Report - linkvertise.com/537264/dandy-boy-adventures-apk/1

Report Overview

Submitted URL
linkvertise.com/537264/dandy-boy-adventures-apk/1
IP
172.64.164.4
ASN
#13335 CLOUDFLARENET
Submitted
2023-03-27 07:31:19
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-29T09:13:03Z	443 B	167 kB	216.58.211.3
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	127 B	54.149.13.193
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239
maxst.icons8.com	39862	2015-05-27T12:17:54Z	2023-03-29T17:22:47Z	442 B	17 kB	185.76.9.21
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-29T11:19:48Z	990 B	141 kB	142.250.74.35
publisher.linkvertise.com	230086	2020-08-12T09:42:03Z	2023-03-28T22:53:57Z	4.3 kB	34 kB	172.64.164.4
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	3.2 kB	65 kB	34.120.237.76
www.google.com	7	2015-05-10T13:11:19Z	2023-03-29T05:55:56Z	415 B	1.1 kB	216.58.211.4
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
euob.bizseasky.com	unknown	2023-03-21T21:54:44Z	2023-03-28T07:29:42Z	404 B	33 kB	54.230.111.47
contextual.media.net	513	2012-05-21T09:20:31Z	2023-03-29T13:38:36Z	382 B	49 kB	2.18.172.23
gem.gbc.criteo.com	6039	2019-01-31T11:05:09Z	2023-03-29T10:08:44Z	387 B	492 B	185.235.87.22
p.typekit.net	620	2012-05-23T16:28:57Z	2023-03-29T05:25:55Z	443 B	338 B	95.101.11.112
script.hotjar.com	887	2020-11-05T17:23:46Z	2023-03-29T08:27:03Z	384 B	70 kB	54.230.111.79
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-29T05:44:04Z	381 B	65 kB	142.250.74.168
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	782 B	2.4 kB	35.241.9.150
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-29T05:09:04Z	1.7 kB	10 kB	142.250.74.131
www.thinksuggest.org	298123	2018-11-05T13:16:52Z	2023-03-28T07:29:43Z	386 B	52 kB	176.9.175.232
cdn.taboola.com	1040	2013-07-20T01:48:03Z	2023-03-29T08:08:12Z	785 B	44 kB	151.101.129.44
linkvertise.com	57422	2015-12-18T22:49:10Z	2023-03-29T05:21:01Z	858 B	12 kB	172.64.164.4
obseu.bizseasky.com	unknown	2023-03-21T21:54:44Z	2023-03-28T07:29:43Z	8.8 kB	2.0 kB	54.75.69.192
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-29T11:45:01Z	1.0 kB	2.4 kB	192.229.221.95
gum.criteo.com	381	2015-01-22T11:58:57Z	2023-03-29T10:15:08Z	1.6 kB	6.8 kB	178.250.1.11
dnacdn.net	3760	2019-09-02T17:07:45Z	2023-03-29T05:57:13Z	884 B	1.8 kB	178.250.0.157
ag.gbc.criteo.com	5925	2018-12-17T14:17:41Z	2023-03-29T10:09:22Z	386 B	2.4 kB	185.235.84.29
js.chargebee.com	23733	2019-05-23T14:12:40Z	2023-03-28T15:50:29Z	3.2 kB	5.7 kB	54.230.111.65
linkvertise.chargebeestaticv2.com	unknown	2022-07-28T19:58:24Z	2023-03-28T07:29:43Z	1.0 kB	2.1 kB	54.230.111.36
vc.hotjar.io	2334	2019-04-16T12:33:25Z	2023-03-29T09:20:58Z	423 B	368 B	54.230.111.64
csm.nl3.eu.criteo.net	unknown	2023-02-15T11:42:24Z	2023-03-29T19:11:34Z	468 B	2.3 kB	178.250.1.25
stackpath.bootstrapcdn.com	2467	2018-06-15T22:36:43Z	2023-03-29T13:32:47Z	870 B	1.8 kB	104.18.10.207
static.hotjar.com	641	2014-11-01T06:14:27Z	2023-03-29T05:25:56Z	377 B	632 B	54.230.111.8
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	3.4 kB	8.9 kB	23.36.76.226
ocsp.r2m01.amazontrust.com	unknown	2022-10-12T22:43:53Z	2023-03-29T09:11:41Z	700 B	2.0 kB	54.230.80.227
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-29T05:16:53Z	803 B	40 kB	104.17.25.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-27 07:31:26	low	54.75.69.192	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (47)

	URL	Size	First Seen	Last Seen
	js.chargebee.com/v2/chargebee.js	257 kB	2023-03-26	2023-04-19
Pretty URL js.chargebee.com/v2/chargebee.js IP 54.230.111.65 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:20:56 Last Seen2023-04-19 09:03:06 Times Seen167 Hash 8cfd1c02dad5e037383bf7ba841ce0da 36e277eeb14834550d5528418614107919924d63 e7ac5e5f0bc2d297a9da187a7695d35427535dcff3daf9ed05cd1bb6361e70f5 Loading...

	linkvertise.com/scripts.bb45bf3dd1a0af98.js	223 kB	2023-03-14	2023-09-10
Pretty URL linkvertise.com/scripts.bb45bf3dd1a0af98.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 16:40:23 Last Seen2023-09-10 18:25:22 Times Seen3511 Hash b25ce3f9983ade5cc103f4081e286d99 50d3bbbda1759c0c76b7b049105bdf41e339ae91 a53cf228e9d09fdb94d3cb53f29e3da850ff8049ffe22a4d9cf139340a3e4007 Loading...

	linkvertise.com/assets/vendor/thinksuggest	2.4 kB	2023-03-07	2023-04-05
Pretty URL linkvertise.com/assets/vendor/thinksuggest IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-04-05 01:40:49 Times Seen138 Hash d4fc14d8e50c4da7f4cdbb209c346b20 5d525ba24f01f8342c3e64b44f519ce246283f0a 84d63fa8eee330eb27272ba4eae1f934923a5f5ff5d2d070d49dfab5dbb9f2dc Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=vpEprwpCoBMgy-fvZET0Mz6L&size=invisible&cb=4h1tozrp4oqt	69 B	2023-03-07	2024-04-18
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=vpEprwpCoBMgy-fvZET0Mz6L&size=invisible&cb=4h1tozrp4oqt IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-18 02:58:04 Times Seen98934 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/master-8540114cba97568ee444.js	240 kB	2023-03-26	2023-04-19
Pretty URL js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/master-8540114cba97568ee444.js IP 54.230.111.65 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:20:56 Last Seen2023-04-19 09:03:06 Times Seen169 Hash 7dbceebd226041e91e667d3f787a0889 2e16ccb46bcc38430c0351813744364dc686e4d9 f0653764871d8c64b738dbfa65dcb2760e712d56e3d06bda39716369d2342ba2 Loading...

	obseu.bizseasky.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F537264%2Fdandy-boy-adventures-apk%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1679902285904&hl=1&op=0&ag=1317291471&rand=145070628605208190982567579297002101757260050771795021621117702158261016671&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=RK87mgXkY8&pto=2289&ver=50&gac=-&mei=&ap=&duid=1.1679902285.oLKN66TmIBKFk7zD&suid=1.1679902285.sGYYWfQxjTq6ESYH&tuid=1.1679902285.VesG9pTMFbDruicM&fbc=-&gtm=W10%3D&it=66%2C1883%2C268&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0	3.0 kB	2023-03-29	2023-03-29
Pretty URL obseu.bizseasky.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F537264%2Fdandy-boy-adventures-apk%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1679902285904&hl=1&op=0&ag=1317291471&rand=145070628605208190982567579297002101757260050771795021621117702158261016671&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=RK87mgXkY8&pto=2289&ver=50&gac=-&mei=&ap=&duid=1.1679902285.oLKN66TmIBKFk7zD&suid=1.1679902285.sGYYWfQxjTq6ESYH&tuid=1.1679902285.VesG9pTMFbDruicM&fbc=-&gtm=W10%3D&it=66%2C1883%2C268&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 IP 54.75.69.192 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:15:12 Last Seen2023-03-29 23:15:12 Times Seen1 Hash 4b2be727823b70c3e3b73c3985dca3b1 db9381a7e03684e2b373db2839bcd42b60e6bf4d 86d19f355df3e3595263d076685ae20263839bed6ae9e679ac0c4d3b0008a90f Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=vpEprwpCoBMgy-fvZET0Mz6L&size=invisible&cb=4h1tozrp4oqt	40 kB	2023-03-29	2023-03-29
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=vpEprwpCoBMgy-fvZET0Mz6L&size=invisible&cb=4h1tozrp4oqt IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:15:12 Last Seen2023-03-29 23:15:12 Times Seen1 Hash f241de1a88647c70a557a37d922bb7e7 e425fcc8bcf5420fb0cbf015300a5fa1bace54c1 45f6da717e586f4b5fa4215913c15de5cf219b106bb1111b29b61287a971428d Loading...

	gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS	30 kB	2023-03-26	2023-05-03
Pretty URL gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS IP 178.250.1.11 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 05:09:37 Last Seen2023-05-03 11:45:08 Times Seen317 Hash f8baf97cd7beae0ffea3e6a3b3629b2c ed46959b8c9795dd4a6ed2c41aedb0b8e548fbf2 2e5ffc95548da0e7f75ab9de1c1daf2fc35b002f9c1004633c87032f2bca75e0 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	88 kB	2023-03-07	2024-04-18
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-04-18 02:03:34 Times Seen94909 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js	51 kB	2023-03-07	2024-04-18
Pretty URL stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP 104.18.10.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-18 02:03:41 Times Seen240742 Hash 67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4 Loading...

	linkvertise.com/537264/dandy-boy-adventures-apk/1	7.2 kB	2023-03-07	2024-02-21
Pretty URL linkvertise.com/537264/dandy-boy-adventures-apk/1 IP 172.64.164.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5600 Hash f21cce266449773cd5d82853b5a4e84a 503db95d21644bbcff48373abd04dc1c31186853 fbd8cabfc3161779b15b164e3b5c6a50f7311851471046cb25bc82b957ae692b Loading...

	linkvertise.com/assets/ads.js	53 B	2023-03-07	2024-04-10
Pretty URL linkvertise.com/assets/ads.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:21 Last Seen2024-04-10 10:16:16 Times Seen7529 Hash 6505cd57ceee4ca43442ca3a639bc9fb fba759aae1fba98c65c0f7530e11dcf9db64f6bd b1af735cf017f07c82e88c4e7ae104eb140ebec0882691bdc68ad6c1a6e3449f Loading...

	www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-	884 B	2023-03-29	2023-04-01
Pretty URL www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- IP 216.58.211.4 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:35:56 Last Seen2023-04-01 11:08:15 Times Seen66 Hash 08e1a6f5ca66184bcdc15d51115fceff 80616eb09b381f17752209494dd5a94c685320b1 165a82e0aed39acaf6e28abb7be09b7d6b01e67c8dec443a31d1a5ed05185628 Loading...

	gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.4965750461006738%22%7D	419 B	2023-03-14	2023-03-29
Pretty URL gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.4965750461006738%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 00:44:22 Last Seen2023-03-29 23:15:12 Times Seen393 Hash 38da90623d39448371d4ce4ec3430d0d 13ee1462f0505e2b010d6c6bbf98f7d81b8c36ce c65585ecdf64916035b00e2625141bfa6f94986b71c351a3af6a93d9222fcb4b Loading...

	linkvertise.com/537264/dandy-boy-adventures-apk/1	61 B	2023-03-07	2024-02-21
Pretty URL linkvertise.com/537264/dandy-boy-adventures-apk/1 IP 172.64.164.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5600 Hash 5f1530f7c9d5ec10db5f85900397c9ea 457927ecea448848df6ae8f7a6cbb21535f6db85 624b2f08c18a4c6bef49e112548529dcf6bae01c03549213482a0ec60335e63c Loading...

	linkvertise.com/assets/vendor/thinksuggest	237 B	2023-03-07	2023-04-05
Pretty URL linkvertise.com/assets/vendor/thinksuggest IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-04-05 01:40:49 Times Seen138 Hash c006251d7a981892bfb1c09758a35776 7b3062cd0324e31386b8cea52c2552277a8531cf 3973b0e8cfafd23c7285066509370038cd98c3820bd6bddf818328212d8eb562 Loading...

	contextual.media.net/dmedianet.js?cid=8CUG57U1V	143 kB	2023-03-29	2023-03-29
Pretty URL contextual.media.net/dmedianet.js?cid=8CUG57U1V IP 2.18.172.23 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:15:12 Last Seen2023-03-29 23:15:12 Times Seen1 Hash 18abc9c7ce1b3ebb5df752ae9f7f5d73 0ba77852d3508dd4fc2a194125bb7a7ce889427b 4e03e7ddf1bc824ada22c6070990127ca6cc2ef52b9dafa7f14d12d736b96670 Loading...

	obseu.bizseasky.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F537264%2Fdandy-boy-adventures-apk%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1679902286322&hl=1&op=0&ag=1317291471&rand=839022286560111275216926792212750009210769950672201852071776710262122017807&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=gTwcCGL93k&pto=2707&ver=50&gac=260382989.1679902286&mei=&ap=&duid=1.1679902285.oLKN66TmIBKFk7zD&suid=1.1679902285.sGYYWfQxjTq6ESYH&tuid=1.1679902285.VesG9pTMFbDruicM&fbc=-&gtm=W10%3D&it=73%2C1883%2C268&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0	3.1 kB	2023-03-29	2023-03-29
Pretty URL obseu.bizseasky.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F537264%2Fdandy-boy-adventures-apk%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1679902286322&hl=1&op=0&ag=1317291471&rand=839022286560111275216926792212750009210769950672201852071776710262122017807&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=gTwcCGL93k&pto=2707&ver=50&gac=260382989.1679902286&mei=&ap=&duid=1.1679902285.oLKN66TmIBKFk7zD&suid=1.1679902285.sGYYWfQxjTq6ESYH&tuid=1.1679902285.VesG9pTMFbDruicM&fbc=-&gtm=W10%3D&it=73%2C1883%2C268&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:15:12 Last Seen2023-03-29 23:15:12 Times Seen1 Hash 7455c38a64d7f5cc459557741cb77929 1a3e15cd8c04306ca80a3c1d170b99657bb2dd7b c4205129a52822a3b1222f229c81d5cd1be37008897f0debbde800b909bb67e1 Loading...

	cdn.taboola.com/libtrc/linkvertise-link-to/loader.js	202 kB	2023-03-29	2023-03-29
Pretty URL cdn.taboola.com/libtrc/linkvertise-link-to/loader.js IP 151.101.129.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 22:59:28 Last Seen2023-03-29 23:15:12 Times Seen12 Hash 72fd19c6640ad74d2dc689906d579252 c278349194f18b97126049348b136645cbc7a687 8761157d36499601ad549074734fbdec6e1c761134d125c553e7dcf4b9e8dc4e Loading...

	linkvertise.com/polyfills.bd3b6746195e9466.js	35 kB	2023-03-14	2024-04-10
Pretty URL linkvertise.com/polyfills.bd3b6746195e9466.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 16:40:23 Last Seen2024-04-10 10:16:17 Times Seen11082 Hash 70861480978e1a3305ba895d593cbdbe 4d82f1b0ee8a88bc58f997b60d8b44add0495985 08b25c4d3b49bd0d17a443cd2a009f58355b5eea6094112e27916e10e606d5a6 Loading...

	linkvertise.com/537264/dandy-boy-adventures-apk/1	5.2 kB	2023-03-07	2023-09-10
Pretty URL linkvertise.com/537264/dandy-boy-adventures-apk/1 IP 172.64.164.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-09-10 18:25:21 Times Seen325 Hash e8bce5239d8470b5056d43aaef157627 d5d141c9dd3783c3615218b91872eef8814b2f1c 7fe578c7d294d467782839ab32ab7abef8e15434758214fc5bf0a3b050e48c18 Loading...

	js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/138-688b33b7dd702bee3db7.js	12 kB	2023-03-26	2023-04-19
Pretty URL js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/138-688b33b7dd702bee3db7.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:20:56 Last Seen2023-04-19 09:03:07 Times Seen233 Hash f3faa99909a1e8e910aa6dfcdb65cacc 318959b6d234adbd5cfb40b352c63f3508e3b2ba fd67c39ee9c183ce1a511ee9ae2668674fb6b04fec5cdf44a7bfea290bbe8291 Loading...

	js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/154-687ac54d07ed6cb8e4b9.js	2.8 kB	2023-03-26	2023-04-19
Pretty URL js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/154-687ac54d07ed6cb8e4b9.js IP 54.230.111.65 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:20:56 Last Seen2023-04-19 09:03:07 Times Seen133 Hash 27eafe3718573c25d49594721027eb56 fd396179fe45aa30e9893393a3361435f330dd30 9ffcf93144f3930b754c3d920e5d42e0a69023061e07ad6c2af25342a76f8209 Loading...

	linkvertise.com/main.014e1904c13eb0e8.js	2.9 MB	2023-03-29	2023-03-29
Pretty URL linkvertise.com/main.014e1904c13eb0e8.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:03:49 Last Seen2023-03-29 23:16:05 Times Seen28 Hash 4e94dc5335b5d4456d8762e49cba2257 5550b198082390d3eb2b2ab452790fc617297045 e2dd34fe9d3f06fe54f33b179875094445b3905ad39b4a6397b9aa31a7f29d10 Loading...

	linkvertise.com/537264/dandy-boy-adventures-apk/1	343 B	2023-03-07	2024-02-21
Pretty URL linkvertise.com/537264/dandy-boy-adventures-apk/1 IP 172.64.164.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5593 Hash 5815651c777ca9749f394ca8f86f70a7 e5d105ec2b6bc5b6be141e82b7678954c1cb2fb0 8a57f0ee2b5df3cb5a3ff340cfe4e55611629b7c053a132ee686c5fd3736033f Loading...

	linkvertise.com/assets/vendor/thinksuggest	1.7 kB	2023-03-07	2023-04-05
Pretty URL linkvertise.com/assets/vendor/thinksuggest IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-04-05 01:40:49 Times Seen138 Hash 8551296584a94f00128790678e219118 096f7341f14c5f474f6b8d5ed84694244843ab08 8a5a3c8d45b113fbe4e9e07bad27b404ed620c8a3735ee9ba9de9247b309303d Loading...

	js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/150-eb01a76e4b0ba7d8fb0d.js	3.3 kB	2023-03-26	2023-04-19
Pretty URL js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/150-eb01a76e4b0ba7d8fb0d.js IP 54.230.111.65 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:20:56 Last Seen2023-04-19 09:03:06 Times Seen129 Hash 16020e26a638fe97c3735e2f84d192dd 52c1e20aaee31b86b67409f4fb91462f450478d5 061a1ed2960fd026c919cd2b59e373832a1f710f968f305c9af4bfe6d1605077 Loading...

	cdn.taboola.com/libtrc/impl.20230326-2-RELEASE.js	758 kB	2023-03-29	2023-03-29
Pretty URL cdn.taboola.com/libtrc/impl.20230326-2-RELEASE.js IP 151.101.129.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 22:59:28 Last Seen2023-03-29 23:18:22 Times Seen21 Hash 06f9e0f02fd27292094cdf1b614f547b d22d83a83c4fcb3cf7af3db214430ea739412686 e29a9695f80fb7ea39e42c92e6421be04b238e81fe7f4c5474cc7166b1af0c51 Loading...

	www.gstatic.com/recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js	415 kB	2023-03-29	2023-09-29
Pretty URL www.gstatic.com/recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:35:31 Last Seen2023-09-29 03:14:46 Times Seen3321 Hash 733e4a30889fa7c9947958423e21e810 16a2cced6035295476141f8ac1cd928114cafebf 7d2c1727a32a92776f9a3078abb845bbeb77e6603c40a318f12ea1e1b5a040d7 Loading...

	linkvertise.com/537264/dandy-boy-adventures-apk/1	357 B	2023-03-07	2024-02-21
Pretty URL linkvertise.com/537264/dandy-boy-adventures-apk/1 IP 172.64.164.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5601 Hash 7cb6df65dfbbc68a028c262cea708528 797bfa66ea86998e5481c7e9431158030f2a798f f30ba21714ececd6939cfb1db7d6cd0cf9f0d885b58716e4a0f33f556feccf1b Loading...

	www.googletagmanager.com/gtag/js?id=G-7DRMH8RP03&l=dataLayer&cx=c	224 kB	2023-03-29	2023-03-29
Pretty URL www.googletagmanager.com/gtag/js?id=G-7DRMH8RP03&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:15:12 Last Seen2023-03-29 23:15:12 Times Seen1 Hash 12daaeecaf68485f73af67d63e1749be 0539ca880e5a41215cc9a218925d4b484e772ed7 938fc7b7e88396b089fb62a2b1624f364f235a5ddb7ecbd9cb0deb6ae5ce5934 Loading...

	www.thinksuggest.org/simple/suggest-min-unpacked.js	52 kB	2023-03-07	2024-04-10
Pretty URL www.thinksuggest.org/simple/suggest-min-unpacked.js IP 176.9.175.232 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-04-10 10:16:17 Times Seen11737 Hash cd2f3074326840d55a3c3ea1e99e83fe 3a2e1d1a93506526ae3ed2b44d584af7771ff8d0 9ec9f50ac6a5dfdf7ace0a047ab4e86a7f8ff297030f93f9b8b4e27c57fdaa51 Loading...

	linkvertise.com/runtime.9028a2ff6641236d.js	3.6 kB	2023-03-07	2023-09-10
Pretty URL linkvertise.com/runtime.9028a2ff6641236d.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-09-10 18:25:21 Times Seen2415 Hash 0270ef93354cd4a2eb1df53f143e2537 4b895eee6513d5e1509992c528b6343418d8546a d8f17fc17786ac0acc2dd2d47f24827e89cce8c72f1ce83eb764e475decb9970 Loading...

	unknown	0 B	2023-03-07	2024-04-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-18 03:10:46 Times Seen36926264 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	linkvertise.com/537264/dandy-boy-adventures-apk/1	384 B	2023-03-07	2023-09-10
Pretty URL linkvertise.com/537264/dandy-boy-adventures-apk/1 IP 172.64.164.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-09-10 18:25:21 Times Seen384 Hash 1b542721063834c7497013710c32ae68 eae295b9d949477cbd14deb382507fad6b159650 982369c09d990814aa5e0b323a005064bbc77748027b30318afafc3c678a53ea Loading...

	static.hotjar.com/c/hotjar-3321028.js?sv=7	8.9 kB	2023-03-29	2023-03-29
Pretty URL static.hotjar.com/c/hotjar-3321028.js?sv=7 IP 54.230.111.8 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:15:12 Last Seen2023-03-29 23:15:12 Times Seen1 Hash 00bb3050b1ac4f608521190b0ac45cb4 7a54def4290b77cf6b4ae1139429a2944a3cb226 8481ceab8c13fd0bdd0543cc1efa507337814ce95581ab85a1003122c17f74b6 Loading...

	linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js	9.1 kB	2023-03-07	2023-12-14
Pretty URL linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:44:21 Last Seen2023-12-14 06:55:00 Times Seen6681 Hash a260e7ad8d02f2ec2470e211d97871ec 6e7061c207a5356c4ae9d040af2aea5d82d07b67 4d5206ee58438a808f3f4a09910fbbe126a1019c04649343de9b7ad38a690f6e Loading...

	gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.4965750461006738%22%7D	14 kB	2023-03-07	2023-05-06
Pretty URL gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.4965750461006738%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:51:36 Last Seen2023-05-06 00:14:31 Times Seen2035 Hash 49e65b540d43d40997ce3844d41b2dd0 b7331c5edc086ee2c7731b1b36e937e7c44450a7 f185c1b78d87a007d9492a85c6ce64c06cc851ef9f13ca3caf8aaafe243b0ac2 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 889ca9e2c79a3ce7aaadbcdfd0ce4ef5	62 B	2023-03-07	2024-04-18
Pretty Observations First Seen2023-03-07 01:20:41 Last Seen2024-04-18 02:01:50 Times Seen14082 Hash 889ca9e2c79a3ce7aaadbcdfd0ce4ef5 b05c2c051bae71f80cb8c289e5a42d4f96d323fa 6477acf082d26199b6ce8346b93149b1b999233d9fe76b0340ebf43317cf98f8 Loading...

	#2 Eval - 6559111e4eae643ce013ce0821e91a02	25 B	2023-03-07	2024-04-18
Pretty Observations First Seen2023-03-07 01:20:41 Last Seen2024-04-18 02:01:50 Times Seen13589 Hash 6559111e4eae643ce013ce0821e91a02 fa1086c9aa2cb2d14f5c13bceefe21511bcdae5a d72255f7e5ea4dfdf9821df800356367d0bc7df07ecd103bb660018cb1e4f400 Loading...

	#3 Eval - 9cded30f7bcf402987ca1fcdf6c5f3d3	16 kB	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 08:07:32 Last Seen2023-03-29 23:21:19 Times Seen1123 Hash 9cded30f7bcf402987ca1fcdf6c5f3d3 ff05bc7e4b0e386acd1a16802984c805c8b35d59 50b06f3d6f2b666357bd52d6c71e869d4ddb33713d8f70cce47161f24725406d Loading...

	#4 Eval - b326b5062b2f0e69046810717534cb09	4 B	2023-03-07	2024-04-18
Pretty Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-18 02:01:50 Times Seen23174 Hash b326b5062b2f0e69046810717534cb09 5ffe533b830f08a0326348a9160afafc8ada44db b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b Loading...

	#5 Eval - c9f3fb5cdf3373f06e330e6a87ce04ce	22 B	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 08:07:32 Last Seen2023-03-29 23:21:19 Times Seen1123 Hash c9f3fb5cdf3373f06e330e6a87ce04ce df99edfbb22db4736d72c3682cc5100ac6cc3d0f 7e31eb44219eea12f907946968f8b66102cb2d68650c6a93d64198f6a83fc927 Loading...

	#6 Eval - 0626819405cbc1d7db02461874f100ea	17 kB	2023-03-29	2023-03-29
Pretty Observations First Seen2023-03-29 23:15:12 Last Seen2023-03-29 23:15:12 Times Seen1 Hash 0626819405cbc1d7db02461874f100ea 44126d3885f5a4d3bc2bf314ba0da9ccbfeaae07 71299c15a074bd08c68d20a5a5950f5f16967b72745003a09d12ff0b27ad20c2 Loading...

	#7 Eval - e5d8c139688b25ef77b263d88ea99150	7 B	2023-03-07	2024-04-18
Pretty Observations First Seen2023-03-07 01:20:41 Last Seen2024-04-18 02:01:50 Times Seen14118 Hash e5d8c139688b25ef77b263d88ea99150 7abc9c61c4966543f66d150c0155bfac575f86a7 53e5f34ac520035c7f124076d1e68c70a85c83cf68a339fa713b872b54126148 Loading...

	#8 Eval - 672dd79f2aee917d139b85dff81b07ac	22 B	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 08:07:33 Last Seen2023-03-29 23:21:19 Times Seen1123 Hash 672dd79f2aee917d139b85dff81b07ac 0983b5c27c8dbcef2a34bb3aea5d535724169732 194de1f71672078704902b1d6b90f127b88defefba37f18a3aac0b2b507d1e6a Loading...

	#9 Eval - ac02bfffaab57fcfb6d172fb20b1a121	64 B	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 08:07:32 Last Seen2023-03-29 23:21:19 Times Seen1123 Hash ac02bfffaab57fcfb6d172fb20b1a121 2f1dd7383fc846e49abf52215068d02a26e72cb8 3c12ab11c3e192f3e727d70aff57b655169d57c5b3e6bd30c73381c11acb93e4 Loading...

HTTP Transactions (80)

	URL	IP	Response	Size
	linkvertise.com/537264/dandy-boy-adventures-apk/1	172.64.164.4	301 Moved Permanently	0 B
URL HTTP/1.1 linkvertise.com/537264/dandy-boy-adventures-apk/1 IP 172.64.164.4:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /537264/dandy-boy-adventures-apk/1 HTTP/1.1 Host: linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Mon, 27 Mar 2023 07:31:06 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Mon, 27 Mar 2023 08:31:06 GMT Location: https://linkvertise.com/537264/dandy-boy-adventures-apk/1 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XemTgTbBZG%2FTcon%2Fb135h4GGZtS4A0Gexu9GX7me6GF%2F732LNH%2B7xnSKOUgDVxnQyEMwcBn0CLNLdaZ6kw2qlB5bpWrm%2BpzZWoRQljJQfD1AM5itNfkgSwpMWqIy7Zmr35Y%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding X-Frame-Options: sameorigin Server: cloudflare CF-RAY: 7ae5ee8c0d66774f-LHR alt-svc: h2=":443"; ma=60

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash dfd491ebe7381221b3674c2c8bf9e566 d2ac5badf17f348c28a52e9db10e6eb80e5a231a 34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C" Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7731 Expires: Mon, 27 Mar 2023 09:39:57 GMT Date: Mon, 27 Mar 2023 07:31:06 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 5d9435c884bf4a0777fdf4b57079ae09 7f04b9db47ffeec90ac6397416b7553e5336a550 fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084" Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6065 Expires: Mon, 27 Mar 2023 09:12:11 GMT Date: Mon, 27 Mar 2023 07:31:06 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9bb70197d53617b5e6889b890dd2ae26 f3e9b8a743de494529baf2d078a622539f965307 a094a13905b7f1cd89475f9c83f9245580d4c3c7228d51d5c16622aec3c6aa45 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A094A13905B7F1CD89475F9C83F9245580D4C3C7228D51D5C16622AEC3C6AA45" Last-Modified: Sat, 25 Mar 2023 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7296 Expires: Mon, 27 Mar 2023 09:32:42 GMT Date: Mon, 27 Mar 2023 07:31:06 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash bc86ef2a0cee04915bc360f5821adc8f 3658f9028cce204d38f7f48fcfaa2a8e4f54383a aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Mon, 27 Mar 2023 07:27:57 GMT content-type: application/json age: 189 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: IkxN2KJiSxEFOpa3E/mLgSl/MtYjiIQtWxYUoGaYdWRIk7Don9OHnA8X1EcjKKTgfYsIUuC6T9c= x-amz-request-id: SA30ACVVHB90H13B x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Mon, 27 Mar 2023 07:01:33 GMT age: 1773 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Mon, 27 Mar 2023 07:31:06 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Mon, 27 Mar 2023 07:14:35 GMT age: 992 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	104.17.25.14	200 OK	28 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65451) Size 28 kB (27748 bytes) Hash 638a4990025383a0f83ebf29bdb84a68 153e8818dc42f598e47fde8cf398f1447649a4d0 878e34b89800bb271d3588e526eb3598eb3822e263f3bdaf53645847d39d0ad6 HTTP Headers `GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:07 GMT content-type: application/javascript; charset=utf-8 content-length: 27748 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03ec4-15851" last-modified: Mon, 04 May 2020 16:11:48 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 378604 expires: Sat, 16 Mar 2024 07:31:07 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Psc9563QEveu0spR%2B10xgXwClLG0PmqUTk3t3%2BlTC7kfV4ROQ6%2BdNBt26eAP%2Fv4E2dHon54t31wGAJWVJTjAWweHJwyJIPRiwIsyE%2B94Fub%2FHP6lwz%2Bzol1jNzFyTEI85ghTEwAG"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 7ae5ee921e9eb521-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 70300b32357c46f3448d567189b64cb3 6ba66a5cf63cdbfeaec59b936151cc812bac56df 5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9" Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6125 Expires: Mon, 27 Mar 2023 09:13:12 GMT Date: Mon, 27 Mar 2023 07:31:07 GMT Connection: keep-alive`

	cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css	104.17.25.14	200 OK	10 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type ASCII text Size 10 kB (10228 bytes) Hash 9f8ae150e614ee49febe1ac6088202e6 5f5d1a1a96289a0fa1d052d8dd59d5a236e5227e c931e5cbd1bbd7e7e6802ce040c35ce7c1d7425988b767c6a29bedbfa2eb496f HTTP Headers `GET /ajax/libs/font-awesome/5.10.2/css/all.css HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:07 GMT content-type: text/css; charset=utf-8 content-length: 10228 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03e60-111e5" last-modified: Mon, 04 May 2020 16:10:08 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 1517768 expires: Sat, 16 Mar 2024 07:31:07 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pFrVJi9ysQNrrRDXhivtvJ%2BjAtJMGteTRtTHOVrSAzYA1U5jVibv4nNfOd3ztspK%2FDPlh7LwhR9%2BkBGOfhaBWjpKA4KCXCiHDXBkl21dTCpdifU9rpysVF8mGT2DX%2F86PJDR5fiW"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 7ae5ee924eecb521-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css	95.101.11.112	200 OK	5 B
URL HTTP/2 p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css IP 95.101.11.112:0 ASN #20940 Akamai International B.V. File type ASCII text Size 5 B (5 bytes) Hash 83d24d4b43cc7eef2b61e66c95f3d158 f0cafc285ee23bb6c28c5166f305493c4331c84d 1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb HTTP Headers `GET /p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css HTTP/1.1 Host: p.typekit.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx content-type: text/css content-length: 5 last-modified: Thu, 28 Jul 2022 22:24:50 GMT etag: "62e30cb2-5" cache-control: public, max-age=604800 access-control-allow-origin: * cross-origin-resource-policy: cross-origin accept-ranges: bytes date: Mon, 27 Mar 2023 07:31:07 GMT X-Firefox-Spdy: h2`

	ocsp.r2m01.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m01.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash cdfb93612a67ed1b4194642a380e87f7 8c5f48b54af9b32ade67f5b1670efed00eed7f8d 7c3b99ce16b287b797eed55d8598d1fe53a6ae84b82244d9690e81d6038aa83a HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=87616 Date: Mon, 27 Mar 2023 07:31:07 GMT Etag: "641fe6a9-1d7" Expires: Tue, 28 Mar 2023 07:51:23 GMT Last-Modified: Sun, 26 Mar 2023 06:31:05 GMT Server: ECAcc (bsa/EACA) X-Cache: Miss from cloudfront Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: MTOpR8FrMeppt3IxyB0m-c-AszZHdtAyB_zzbMFk7o6_terWA9-O-w== Age: 4818

	maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css	185.76.9.21	200 OK	17 kB
URL HTTP/2 maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css IP 185.76.9.21:0 ASN #60068 Datacamp Limited File type data Size 17 kB (16614 bytes) Hash cdc11f1cad46cd5febad7aa204a44938 660c0ef8753562a6e605479c2a70e7aaf83c720c 1001469c8b639d75c459bea555a17d862dca5b3aacc6267670cc870e695fa309 HTTP Headers `GET /vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css HTTP/1.1 Host: maxst.icons8.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:07 GMT content-type: text/css; charset=utf-8 vary: Accept-Encoding, Accept-Encoding etag: W/"15e81-wb0UGHttyzbvrSHlFxH4lBgB3g8" last-modified: 2022-05-16T12:30:47.897Z server-timing: -;dur=0;desc="Generate" strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * access-control-allow-credentials: true expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public server: CDN77-Turbo x-77-nzt: AblMCRQqyJf/59uVAQ x-77-nzt-ray: af5856307d5a41c33b462164a5db5211 x-accel-expires: @1968663892 x-cache: HIT x-age: 26598375 x-77-pop: stockholmSE x-77-cache: HIT content-encoding: gzip X-Firefox-Spdy: h2

	www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG	142.250.74.168	200 OK	64 kB
URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG IP 142.250.74.168:0 ASN #15169 GOOGLE File type Unicode text, UTF-8 text, with very long lines (12213) Size 64 kB (64278 bytes) Hash 6f04f84596e300fb156bf1047d78bd93 626877328dd49855865555187fe4bf7922b4ccfd 9d1959981b8d706460b45c2dc045331cfac8f7f6c445fa7c8ff6f09c06e41604 HTTP Headers `GET /gtm.js?id=GTM-TZ69NZG HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Mon, 27 Mar 2023 07:31:07 GMT expires: Mon, 27 Mar 2023 07:31:07 GMT cache-control: private, max-age=900 last-modified: Mon, 27 Mar 2023 06:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 64278 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	7.5 kB
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 7.5 kB (7453 bytes) Hash 4c6fb743127500de78bebd0bfc186fc0 613ca3b23993958245388f667767f605d0f51c6c 8c8e349e4da6962d1ae6cbe92781eb02248b8f5925ae743216e0c813c225c1e6 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 27 Mar 2023 07:31:07 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	push.services.mozilla.com/	54.149.13.193	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.149.13.193:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: MwUYFBJie0Zoz/cv/LcuYA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: YzXFdqwDR7BmkUTHQDomY3ISXoQ=`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 9f118fb224d6a3feb68bb7296958d8fe 7ccaa3d7e3b47dec93f7ddb398615bd71227b26e 2f70628100003ab47f5fb5622f8951ec8f4bad4b88cc3c083983a5c31356b429 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 27 Mar 2023 07:31:07 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2	142.250.74.35	200 OK	11 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data Size 11 kB (11028 bytes) Hash 1f6d3cf6d38f25d83d95f5a800b8cac3 279f300ca2cbbdf9f5036ef2f438607fbf377daa 796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f HTTP Headers `GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 11028 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 24 Mar 2023 10:26:41 GMT expires: Sat, 23 Mar 2024 10:26:41 GMT cache-control: public, max-age=31536000 last-modified: Wed, 11 May 2022 19:24:50 GMT content-type: font/woff2 age: 248666 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 9f118fb224d6a3feb68bb7296958d8fe 7ccaa3d7e3b47dec93f7ddb398615bd71227b26e 2f70628100003ab47f5fb5622f8951ec8f4bad4b88cc3c083983a5c31356b429 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 27 Mar 2023 07:31:07 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/animation.css	54.230.111.65	200 OK	758 B
URL HTTP/2 js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/animation.css IP 54.230.111.65:0 ASN #16509 AMAZON-02 File type ASCII text Size 758 B (758 bytes) Hash f8a79fc47c28375628855b4c78ff6f85 b2fb79a766c233408a6e0dd38a169dee2e88d4b0 e3b7f54cf81a0ff1f16662abce7b1970ed6a8a8191da96cf05dcf6644d203df3 HTTP Headers `GET /assets/cbjs-2023.03.22-04.21/v2/animation.css HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: text/css content-length: 758 last-modified: Wed, 22 Mar 2023 06:29:49 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: 2gow9Ob3IyQGm7c.CKg4J7S.CjMvJ_DW accept-ranges: bytes server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload date: Mon, 27 Mar 2023 07:28:35 GMT cache-control: max-age=300,public etag: "f8a79fc47c28375628855b4c78ff6f85" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: GD9Vtn1f1X6-bIgP8kGsaQQzNGrTyNmYtst8567GPSiSm46TyFIZ3w== age: 154 X-Firefox-Spdy: h2

	js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/master.html	54.230.111.65	200 OK	234 B
URL HTTP/2 js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/master.html IP 54.230.111.65:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 234 B (234 bytes) Hash 9e6c4df4a8b931691bee7f2e5008b0bd 2eee0d7764d9947601f5efb8ba38a121bbee7b16 bc0f2c3b5d8cfda6f0d3bc3857f02f7e0cac0cf0492d764e05b4475212313156 HTTP Headers GET /assets/cbjs-2023.03.22-04.21/v2/master.html HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK content-type: text/html content-length: 234 last-modified: Wed, 22 Mar 2023 06:29:49 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: WQl_yVUqfdQc38IfFvqvGOmRlr7itbnI accept-ranges: bytes server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload date: Mon, 27 Mar 2023 07:28:57 GMT cache-control: max-age=300,public etag: "9e6c4df4a8b931691bee7f2e5008b0bd" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: CMUl0vac74D0YkxfIpDMYt4FufCkcW-u0tt8FV8UC15dckI-vXHc2w== age: 131 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2	142.250.74.35	200 OK	129 kB
URL HTTP/2 fonts.gstatic.com/s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 128616, version 1.0\012- data Size 129 kB (128616 bytes) Hash a4160421d2605545f69a4cd6cd642902 aaae93b146d97737fabe87a6bc741113e6899ad3 4a4dbc62fa335e411b94a532be091c58c0c0c4fa731339f11722577d3cf6443b HTTP Headers `GET /s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 128616 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 24 Mar 2023 10:26:45 GMT expires: Sat, 23 Mar 2024 10:26:45 GMT cache-control: public, max-age=31536000 last-modified: Tue, 07 Mar 2023 19:52:07 GMT content-type: font/woff2 age: 248663 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/redirect/link/static/537264/dandy-boy-adventures-apk?origin=	172.64.164.4	204 No Content	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/537264/dandy-boy-adventures-apk?origin= IP 172.64.164.4:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/v1/redirect/link/static/537264/dandy-boy-adventures-apk?origin= HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Mon, 27 Mar 2023 07:31:08 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-headers: content-type access-control-max-age: 0 set-cookie: laravel_session=jO4N2ZU9vcEqdrKvKXg1j30JzBvHWMDN8pS2tnOd; expires=Tue, 26 Mar 2024 07:31:08 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tkLmUnlvYEOOZrncWV1ocMHech%2BevbAb8eyndVI1BrG3nUKRNb0SzgYOja7aD84UfkrkyPF1Owck1P49EYqYkAB6B%2FYjXnjHIAPnK7fnQc1bbZCGlRhbmOFS8uG2QvwpTiIYVV2I3TIBINxS"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7ae5ee97ff4e732c-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/account	172.64.164.4	204 No Content	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/account IP 172.64.164.4:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /api/v1/account HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` HTTP/2 204 No Content date: Mon, 27 Mar 2023 07:31:08 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-headers: content-type access-control-max-age: 0 set-cookie: laravel_session=Wx9ZTwCpds09GBwVo1tnMLGuQNZPXYzBRQ1JwsiK; expires=Tue, 26 Mar 2024 07:31:08 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DMX%2FSYr9R2SQILcDZ2y6ZE4c6S1wIij43HLGvF%2BIeobDiGP4AHyJaj20C4LwYiyEHWEM3JubULsQGatU8XPy%2BSS1Cn8wm4XAdT24yK%2FAX%2F%2FdORU8SOReyFB9riE5nn9tb9SQnhqgnFBnagpN"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7ae5ee97ff4b732c-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/redirect/link/static/537264/dandy-boy-adventures-apk?origin=	172.64.164.4	204 No Content	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/537264/dandy-boy-adventures-apk?origin= IP 172.64.164.4:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/v1/redirect/link/static/537264/dandy-boy-adventures-apk?origin= HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Mon, 27 Mar 2023 07:31:08 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-headers: content-type access-control-max-age: 0 set-cookie: laravel_session=vIp2N8zNbYcST2aYv80FYKlaOYpAG5XFzb6Wdl6h; expires=Tue, 26 Mar 2024 07:31:08 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Ow3T9DIWTsakgdy2kFmji3eILRC8y1vnMGbH%2FkbqhPleUrhifKO2jmZXZdXR7D1vnWU%2BrUWWYkFYaLeJRfhwojZ6xMAiD9wIXBFcA8SyEVITq6Mha3gD79ib6d6W7vfmKwuvdQxLDfZIVwT"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7ae5ee97ff4d732c-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.r2m01.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m01.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 61ddffcfda9f712de13f67a1bede1991 878f69c72f72949ae1215fb8d09cf24d24a6484e d7a6edc784e82dc550deebd79b87f451ec1d78cfa4c2c30bd4de3a0bbdef7ebb HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=140736 Date: Mon, 27 Mar 2023 07:31:08 GMT Etag: "6420c8fc-1d7" Expires: Tue, 28 Mar 2023 22:36:44 GMT Last-Modified: Sun, 26 Mar 2023 22:36:44 GMT Server: nginx X-Cache: Miss from cloudfront Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: EWwi3PhtaVoJfrnEMI37C4jWWg70KVKklMWk_GUuPq3wiNryzoVS8g==`

	euob.bizseasky.com/sxp/i/df82c4ef6536e4dee60601280bc80588.js?id=14473	54.230.111.47	200 OK	32 kB
URL HTTP/2 euob.bizseasky.com/sxp/i/df82c4ef6536e4dee60601280bc80588.js?id=14473 IP 54.230.111.47:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators Size 32 kB (32100 bytes) Hash 59a0674f87c7423312359dec11626101 053fa1058a615d7c1ff723d981a70c668d89a353 77252f64cae7e33a40a0fb1d538029b3023ea05338e4ffabbf3716331e840edb HTTP Headers `GET /sxp/i/df82c4ef6536e4dee60601280bc80588.js?id=14473 HTTP/1.1 Host: euob.bizseasky.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/javascript; charset=utf-8 content-length: 32100 content-encoding: gzip server: Caddy cache-control: max-age=43200 date: Sun, 26 Mar 2023 20:24:38 GMT expires: Mon, 27 Mar 2023 08:24:38 GMT etag: "1596b-7cf4jMwMJjJ/fSADDuC3X4Kc6/s" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: scnfJb096ojSS5F2iydrGxx0ozRiF4oPUWZN_MPKwt_kLTOOnrD7IA== age: 39990 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a1cba1d43065aeaaf9946564f2a06d48 a055a21648c05993b6861c2dc39252eda99abe2b 6782059f6824e0eddbe4e7434dce290347309fda211d9f2332a9874266877d32 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "6782059F6824E0EDDBE4E7434DCE290347309FDA211D9F2332A9874266877D32" Last-Modified: Sat, 25 Mar 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9130 Expires: Mon, 27 Mar 2023 10:03:18 GMT Date: Mon, 27 Mar 2023 07:31:08 GMT Connection: keep-alive`

	www.thinksuggest.org/simple/suggest-min-unpacked.js	176.9.175.232	200 OK	52 kB
URL HTTP/1.1 www.thinksuggest.org/simple/suggest-min-unpacked.js IP 176.9.175.232:0 ASN #24940 Hetzner Online GmbH File type Unicode text, UTF-8 text, with very long lines (51479), with no line terminators Size 52 kB (51487 bytes) Hash cd2f3074326840d55a3c3ea1e99e83fe 3a2e1d1a93506526ae3ed2b44d584af7771ff8d0 9ec9f50ac6a5dfdf7ace0a047ab4e86a7f8ff297030f93f9b8b4e27c57fdaa51 HTTP Headers `GET /simple/suggest-min-unpacked.js HTTP/1.1 Host: www.thinksuggest.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Server: nginx Date: Mon, 27 Mar 2023 07:31:08 GMT Content-Type: application/javascript Content-Length: 51487 Last-Modified: Fri, 05 Jun 2020 12:39:04 GMT Connection: keep-alive ETag: "5eda3ce8-c91f" Accept-Ranges: bytes`

	obseu.bizseasky.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F537264%2Fdandy-boy-adventures-apk%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1679902285904&hl=1&op=0&ag=1317291471&rand=145070628605208190982567579297002101757260050771795021621117702158261016671&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=RK87mgXkY8&pto=2289&ver=50&gac=-&mei=&ap=&duid=1.1679902285.oLKN66TmIBKFk7zD&suid=1.1679902285.sGYYWfQxjTq6ESYH&tuid=1.1679902285.VesG9pTMFbDruicM&fbc=-&gtm=W10%3D&it=66%2C1883%2C268&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0	54.75.69.192	200 OK	1.0 kB
URL HTTP/2 obseu.bizseasky.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F537264%2Fdandy-boy-adventures-apk%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1679902285904&hl=1&op=0&ag=1317291471&rand=145070628605208190982567579297002101757260050771795021621117702158261016671&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDE1OThdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFsiY2IiLCIwLDAsMCwwLDIsMCwwLDAsMCwzLDEyLDAsMSwxLDAsOCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCwyLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDIiXSxbLTEsIkxpbnV4IHg4Nl82NCJdLFstMiwiNyxJTEhZTEI5QkxUYTJKcVFnM0ZvZWVsMndZYkUyb2dCSUtKNmNSMDAwTUpIUXdZVERHWWFodjN1dDcxVnBYUjlPOCtNNXJWU0tzMWtQQmUvLzk5c25WSkdwVWRQZmR6em4zT2ZjIl0sWy0zLCJbXSJdLFstNCwiLSJdLFstNSwiLSJdLFstNiwie1wid1wiOltcIjBcIixcIiRcIixcImpRdWVyeVwiLFwiYm9vdHN0cmFwXCIsXCJqUXVlcnkzNDEwNjI0NTM5NjgxNzUyMjUyMVwiLFwiZGF0YUxheWVyXCIsXCJmNzA1XCIsXCJOb3RpZnlQYWludEV2ZW50XCIsXCJjYkpzb25QXCIsXCJfX2NvcmUtanNfc2hhcmVkX19cIixcImNiX3dpbmRvd19sb2dnZXJcIixcIl9fU0VOVFJZX19cIixcIkNoYXJnZWJlZVwiLFwiaXNBZEJsb2NrQWN0aXZlXCIsXCJfbU5IYW5kbGVcIixcIm1lZGlhbmV0X3ZlcnNpb25JZFwiLFwibWVkaWFuZXRfY2hubVwiLFwibWVkaWFuZXRfY2hubTJcIixcIm1lZGlhbmV0X2Nobm0zXCIsXCJtZWRpYW5ldF9taXNjXCIsXCJNRDVcIixcIkNIRVFndWFyZFwiLFwid2VicGFja0NodW5rbHZfd2ViXCIsXCIkbG9jYWxpemVcIixcIlpvbmVcIixcIl9fem9uZV9zeW1ib2xfX1Byb21pc2VcIixcIl9fem9uZV9zeW1ib2xfX2ZldGNoXCIsXCJfX3pvbmVfc3ltYm9sX19xdWV1ZU1pY3JvdGFza1wiLFwiX196b25lX3N5bWJvbF9fc2V0VGltZW91dFwiLFwiX196b25lX3N5bWJvbF9fY2xlYXJUaW1lb3V0XCIsXCJfX3pvbmVfc3ltYm9sX19zZXRJbnRlcnZhbFwiLFwiX196b25lX3N5bWJvbF9fY2xlYXJJbnRlcnZhbFwiLFwiX196b25lX3N5bWJvbF9fcmVxdWVzdEFuaW1hdGlvbkZyYW1lXCIsXCJfX3pvbmVfc3ltYm9sX19jYW5jZWxBbmltYXRpb25GcmFtZVwiLFwiX196b25lX3N5bWJvbF9fYWxlcnRcIixcIl9fem9uZV9zeW1ib2xfX3Byb21wdFwiLFwiX196b25lX3N5bWJvbF9fY29uZmlybVwiLFwiX196b25lX3N5bWJvbF9fTXV0YXRpb25PYnNlcnZlclwiLFwiX196b25lX3N5bWJvbF9fSW50ZXJzZWN0aW9uT2JzZXJ2ZXJcIixcIl9fem9uZV9zeW1ib2xfX0ZpbGVSZWFkZXJcIixcIl9fem9uZV9zeW1ib2xfX29ub25kZXZpY2Vtb3Rpb25wYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uZGV2aWNlb3JpZW50YXRpb25wYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uYWJzb2x1dGVkZXZpY2VvcmllbnRhdGlvbnBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXljb25uZWN0cGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheWRpc2Nvbm5lY3RwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5YWN0aXZhdGVwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5ZGVhY3RpdmF0ZXBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXlwcmVzZW50Y2hhbmdlcGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmFib3J0cGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmJsdXJwYXRjaGVkXCJdLFwiblwiOltdLFwiZFwiOltdfSJdLFstNywiLSJdLFstOCwiLSJdLFstOSwiKyJdLFstMTAsIi0iXSxbLTExLCJ7XCJ0XCI6XCJcIixcIm1cIjpbXX0iXSxbLTEyLCJcInVuc3BlY2lmaWVkXCIiXSxbLTEzLCItIl0sWy0xNCwiLSJdLFstMTUsIi0iXSxbLTE2LCIwIl0sWy0xNywiMTYiXSxbLTE4LCJbMSwwLDAsMF0iXSxbLTE5LCJbMCwwLDAsMCwwLDAsMSwyNCwyNCxcIi1cIiwxMjgwLDEwMDIsMTI4MCwxMDI0LDEyODAsMTAyNCwxMjgwLDkzOSwwLDAsMCwwLFwiLVwiLFwiLVwiXSJdLFstMjAsIi0iXSxbLTIxLCItIl0sWy0yMiwiW1wiblwiLFwiblwiXSJdLFstMjMsIisiXSxbLTI0LCJbXSJdLFstMjUsIi0iXSxbLTI2LCItIl0sWy0yNywiLSJdLFstMjgsImVuLVVTLGVuIl0sWy0yOSwiLSJdLFstMzAsIltcInZcIiwwXSJdLFstMzEsImZhbHNlIl0sWy0zMiwiMCJdLFstMzMsIi0iXSxbLTM0LCItIl0sWy0zNSwiWzE2Nzk5MDIyODU4NzIsMF0iXSxbLTM2LCJbXCI1LzRcIixcIjUvNFwiXSJdLFstMzcsIi0iXSxbLTM4LCJpLC0xLC0xLDM4OSwwLDExLDAsMCw0MTIsOTEsLTEsMCwsMjAwMCwyMjU4LDIyNTkiXSxbLTM5LCJbXCIyMDEwMDEwMVwiLDAsXCJHZWNrb1wiLFwiTmV0c2NhcGVcIixcIk1vemlsbGFcIixcIjIwMTgxMDAxMDAwMDAwXCIsbnVsbCxmYWxzZSxudWxsLGZhbHNlLG51bGwsMF0iXSxbLTQwLCIzNyJdLFstNDEsIi0iXSxbLTQyLCIxNzcwMDUwMDgxIl0sWy00MywiMDAwMDAwMDEwMDAwMDAwMDAxMTExMDAxMDAiXSxbLTQ0LCIwLDUsMCw1Il0sWy00NSwiMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwIl0sWy00NiwiMCJdLFstNDcsIlVUQyxlbi1VUyxsYXRuLGdyZWdvcnkiXSxbLTQ4LCIwLDAiXSxbLTQ5LCItIl0sWy01MCwiLSJdLFstNTEsIi0iXSxbLTUyLCItIl0sWy01MywiMDEwIl0sWy01NCwie1wiaFwiOltcIjQxMDQzMTYyM1wiLFwiMjYzOTIyMjQ2OFwiLFwiXzNcIixcIjI4NzI4OTkzMjBcIl0sXCJkXCI6W10sXCJiXCI6W1wiXzFcIixcIjEwNjQ4MjI2ODdcIixcIjQxMDQzMTYyM1wiLFwiMjYzOTIyMjQ2OFwiXSxcInNcIjoxfSJdLFstNTUsIjEiXSxbImRkYiIsIjAsOCwwLDAsMiwxLDAsMCwwLDEsMCwwLDAsMCwxLDAsMiwwLDAsMCwwLDQsMCwwLDEsMCwwLDAsMCwxLDAsMywwLDAsMCwzLDAsMCwwLDAsMCwxLDIsMSwzLDAsMTYsMCwxLDAsMCwwLDAsMSwwIl0sWyJibmNoIiw5MV0sWyJhYm5jaCIsOTJdXQ%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=RK87mgXkY8&pto=2289&ver=50&gac=-&mei=&ap=&duid=1.1679902285.oLKN66TmIBKFk7zD&suid=1.1679902285.sGYYWfQxjTq6ESYH&tuid=1.1679902285.VesG9pTMFbDruicM&fbc=-&gtm=W10%3D&it=66%2C1883%2C268&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 IP 54.75.69.192:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (2997), with no line terminators Size 1.0 kB (1047 bytes) Hash 3291cfc8194a7f44f7c7e47ecb639a9d 60c71dfd439acf44bc7de3202531f98c5fb9ae4a f12865428a69643c605910fec8354240c1b0c765d7439a4b2298d8c1f460490e HTTP Headers GET /ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F537264%2Fdandy-boy-adventures-apk%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1679902285904&hl=1&op=0&ag=1317291471&rand=145070628605208190982567579297002101757260050771795021621117702158261016671&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDE1OThdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFsiY2IiLCIwLDAsMCwwLDIsMCwwLDAsMCwzLDEyLDAsMSwxLDAsOCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCwyLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDIiXSxbLTEsIkxpbnV4IHg4Nl82NCJdLFstMiwiNyxJTEhZTEI5QkxUYTJKcVFnM0ZvZWVsMndZYkUyb2dCSUtKNmNSMDAwTUpIUXdZVERHWWFodjN1dDcxVnBYUjlPOCtNNXJWU0tzMWtQQmUvLzk5c25WSkdwVWRQZmR6em4zT2ZjIl0sWy0zLCJbXSJdLFstNCwiLSJdLFstNSwiLSJdLFstNiwie1wid1wiOltcIjBcIixcIiRcIixcImpRdWVyeVwiLFwiYm9vdHN0cmFwXCIsXCJqUXVlcnkzNDEwNjI0NTM5NjgxNzUyMjUyMVwiLFwiZGF0YUxheWVyXCIsXCJmNzA1XCIsXCJOb3RpZnlQYWludEV2ZW50XCIsXCJjYkpzb25QXCIsXCJfX2NvcmUtanNfc2hhcmVkX19cIixcImNiX3dpbmRvd19sb2dnZXJcIixcIl9fU0VOVFJZX19cIixcIkNoYXJnZWJlZVwiLFwiaXNBZEJsb2NrQWN0aXZlXCIsXCJfbU5IYW5kbGVcIixcIm1lZGlhbmV0X3ZlcnNpb25JZFwiLFwibWVkaWFuZXRfY2hubVwiLFwibWVkaWFuZXRfY2hubTJcIixcIm1lZGlhbmV0X2Nobm0zXCIsXCJtZWRpYW5ldF9taXNjXCIsXCJNRDVcIixcIkNIRVFndWFyZFwiLFwid2VicGFja0NodW5rbHZfd2ViXCIsXCIkbG9jYWxpemVcIixcIlpvbmVcIixcIl9fem9uZV9zeW1ib2xfX1Byb21pc2VcIixcIl9fem9uZV9zeW1ib2xfX2ZldGNoXCIsXCJfX3pvbmVfc3ltYm9sX19xdWV1ZU1pY3JvdGFza1wiLFwiX196b25lX3N5bWJvbF9fc2V0VGltZW91dFwiLFwiX196b25lX3N5bWJvbF9fY2xlYXJUaW1lb3V0XCIsXCJfX3pvbmVfc3ltYm9sX19zZXRJbnRlcnZhbFwiLFwiX196b25lX3N5bWJvbF9fY2xlYXJJbnRlcnZhbFwiLFwiX196b25lX3N5bWJvbF9fcmVxdWVzdEFuaW1hdGlvbkZyYW1lXCIsXCJfX3pvbmVfc3ltYm9sX19jYW5jZWxBbmltYXRpb25GcmFtZVwiLFwiX196b25lX3N5bWJvbF9fYWxlcnRcIixcIl9fem9uZV9zeW1ib2xfX3Byb21wdFwiLFwiX196b25lX3N5bWJvbF9fY29uZmlybVwiLFwiX196b25lX3N5bWJvbF9fTXV0YXRpb25PYnNlcnZlclwiLFwiX196b25lX3N5bWJvbF9fSW50ZXJzZWN0aW9uT2JzZXJ2ZXJcIixcIl9fem9uZV9zeW1ib2xfX0ZpbGVSZWFkZXJcIixcIl9fem9uZV9zeW1ib2xfX29ub25kZXZpY2Vtb3Rpb25wYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uZGV2aWNlb3JpZW50YXRpb25wYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uYWJzb2x1dGVkZXZpY2VvcmllbnRhdGlvbnBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXljb25uZWN0cGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheWRpc2Nvbm5lY3RwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5YWN0aXZhdGVwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5ZGVhY3RpdmF0ZXBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXlwcmVzZW50Y2hhbmdlcGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmFib3J0cGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmJsdXJwYXRjaGVkXCJdLFwiblwiOltdLFwiZFwiOltdfSJdLFstNywiLSJdLFstOCwiLSJdLFstOSwiKyJdLFstMTAsIi0iXSxbLTExLCJ7XCJ0XCI6XCJcIixcIm1cIjpbXX0iXSxbLTEyLCJcInVuc3BlY2lmaWVkXCIiXSxbLTEzLCItIl0sWy0xNCwiLSJdLFstMTUsIi0iXSxbLTE2LCIwIl0sWy0xNywiMTYiXSxbLTE4LCJbMSwwLDAsMF0iXSxbLTE5LCJbMCwwLDAsMCwwLDAsMSwyNCwyNCxcIi1cIiwxMjgwLDEwMDIsMTI4MCwxMDI0LDEyODAsMTAyNCwxMjgwLDkzOSwwLDAsMCwwLFwiLVwiLFwiLVwiXSJdLFstMjAsIi0iXSxbLTIxLCItIl0sWy0yMiwiW1wiblwiLFwiblwiXSJdLFstMjMsIisiXSxbLTI0LCJbXSJdLFstMjUsIi0iXSxbLTI2LCItIl0sWy0yNywiLSJdLFstMjgsImVuLVVTLGVuIl0sWy0yOSwiLSJdLFstMzAsIltcInZcIiwwXSJdLFstMzEsImZhbHNlIl0sWy0zMiwiMCJdLFstMzMsIi0iXSxbLTM0LCItIl0sWy0zNSwiWzE2Nzk5MDIyODU4NzIsMF0iXSxbLTM2LCJbXCI1LzRcIixcIjUvNFwiXSJdLFstMzcsIi0iXSxbLTM4LCJpLC0xLC0xLDM4OSwwLDExLDAsMCw0MTIsOTEsLTEsMCwsMjAwMCwyMjU4LDIyNTkiXSxbLTM5LCJbXCIyMDEwMDEwMVwiLDAsXCJHZWNrb1wiLFwiTmV0c2NhcGVcIixcIk1vemlsbGFcIixcIjIwMTgxMDAxMDAwMDAwXCIsbnVsbCxmYWxzZSxudWxsLGZhbHNlLG51bGwsMF0iXSxbLTQwLCIzNyJdLFstNDEsIi0iXSxbLTQyLCIxNzcwMDUwMDgxIl0sWy00MywiMDAwMDAwMDEwMDAwMDAwMDAxMTExMDAxMDAiXSxbLTQ0LCIwLDUsMCw1Il0sWy00NSwiMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwIl0sWy00NiwiMCJdLFstNDcsIlVUQyxlbi1VUyxsYXRuLGdyZWdvcnkiXSxbLTQ4LCIwLDAiXSxbLTQ5LCItIl0sWy01MCwiLSJdLFstNTEsIi0iXSxbLTUyLCItIl0sWy01MywiMDEwIl0sWy01NCwie1wiaFwiOltcIjQxMDQzMTYyM1wiLFwiMjYzOTIyMjQ2OFwiLFwiXzNcIixcIjI4NzI4OTkzMjBcIl0sXCJkXCI6W10sXCJiXCI6W1wiXzFcIixcIjEwNjQ4MjI2ODdcIixcIjQxMDQzMTYyM1wiLFwiMjYzOTIyMjQ2OFwiXSxcInNcIjoxfSJdLFstNTUsIjEiXSxbImRkYiIsIjAsOCwwLDAsMiwxLDAsMCwwLDEsMCwwLDAsMCwxLDAsMiwwLDAsMCwwLDQsMCwwLDEsMCwwLDAsMCwxLDAsMywwLDAsMCwzLDAsMCwwLDAsMCwxLDIsMSwzLDAsMTYsMCwxLDAsMCwwLDAsMSwwIl0sWyJibmNoIiw5MV0sWyJhYm5jaCIsOTJdXQ%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=RK87mgXkY8&pto=2289&ver=50&gac=-&mei=&ap=&duid=1.1679902285.oLKN66TmIBKFk7zD&suid=1.1679902285.sGYYWfQxjTq6ESYH&tuid=1.1679902285.VesG9pTMFbDruicM&fbc=-&gtm=W10%3D&it=66%2C1883%2C268&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1 Host: obseu.bizseasky.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK cache-control: no-cache, no-store, must-revalidate content-encoding: gzip content-type: text/javascript date: Mon, 27 Mar 2023 07:31:08 GMT expires: Fri, 01 Jan 1990 00:00:00 GMT pragma: no-cache set-cookie: cg_uuid=81534e7f23b1b09013c72c8e103bbacc; Max-Age=29030400; Path=/; Expires=Mon, 26 Feb 2024 07:31:08 GMT; HttpOnly; Secure; SameSite=None content-length: 1047 X-Firefox-Spdy: h2`

	publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=Ui%2FjERCiPZFcLoxZZzS7hyOf7Kx4kA%2FfNP%2BP5xl2rD5oxAMqwFVM%2Br%2FAC79YgQK8Pdh5	172.64.164.4	204 No Content	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=Ui%2FjERCiPZFcLoxZZzS7hyOf7Kx4kA%2FfNP%2BP5xl2rD5oxAMqwFVM%2Br%2FAC79YgQK8Pdh5 IP 172.64.164.4:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/v1/validate-traffic?cheq_response=Ui%2FjERCiPZFcLoxZZzS7hyOf7Kx4kA%2FfNP%2BP5xl2rD5oxAMqwFVM%2Br%2FAC79YgQK8Pdh5 HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Mon, 27 Mar 2023 07:31:08 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-headers: content-type access-control-max-age: 0 set-cookie: laravel_session=ufJGbHWhUcwKal40qx5mDLpKkpwHaX5zMD5gQ7Aj; expires=Tue, 26 Mar 2024 07:31:08 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=djQ1qyZLj7zHyfAklnWWHvh6ez3YWX95w2rWsN3WLE6m5QZRUQ1JTT6xvn3bK35R2hqq4w%2FNMFHFdw8NCa3H%2BH1X9LDOaW9Z0Md00Z6Jd6HzDrQjkJio7IJsdm00E5nRuXgkfa4scdRyhVxD"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7ae5ee9b19cf732c-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	obseu.bizseasky.com/tracker/tc_imp.gif?e=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&cri=RK87mgXkY8&ts=218&cb=1679902286122	54.75.69.192	200 OK	43 B
URL HTTP/2 obseu.bizseasky.com/tracker/tc_imp.gif?e=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&cri=RK87mgXkY8&ts=218&cb=1679902286122 IP 54.75.69.192:0 ASN #16509 AMAZON-02 File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash db04c7b378cb2db912c3ba8a5a774ee3 dee34bd86c3484d31002182aa2b7caa4699126b8 98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a HTTP Headers GET /tracker/tc_imp.gif?e=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&cri=RK87mgXkY8&ts=218&cb=1679902286122 HTTP/1.1 Host: obseu.bizseasky.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Cookie: cg_uuid=81534e7f23b1b09013c72c8e103bbacc Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK cache-control: no-cache, no-store, must-revalidate content-type: image/gif date: Mon, 27 Mar 2023 07:31:08 GMT expires: Fri, 01 Jan 1990 00:00:00 GMT pragma: no-cache content-length: 43 X-Firefox-Spdy: h2`

	contextual.media.net/dmedianet.js?cid=8CUG57U1V	2.18.172.23	200 OK	49 kB
URL HTTP/2 contextual.media.net/dmedianet.js?cid=8CUG57U1V IP 2.18.172.23:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (65536), with no line terminators Size 49 kB (48805 bytes) Hash 65188b4a82241335b34023214220da2b 8713153e554e9770ff1893272675004cd31aff7e 29f9d83a436b455ec80b026900d055a9467ae4bd74e0c87cf5f7de3023bdea6f HTTP Headers `GET /dmedianet.js?cid=8CUG57U1V HTTP/1.1 Host: contextual.media.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: Apache content-type: text/javascript; charset=utf-8 x-mnt-h: 21-mnwx x-mnt-w: 22-jxfb etag: "961046f9ac803c177ef544f776e66b40" strict-transport-security: max-age=31536000 vary: Accept-Encoding content-encoding: gzip cache-control: max-age=300 expires: Mon, 27 Mar 2023 07:36:08 GMT date: Mon, 27 Mar 2023 07:31:08 GMT X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6246 Expires: Mon, 27 Mar 2023 09:15:14 GMT Date: Mon, 27 Mar 2023 07:31:08 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6246 Expires: Mon, 27 Mar 2023 09:15:14 GMT Date: Mon, 27 Mar 2023 07:31:08 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6246 Expires: Mon, 27 Mar 2023 09:15:14 GMT Date: Mon, 27 Mar 2023 07:31:08 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6246 Expires: Mon, 27 Mar 2023 09:15:14 GMT Date: Mon, 27 Mar 2023 07:31:08 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6246 Expires: Mon, 27 Mar 2023 09:15:14 GMT Date: Mon, 27 Mar 2023 07:31:08 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fe22c0b-0401-4cf6-a9bc-c63ccf292653.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fe22c0b-0401-4cf6-a9bc-c63ccf292653.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10776 bytes) Hash 2c660b11ada212059e6c18ad2564c623 024eb67ef3fdaa5fa7a4c078c38c9a74abe1e55a 8246fe35d92388a42b7072424babdb3c63d5ad7ae2272167b43b95ddd65cdda2 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fe22c0b-0401-4cf6-a9bc-c63ccf292653.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10776 x-amzn-requestid: 39918600-a28f-437b-914d-278f789a84c7 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CRi-GFQ2oAMFzMQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641d4b8d-6a6c9c046b62c65d711d0dd6;Sampled=0 x-amzn-remapped-date: Fri, 24 Mar 2023 07:04:45 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: nrT69HG8rHGGOBeTYQpHyZg01Wr1NQVUjV6tPqXovYTXmO7onTOR2A== via: 1.1 53ee82a7eb57de316cba44c26680b4a6.cloudfront.net (CloudFront), 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 google date: Sun, 26 Mar 2023 09:04:24 GMT age: 80804 etag: "024eb67ef3fdaa5fa7a4c078c38c9a74abe1e55a" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48af090e-bcf0-48ef-945a-a7c43705ebec.gif	34.120.237.76	200 OK	9.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48af090e-bcf0-48ef-945a-a7c43705ebec.gif IP 34.120.237.76:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 296 x 148\012- data Size 9.5 kB (9490 bytes) Hash 4f22df3b9748df65eb07542a76cda717 ff09f8dddd82a1137e92170fedb37b61c167e47a f1fa4e623c3193688b4c45b3c910aabac044ee324539cffdfaadd6e484d6fb22 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48af090e-bcf0-48ef-945a-a7c43705ebec.gif HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9490 x-amzn-requestid: ece83816-1754-47e5-9dcb-2a313c2c95a1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CU19zG5qIAMFevQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641e9d24-2ffc6d6220f774793c81f84c;Sampled=0 x-amzn-remapped-date: Sat, 25 Mar 2023 07:05:08 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: fRKNKH0APoL4MY5pRbFqA3kyTtk9UBG1grMrdaI2W5HBgJCfMqi0Yw== via: 1.1 8591441a35c0af61913aec9af012bc38.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 05:12:45 GMT age: 8303 etag: "ff09f8dddd82a1137e92170fedb37b61c167e47a" content-type: image/gif cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	script.hotjar.com/modules.936575bc1767492884db.js	54.230.111.79	200 OK	69 kB
URL HTTP/2 script.hotjar.com/modules.936575bc1767492884db.js IP 54.230.111.79:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (50842) Size 69 kB (69056 bytes) Hash d6165b54ac1bedfdf423823cc05855ac c59efe41c8303c4954af5b4fda66b06c54ca30f3 4008352d5fd357e2dc85ca061c490b16707e690bf74489ccb0cb72d2a792c701 HTTP Headers `GET /modules.936575bc1767492884db.js HTTP/1.1 Host: script.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript content-length: 69056 date: Fri, 24 Mar 2023 15:40:07 GMT accept-ranges: bytes access-control-allow-origin: * cache-control: max-age=31536000 content-encoding: br cross-origin-resource-policy: cross-origin etag: "d6165b54ac1bedfdf423823cc05855ac" last-modified: Fri, 24 Mar 2023 15:39:54 GMT strict-transport-security: max-age=2592000; includeSubDomains x-content-type-options: nosniff x-robots-tag: none vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: NkBJLwWGNN_f-eSXrDClvfNGvrb39pKfiXg4Mb0vCuJIzj1ZNJ8TUw== age: 229861 X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d7b21f2-676f-4c51-b4dc-6a2a91111f85.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d7b21f2-676f-4c51-b4dc-6a2a91111f85.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10873 bytes) Hash b49b3235ad6ed6c8298bd2c57f29d60a 69db0c4055e9d5b00fc5316179ce50c2adfd7b28 87409358baa3fd963bd17987771d0046709f38797aadb18082a45cc1d815c8e3 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d7b21f2-676f-4c51-b4dc-6a2a91111f85.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10873 x-amzn-requestid: c12b388d-f1c9-4828-b9a5-a0bbe95c0bd5 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CYIxhHaIIAMF9eA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641fee6f-41ba3d8131251f1e53e803e6;Sampled=0 x-amzn-remapped-date: Sun, 26 Mar 2023 07:04:15 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: SayXV0voIpjoBs66KRG3Hre5E6XZsHjHXZ9iUbyLGxy5SJyHDdNpvw== via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 07:13:08 GMT age: 1080 etag: "69db0c4055e9d5b00fc5316179ce50c2adfd7b28" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg	34.120.237.76	200 OK	7.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type data Size 7.0 kB (6971 bytes) Hash 59cecfe1fcb5117fb4bd53e6d826dcfb 814a49822f386970e0d22bc273d090d2209bc8ec 925e4a10bfaee27f3fd9e7eac7c5cf8a1675c465e94d8de7a4f1b29fe86d9b78 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4000 x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CJpraEqyoAMFgNQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0 x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: _g9kT_E1XbUL7UICSL8g0AR0ZYciqALNSNMyJyhFClAh_zMe8CwiRA== via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 6ca7826fb0f4c565b1af9c7737725c48.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 06:28:03 GMT age: 3785 etag: "b798268806dc2f79f033e5872676019faf0e0cc1" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4b00868-d4e4-49ee-b488-491632971243.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4b00868-d4e4-49ee-b488-491632971243.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10282 bytes) Hash 675f061936669e9de498cd16bfc96379 00235db033dbeb738db9633e50c8666add66dadb 7c26736fcd1bf736aba7d16534720e03e0527ef30f6efb98403ad17e8c11a7e2 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4b00868-d4e4-49ee-b488-491632971243.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10282 x-amzn-requestid: 29110a42-55db-45a2-8abf-0270f02b3017 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CRi4YH3SIAMF31g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641d4b68-459f32fe475dc8d439aa8343;Sampled=0 x-amzn-remapped-date: Fri, 24 Mar 2023 07:04:08 GMT x-amz-cf-pop: SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: UAmlbyOBTJfvQoqELaYaoNa5jvnygpynfibmhlFA5ZPHcSFnVhnuhg== via: 1.1 8591441a35c0af61913aec9af012bc38.cloudfront.net (CloudFront), 1.1 0cf6c59c77f0fff670ae085179adc458.cloudfront.net (CloudFront), 1.1 google date: Sun, 26 Mar 2023 22:59:42 GMT age: 30686 etag: "00235db033dbeb738db9633e50c8666add66dadb" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10591 bytes) Hash 668a8a17a1bb77ea7db7fa23c9df9690 242108539ff8694a3c557d07b2b000e764a77f24 100952573dc9eeba889a77f4d148b646accb99f277035f0607b1c6918f93a358 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10591 x-amzn-requestid: 8359ddc1-a6c6-4caf-9de3-f2eb4dcb0c78 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CaIO-F0QIAMF5_A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6420ba5f-72ee066911fdddb62c4a201d;Sampled=0 x-amzn-remapped-date: Sun, 26 Mar 2023 21:34:23 GMT x-amz-cf-pop: HIO50-C1, SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: hfm1xuKZ-Olu263DvYfbYlEnANaiIL9e7jEDUqDAf3ihT5N2HAdyIA== via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 google date: Sun, 26 Mar 2023 21:49:30 GMT age: 34898 etag: "242108539ff8694a3c557d07b2b000e764a77f24" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	linkvertise.chargebeestaticv2.com/api/internal/1679902200/retrieve_js_info	54.230.111.36	202 Accepted	0 B
URL HTTP/2 linkvertise.chargebeestaticv2.com/api/internal/1679902200/retrieve_js_info IP 54.230.111.36:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/internal/1679902200/retrieve_js_info HTTP/1.1 Host: linkvertise.chargebeestaticv2.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: x-requested-with Referer: https://js.chargebee.com/ Origin: https://js.chargebee.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 202 Accepted content-length: 0 date: Mon, 27 Mar 2023 07:31:09 GMT cache-control: no-store, no-cache, must-revalidate expires: Thu, 01 Jan 1970 00:00:00 UTC strict-transport-security: max-age=31536000; includeSubDomains; preload pragma: no-cache access-control-allow-origin: https://js.chargebee.com access-control-allow-credentials: true access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token access-control-allow-methods: GET, OPTIONS, POST server: ChargeBee x-cache: Miss from cloudfront via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: CXbrxrb3RQg3rNuvGDwgFQ-L1HNty1wEHnwq7o2aGNg8ZZH7KXplAg== X-Firefox-Spdy: h2

	linkvertise.chargebeestaticv2.com/api/internal/1679902200/retrieve_js_info	54.230.111.36	200 OK	451 B
URL HTTP/2 linkvertise.chargebeestaticv2.com/api/internal/1679902200/retrieve_js_info IP 54.230.111.36:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (451), with no line terminators Size 451 B (451 bytes) Hash 53e8a4bad15d11a2df3eb6a44e64734b 9681853dd64480d24c5482edfe9ddbc138008f19 6cb113617c09dcd449abccfe4341acc4ba667bce0ca54f92b95ffc0f03b16a79 HTTP Headers GET /api/internal/1679902200/retrieve_js_info HTTP/1.1 Host: linkvertise.chargebeestaticv2.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-Requested-With: XMLHttpRequest Origin: https://js.chargebee.com Connection: keep-alive Referer: https://js.chargebee.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK content-type: application/json;charset=utf-8 content-length: 451 date: Mon, 27 Mar 2023 06:41:41 GMT cache-control: max-age=0, must-revalidate, public, s-maxage=3600 expires: Thu, 01 Jan 1970 00:00:00 UTC strict-transport-security: max-age=31536000; includeSubDomains; preload access-control-allow-origin: https://js.chargebee.com access-control-allow-credentials: true access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token access-control-allow-methods: GET, OPTIONS, POST server: ChargeBee x-cache: Hit from cloudfront via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: hdnDpNzajXnKTFs_iYmkJ51voS54T00FDCKSQzbpUDJpls5QJvblWQ== age: 2968 X-Firefox-Spdy: h2

	obseu.bizseasky.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136de7ce35e8458c959225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5f15896a2417071a10acf9f29f674183868a0379384dfc7b2505d53bd662c607630221c05a555e35070d94ef381c77be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c7911750e5df1df7f632f0fa0fc4e7f8cadfd7dc3e85d211578faf3a79dcb76ebcfc248b5038e523c60cbe986a7b376cccee879cf774a91bac333074aae3f34eec55620b79bae6adc59a259b7871fc049cfd02b956661df8475872c8d83bcb5dab1a75c68a36cabeaba724e35aecf71c4e150b9445a1395080bc68f8f8899add661866ad1deedc854c33c3574843873c4dad1592490b025e541f794499167bf7a520b0c8c76f14dddcdee27f88632c00fb19dceda27c019486ee9551150684273cbec3bf4499482c721a6bf6bf69720cca9efbe25cfe0b30d3724d8b2041f97e45d0f59afbeb264ac3c88f64eb9b25dee25f56fd12a8006ddba21d50635a6f2806c543b7c002b08400aace18c70cf01b141235f3bacf1168b8a121effa6debcbb65cbede6fe8efdb1ae373442fd41e2eb201cf8353e1c9d174f6d7eb53ef6220bc8f9c07d8b66d02c82ab2ecfb0088738784849652a72d49a809a3a0e36f3605789c19dfee99e410f8cb1a37c90c87a72d8d010346ce7f78c1556be67e122e948977dde4b88b501e4a870a2cd9ad8f32a7efda27f3a907ca791a2ff47d83d484956c52c1a0fefc10ad8b54b948b91c948dfd3d2711c3d44bf3eb717ea08e39363972e51611c786f75bf1fd2dd2f47e62c93f6e73fd8d35fd33720ed037672dab48d1648b7328cce628658625b13e26c3e88f98634880273&cri=gTwcCGL93k&ts=77&cb=1679902286400	54.75.69.192	200 OK	0 B
URL HTTP/2 obseu.bizseasky.com/tracker/tc_imp.gif?e=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&cri=gTwcCGL93k&ts=77&cb=1679902286400 IP 54.75.69.192:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tracker/tc_imp.gif?e=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&cri=gTwcCGL93k&ts=77&cb=1679902286400 HTTP/1.1 Host: obseu.bizseasky.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Cookie: cg_uuid=81534e7f23b1b09013c72c8e103bbacc Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK cache-control: no-cache, no-store, must-revalidate content-type: image/gif date: Mon, 27 Mar 2023 07:31:08 GMT expires: Fri, 01 Jan 1990 00:00:00 GMT pragma: no-cache content-length: 43 X-Firefox-Spdy: h2`

	vc.hotjar.io/sessions/3321028?s=0.25&r=0.041572649548617946	54.230.111.64	204 No Content	0 B
URL HTTP/2 vc.hotjar.io/sessions/3321028?s=0.25&r=0.041572649548617946 IP 54.230.111.64:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /sessions/3321028?s=0.25&r=0.041572649548617946 HTTP/1.1 Host: vc.hotjar.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content access-control-allow-origin: * cache-control: no-store date: Mon, 27 Mar 2023 07:31:09 GMT server: Python/3.8 aiohttp/3.8.4 x-cache: Miss from cloudfront via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: tPBJ8GXVMb31Um-ALs34AuDee7hDgqFX8ij_P1NU5byJBBDVXOXuwQ== X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash aacadb94b44e557195c202f9eac3d422 ae45e0a668927354b659a0050ec4f37421acfc12 e3efec2ec99be9c753808134094e95ea88d59e2898a180327a5a0818050a3859 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 27 Mar 2023 07:31:09 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-	216.58.211.4	200 OK	587 B
URL HTTP/2 www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- IP 216.58.211.4:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (884), with no line terminators Size 587 B (587 bytes) Hash 70c95fb2ff9bb7c245a2cc6940d1b0e0 767fb0b66d3346939ac9d18acae7f038f906da66 fc639035fc8864859bf23805ea19fee98c5a779d05a67cbb34a5a09e99569c3e HTTP Headers `GET /recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://js.chargebee.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK expires: Mon, 27 Mar 2023 07:31:09 GMT date: Mon, 27 Mar 2023 07:31:09 GMT cache-control: private, max-age=300 content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block content-length: 587 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	cdn.taboola.com/libtrc/linkvertise-link-to/loader.js	151.101.129.44	200 OK	42 kB
URL HTTP/2 cdn.taboola.com/libtrc/linkvertise-link-to/loader.js IP 151.101.129.44:0 ASN #54113 FASTLY File type Unicode text, UTF-8 text, with very long lines (28418) Size 42 kB (42523 bytes) Hash cb409e42b16b2154484e2b5d1b18c562 b51fd40d0feee412e2560f52d7f5edc199a11467 5d9522bd633bc65bd041b60146cf2b30426aa6c3d034e07353612934af0e959a HTTP Headers `GET /libtrc/linkvertise-link-to/loader.js HTTP/1.1 Host: cdn.taboola.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: od4SKawfHnTj5Jh0ygaTAdp+DaRTUjA1HV/6e5SGQF9OswOy4v+ajgXa/Tz6OeJdtWeAJaeVBVk= x-amz-request-id: SA6B2KH1E1ZM6BX8 x-amz-replication-status: PENDING last-modified: Sun, 26 Mar 2023 09:41:29 GMT etag: "72fd19c6640ad74d2dc689906d579252" x-amz-server-side-encryption: AES256 x-amz-version-id: ua30kAU5lzrQtHHJ00TFitggCMY0QKQN content-type: application/javascript; charset=utf-8 server: AmazonS3 content-encoding: gzip accept-ranges: bytes date: Mon, 27 Mar 2023 07:31:09 GMT via: 1.1 varnish age: 59 x-served-by: cache-bma1662-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1679902269.302761,VS0,VE1 cache-control: private,max-age=14401 vary: Accept-Encoding abp: 84 access-control-allow-origin: * content-length: 42523 X-Firefox-Spdy: h2

	www.gstatic.com/recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js	216.58.211.3	200 OK	166 kB
URL HTTP/2 www.gstatic.com/recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js IP 216.58.211.3:0 ASN #15169 GOOGLE File type HTML document, ASCII text, with very long lines (597) Size 166 kB (166058 bytes) Hash 4043af37a3392a9db521ff9ab62d9608 83828688e7a2259ed2f77345851a16122383b422 ee076822f35390ee382cda71759a2eec8f4db2bc18e4e3acd586173c29dab321 HTTP Headers `GET /recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://js.chargebee.com Connection: keep-alive Referer: https://js.chargebee.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 166058 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 20 Mar 2023 16:20:35 GMT expires: Tue, 19 Mar 2024 16:20:35 GMT cache-control: public, max-age=31536000 last-modified: Mon, 20 Mar 2023 04:02:00 GMT content-type: text/javascript vary: Accept-Encoding age: 573034 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=Ui%2FjERCiPZFcLoxZZzS7hyOf7Kx4kA%2FfNP%2BP5xl2rD5oxAMqwFVM%2Br%2FAC79YgQK8Pdh5	172.64.164.4	200 OK	26 kB
URL HTTP/2 publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=Ui%2FjERCiPZFcLoxZZzS7hyOf7Kx4kA%2FfNP%2BP5xl2rD5oxAMqwFVM%2Br%2FAC79YgQK8Pdh5 IP 172.64.164.4:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (976), with no line terminators Size 26 kB (26257 bytes) Hash 55e1f667dea78ce080535b6bfb033a21 f58a473a848fa6783810fcdd987da66f6ad7dedd 69e417277462840d32b3d00df44254346be92677281f798bb83ba94acc8fec42 HTTP Headers GET /api/v1/validate-traffic?cheq_response=Ui%2FjERCiPZFcLoxZZzS7hyOf7Kx4kA%2FfNP%2BP5xl2rD5oxAMqwFVM%2Br%2FAC79YgQK8Pdh5 HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Content-Type: application/json Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:08 GMT content-type: application/json cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin access-control-allow-credentials: true set-cookie: laravel_session=gNkDV66ex0i4PchPe0uCT744G2WFJlnEX2gKn8iZ; expires=Tue, 26 Mar 2024 07:31:08 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WDRmgieX2WECSm2nKpfirfdMJvtoMafyz3U860iJGwKyhcpDSGwvnRoPJZvflwOsNq7jTFF0YHDxykoy0oLobObIs7lHe5OlAuZW6pM%2FkEIwevnQW29Ea96nRBYLd5SyMh%2BT444rJ47lKhYh"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7ae5ee9bfa8e732c-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	192.229.221.95	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 1f676e95ba006bab875fd7e28d50626e e2523d6c10d39befafa2cfbbad9cddc2d9d28141 9c501bc0dd6d5576a06b34d89fb67e2845df20230682d0e3bff1246e2d3fd675 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6280 Cache-Control: max-age=119669 Content-Type: application/ocsp-response Date: Mon, 27 Mar 2023 07:31:09 GMT Etag: "64205e2a-1d7" Expires: Tue, 28 Mar 2023 16:45:38 GMT Last-Modified: Sun, 26 Mar 2023 15:00:58 GMT Server: ECAcc (ska/F775) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	192.229.221.95	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash a16099e8eb006eeb4c6bcf066587b357 94759e37360ebdcf1b24ae91db8ae7eb308be3f1 43ae2fa084ef089a374e3c4c41ce6c57ab809f2e4197b17a57c25a493ea036fc HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4899 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Mon, 27 Mar 2023 07:31:10 GMT Etag: "642055bf-1d7" Last-Modified: Mon, 27 Mar 2023 06:09:31 GMT Server: ECAcc (ska/F6AF) X-Cache: HIT Content-Length: 471`

	csm.nl3.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1	178.250.1.25	200 OK	2.0 kB
URL HTTP/2 csm.nl3.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1 IP 178.250.1.25:0 ASN #0 File type data Size 2.0 kB (2028 bytes) Hash f416bcd88ff96377992b766f134dd25b 2908b7b4782585d7818ec49e4f56eab7bf472c5b ed58170b6b33de5cbe2ed7116fa8edfc237c4d329efeba867338276bf24370d4 HTTP Headers `GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1 HTTP/1.1 Host: csm.nl3.eu.criteo.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:09 GMT pragma: no-cache server: Finatra expires: 0 content-type: image/gif cache-control: no-cache, no-store, must-revalidate content-length: 43 cross-origin-resource-policy: cross-origin strict-transport-security: max-age=31536000; preload; X-Firefox-Spdy: h2`

	gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com	178.250.1.11	200 OK	5.4 kB
URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com IP 178.250.1.11:0 ASN #0 File type data Size 5.4 kB (5380 bytes) Hash 3ffb408728843e9794139cbbde813727 bdf6e394114fd4a21cafa28fbb187e60b617249b 27adbc1254c1bbd33740d92de26ff466ce942610ffb928ecab38942ec434d578 HTTP Headers GET /syncframe?origin=rtus&topUrl=linkvertise.com HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:09 GMT content-type: text/html; charset=utf-8 server: Kestrel cache-control: private, max-age=3600 set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/ uid=1795dd2a-5cb8-4c64-ad89-40ad6e4d7a52; expires=Sat, 20 Apr 2024 07:31:09 GMT; domain=.criteo.com; path=/; secure; samesite=none cross-origin-resource-policy: cross-origin cross-origin-embedder-policy: require-corp server-processing-duration-in-ticks: 349192 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2

	linkvertise.com/537264/dandy-boy-adventures-apk/1	172.64.165.4	200 OK	11 kB
URL HTTP/2 linkvertise.com/537264/dandy-boy-adventures-apk/1 IP 172.64.165.4:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11491) Size 11 kB (10853 bytes) Hash dc63fc8d2a41c29b480e942d68381198 53eb8f65ef96b6a25ae82c53a7e700234782e023 1476cb5f3fd1b08b38588116eb0c471407f37d62ce1502c09abbde0c18afd978 HTTP Headers `GET /537264/dandy-boy-adventures-apk/1 HTTP/1.1 Host: linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:07 GMT content-type: text/html; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=INbN53rTFInO9uPlmPYaJrGpM7eq%2BVv9ri7VVPKxcrTZdHwOYxfKiWxP%2FBw%2BCpKaAbCiehZW81S2%2FS2%2BXYd9xcsM78ewHGzbB4jkklG%2Bdg50x%2BzIVRDVC0cGUk1hHlwIYn4%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-cache-status: DYNAMIC x-frame-options: sameorigin server: cloudflare cf-ray: 7ae5ee9069de4167-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	192.229.221.95	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash b82185d03697f5e199269dcb8e02d904 9f693bd2d0763dcd36d0f02ea828b8fd659898f0 27d0f2641551e3b0c91cd83eaf4e35ca4ea36bf665c21b3da002a1e8026c50fe HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1919 Cache-Control: max-age=123568 Content-Type: application/ocsp-response Date: Mon, 27 Mar 2023 07:31:10 GMT Etag: "64207e6f-1d7" Expires: Tue, 28 Mar 2023 17:50:38 GMT Last-Modified: Sun, 26 Mar 2023 17:18:39 GMT Server: ECAcc (ska/F757) X-Cache: HIT Content-Length: 471`

	dnacdn.net/dna	178.250.0.157	200 OK	0 B
URL HTTP/2 dnacdn.net/dna IP 178.250.0.157:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /dna HTTP/1.1 Host: dnacdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/ Origin: https://gum.criteo.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:10 GMT server: Kestrel content-length: 0 cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 set-cookie: browser_data=JEBUD180M0RITmhlJTJCZkMwOUJGQlhaMUN2czlyRVp0OG1jekVGNWFRejlaVmpWNnBtaVhqUGNZaG5YcnEzeFM2em45aUo; expires=Sat, 20 Apr 2024 07:31:10 GMT; domain=dnacdn.net; path=/; secure; samesite=none access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-origin: https://gum.criteo.com server-processing-duration-in-ticks: 319850 strict-transport-security: max-age=31536000; preload; X-Firefox-Spdy: h2

	dnacdn.net/dna	178.250.0.157	200 OK	442 B
URL HTTP/2 dnacdn.net/dna IP 178.250.0.157:0 ASN #44788 Criteo SA File type JSON data\012- , ASCII text, with very long lines (491), with no line terminators Size 442 B (442 bytes) Hash e46a4cd3161845c7cbdcaac48c393ecd 544ecb5815d56a0d3f24f35399b734d571c7e21e 71fbdbc9cd08cf2dbc70ad0041cfe5fdbda0bba9472bdc45b89bd13883886ee8 HTTP Headers `GET /dna HTTP/1.1 Host: dnacdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/ Origin: https://gum.criteo.com Connection: keep-alive Cookie: browser_data=JEBUD180M0RITmhlJTJCZkMwOUJGQlhaMUN2czlyRVp0OG1jekVGNWFRejlaVmpWNnBtaVhqUGNZaG5YcnEzeFM2em45aUo Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:09 GMT content-type: application/json; charset=utf-8 server: Kestrel cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 set-cookie: browser_data=66iCrV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czlyRVp0OG1jekVGNWFRejlaVmpWNm90aCUyRmx2cXNsaTd4NGFJWjYwdTI0SQ; expires=Sat, 20 Apr 2024 07:31:10 GMT; domain=dnacdn.net; path=/; secure; samesite=none access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-origin: https://gum.criteo.com server-processing-duration-in-ticks: 304892 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2

	ag.gbc.criteo.com/newidsd	185.235.84.29	200 OK	1.9 kB
URL HTTP/2 ag.gbc.criteo.com/newidsd IP 185.235.84.29:0 ASN #44788 Criteo SA File type data Size 1.9 kB (1901 bytes) Hash 070f5846b74f6916489fe09945257c56 f0ff6e67202db57e4166167f5099041e84228cef e904461c5394e77de9f1fa288f0c38afe753170e4ac30cdddf8914b72fb0c853 HTTP Headers `GET /newidsd HTTP/1.1 Host: ag.gbc.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/ Origin: https://gum.criteo.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:09 GMT content-type: application/json; charset=utf-8 server: Kestrel cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-origin: https://gum.criteo.com server-processing-duration-in-ticks: 100363 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	publisher.linkvertise.com/api/v1/redirect/link/static/537264/dandy-boy-adventures-apk?origin=	172.64.164.4	200 OK	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/537264/dandy-boy-adventures-apk?origin= IP 172.64.164.4:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /api/v1/redirect/link/static/537264/dandy-boy-adventures-apk?origin= HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Content-Type: application/json Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:08 GMT content-type: application/json cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin access-control-allow-credentials: true set-cookie: laravel_session=qaVwRzHx9GCwgLRR3Hc40s2d3HIUZeO3QCs348hX; expires=Tue, 26 Mar 2024 07:31:08 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xSm53z4F8BNtcuq7h4URKmZaaDar0qYuZcLMY85sG3T82R8ny2Sz0Zn9Ji%2BKoAsBC64CHBUd7hskFnMsesD2x43bEPW1rdzFwvW6d9QQkyFjAAZYQ2JCZc1wNpHYQfJTZ4aIk%2F7SaPSY1oUd"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7ae5ee987fb0732c-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/150-eb01a76e4b0ba7d8fb0d.js	54.230.111.65	200 OK	0 B
URL HTTP/2 js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/150-eb01a76e4b0ba7d8fb0d.js IP 54.230.111.65:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/cbjs-2023.03.22-04.21/v2/150-eb01a76e4b0ba7d8fb0d.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/master.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Wed, 22 Mar 2023 06:29:48 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: 4LKacKh_sS4VnMXNIkvwoXNs1k4MJu9F server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Mon, 27 Mar 2023 07:28:25 GMT cache-control: max-age=300,public etag: W/"16020e26a638fe97c3735e2f84d192dd" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 9fFcy8xpRP0moMkr41_8yBVKlwpP6YNW3RcdNYJTIgy0xid0_mG0pQ== age: 166 X-Firefox-Spdy: h2

	js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/154-687ac54d07ed6cb8e4b9.js	54.230.111.65	200 OK	0 B
URL HTTP/2 js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/154-687ac54d07ed6cb8e4b9.js IP 54.230.111.65:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/cbjs-2023.03.22-04.21/v2/154-687ac54d07ed6cb8e4b9.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/master.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Wed, 22 Mar 2023 06:29:48 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: sueQ0JrHtpYfaw3hvJGCW.bZl99hVh8r server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Mon, 27 Mar 2023 07:30:41 GMT cache-control: max-age=300,public etag: W/"27eafe3718573c25d49594721027eb56" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: l5S0uisNgBdQIKzjSort3Iygl4zAGeBOw76wHOJ2Rvcyo7DFdAIcRQ== age: 28 X-Firefox-Spdy: h2

	js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/pi-worker.js	54.230.111.65	200 OK	0 B
URL HTTP/2 js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/pi-worker.js IP 54.230.111.65:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/cbjs-2023.03.22-04.21/v2/pi-worker.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/master.html Sec-Fetch-Dest: worker Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Wed, 22 Mar 2023 06:29:48 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: KGbNa4d6.OAAioRhrR23MOf37KR4gcY1 server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Mon, 27 Mar 2023 07:28:59 GMT cache-control: max-age=300,public etag: W/"499260c451192090d72d863bed993a87" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: gNIan_d297JfXwhMWmQjI44GU5_L4Kpir0QkohiUYjuoca4q99zMWg== age: 130 X-Firefox-Spdy: h2

	stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css	104.18.10.207	200 OK	0 B
URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css IP 104.18.10.207:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /bootstrap/4.1.3/css/bootstrap.min.css HTTP/1.1 Host: stackpath.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:07 GMT content-type: text/css; charset=utf-8 vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE access-control-allow-origin: * cache-control: public, max-age=31919000 last-modified: Mon, 25 Jan 2021 22:04:06 GMT cdn-cachedat: 12/11/2021 23:51:22 cdn-proxyver: 1.02 cdn-requestpullcode: 200 cdn-requestpullsuccess: True cdn-edgestorageid: 601 cdn-status: 200 timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-requestid: 873d47ad8054cd5f5d4a8793d245560e cdn-cache: HIT cf-cache-status: HIT age: 5797559 strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 7ae5ee9229a3b51e-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/master-8540114cba97568ee444.js	54.230.111.65	200 OK	0 B
URL HTTP/2 js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/master-8540114cba97568ee444.js IP 54.230.111.65:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/cbjs-2023.03.22-04.21/v2/master-8540114cba97568ee444.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://js.chargebee.com/assets/cbjs-2023.03.22-04.21/v2/master.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Wed, 22 Mar 2023 06:29:48 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: OuR6eM0i_gb8ugZbQftK6VUYZNevuYKM server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Mon, 27 Mar 2023 07:30:57 GMT cache-control: max-age=300,public etag: W/"7dbceebd226041e91e667d3f787a0889" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: hoea7ecunNPBWavbxql1wztcO4JqtgjMci4C-vMATOO4LUrvOn2baw== age: 14 X-Firefox-Spdy: h2

	static.hotjar.com/c/hotjar-3321028.js?sv=7	54.230.111.8	200 OK	0 B
URL HTTP/2 static.hotjar.com/c/hotjar-3321028.js?sv=7 IP 54.230.111.8:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /c/hotjar-3321028.js?sv=7 HTTP/1.1 Host: static.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * content-encoding: br cross-origin-resource-policy: cross-origin strict-transport-security: max-age=2592000; includeSubDomains x-cache-hit: 1 x-content-type-options: nosniff date: Mon, 27 Mar 2023 07:30:18 GMT cache-control: max-age=60 etag: W/00bb3050b1ac4f608521190b0ac45cb4 vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: gBfjsvAjUW85UjNzAXjkvTRsAHoKTjffRgI2xvuSKRqg7D6f6LAgEw== age: 54 X-Firefox-Spdy: h2

	cdn.taboola.com/libtrc/impl.20230326-2-RELEASE.js	151.101.129.44	200 OK	0 B
URL HTTP/2 cdn.taboola.com/libtrc/impl.20230326-2-RELEASE.js IP 151.101.129.44:0 ASN #54113 FASTLY File type Size 0 B (0 bytes) Hash HTTP Headers `GET /libtrc/impl.20230326-2-RELEASE.js HTTP/1.1 Host: cdn.taboola.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: UAxwFHO4LJbNUpAkcl0OsRyyckG0BeoS1d1JLC02qVnTKl8Ih/FJEm791v/wttJJp5TLP9Js4qo= x-amz-request-id: ZKK145F54HS0YGAQ last-modified: Sun, 26 Mar 2023 09:19:02 GMT etag: "52cfc52f352afb0a366406ae26bbc005" x-amz-server-side-encryption: AES256 content-encoding: br x-amz-version-id: TNlULUTvk0OeqCdQgcrWa3LCyMVqxArJ content-type: application/javascript accept-ranges: bytes date: Mon, 27 Mar 2023 07:31:09 GMT via: 1.1 varnish age: 22275 x-served-by: cache-bma1662-BMA x-cache: HIT x-cache-hits: 8824 x-timer: S1679902269.372155,VS0,VE0 cache-control: private,max-age=31536000 vary: Accept-Encoding abp: 55 server: AmazonS3-br access-control-allow-origin: * content-length: 158365 X-Firefox-Spdy: h2

	gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS	178.250.1.11	200 OK	0 B
URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS IP 178.250.1.11:0 ASN #0 File type Size 0 B (0 bytes) Hash HTTP Headers GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br x-crto-bundle: TqpMW19iVW9DYWRHY1RwSjJoT2F4UjkwSVd5Q2g1ZmdCQzZZdDc1d1htOWJ3aHRVQm9wWFFDcnZ4Z3FhciUyRkpmVEZVbUZtZjk3UWdZaXhaSXl3SWZpdEZnQ0pZQVpDVWRNJTJCVzFEb1pnWHFhV0tUQjlYaGJvdWNkUlNCWkw5clVsYWJ5RFhuY2dIR2ZiM0VWJTJGNjVJNDF3dDM0YmclM0QlM0Q Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:10 GMT content-type: text/javascript; charset=utf-8 server: Kestrel cache-control: private, max-age=3600 expires: 60 access-control-allow-credentials: true access-control-allow-origin: https://linkvertise.com server-processing-duration-in-ticks: 1520647 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS	178.250.1.11	200 OK	0 B
URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS IP 178.250.1.11:0 ASN #0 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:08 GMT content-type: text/javascript; charset=utf-8 server: Kestrel cache-control: private, max-age=3600 expires: 60 server-processing-duration-in-ticks: 404438 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	publisher.linkvertise.com/api/v1/redirect/link/static/537264/dandy-boy-adventures-apk?origin=	172.64.164.4	200 OK	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/537264/dandy-boy-adventures-apk?origin= IP 172.64.164.4:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /api/v1/redirect/link/static/537264/dandy-boy-adventures-apk?origin= HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Content-Type: application/json Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:08 GMT content-type: application/json cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin access-control-allow-credentials: true set-cookie: laravel_session=jrTprmjFTokKSDkQe9tnR7RWAv7TA3IyBf5ATnBG; expires=Tue, 26 Mar 2024 07:31:08 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wmMMpCQLKEBBYInUvNG1w3iUc1tZwXQZ8EDJX4aaCsBZ8skgx%2Bz6HxKEm4x51Ylx7U7sx%2B24O1gm4lG73E%2BpNEaYr7b3pc4nKUhmvbOrmACH01k6hExQphY93VzSmctKIICTmoSMLP4cquvT"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7ae5ee987fac732c-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	js.chargebee.com/v2/chargebee.js	54.230.111.65	200 OK	0 B
URL HTTP/2 js.chargebee.com/v2/chargebee.js IP 54.230.111.65:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /v2/chargebee.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/x-javascript last-modified: Wed, 22 Mar 2023 06:29:48 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: V.eBE2eHfw0UOfZ0kJkbSnKflBf930Lg server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Mon, 27 Mar 2023 07:26:24 GMT cache-control: max-age=300,public etag: W/"8cfd1c02dad5e037383bf7ba841ce0da" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: SOSEE3JKwBpc3qnEZc6ymz0O-hsg8jxDrTuTEgZBBZIyPNQGvEEkdA== age: 284 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/account	172.64.164.4	200 OK	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/account IP 172.64.164.4:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /api/v1/account HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Content-Type: application/json Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:08 GMT content-type: application/json cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin access-control-allow-credentials: true set-cookie: laravel_session=3avNfGVVRaEmslgEsQ9IbYNXlGMO46LxBE3Chhs0; expires=Tue, 26 Mar 2024 07:31:08 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CbTfg116YntbqZfgWddSx0lkfZLW3WYAuyVxYxKlq1kJsu3N1M55b38NzUBf3f4pz7Y8dj0cMG52q7SKNPjCr9A8hsrQ8j0%2BtXjOHMiMrPQmkmETmE%2FFPQCp1poaY3WDn6hXAGJSWQV8T5%2BM"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7ae5ee987fad732c-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	0 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 27 Mar 2023 07:31:09 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	gem.gbc.criteo.com/newidsd	185.235.87.22	200 OK	0 B
URL HTTP/2 gem.gbc.criteo.com/newidsd IP 185.235.87.22:0 ASN #0 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /newidsd HTTP/1.1 Host: gem.gbc.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/ Origin: https://gum.criteo.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:10 GMT content-type: application/json; charset=utf-8 server: Kestrel cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-origin: https://gum.criteo.com server-processing-duration-in-ticks: 63590 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js	104.18.10.207	200 OK	0 B
URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP 104.18.10.207:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1 Host: stackpath.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 27 Mar 2023 07:31:07 GMT content-type: application/javascript; charset=utf-8 vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE access-control-allow-origin: * cache-control: public, max-age=31919000 last-modified: Mon, 25 Jan 2021 22:04:06 GMT cdn-cachedat: 11/15/2021 23:30:00 cdn-proxyver: 1.0 cdn-requestpullcode: 200 cdn-requestpullsuccess: True cdn-edgestorageid: 723 cdn-status: 200 timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-requestid: ed8d946baeeb2ee38f4aebce8d84f641 cdn-cache: HIT cf-cache-status: HIT age: 22945557 strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 7ae5ee92299cb51e-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (47)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML