 Hash 71610cebde40b33ffdd00c17d56d31ea 93873be83f31f85afad0a55050d297df79d573db bbf12ece9c1d31a48df28304d742b320273262da8fd2fb868db5062acd826578 Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8	341 B	2023-03-07	2023-07-17
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8 IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-07-17 05:53:35 Times Seen21 Hash 3d4bac08f9ac333f294c05a6476defba 3d0b5bbe119df96c311fbab9b3bc6310f33da1ee a918c5d01fe429a642c919e0595da904a7b2955cdbe0af8a9ee05467f5146c02 Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8	172 B	2023-03-07	2024-01-28
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8 IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2024-01-28 10:34:30 Times Seen24 Hash 0a653f4bb471658a5241adb6c7e379fc 3faa551ca4ea6902e3da82af90468396883d6d3d 49c86ccfcdcbd35616425e880149d6c52907226fca8fc594c37a2b2258386be2 Loading...

	testedforyou.net/download-instructions/download-instructions.js	696 B	2023-03-07	2023-07-17
Pretty URL testedforyou.net/download-instructions/download-instructions.js IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-07-17 05:53:35 Times Seen21 Hash 9024cc831da618bfb1b64404676af2b4 9b4e10c631304e9288d9e68a7d9286a27c925bdf df1e5760a48f874bb790e507761cfda358b01d76ee39a441b5dbce914854c655 Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8	339 B	2023-03-07	2023-03-13
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8 IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-03-13 07:39:11 Times Seen1 Hash 78ea52e32aaaa91d940dea06cd834640 17e9110d5a01ed9297bfd0b543223c02b2af7654 20c7465476f92c5debdc7960cb8858956136962c2f24f77a497a99db90e5dc1e Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8	116 B	2023-03-07	2023-05-25
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8 IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-05-25 20:48:24 Times Seen20 Hash abf179a91aebe05e8191271c7894fc8d 4f550a9f4fc4e6f53f7d4ce3e8a9af953fcbdb5b 998c2534e6829866e1b61b4d4af6abbfe19c844e83eb9e6c000f6186d50ba3c5 Loading...

	www.googletagmanager.com/gtag/js?id=G-1EEJR9725E&l=dataLayer&cx=c	221 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-1EEJR9725E&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:44:02 Last Seen2023-03-08 23:44:02 Times Seen1 Hash 71e07f9be4905f011c337d65eea6b1ea 48069cf9efd27f53d053c803a257fe414c20dca9 9cb164ad5a00a9712614a753883d35333b5561316f7cc70076c09ec067433b57 Loading...

	pixel.mathtag.com/sync/iframe?mt_uuid=a2fc6392-ff2d-4c00-80f9-8c8fa1b654c3&no_iframe=1&mt_adid=249026&source=mathtag	643 B	2023-03-07	2023-03-17
Pretty URL pixel.mathtag.com/sync/iframe?mt_uuid=a2fc6392-ff2d-4c00-80f9-8c8fa1b654c3&no_iframe=1&mt_adid=249026&source=mathtag IP 2.18.172.207 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:42 Last Seen2023-03-17 12:46:46 Times Seen1 Hash dc6f1789f9271ac721dd1a4c46029089 5321f3beb6309a3a8d1cffc3314638418891f78c 4c0963c4a64be36b64d44218fc19d45763a6e8b122ce4085d07e020424e458ef Loading...

	testedforyou.net/js/markedsettings.js	68 B	2023-03-07	2023-07-17
Pretty URL testedforyou.net/js/markedsettings.js IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-07-17 05:53:35 Times Seen21 Hash 7a26d76f7b0a4e98b09b9ac9e4dc9a21 196c00e4855221dcb3eb88a479ed07f3ebbe6f40 5c93112a1c8f2dde03c35f69a609184a74546ed71e629dd1c639758c93d990fd Loading...

	amplify.outbrain.com/cp/obtp.js	17 kB	2023-03-08	2023-11-28
Pretty URL amplify.outbrain.com/cp/obtp.js IP 2.18.173.74 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:29 Last Seen2023-11-28 17:55:58 Times Seen4 Hash fe80c55f1e1387116ff9765261ed192c 7e5d268638aba6eb152ea69de285b9bb0cbc7869 1ccdc085b5be138822c5352d11f93edad63feaf4a7cbcac15314705a863492e7 Loading...

	static.ads-twitter.com/uwt.js	58 kB	2023-03-08	2024-04-20
Pretty URL static.ads-twitter.com/uwt.js IP 151.101.244.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:46 Last Seen2024-04-20 17:48:03 Times Seen4329 Hash 32ad004436155ec972bc50e6238b5b67 9b2cdb645c2fa5b98a9d05dcdca521fed4a17b7b cf7fcc9f75c8717897bfaef72f303fab423ce1b70c98512aeb3677e4af988dee Loading...

	connect.facebook.net/signals/plugins/identity.js?v=2.9.89	65 kB	2023-03-08	2024-02-19
Pretty URL connect.facebook.net/signals/plugins/identity.js?v=2.9.89 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:50 Last Seen2024-02-19 23:40:48 Times Seen4401 Hash ed5d6caf417fab681343bc3414babc55 410ba8d8866d7c7df41f21526345cfb7426386f2 7e86f52cb0d423805ec541a4bccae5156a01fbe36355e6d798a450593212651f Loading...

	tr.outbrain.com/cachedClickId?marketerId=00b8a9819ec160bbc052781fa80381bd28	35 B	2023-03-07	2024-02-13
Pretty URL tr.outbrain.com/cachedClickId?marketerId=00b8a9819ec160bbc052781fa80381bd28 IP 70.42.32.31 ASN #22075 AS-OUTBRAIN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2024-02-13 00:48:29 Times Seen1372 Hash 75c843c7b717e7b722777907475c67a3 983d1c9a05b315288039b9d4694ce3b402259240 1d348f9f803c95305f63def9d75fd50e79e54a375e1a4a888edbbea366845580 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PM3XLW4	227 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PM3XLW4 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:44:03 Last Seen2023-03-08 23:44:03 Times Seen1 Hash 65d1ed8dec3b0bfabae6a1a7360b7da0 7a8fbcaff347f6175d1f7906aa39aa61b83904dc f1972320e14f0537c60139a8343683e47840c68b8d62520fe64053dfc51c81f8 Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8	357 B	2023-03-07	2023-07-17
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8 IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-07-17 05:53:35 Times Seen21 Hash 32f4e2be313973a95dde83a4374b4f9c 96ff52108e8be2069feda367deb5338a855f055d 1c0347f358b63ac112e6acc6fe092cdeacfa16f211212c32802bf102a3e23705 Loading...

	trc.taboola.com/1282895/trc/3/json?tim=1670577964867&data=%7B%22id%22%3A821%2C%22ii%22%3A%22%2Fbr%2Ftfu-du-101%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670577964860%2C%22cv%22%3A%2220221206-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dauslogic-outbytedriverupdater-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670577964866%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A61%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i	2.6 kB	2023-03-08	2023-03-08
Pretty URL trc.taboola.com/1282895/trc/3/json?tim=1670577964867&data=%7B%22id%22%3A821%2C%22ii%22%3A%22%2Fbr%2Ftfu-du-101%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670577964860%2C%22cv%22%3A%2220221206-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dauslogic-outbytedriverupdater-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670577964866%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A61%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i IP 151.101.129.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:44:03 Last Seen2023-03-08 23:44:03 Times Seen1 Hash add9752b9c48207b7d4073784d1307cc eb875e16924accfd73f49caa82efda7f6d80bc25 747fb1887ee43482ca05b99efda202168b28f8393ab1617da044225d06a2254d Loading...

	cdn.taboola.com/libtrc/unip/1282895/tfa.js	59 kB	2023-03-08	2023-03-08
Pretty URL cdn.taboola.com/libtrc/unip/1282895/tfa.js IP 151.101.129.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:22:14 Last Seen2023-03-08 23:44:03 Times Seen1 Hash dea0be585e2e70ef8783b9584bdde038 384b639bcc094b41145dbb2a4e381118f2045ca2 841597689fe4edb1666387b69d679e30b95e14d2bec029afe8d72deae919a75b Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-08	2023-11-28
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-11-28 17:55:58 Times Seen32 Hash a6ef7927128284961f4cadd572969f09 57e21033749687e69de710a0be6d4244edf1fe51 d5c905d7ce4679b183eb11f7c6811682ddffbf0f037590360ae2b1a84a51ef1b Loading...

	www.google-analytics.com/plugins/ua/linkid.js	1.6 kB	2023-03-07	2024-04-15
Pretty URL www.google-analytics.com/plugins/ua/linkid.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-15 19:01:06 Times Seen1974 Hash 0cc3a63fe10060af4a349e5df666eefe 3e8d3925b550345123f2cab26568221fd4154f9c 92fca55833f48b4289ac8f1cedd48752b580fce4ec4b5d81670b8193d6e51b54 Loading...

	connect.facebook.net/signals/config/191112919472843?v=2.9.89&r=stable	300 kB	2023-03-08	2023-03-11
Pretty URL connect.facebook.net/signals/config/191112919472843?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:38:12 Last Seen2023-03-11 23:28:19 Times Seen1 Hash 8bf78f1ae32c8b9a6c36a81c799a5a1d e5faa3c8956cb1441a89aa7956b0a742aedae147 48b5725872e74c96a78baafde366bbcbe1b735b1303ab4f1edb58fe706c8f589 Loading...

	testedforyou.net/js/jquery/jquery-1.9.1.min.js	93 kB	2023-03-07	2023-09-23
Pretty URL testedforyou.net/js/jquery/jquery-1.9.1.min.js IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:24 Last Seen2023-09-23 06:41:55 Times Seen62 Hash 8a5dd9281b5fb7d3275f66f89dc2bc34 bd4e2b0622a87370bd7ef3972a6dfedb61b54bf5 372a84f4756de5976a1e594ee6ef4ff5c7f31f378b358d157362bef727db8b0b Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MXXFW64	167 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MXXFW64 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:44:03 Last Seen2023-03-08 23:44:03 Times Seen1 Hash c1c71ff07cd28fc628c037a0cebbe267 a9619dc671e024c6a6b7703b8bdf2f0da665b8bf d2e07eb299b492762b323a0f07437f0ba8b36271b665306b72d956c594a2cd56 Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8	337 B	2023-03-07	2024-02-11
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8 IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2024-02-11 08:15:23 Times Seen1 Hash cf372d2e719dd784017302550951e10b da6dab8a8d19bc2c0d35933fe108118e4e799aa2 668de32dcfce83948b9839d73a1e7ab333fba85a3c791ee323e91f8b29193bf8 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-20
Pretty URL www.google-analytics.com/analytics.js IP 216.239.32.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-20 17:36:09 Times Seen1522 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	mc.yandex.ru/metrika/tag.js	216 kB	2023-03-08	2023-03-08
Pretty URL mc.yandex.ru/metrika/tag.js IP 93.158.134.119 ASN #13238 YANDEX LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:22:14 Last Seen2023-03-08 23:49:51 Times Seen1 Hash 823fcacf7d85874ea105777323a39d4e aae88bba673251a3f1e723e1223fa7587449b21b 3db6cd613765ac837ce5d46c1673c2751261b3f1642c724c8f1beeb724ef46ec Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8	341 B	2023-03-07	2023-12-22
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8 IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:31 Last Seen2023-12-22 05:22:57 Times Seen27 Hash 27f9060b4a2db15382c76283953f802d 9d9eb2c094a6f785909a62cd68823ac912496b7a e9408c3242693122dba00a488a161ef09876a3b8451f7c7cd61f35da4859206e Loading...

	testedforyou.net/sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzE2ZWk4IiwibWFya2VycyI6IjEyMDkwOTI2MDRfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTEyMDkwOTI2MDRfY2FydF9kdV9kYXJrdGhlbWUifQ==	7.0 kB	2023-03-08	2023-03-08
Pretty URL testedforyou.net/sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzE2ZWk4IiwibWFya2VycyI6IjEyMDkwOTI2MDRfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTEyMDkwOTI2MDRfY2FydF9kdV9kYXJrdGhlbWUifQ== IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:44:03 Last Seen2023-03-08 23:44:03 Times Seen1 Hash 0b7efdeeba0297db4b812dccac1f3fa0 d4c42c4af61793f356c5b573788d69ec2a732751 4ec377abf67aa3b390f77c9ecda74d73d88338dba9a0038167c1d915a10e1e21 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 24b3fe76787f30d215b8df7eede07d73	713 B	2023-03-07	2023-03-17
Pretty Observations First Seen2023-03-07 01:42:31 Last Seen2023-03-17 10:20:11 Times Seen1 Hash 24b3fe76787f30d215b8df7eede07d73 e2c6f739869d439f05db0c963fc52da347400a69 bc3a343c8c55811e879d4a57b5de0d127b893cd23465fcb58c1d1d6d3ee9eb4c Loading...

	#2 Eval - cdedb9e2e83331be9ac9c7757c473106	704 B	2023-03-07	2023-03-17
Pretty Observations First Seen2023-03-07 01:42:31 Last Seen2023-03-17 10:20:11 Times Seen1 Hash cdedb9e2e83331be9ac9c7757c473106 47c892aeb98fb3b828fd25c9b9409fb1f14f781d 3632180ed11ab306a3292f979f71d72cd82739b7bc724a7a7d01f996a4f4f8bf Loading...

	#3 Eval - 5ec5ad77f21e3f53bcb406c6bc3a11f7	83 B	2023-03-07	2024-04-21
Pretty Observations First Seen2023-03-07 01:42:31 Last Seen2024-04-21 17:12:26 Times Seen68 Hash 5ec5ad77f21e3f53bcb406c6bc3a11f7 7ebe251c9c00289bc969438233935497d29efb62 ab3187de66558ccc057ca177ceb858d83970394993f2ca180e04ceeeec1db0dc Loading...

	#4 Eval - d3ee496c4032bb6fe8a1be2fa8487107	699 B	2023-03-07	2023-03-17
Pretty Observations First Seen2023-03-07 01:42:31 Last Seen2023-03-17 10:20:11 Times Seen1 Hash d3ee496c4032bb6fe8a1be2fa8487107 2fea300e81b678c27724950ce65d01b51ab6ee42 203827c8ccdf81c8c134d8109a023515afebf623b720b07c79c6147797803cbc Loading...

	#5 Eval - b4954138278fe12fa7ee4c63455e4acf	923 B	2023-03-07	2023-05-25
Pretty Observations First Seen2023-03-07 01:42:31 Last Seen2023-05-25 20:48:24 Times Seen19 Hash b4954138278fe12fa7ee4c63455e4acf d55b4788473619d8c6fdcfa525b39034273a4f8a 7949d40a240d20bbc2b7688b881a07833201149200a17dc3bee8a390fe0ad679 Loading...

	#6 Eval - fe2dd7333265c13126cf892c8bfeb58d	731 B	2023-03-07	2023-05-25
Pretty Observations First Seen2023-03-07 01:42:31 Last Seen2023-05-25 20:48:24 Times Seen20 Hash fe2dd7333265c13126cf892c8bfeb58d 873da59845851456cac3107051891de35cf794b2 968af3a17139ce074afbd647eaf6aedb2b1d42560acef2cbdaf10a79c80945ea Loading...

	#7 Eval - 7607c228e83e34ce781fec68fe31315a	823 B	2023-03-07	2023-12-22
Pretty Observations First Seen2023-03-07 01:42:31 Last Seen2023-12-22 05:22:57 Times Seen30 Hash 7607c228e83e34ce781fec68fe31315a f3c3c72717d8d077304ce419a674262e3e316062 263b8517a468db4d68244cc32497d698a1f2134e48da14b653730ad9eb5e8b9e Loading...

	#8 Eval - 8eb844dfd02a8ec7e6dfc733c4442c05	419 B	2023-03-07	2023-12-22
Pretty Observations First Seen2023-03-07 13:54:20 Last Seen2023-12-22 05:22:57 Times Seen30 Hash 8eb844dfd02a8ec7e6dfc733c4442c05 2924aa0801818c981e4bd6b528071c48a1a2e6e2 5056fe8ebe4adddcfa058eb5e15e7b03eec00291d8d4e2a1db170e393162f390 Loading...

HTTP Transactions (91)

URL IP Response Size

suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4

18.192.108.151

302

0 B

URL HTTP/1.1
suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4
IP
18.192.108.151:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /2c248bc7-db3a-477f-894e-709f28c878b4 HTTP/1.1
Host: suscoop-comithers.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 
Server: nginx
Date: Fri, 09 Dec 2022 09:26:03 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://xoomber.com/WJfYxY7T?sub_id_2=w1j2ii07ll6kh12l29gu7o7o&sub_id_3=2c248bc7-db3a-477f-894e-709f28c878b4_
Pragma: no-cache
Set-Cookie: 2c248bc7-db3a-477f-894e-709f28c878b4-v4=AC6dhTuHt4ElmiyPYm1GOZYfxRiZyAZEoqlCOne25P8; Max-Age=86400; Expires=Sat, 10-Dec-2022 09:26:03 GMT; Domain=suscoop-comithers.icu; Path=/; HttpOnly
cc-v4=t8Hp2%2BwCgNedgsKRqFXmNBnP3%2FriHHczfF0CdfmFppk%2By2a7qaVqFT8JLVX48tDqkquHgp409QKeXACC8nCtwu627MsOfo3KjZ1BHQWDVFpSrtVaNMbO06oW6%2FHLWHRF5PxHQSnrtZxjzDktMVHtBg%3D%3D; Max-Age=31536000; Expires=Sat, 09-Dec-2023 09:26:03 GMT; Domain=suscoop-comithers.icu; Path=/; HttpOnly

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2855
Expires: Fri, 09 Dec 2022 10:13:38 GMT
Date: Fri, 09 Dec 2022 09:26:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14486
Expires: Fri, 09 Dec 2022 13:27:29 GMT
Date: Fri, 09 Dec 2022 09:26:03 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 09:08:18 GMT
content-type: application/json
age: 1066
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4401
Expires: Fri, 09 Dec 2022 10:39:25 GMT
Date: Fri, 09 Dec 2022 09:26:04 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: N1ZofQzo5KP98rGIjYwBjL8DH46V2n3GnogNwzh/dMmkeYOHQ7bUCie2xujqJ1VDuMTcSoWAcj5semcM+bSF3Q==
x-amz-request-id: PRT7N3F5FPN9YTKB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 08:48:16 GMT
age: 2268
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:04 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
807d386d37a40d6701f61766a9221ebe
fe4ab47cec624fb50b686e2315ae4186b7cca1ba
3bbf9efb40f7fc73689b5e19c8cf1ad8009f64a51b1e0938aafa0d394723458d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3BBF9EFB40F7FC73689B5E19C8CF1AD8009F64A51B1E0938AAFA0D394723458D"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20570
Expires: Fri, 09 Dec 2022 15:08:54 GMT
Date: Fri, 09 Dec 2022 09:26:04 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 09:07:55 GMT
age: 1089
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

xoomber.com/WJfYxY7T?sub_id_2=w1j2ii07ll6kh12l29gu7o7o&sub_id_3=2c248bc7-db3a-477f-894e-709f28c878b4_

104.200.16.65

302 Found

0 B

URL HTTP/1.1
xoomber.com/WJfYxY7T?sub_id_2=w1j2ii07ll6kh12l29gu7o7o&sub_id_3=2c248bc7-db3a-477f-894e-709f28c878b4_
IP
104.200.16.65:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /WJfYxY7T?sub_id_2=w1j2ii07ll6kh12l29gu7o7o&sub_id_3=2c248bc7-db3a-477f-894e-709f28c878b4_ HTTP/1.1
Host: xoomber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 Found
Server: nginx
Date: Fri, 09 Dec 2022 09:26:04 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Location: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8
Pragma: no-cache
Set-Cookie: _subid=s8hnpa316ei8;Expires=Monday, 09-Jan-2023 09:26:04 GMT;Max-Age=2678400;Path=/
9f320=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjE3NjVcIjoxNjcwNTc3OTY0fSxcImNhbXBhaWduc1wiOntcIjU5OVwiOjE2NzA1Nzc5NjR9LFwidGltZVwiOjE2NzA1Nzc5NjR9In0.IIUqyLQuCgYU42YDdeSFibgZpR4KYe8X331a20qgOpg;Expires=Sunday, 17-Nov-2075 18:52:08 GMT;Max-Age=1670664364;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3822
Cache-Control: max-age=89070
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:04 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 10:10:34 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ed24016e566581f6af240f46e4e75e1a
4d010c690901232294e3f92134e0894677fd4276
e01032fbc0a83df2b562a78d45bf4ef7a0362914eff99b65f5782084236ac37c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E01032FBC0A83DF2B562A78D45BF4EF7A0362914EFF99B65F5782084236AC37C"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10050
Expires: Fri, 09 Dec 2022 12:13:34 GMT
Date: Fri, 09 Dec 2022 09:26:04 GMT
Connection: keep-alive

push.services.mozilla.com/

35.155.171.116

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.155.171.116:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nb3IHV6lc6ajcVgxTxBO+A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iSA14p4RZaehGA8PSjYLad59EvE=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
795e67bdfadc3c890a663080413b56b7
fdefde3befb6aceac3c337c34c8d738f5091908c
8375b55cfc13989b0cf96293b7bead2ce5811a993b3445da1776ca7015c36985

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
795e67bdfadc3c890a663080413b56b7
fdefde3befb6aceac3c337c34c8d738f5091908c
8375b55cfc13989b0cf96293b7bead2ce5811a993b3445da1776ca7015c36985

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-MXXFW64

142.250.74.168

200 OK

59 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-MXXFW64
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (10590)
Size
59 kB (58558 bytes)
Hash
2b4842bb3fe5eca5fdb6930158f94118
6bbd1a7b5c84a4275ce067761c9c174e190f55d7
d83a2f80600c7b213ebb5f8e017c6e2977757453d3137087a82060ec7912f599

HTTP Headers

GET /gtm.js?id=GTM-MXXFW64 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 09:26:05 GMT
expires: Fri, 09 Dec 2022 09:26:05 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 58558
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-PM3XLW4

142.250.74.168

200 OK

76 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-PM3XLW4
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (16509)
Size
76 kB (75599 bytes)
Hash
c976574a3dbffd32dcfdb5393986962c
7aa0e7c2706ed9c951ba846093884c6ee1304fc9
f7d3dedd9747075ac641048fe6d6902051d16d1ff965fb805ee0d5fffe3c2392

HTTP Headers

GET /gtm.js?id=GTM-PM3XLW4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 09:26:05 GMT
expires: Fri, 09 Dec 2022 09:26:05 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75599
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

testedforyou.net/tfu-du-101/jscss/style.css

45.79.172.174

200 OK

3.7 kB

URL HTTP/2
testedforyou.net/tfu-du-101/jscss/style.css
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
data
Size
3.7 kB (3693 bytes)
Hash
9cd13c50fee103aa6aed69dbbbb41db0
b2fa00b037f180e64c158eb9044af10e9e9b7076
d607890e502e5bd9551d2fa7ac3ea59a6a71ec4255d7574c081eb2896a4ee95b

HTTP Headers

GET /tfu-du-101/jscss/style.css HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: text/css
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: W/"63901dcc-3716"
expires: Fri, 16 Dec 2022 09:26:05 GMT
cache-control: max-age=604800, max-age=604800,  public
content-encoding: gzip
X-Firefox-Spdy: h2

testedforyou.net/tfu-du-101/i/header-dark.png

45.79.172.174

200 OK

11 kB

URL HTTP/2
testedforyou.net/tfu-du-101/i/header-dark.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 1440 x 47, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10755 bytes)
Hash
cf28b428b2ddc6ddd119feb17c1cab37
fdc189f2ba828a2b218889c446523591c10bfc83
f63c221f15f4f17ca5fe67375792205b28020a2def0e7709a09855cbb1db3974

HTTP Headers

GET /tfu-du-101/i/header-dark.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/tfu-du-101/jscss/style.css
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: image/png
content-length: 10755
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-2a03"
expires: Fri, 16 Dec 2022 09:26:05 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/i/firefox-logo.png

45.79.172.174

200 OK

3.4 kB

URL HTTP/2
testedforyou.net/download-instructions/i/firefox-logo.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 65 x 62, 8-bit colormap, non-interlaced\012- data
Size
3.4 kB (3413 bytes)
Hash
00f32dc87963ea21ce76e7adae907168
203c9f4776878e4e9ea52174470a3fe14655f9da
14931c32197c6c58d56252c12b5b89168bd2f5711e773d338d922cc2a641a1a5

HTTP Headers

GET /download-instructions/i/firefox-logo.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: image/png
content-length: 3413
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-d55"
expires: Fri, 16 Dec 2022 09:26:05 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/driver-updater/i/firefox-screen.png

45.79.172.174

200 OK

25 kB

URL HTTP/2
testedforyou.net/download-instructions/driver-updater/i/firefox-screen.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 800 x 175, 8-bit colormap, non-interlaced\012- data
Size
25 kB (25154 bytes)
Hash
15d3fdb92892b2dcbcaf0f1944f8c198
d17eb72157196c7eee1422b768f4b29453085749
13e038b19f340445d1dfdba04fcbe7543f9cb93b9d5ee78afb930188305db013

HTTP Headers

GET /download-instructions/driver-updater/i/firefox-screen.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: image/png
content-length: 25154
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-6242"
expires: Fri, 16 Dec 2022 09:26:05 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/i/steps.png

45.79.172.174

200 OK

1.4 kB

URL HTTP/2
testedforyou.net/download-instructions/i/steps.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 180 x 60, 8-bit colormap, non-interlaced\012- data
Size
1.4 kB (1377 bytes)
Hash
54224278a486da9c98d0ce8f1016293f
eacbb28164100b95ffe54db614f5901ea06854e4
6156205b893bc350ea9ea0bea3cda0073746982ea9feef9776c6472181282ac7

HTTP Headers

GET /download-instructions/i/steps.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: image/png
content-length: 1377
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-561"
expires: Fri, 16 Dec 2022 09:26:05 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/i/firefox-download-icon.png

45.79.172.174

200 OK

358 B

URL HTTP/2
testedforyou.net/download-instructions/i/firefox-download-icon.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 32 x 24, 8-bit colormap, non-interlaced\012- data
Size
358 B (358 bytes)
Hash
747cd64b62e9294e35e82c3811b59341
96001dcd8a8dcfde7ab0f16c35a99c693ba6ef65
6b377bc2324320c6521ab6b2bdb41a0d4b96d2683badc9943b03754370f0d3bd

HTTP Headers

GET /download-instructions/i/firefox-download-icon.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: image/png
content-length: 358
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-166"
expires: Fri, 16 Dec 2022 09:26:05 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/i/close.png

45.79.172.174

200 OK

657 B

URL HTTP/2
testedforyou.net/download-instructions/i/close.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 28 x 28, 8-bit colormap, non-interlaced\012- data
Size
657 B (657 bytes)
Hash
21953dc66e942356724bb035a65a6979
a1db3edbc90a640e9bd89b521f5f5b410578722e
36e39164f94c90a54cf45f905a17a3916aba8b6b0831c6a194a6293c098704bf

HTTP Headers

GET /download-instructions/i/close.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: image/png
content-length: 657
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-291"
expires: Fri, 16 Dec 2022 09:26:05 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/tfu-du-101/jscss/fonts/open-sans-normal.woff

45.79.172.174

200 OK

34 kB

URL HTTP/2
testedforyou.net/tfu-du-101/jscss/fonts/open-sans-normal.woff
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
Web Open Font Format, TrueType, length 34312, version 1.1\012- data
Size
34 kB (34312 bytes)
Hash
aba4b4c53579deb54f3fd349a21abce3
a96386adaa480e3a61febd60afa422f8c6dbc7c6
b9e0699272a5df7a51862b402ac6294d8d20993e67588001b8b44bfeb5438a6a

HTTP Headers

GET /tfu-du-101/jscss/fonts/open-sans-normal.woff HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://testedforyou.net/tfu-du-101/jscss/style.css
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: application/font-woff
content-length: 34312
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-8608"
expires: Fri, 16 Dec 2022 09:26:05 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/tfu-du-101/jscss/fonts/open-sans-bold.woff

45.79.172.174

200 OK

35 kB

URL HTTP/2
testedforyou.net/tfu-du-101/jscss/fonts/open-sans-bold.woff
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
Web Open Font Format, TrueType, length 34996, version 1.1\012- data
Size
35 kB (34996 bytes)
Hash
d790d2580f8e2c9da6dc54f3b7085c40
1f0121abacf2d6877877a7f448bef3985fbfc4e6
748e14b7cf70561ab9d7acdddd1014bcc19d528b0947d4dbc5ec04f316aa8885

HTTP Headers

GET /tfu-du-101/jscss/fonts/open-sans-bold.woff HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://testedforyou.net/tfu-du-101/jscss/style.css
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: application/font-woff
content-length: 34996
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-88b4"
expires: Fri, 16 Dec 2022 09:26:05 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/tfu-du-101/jscss/fonts/open-sans-italic.woff

45.79.172.174

200 OK

36 kB

URL HTTP/2
testedforyou.net/tfu-du-101/jscss/fonts/open-sans-italic.woff
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
Web Open Font Format, TrueType, length 36504, version 1.1\012- data
Size
36 kB (36504 bytes)
Hash
f6e0dbd5a68b19e4129059bd95f8215e
a687d6fde61570c5884db570299a702edda1fdcd
489bb93c6ad737c927ec0189a08eef50b7418653d64951ffa18497435036400a

HTTP Headers

GET /tfu-du-101/jscss/fonts/open-sans-italic.woff HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://testedforyou.net/tfu-du-101/jscss/style.css
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: application/font-woff
content-length: 36504
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-8e98"
expires: Fri, 16 Dec 2022 09:26:05 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

www.redditstatic.com/ads/pixel.js

151.101.129.140

200 OK

7.7 kB

URL HTTP/2
www.redditstatic.com/ads/pixel.js
IP
151.101.129.140:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (25224)
Size
7.7 kB (7722 bytes)
Hash
3528fd00b652f61a266eb584d96f4fcc
d89e16aa1323c6c4f1ed3941122020684a599361
77efa9f2ddfdca7a45df37bbcd22fdaeb7b97161a2acd87e21eb78bdeaad1332

HTTP Headers

GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 16:45:46 GMT
etag: "3528fd00b652f61a266eb584d96f4fcc"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 09 Dec 2022 09:26:05 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true,  "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2

pixel.mathtag.com/event/js?mt_id=1564089&mt_adid=249026&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3=

2.18.172.207

200 OK

1.5 kB

URL HTTP/1.1
pixel.mathtag.com/event/js?mt_id=1564089&mt_adid=249026&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3=
IP
2.18.172.207:0
ASN
#16625 AKAMAI-AS

File type
ASCII text
Size
1.5 kB (1493 bytes)
Hash
71610cebde40b33ffdd00c17d56d31ea
93873be83f31f85afad0a55050d297df79d573db
bbf12ece9c1d31a48df28304d742b320273262da8fd2fb868db5062acd826578

HTTP Headers

GET /event/js?mt_id=1564089&mt_adid=249026&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3= HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 1493
Access-Control-Allow-Origin: *
Server: MT3 180 1fd3e2d master cdg-pixel-x9 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Fri, 09 Dec 2022 09:26:04 GMT
Date: Fri, 09 Dec 2022 09:26:05 GMT
Connection: keep-alive
Set-Cookie: uuid=a2fc6392-ff2d-4c00-80f9-8c8fa1b654c3; domain=.mathtag.com; path=/; expires=Sat, 06-Jan-2024 09:26:05 GMT; SameSite=None; Secure

pixel.mathtag.com/sync/iframe?mt_uuid=a2fc6392-ff2d-4c00-80f9-8c8fa1b654c3&no_iframe=1&mt_adid=249026&source=mathtag

2.18.172.207

200 OK

713 B

URL HTTP/1.1
pixel.mathtag.com/sync/iframe?mt_uuid=a2fc6392-ff2d-4c00-80f9-8c8fa1b654c3&no_iframe=1&mt_adid=249026&source=mathtag
IP
2.18.172.207:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document, ASCII text
Size
713 B (713 bytes)
Hash
f853f2ecf3f2d763c4057f4ff5c3e4e8
0f9ca6de16aa4261f1202443311462a81717dd85
8040be8c28a19b0f78481f2da17e7220e75adde27eb9713ff626652a066f92da

HTTP Headers

GET /sync/iframe?mt_uuid=a2fc6392-ff2d-4c00-80f9-8c8fa1b654c3&no_iframe=1&mt_adid=249026&source=mathtag HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 713
Access-Control-Allow-Origin: *
Server: MT3 180 1fd3e2d master cdg-pixel-x10 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Fri, 09 Dec 2022 09:26:04 GMT
Date: Fri, 09 Dec 2022 09:26:05 GMT
Connection: keep-alive

pixel.mathtag.com/comp/img?mt_id=99&ns=xx&bcdv=0

2.18.172.207

200 OK

0 B

URL HTTP/1.1
pixel.mathtag.com/comp/img?mt_id=99&ns=xx&bcdv=0
IP
2.18.172.207:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /comp/img?mt_id=99&ns=xx&bcdv=0 HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pixel.mathtag.com/sync/iframe?mt_uuid=a2fc6392-ff2d-4c00-80f9-8c8fa1b654c3&no_iframe=1&mt_adid=249026&source=mathtag
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 0
Access-Control-Allow-Origin: *
Server: MT3 180 1fd3e2d master cdg-pixel-x30 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Fri, 09 Dec 2022 09:26:04 GMT
Date: Fri, 09 Dec 2022 09:26:05 GMT
Connection: keep-alive
Set-Cookie: uuid=69896392-ff2d-4600-afba-61133f619bd3; domain=.mathtag.com; path=/; expires=Sat, 06-Jan-2024 09:26:05 GMT; SameSite=None; Secure

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
278fb85a4e953512d99b362066a24811
e9b4d3903bda80e213fb3407d15164191e7c55c7
06b457f816f4e17f622d504de3d6dad6acfa25cb98b29c5d90ee9d16246764c8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "06B457F816F4E17F622D504DE3D6DAD6ACFA25CB98B29C5D90EE9D16246764C8"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8536
Expires: Fri, 09 Dec 2022 11:48:21 GMT
Date: Fri, 09 Dec 2022 09:26:05 GMT
Connection: keep-alive

amplify.outbrain.com/cp/obtp.js

2.18.173.74

200 OK

5.3 kB

URL HTTP/1.1
amplify.outbrain.com/cp/obtp.js
IP
2.18.173.74:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (16574), with no line terminators
Size
5.3 kB (5269 bytes)
Hash
5cdda5ed80a4ee13f700ae502f7cd4ec
0e6aa932abf3c56561a686aa3e8d069aaa3ca228
d54fc3e1792330cc768902f861f0a79ecffbfd23b8db14f354e8fcefd1c831c1

HTTP Headers

GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "fe80c55f1e1387116ff9765261ed192c:1669645506.686439"
Last-Modified: Mon, 28 Nov 2022 14:22:05 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Fri, 09 Dec 2022 09:46:05 GMT
Date: Fri, 09 Dec 2022 09:26:05 GMT
Content-Length: 5269
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f724984787cae37de4fc0329604dfe44
bf541d550144ae1ebe97bf815b7dd5f37c46a2ee
0a3b089ca393ee6ace33b69c186aa040eefb6f38b8db8afc74cf835ab7e8dfe0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1520
Cache-Control: max-age=113061
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:05 GMT
Etag: "63920fe2-1d7"
Expires: Sat, 10 Dec 2022 16:50:26 GMT
Last-Modified: Thu, 08 Dec 2022 16:25:06 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

www.google-analytics.com/analytics.js

216.239.32.178

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
216.239.32.178:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 09 Dec 2022 08:41:08 GMT
expires: Fri, 09 Dec 2022 10:41:08 GMT
cache-control: public, max-age=7200
age: 2697
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.taboola.com/libtrc/unip/1282895/tfa.js

151.101.129.44

200 OK

18 kB

URL HTTP/2
cdn.taboola.com/libtrc/unip/1282895/tfa.js
IP
151.101.129.44:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (58976)
Size
18 kB (18130 bytes)
Hash
359287c116c89cd3df815a2ae584dc0b
cc692481e299de1347563a75553654e595db7829
4864bde554f27f22b5dd703eb3b2ddb13ab7370a2aecb144384473ff065d7fcf

HTTP Headers

GET /libtrc/unip/1282895/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: OpvsmASRjiErc3cy55TC7YlFZ5f3/90eRUeot1Lx+JmzwxzwAPwTFqJ6xABUL99hJQ7qHU8ayJ8=
x-amz-request-id: 9TT7SY4YZ1CC5V1Q
x-amz-replication-status: COMPLETED
last-modified: Tue, 06 Dec 2022 13:06:22 GMT
etag: "dea0be585e2e70ef8783b9584bdde038"
x-amz-version-id: gE9gAIUax06cka88_NxcaA934Hs3Gb33
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 09:26:05 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-bma1630-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670577966.689384,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 17
content-length: 18130
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
32d90ff0cc366730c3633c1201b4c058
f4175292b607197a15085e14bf69df301dff6706
b4b2f80fbe9b02f3d54dc35a3738c31a4d7cb5a5e528fcbce50263d8c458231a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27340 bytes)
Hash
44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: e1FKl6hCg2aZM1wk8NNLskldRxaLZ07WG3/UdV++Jlzb6LFzIp5y83iQSDD89kkWKSYnmw979LcvCHwpq1az6Q==
content-length: 27340
x-fb-trip-id: 1904183273
date: Fri, 09 Dec 2022 09:26:05 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.ads-twitter.com/uwt.js

151.101.244.157

200 OK

15 kB

URL HTTP/2
static.ads-twitter.com/uwt.js
IP
151.101.244.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (57596), with no line terminators
Size
15 kB (15375 bytes)
Hash
573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7

HTTP Headers

GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Fri, 09 Dec 2022 09:26:05 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2

testedforyou.net/favicon.ico

45.79.172.174

200 OK

1.2 kB

URL HTTP/2
testedforyou.net/favicon.ico
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
68cd66a66c961a0c6ad781c1ca84c6ee
f0ba1cafd867af68e1770e1e95798b6b99c987e6
7b526ade6f91f6990050ea71697bc782b47f119af917914b10939ae8a044490a

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D; outbyte-sess=g15p8ho4e6av0sklos6ns48fsa; _sid=1xJPOIyJht; _sidd=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; _ga=GA1.1.1149577512.1670577965; _fbp=fb.1.1670577965181.8018101279; _gcl_au=1.1.2107986205.1670577964; _rdt_uuid=1670577964557.ec43f218-375c-40e0-8641-12e8f1a828a8; _ga_1EEJR9725E=GS1.1.1670577964.1.0.1670577964.60.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: image/x-icon
content-length: 1150
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-47e"
expires: Fri, 16 Dec 2022 09:26:05 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.globalsign.com/gseccovsslca2018

104.18.20.226

200 OK

938 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
938 B (938 bytes)
Hash
6949dc75e40ab59094c41f0892cc9b91
ebd73e5edd0086b7ed30e08c2c1eec5d065eeaa3
7081ad659aeb9f5806263278f3c5d2f93cad17e390eb295cfdb52abc57978792

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 09:26:05 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 13 Dec 2022 06:34:33 GMT
ETag: "ebd73e5edd0086b7ed30e08c2c1eec5d065eeaa3"
Last-Modified: Fri, 09 Dec 2022 06:34:34 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3120
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776cb27dedc1b4fd-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f724984787cae37de4fc0329604dfe44
bf541d550144ae1ebe97bf815b7dd5f37c46a2ee
0a3b089ca393ee6ace33b69c186aa040eefb6f38b8db8afc74cf835ab7e8dfe0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1520
Cache-Control: max-age=113061
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:05 GMT
Etag: "63920fe2-1d7"
Expires: Sat, 10 Dec 2022 16:50:26 GMT
Last-Modified: Thu, 08 Dec 2022 16:25:06 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bf8858fa52de668b0013cf9ce66d290c
9c319173ee6a48c6e717e9e8764008564aabe7ba
93df528ead5887cbbcf51f83c9e6ffa451861ae3145296ab3dfc269067080933

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-1EEJR9725E&cid=1149577512.1670577965&gtm=2oebu0&aip=1&z=1064832394

142.250.74.131

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-1EEJR9725E&cid=1149577512.1670577965&gtm=2oebu0&aip=1&z=1064832394
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-1EEJR9725E&cid=1149577512.1670577965&gtm=2oebu0&aip=1&z=1064832394 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 09:26:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

testedforyou.net/js/markedsettings.js

45.79.172.174

200 OK

124 B

URL HTTP/2
testedforyou.net/js/markedsettings.js
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
data
Size
124 B (124 bytes)
Hash
e51e0e066556de0c5d09677a2a2e5e6b
d5953fc954335ecdab7569d58f23910726c7adca
4ce39352c4036cc10b46c5ba6b715d790463b15644e12d2621e9939a1b3f9b99

HTTP Headers

GET /js/markedsettings.js HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: W/"63901dcc-44"
expires: Fri, 16 Dec 2022 09:26:05 GMT
cache-control: max-age=604800, max-age=604800,  public
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
32d90ff0cc366730c3633c1201b4c058
f4175292b607197a15085e14bf69df301dff6706
b4b2f80fbe9b02f3d54dc35a3738c31a4d7cb5a5e528fcbce50263d8c458231a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

alb.reddit.com/rp.gif?ts=1670577964557&id=t2_33l5nykp&event=ViewContent&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=ec43f218-375c-40e0-8641-12e8f1a828a8&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8

151.101.129.140

200 OK

42 B

URL HTTP/2
alb.reddit.com/rp.gif?ts=1670577964557&id=t2_33l5nykp&event=ViewContent&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=ec43f218-375c-40e0-8641-12e8f1a828a8&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8
IP
151.101.129.140:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /rp.gif?ts=1670577964557&id=t2_33l5nykp&event=ViewContent&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=ec43f218-375c-40e0-8641-12e8f1a828a8&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Fri, 09 Dec 2022 09:26:05 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
9abf81d2f03b46927516b22413785c55
5c5e16d18591fe52bf6ba1676c8f7441d5a29631
6a37afde332bfab52a7b5862b5b7f0b7896d7c8b9946c3a7217b08fe274acdbe

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4295
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:05 GMT
Last-Modified: Fri, 09 Dec 2022 08:14:30 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 313

mc.yandex.ru/metrika/tag.js

93.158.134.119

200 OK

74 kB

URL HTTP/2
mc.yandex.ru/metrika/tag.js
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (598)
Size
74 kB (73711 bytes)
Hash
fb08b4dcffe04b350ba8e7ab80a999a1
dae801d33784397b3ff8fec4b8e7682c4baecea9
62bc4d320a556ec3c63dca1ce47d9e55a2bc15c4eef472f15e5adfb5fd451ad6

HTTP Headers

GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-length: 73711
date: Fri, 09 Dec 2022 09:26:05 GMT
access-control-allow-origin: *
etag: "6391b12a-11fef"
expires: Fri, 09 Dec 2022 10:26:05 GMT
last-modified: Thu, 08 Dec 2022 12:40:58 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2556512b197b09798af71bea10bb4bbb
23b647aca5f8294ae82fa8cc7e2215ebe3347b60
3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

312 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
312 B (312 bytes)
Hash
bddbce055378f16c6fe35bf7d3536f18
52ff92b1a003c6dbf1834fca6a061eb1ed2058fd
ab753e33075500e79eccfea68bf7845c302d1beb5986ba41d562dae595625da3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 732
Cache-Control: max-age=137082
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:05 GMT
Etag: "639270cb-138"
Expires: Sat, 10 Dec 2022 23:30:47 GMT
Last-Modified: Thu, 08 Dec 2022 23:18:35 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 312

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-199245412-1&cid=1149577512.1670577965&jid=786993934&gjid=1243049162&_gid=880494354.1670577965&_u=YCDAiUAjBAAAAEAEK~&z=50333066

64.233.165.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-199245412-1&cid=1149577512.1670577965&jid=786993934&gjid=1243049162&_gid=880494354.1670577965&_u=YCDAiUAjBAAAAEAEK~&z=50333066
IP
64.233.165.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-199245412-1&cid=1149577512.1670577965&jid=786993934&gjid=1243049162&_gid=880494354.1670577965&_u=YCDAiUAjBAAAAEAEK~&z=50333066 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://testedforyou.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 09 Dec 2022 09:26:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

t.co/i/adsct?bci=3&eci=2&event_id=f2720a9f-03ce-49cd-b1df-0f3bf8159c40&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5d882bd1-a617-4b16-8d53-0ab50bacca13&tw_document_href=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o71fv&type=javascript&version=2.3.29

104.244.42.5

200 OK

43 B

URL HTTP/2
t.co/i/adsct?bci=3&eci=2&event_id=f2720a9f-03ce-49cd-b1df-0f3bf8159c40&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5d882bd1-a617-4b16-8d53-0ab50bacca13&tw_document_href=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o71fv&type=javascript&version=2.3.29
IP
104.244.42.5:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=f2720a9f-03ce-49cd-b1df-0f3bf8159c40&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5d882bd1-a617-4b16-8d53-0ab50bacca13&tw_document_href=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o71fv&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 09:26:05 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=808e5a5d-bf5a-4755-b276-7ca21afec21f; Max-Age=63072000; Expires=Sun, 08 Dec 2024 09:26:05 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: cbe3c0b1f9f441e3
strict-transport-security: max-age=0
x-response-time: 106
x-connection-hash: 45560c33c47599b82070f47a05bae90dadcb8316ee729739b8e97a84890b0428
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2556512b197b09798af71bea10bb4bbb
23b647aca5f8294ae82fa8cc7e2215ebe3347b60
3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

status.thawte.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
status.thawte.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
76ab40ab6403ea449a18fb59b1da283e
db5c8571f91993f10ab9f1edc212b5f3b402afc5
97269d6d012a98d1369a5e4b99db28ccd38c6086c386cc03508aff94f5a1c2e3

HTTP Headers

POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3957
Cache-Control: max-age=132780
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:06 GMT
Etag: "63925365-1d7"
Expires: Sat, 10 Dec 2022 22:19:06 GMT
Last-Modified: Thu, 08 Dec 2022 21:13:09 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

status.thawte.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
status.thawte.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
76ab40ab6403ea449a18fb59b1da283e
db5c8571f91993f10ab9f1edc212b5f3b402afc5
97269d6d012a98d1369a5e4b99db28ccd38c6086c386cc03508aff94f5a1c2e3

HTTP Headers

POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3957
Cache-Control: max-age=132780
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:06 GMT
Etag: "63925365-1d7"
Expires: Sat, 10 Dec 2022 22:19:06 GMT
Last-Modified: Thu, 08 Dec 2022 21:13:09 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=f2720a9f-03ce-49cd-b1df-0f3bf8159c40&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5d882bd1-a617-4b16-8d53-0ab50bacca13&tw_document_href=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o71fv&type=javascript&version=2.3.29

104.244.42.131

200 OK

43 B

URL HTTP/2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=f2720a9f-03ce-49cd-b1df-0f3bf8159c40&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5d882bd1-a617-4b16-8d53-0ab50bacca13&tw_document_href=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o71fv&type=javascript&version=2.3.29
IP
104.244.42.131:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=f2720a9f-03ce-49cd-b1df-0f3bf8159c40&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5d882bd1-a617-4b16-8d53-0ab50bacca13&tw_document_href=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o71fv&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 09:26:05 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_8Jiz+gWYH4vQbERJf5LCFw=="; Max-Age=63072000; Expires=Sun, 08 Dec 2024 09:26:06 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 703b44b64b43baed
strict-transport-security: max-age=631138519
x-response-time: 109
x-connection-hash: 63f3e32ada145bc6016efeb2d21347f8f9c5962dac61912b953f0f5fa93b4cad
X-Firefox-Spdy: h2

mc.yandex.ru/watch/65533162?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afp%3A1461%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A941%3Acn%3A1%3Adp%3A0%3Als%3A898249028460%3Ahid%3A223350268%3Az%3A0%3Ai%3A20221209092605%3Aet%3A1670577965%3Ac%3A1%3Arn%3A296929702%3Arqn%3A1%3Au%3A167057796543636009%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C290%2C101%2C1%2C863%2C0%2C%2C329%2C5%2C%2C%2C%2C1590%3Aco%3A0%3Ans%3A1670577962818%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670577965%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)

93.158.134.119

302 Found

503 B

URL HTTP/2
mc.yandex.ru/watch/65533162?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afp%3A1461%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A941%3Acn%3A1%3Adp%3A0%3Als%3A898249028460%3Ahid%3A223350268%3Az%3A0%3Ai%3A20221209092605%3Aet%3A1670577965%3Ac%3A1%3Arn%3A296929702%3Arqn%3A1%3Au%3A167057796543636009%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C290%2C101%2C1%2C863%2C0%2C%2C329%2C5%2C%2C%2C%2C1590%3Aco%3A0%3Ans%3A1670577962818%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670577965%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

GET /watch/65533162?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afp%3A1461%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A941%3Acn%3A1%3Adp%3A0%3Als%3A898249028460%3Ahid%3A223350268%3Az%3A0%3Ai%3A20221209092605%3Aet%3A1670577965%3Ac%3A1%3Arn%3A296929702%3Arqn%3A1%3Au%3A167057796543636009%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C290%2C101%2C1%2C863%2C0%2C%2C329%2C5%2C%2C%2C%2C1590%3Aco%3A0%3Ans%3A1670577962818%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670577965%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: /watch/65533162/1?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afp%3A1461%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A941%3Acn%3A1%3Adp%3A0%3Als%3A898249028460%3Ahid%3A223350268%3Az%3A0%3Ai%3A20221209092605%3Aet%3A1670577965%3Ac%3A1%3Arn%3A296929702%3Arqn%3A1%3Au%3A167057796543636009%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C290%2C101%2C1%2C863%2C0%2C%2C329%2C5%2C%2C%2C%2C1590%3Aco%3A0%3Ans%3A1670577962818%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670577965%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Fri, 09 Dec 2022 09:26:06 GMT
access-control-allow-origin: https://testedforyou.net
set-cookie: yabs-sid=252430241670577966; Path=/; SameSite=None; Secure
i=f5pipNE9G4/c4HJCtRht6CPnat6IHE8bARv8cGiN19HXjh8ViHxIMk7JmvYngvZVgn3kfQmv8+BsZr4gJFGeWVWKrjY=; Expires=Mon, 06-Dec-2032 09:26:04 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=1078843541670577966; Expires=Sat, 09-Dec-2023 09:26:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=1078843541670577966; Expires=Sat, 09-Dec-2023 09:26:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1702113966.yc.1670577966#1702113966.yrts.1670577966#1702113966.yrtsi.1670577966; Expires=Sat, 09-Dec-2023 09:26:06 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 09:26:06 GMT
last-modified: Fri, 09-Dec-2022 09:26:06 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2895
Expires: Fri, 09 Dec 2022 10:14:21 GMT
Date: Fri, 09 Dec 2022 09:26:06 GMT
Connection: keep-alive

mc.yandex.ru/metrika/advert.gif

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/metrika/advert.gif
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Fri, 09 Dec 2022 09:26:06 GMT
access-control-allow-origin: *
etag: "6391b12a-2b"
expires: Fri, 09 Dec 2022 10:26:06 GMT
accept-ranges: bytes
last-modified: Thu, 08 Dec 2022 12:40:58 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2895
Expires: Fri, 09 Dec 2022 10:14:21 GMT
Date: Fri, 09 Dec 2022 09:26:06 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8ff35a0-24dc-4158-b67e-a5f03f5a9022.jpeg

34.120.237.76

200 OK

1.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8ff35a0-24dc-4158-b67e-a5f03f5a9022.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
1.6 kB (1584 bytes)
Hash
4f6cfc43170be4dd0264f2b0b6bcc329
9ad22ea868f3b72832243fd11315c68117c7542b
f5cc67d46241c2f5aebc2515bf8828889f8ceda8112b78cdf925a260b82fd833

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8ff35a0-24dc-4158-b67e-a5f03f5a9022.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 1584
x-amzn-requestid: 7743c8a6-118c-4c69-b833-a9e2f5561a54
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw5VEGV8IAMFcOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903c20-41fdf6d004b388f51fa70833;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:09:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: whmRQYshKD6d2Pz3Z0ZCCFr_MEPR1rEek7nVZqf5XeiWpt1LIcjvBQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:28:14 GMT
age: 21472
etag: "9ad22ea868f3b72832243fd11315c68117c7542b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2895
Expires: Fri, 09 Dec 2022 10:14:21 GMT
Date: Fri, 09 Dec 2022 09:26:06 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bf8858fa52de668b0013cf9ce66d290c
9c319173ee6a48c6e717e9e8764008564aabe7ba
93df528ead5887cbbcf51f83c9e6ffa451861ae3145296ab3dfc269067080933

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6578 bytes)
Hash
8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: nXaZ1pazAGWMI9GFYZjGlvVVIb8wX6feD0O8VpzjsL8F8l3mFmydAw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:59 GMT
age: 7927
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7897 bytes)
Hash
8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oV7bB5Tek01MFi9x2tr_Wix13-UGlQPIt042XM0ALNUvVFYnu5DRcg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:38:26 GMT
age: 20860
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

trc.taboola.com/1282895/trc/3/json?tim=1670577964867&data=%7B%22id%22%3A821%2C%22ii%22%3A%22%2Fbr%2Ftfu-du-101%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670577964860%2C%22cv%22%3A%2220221206-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dauslogic-outbytedriverupdater-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670577964866%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A61%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i

151.101.129.44

200 OK

10 kB

URL HTTP/2
trc.taboola.com/1282895/trc/3/json?tim=1670577964867&data=%7B%22id%22%3A821%2C%22ii%22%3A%22%2Fbr%2Ftfu-du-101%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670577964860%2C%22cv%22%3A%2220221206-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dauslogic-outbytedriverupdater-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670577964866%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A61%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP
151.101.129.44:0
ASN
#54113 FASTLY

File type
data
Size
10 kB (10138 bytes)
Hash
804930365bbf4439b14e8146b78acdd8
9d8b25da32e5a24a112ea92e92680ddfa7631ae8
12dd70d60dd2b1aa170d2307a854fbd860cef92b51d0af9849e63ba6d0a0d740

HTTP Headers

GET /1282895/trc/3/json?tim=1670577964867&data=%7B%22id%22%3A821%2C%22ii%22%3A%22%2Fbr%2Ftfu-du-101%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670577964860%2C%22cv%22%3A%2220221206-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dauslogic-outbytedriverupdater-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670577964866%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A61%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 09:26:06 GMT
via: 1.1 varnish
x-served-by: cache-bma1630-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1670577966.905930,VS0,VE106
vary: Accept-Encoding
x-vcl-time-ms: 106
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5188 bytes)
Hash
fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:24 GMT
age: 41682
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

mc.yandex.ru/watch/65533162/1?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afp%3A1461%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A941%3Acn%3A1%3Adp%3A0%3Als%3A898249028460%3Ahid%3A223350268%3Az%3A0%3Ai%3A20221209092605%3Aet%3A1670577965%3Ac%3A1%3Arn%3A296929702%3Arqn%3A1%3Au%3A167057796543636009%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C290%2C101%2C1%2C863%2C0%2C%2C329%2C5%2C%2C%2C%2C1590%3Aco%3A0%3Ans%3A1670577962818%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670577965%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29

93.158.134.119

200 OK

419 B

URL HTTP/2
mc.yandex.ru/watch/65533162/1?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afp%3A1461%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A941%3Acn%3A1%3Adp%3A0%3Als%3A898249028460%3Ahid%3A223350268%3Az%3A0%3Ai%3A20221209092605%3Aet%3A1670577965%3Ac%3A1%3Arn%3A296929702%3Arqn%3A1%3Au%3A167057796543636009%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C290%2C101%2C1%2C863%2C0%2C%2C329%2C5%2C%2C%2C%2C1590%3Aco%3A0%3Ans%3A1670577962818%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670577965%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Size
419 B (419 bytes)
Hash
58e2d136fb5bcfdcd80d93bf2bd94a2e
84883fb56f6eacb76c466a9e210e3cbc34668af3
7ac366151c24a266034538542db04c1357781470b8494d7eee4cf302dc696fff

HTTP Headers

GET /watch/65533162/1?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afp%3A1461%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A941%3Acn%3A1%3Adp%3A0%3Als%3A898249028460%3Ahid%3A223350268%3Az%3A0%3Ai%3A20221209092605%3Aet%3A1670577965%3Ac%3A1%3Arn%3A296929702%3Arqn%3A1%3Au%3A167057796543636009%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C290%2C101%2C1%2C863%2C0%2C%2C329%2C5%2C%2C%2C%2C1590%3Aco%3A0%3Ans%3A1670577962818%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670577965%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://testedforyou.net
Referer: https://testedforyou.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 419
date: Fri, 09 Dec 2022 09:26:06 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 09:26:06 GMT
last-modified: Fri, 09-Dec-2022 09:26:06 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12748 bytes)
Hash
730ba1a8edb79ba6f83b46d1ba5aed7b
55a236fedf6f5f7ca2bb88ae13e20846a50fd36d
f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 18:34:32 GMT
age: 53494
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-1EEJR9725E&gtm=2oebu0&_p=1805291814&_gaz=1&cid=1149577512.1670577965&ul=en-us&sr=1280x1024&_s=1&sid=1670577964&sct=1&seg=0&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&dt=Atualizar%20drivers%20do%20Windows%2010%2F11&en=page_view&_fv=1&_ss=1&ep.allowLinker=true&ep.customTask=function(a)%7Ba.set(%22dimension%22%2Bb%2Ca.get(%22clientId%22))%7D&ep.marker_id=src_ag_bockachbr_du_tfu_du_101

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-1EEJR9725E&gtm=2oebu0&_p=1805291814&_gaz=1&cid=1149577512.1670577965&ul=en-us&sr=1280x1024&_s=1&sid=1670577964&sct=1&seg=0&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&dt=Atualizar%20drivers%20do%20Windows%2010%2F11&en=page_view&_fv=1&_ss=1&ep.allowLinker=true&ep.customTask=function(a)%7Ba.set(%22dimension%22%2Bb%2Ca.get(%22clientId%22))%7D&ep.marker_id=src_ag_bockachbr_du_tfu_du_101
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-1EEJR9725E&gtm=2oebu0&_p=1805291814&_gaz=1&cid=1149577512.1670577965&ul=en-us&sr=1280x1024&_s=1&sid=1670577964&sct=1&seg=0&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&dt=Atualizar%20drivers%20do%20Windows%2010%2F11&en=page_view&_fv=1&_ss=1&ep.allowLinker=true&ep.customTask=function(a)%7Ba.set(%22dimension%22%2Bb%2Ca.get(%22clientId%22))%7D&ep.marker_id=src_ag_bockachbr_du_tfu_du_101 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://testedforyou.net
date: Fri, 09 Dec 2022 09:26:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
23f0fed6cb9af080a75d8b899ae5bd84
2c02a8cb4a6e70d8ba58696fd709838656d443c3
b1102b6924fcffe1f07a07385010a47aa142435d4efc79b338e50f8258a4d5da

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.facebook.com/tr/?id=191112919472843&ev=ViewContent&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rl=&if=false&ts=1670577965290&cd[content_name]=driver-updater&cd[content_category]=outbyte&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1670577965181.8018101279&it=1670577964885&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=191112919472843&ev=ViewContent&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rl=&if=false&ts=1670577965290&cd[content_name]=driver-updater&cd[content_category]=outbyte&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1670577965181.8018101279&it=1670577964885&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=191112919472843&ev=ViewContent&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rl=&if=false&ts=1670577965290&cd[content_name]=driver-updater&cd[content_category]=outbyte&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1670577965181.8018101279&it=1670577964885&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 09 Dec 2022 09:26:06 GMT
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=191112919472843&ev=PageView&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rl=&if=false&ts=1670577965285&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670577965181.8018101279&it=1670577964885&coo=false&tm=1&exp=d1&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=191112919472843&ev=PageView&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rl=&if=false&ts=1670577965285&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670577965181.8018101279&it=1670577964885&coo=false&tm=1&exp=d1&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=191112919472843&ev=PageView&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rl=&if=false&ts=1670577965285&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670577965181.8018101279&it=1670577964885&coo=false&tm=1&exp=d1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 09 Dec 2022 09:26:06 GMT
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-199245412-1&cid=1149577512.1670577965&jid=786993934&_u=YCDAiUAjBAAAAEAEK~&z=1390857763

216.58.207.228

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-199245412-1&cid=1149577512.1670577965&jid=786993934&_u=YCDAiUAjBAAAAEAEK~&z=1390857763
IP
216.58.207.228:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-199245412-1&cid=1149577512.1670577965&jid=786993934&_u=YCDAiUAjBAAAAEAEK~&z=1390857763 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 09:26:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-164895039-1&cid=1149577512.1670577965&jid=212662864&_u=aCDACUAjBAAAAGAEK~&z=1891179665

216.58.207.228

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-164895039-1&cid=1149577512.1670577965&jid=212662864&_u=aCDACUAjBAAAAGAEK~&z=1891179665
IP
216.58.207.228:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-164895039-1&cid=1149577512.1670577965&jid=212662864&_u=aCDACUAjBAAAAGAEK~&z=1891179665 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 09:26:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tr.outbrain.com/unifiedPixel?marketerId=00b8a9819ec160bbc052781fa80381bd28&apiObjVersion=2.0-gtm&obtpVersion=2.0.5&name=Content-view&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&optOut=false&bust=049694689692708005&referrer=

70.42.32.31

200 OK

60 B

URL HTTP/1.1
tr.outbrain.com/unifiedPixel?marketerId=00b8a9819ec160bbc052781fa80381bd28&apiObjVersion=2.0-gtm&obtpVersion=2.0.5&name=Content-view&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&optOut=false&bust=049694689692708005&referrer=
IP
70.42.32.31:0
ASN
#22075 AS-OUTBRAIN

File type
GIF image data, version 89a, 1 x 1\012- data
Size
60 B (60 bytes)
Hash
fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb

HTTP Headers

GET /unifiedPixel?marketerId=00b8a9819ec160bbc052781fa80381bd28&apiObjVersion=2.0-gtm&obtpVersion=2.0.5&name=Content-view&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&optOut=false&bust=049694689692708005&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 09:26:06 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: 0642b7856f9d2afcf74f2d60ea959026
content-encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8585fe73b51c643ee300c3df9313bfe1
c184ce0c12fbfc0f17a81ad0e0bdaad5503bceb1
807b590f961c83886bbd27c879dfbf03a3336005cdabbba42d4d63bdcb11bf51

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 09:26:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tr.outbrain.com/cachedClickId?marketerId=00b8a9819ec160bbc052781fa80381bd28

70.42.32.31

200 OK

56 B

URL HTTP/1.1
tr.outbrain.com/cachedClickId?marketerId=00b8a9819ec160bbc052781fa80381bd28
IP
70.42.32.31:0
ASN
#22075 AS-OUTBRAIN

File type
ASCII text, with no line terminators
Size
56 B (56 bytes)
Hash
77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599

HTTP Headers

GET /cachedClickId?marketerId=00b8a9819ec160bbc052781fa80381bd28 HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 09:26:06 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: b9aeecf4e61bfe70bef9e5a60118a4f0
content-encoding: gzip

trc-events.taboola.com/1282895/log/3/unip?en=pre_d_eng_tb&tos=1553&scd=61&ssd=1&est=1670577964864&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670577966417&vi=1670577964860&ri=38245da7b39e00776fbad5fa5a321e38&ref=null&cv=20221206-9-RELEASE&item-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&ler=other

141.226.228.48

204 No Content

0 B

URL HTTP/2
trc-events.taboola.com/1282895/log/3/unip?en=pre_d_eng_tb&tos=1553&scd=61&ssd=1&est=1670577964864&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670577966417&vi=1670577964860&ri=38245da7b39e00776fbad5fa5a321e38&ref=null&cv=20221206-9-RELEASE&item-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&ler=other
IP
141.226.228.48:0
ASN
#200478 Taboola.com ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1282895/log/3/unip?en=pre_d_eng_tb&tos=1553&scd=61&ssd=1&est=1670577964864&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670577966417&vi=1670577964860&ri=38245da7b39e00776fbad5fa5a321e38&ref=null&cv=20221206-9-RELEASE&item-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&ler=other HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Fri, 09 Dec 2022 09:26:07 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=1&wv-hit=223350268&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rn=384897910&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670577968%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092607%3Au%3A167057796543636009%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577968&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=1&wv-hit=223350268&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rn=384897910&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670577968%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092607%3Au%3A167057796543636009%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577968&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wmode=0&wv-part=1&wv-hit=223350268&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rn=384897910&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670577968%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092607%3Au%3A167057796543636009%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577968&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 26898
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Fri, 09 Dec 2022 09:26:08 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 09:26:08 GMT
last-modified: Fri, 09-Dec-2022 09:26:08 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=1&wv-hit=223350268&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rn=1068296965&wv-type=3&browser-info=we%3A1%3Aet%3A1670577968%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092608%3Au%3A167057796543636009%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577968&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=1&wv-hit=223350268&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rn=1068296965&wv-type=3&browser-info=we%3A1%3Aet%3A1670577968%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092608%3Au%3A167057796543636009%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577968&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wmode=0&wv-part=1&wv-hit=223350268&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rn=1068296965&wv-type=3&browser-info=we%3A1%3Aet%3A1670577968%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092608%3Au%3A167057796543636009%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577968&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Fri, 09 Dec 2022 09:26:09 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 09:26:09 GMT
last-modified: Fri, 09-Dec-2022 09:26:09 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

trc-events.taboola.com/1282895/log/3/unip?en=pre_d_eng_tb&tos=4554&scd=61&ssd=1&est=1670577964864&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670577969419&vi=1670577964860&ri=38245da7b39e00776fbad5fa5a321e38&ref=null&cv=20221206-9-RELEASE&item-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&ler=other

141.226.228.48

204 No Content

0 B

URL HTTP/2
trc-events.taboola.com/1282895/log/3/unip?en=pre_d_eng_tb&tos=4554&scd=61&ssd=1&est=1670577964864&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670577969419&vi=1670577964860&ri=38245da7b39e00776fbad5fa5a321e38&ref=null&cv=20221206-9-RELEASE&item-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&ler=other
IP
141.226.228.48:0
ASN
#200478 Taboola.com ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1282895/log/3/unip?en=pre_d_eng_tb&tos=4554&scd=61&ssd=1&est=1670577964864&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670577969419&vi=1670577964860&ri=38245da7b39e00776fbad5fa5a321e38&ref=null&cv=20221206-9-RELEASE&item-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&ler=other HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Fri, 09 Dec 2022 09:26:10 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wv-check=52429&wv-type=0&wmode=0&wv-part=1&wv-hit=223350268&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rn=479647538&browser-info=we%3A1%3Aet%3A1670577972%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092611%3Au%3A167057796543636009%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577972&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wv-check=52429&wv-type=0&wmode=0&wv-part=1&wv-hit=223350268&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rn=479647538&browser-info=we%3A1%3Aet%3A1670577972%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092611%3Au%3A167057796543636009%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577972&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wv-check=52429&wv-type=0&wmode=0&wv-part=1&wv-hit=223350268&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rn=479647538&browser-info=we%3A1%3Aet%3A1670577972%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092611%3Au%3A167057796543636009%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577972&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Fri, 09 Dec 2022 09:26:12 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 09:26:12 GMT
last-modified: Fri, 09-Dec-2022 09:26:12 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=2&wv-hit=223350268&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rn=464270596&wv-type=3&browser-info=we%3A1%3Aet%3A1670577972%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092611%3Au%3A167057796543636009%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577972&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=2&wv-hit=223350268&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rn=464270596&wv-type=3&browser-info=we%3A1%3Aet%3A1670577972%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092611%3Au%3A167057796543636009%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577972&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wmode=0&wv-part=2&wv-hit=223350268&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rn=464270596&wv-type=3&browser-info=we%3A1%3Aet%3A1670577972%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092611%3Au%3A167057796543636009%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577972&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Fri, 09 Dec 2022 09:26:12 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 09:26:12 GMT
last-modified: Fri, 09-Dec-2022 09:26:12 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=2&wv-hit=223350268&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rn=93921881&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670577972%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092611%3Au%3A167057796543636009%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577972&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=2&wv-hit=223350268&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rn=93921881&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670577972%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092611%3Au%3A167057796543636009%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577972&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wmode=0&wv-part=2&wv-hit=223350268&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei8&rn=93921881&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670577972%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092611%3Au%3A167057796543636009%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577972&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Fri, 09 Dec 2022 09:26:12 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 09:26:12 GMT
last-modified: Fri, 09-Dec-2022 09:26:12 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8

45.79.172.174

200 OK

0 B

URL HTTP/2
testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8 HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:04 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; path=/; HttpOnly
source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; expires=Fri, 09-Dec-2022 09:27:04 GMT; Max-Age=60; path=/; domain=.testedforyou.net
_csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D; path=/; HttpOnly; SameSite=Lax
accept-ch: Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
content-encoding: gzip
X-Firefox-Spdy: h2

testedforyou.net/js/jquery/jquery-1.9.1.min.js

45.79.172.174

200 OK

0 B

URL HTTP/2
testedforyou.net/js/jquery/jquery-1.9.1.min.js
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/jquery/jquery-1.9.1.min.js HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: W/"63901dcc-169b2"
expires: Fri, 16 Dec 2022 09:26:05 GMT
cache-control: max-age=604800, max-age=604800,  public
content-encoding: gzip
X-Firefox-Spdy: h2

testedforyou.net/sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzE2ZWk4IiwibWFya2VycyI6IjEyMDkwOTI2MDRfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTEyMDkwOTI2MDRfY2FydF9kdV9kYXJrdGhlbWUifQ==

45.79.172.174

200 OK

0 B

URL HTTP/2
testedforyou.net/sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzE2ZWk4IiwibWFya2VycyI6IjEyMDkwOTI2MDRfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTEyMDkwOTI2MDRfY2FydF9kdV9kYXJrdGhlbWUifQ==
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzE2ZWk4IiwibWFya2VycyI6IjEyMDkwOTI2MDRfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTEyMDkwOTI2MDRfY2FydF9kdV9kYXJrdGhlbWUifQ== HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: outbyte-sess=g15p8ho4e6av0sklos6ns48fsa; path=/; HttpOnly
_sid=1xJPOIyJht; expires=Sat, 09-Dec-2023 09:26:05 GMT; Max-Age=31536000; path=/; domain=.testedforyou.net
_sidd=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%3D%3D; expires=Sat, 09-Dec-2023 09:26:05 GMT; Max-Age=31536000; path=/; domain=.testedforyou.net
_ga=GA1.2.1149577512.1670577965; expires=Sun, 08-Dec-2024 09:26:05 GMT; Max-Age=63072000; path=/; domain=.testedforyou.net
_fbp=fb.1.1670577965181.8018101279; expires=Thu, 09-Mar-2023 09:26:05 GMT; Max-Age=7776000; path=/; domain=.testedforyou.net
access-control-allow-origin: testedforyou.net
access-control-allow-credentials: true
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
last-modified: Fri, 09 Dec 2022 09:26:05GMT
content-disposition: inline; filename="sid.js"
accept-ch: Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
content-encoding: gzip
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/download-instructions.css

45.79.172.174

200 OK

0 B

URL HTTP/2
testedforyou.net/download-instructions/download-instructions.css
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /download-instructions/download-instructions.css HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: text/css
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: W/"63901dcc-5e08"
expires: Fri, 16 Dec 2022 09:26:05 GMT
cache-control: max-age=604800, max-age=604800,  public
content-encoding: gzip
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/download-instructions.js

45.79.172.174

200 OK

0 B

URL HTTP/2
testedforyou.net/download-instructions/download-instructions.js
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /download-instructions/download-instructions.js HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei8
Cookie: advanced=2vnnb7vmj8lb1eff0ptnru34k6; source=1209092604_src_ag_bockachbr_du_tfu_du_101-1209092604_cart_du_darktheme; _csrf=7bd96f3d55862c01e81d6683bc177959813b057067d64ef6eea29c7c53ac4999a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22IzXTGsrlXDrKJkNktiAd9p0WCNwRDhDX%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 09:26:05 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: W/"63901dcc-2b8"
expires: Fri, 16 Dec 2022 09:26:05 GMT
cache-control: max-age=604800, max-age=604800,  public
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (36)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations