r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10846
Expires: Sat, 25 Mar 2023 21:13:07 GMT
Date: Sat, 25 Mar 2023 18:12:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5995
Expires: Sat, 25 Mar 2023 19:52:16 GMT
Date: Sat, 25 Mar 2023 18:12:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 17:27:45 GMT
content-type: application/json
age: 2676
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1313ee2f06606d09c45b06ff9e8e1001
285ca89d1d3ea45d35832bc6d9827f834b3bfe21
63463447d29550c3734f621be02ec85290fbdf4612f79f9fad7e94f7e066dcb0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63463447D29550C3734F621BE02EC85290FBDF4612F79F9FAD7E94F7E066DCB0"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19833
Expires: Sat, 25 Mar 2023 23:42:54 GMT
Date: Sat, 25 Mar 2023 18:12:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: XMcp2+NTnMEi1JSZ2Kc4x7fAKDQqoiBBY15Bw93n/8/WsfVm2tBtKcW5Isq4GAqkeyta8X00Iq+t1vveRCin9g==
x-amz-request-id: ZGF2EAHHJJS7JB1R
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 18:00:53 GMT
age: 688
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 18:12:21 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 87240d30a67f0737530bc26979e7d69d
e5c6d183c4c72377a896a6c6870a22ba59ff110e
47fecdf69d4c7f69f2c63be831c5bc2425b983987925278e44bfa8e62830c9c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47FECDF69D4C7F69F2C63BE831C5BC2425B983987925278E44BFA8E62830C9C2"
Last-Modified: Fri, 24 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5647
Expires: Sat, 25 Mar 2023 19:46:28 GMT
Date: Sat, 25 Mar 2023 18:12:21 GMT
Connection: keep-alive
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2lsGchuv6C8rY4HCETm+JA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: OyI63yOYO3zIo85isGUVdE0M3+w=
Date: Sat, 25 Mar 2023 18:12:21 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 3a85d9c2de0b1015b62c81a1ab7fe625
389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238
717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 6bac14ff70f1fb910e47debdd40434da
c2ce59c6cae9af589143a911a086f35db830654d
670d54ab31df749a0b913c0d490e3b1cf835aff2df965d7b6522c6e9ad3d6be2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e6775cb573aaee995c89d41b6be93723
cad165485f34023136370b32999077f4928c68c5
c14056ae20c7cd552209571a3430df2711ec94a5f8ee42c1693a3bf2d04b30ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 17:17:24 GMT
age: 3298
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js
142.250.74.164200 OK 556 B URL HTTP/2 www.google.com/recaptcha/api.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 96cdecb9778a09f65c6d23dff412fb67
c0364916c9d6a7eef2d01e5c9378e7d8acdb1faa
1a5b861d652f80c7ab9e4abb56eab3de9ccb5a019c2111888594aee405f1e45c
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 25 Mar 2023 18:12:22 GMT
date: Sat, 25 Mar 2023 18:12:22 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/paypal.png
104.21.75.208200 OK 20 kB URL HTTP/2 cdn.cuty.io/images/public/paypal.png
IP 104.21.75.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash cb3c2365bc4ab68c2a218330f9fd0fd7
963ed20ac545ee6feaaa4eb34f67bad4c90cdee2
8d3a352fb65a6e167dac3019fc3e148fc6f82d99df7ad55192019055658035c8
GET /images/public/paypal.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/webp
content-length: 19980
cache-control: max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=24721
content-disposition: inline; filename="paypal.webp"
vary: Accept
etag: "63b16742-6091"
expires: Mon, 01 Jan 2024 10:59:13 GMT
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
cf-cache-status: HIT
age: 7195982
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OFSvLgJ2HDDR6%2Fenfzj7pDioQ68G52wtshLU874IcYyEaInTf3QgJlvSqPQtP%2FllxC5sFQgMNVTmGMMl3Im8ywWoFxX5XRfylCDLjr2B8XqqBz68sJJnNqV6YOumrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad91f25ef5cb500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/locale-en.png
104.21.75.208200 OK 25 kB URL HTTP/2 cdn.cuty.io/images/shared/locale-en.png
IP 104.21.75.208:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 60b5c13f116a3bae2e4adddd1e7b971d
58a924b5673274a280f38c05e3d5e89a700e2c3d
30d039e5187c255a96b025d81ab3be8bbc1874168079d3a3219a3b75665e284f
GET /images/shared/locale-en.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/png
content-length: 24647
last-modified: Mon, 16 Jan 2023 19:17:51 GMT
etag: "63c5a2df-6047"
expires: Fri, 09 Feb 2024 17:38:14 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3252891
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=95ZyX0XGlHTKbR4nLzxvLHHqa%2Fp%2FB7PgbQK3qaDGHj1sAsfDu%2FyZCPWbxBqwaShqCI8FXyFQxbRdSHoag5rsUedzKDmna7tOyoRbGi9AIrnz7Ceh%2Bin4QItrUyfiRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ef63b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/payeer.png
104.21.75.208200 OK 1.4 kB URL HTTP/2 cdn.cuty.io/images/public/payeer.png
IP 104.21.75.208:0
File type PNG image data, 167 x 35, 8-bit colormap, non-interlaced\012- data
Hash 076721e6bc9e7ebd04612c544a59e3ce
777b33fdf4ec2212b9613e50d46e203d54163dbb
6602b89e29d6eeb6f85296cffc62529106f8481cb7376a082dc931461844283d
GET /images/public/payeer.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/png
content-length: 1390
last-modified: Tue, 03 Jan 2023 22:11:44 GMT
etag: "63b4a820-56e"
expires: Fri, 05 Jan 2024 18:28:34 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6719586
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H%2FR7C0siZ8kNtaXHhsHaXXvPdGj%2BuTfE0SLR9wI%2B5u65WfwifI0MdKg9XE2L2NDYI6kRqtkuSisYyBcpdPKCK4%2FKVb7L3omK3%2BbpO7PbDmrBfFBPM%2F8kGV1hFsGIVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ef5bb500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/airtm.png
104.21.75.208200 OK 1.6 kB URL HTTP/2 cdn.cuty.io/images/public/airtm.png
IP 104.21.75.208:0
File type PNG image data, 173 x 90, 8-bit colormap, non-interlaced\012- data
Hash 7b0b20bc9885600d544beb5507f52790
ff99e3b5e4430ffb2b932a656e618e18f0446ab4
1980165840ae0a9250250bd0ce68b119ac6182ee847b8e3991928a720943d224
GET /images/public/airtm.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/png
content-length: 1558
last-modified: Mon, 16 Jan 2023 19:17:51 GMT
etag: "63c5a2df-616"
expires: Sat, 24 Feb 2024 01:43:47 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1472412
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6CadXrLyOw%2BXawbmlhyXFPUMtzvrQ1tNalFRFj85UHJYHqobq3tY4r9r5EQHWV19kspoi6oN%2FJV60%2BzqdFOlaJxxoVd7gzGVvTt9kBlzAQX2O5yjYrbN3qQuO7I%2Btw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ef60b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/advcash.png
104.21.75.208200 OK 8.1 kB URL HTTP/2 cdn.cuty.io/images/public/advcash.png
IP 104.21.75.208:0
File type PNG image data, 416 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f7615002ea116800ad4aa9919fd2baa
8cdee4a137bd0e1c4f8353d235eae8fad1a37ad1
28867ed73f6b31c99cdbaad04aa4134fa192e10ff220d0c004fe5c04cb9a6f2f
GET /images/public/advcash.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/png
content-length: 8141
last-modified: Tue, 03 Jan 2023 22:11:44 GMT
etag: "63b4a820-1fcd"
expires: Sat, 06 Jan 2024 20:30:14 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1472412
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CTksebUBmS0KTGF7hxLCfDxED6BBygRw3WNhIIdiM694GEA0ya%2BsRazaPJi%2Bi1z96RNrYNY%2FBIFZk2ksWtJtge%2BybaB36Ra2N3YBLQ6UOTUzxZ1XGehgu4%2FV2hX1eA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ef5fb500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/money-tree.png
104.21.75.208200 OK 28 kB URL HTTP/2 cdn.cuty.io/images/public/money-tree.png
IP 104.21.75.208:0
File type PNG image data, 166 x 261, 8-bit/color RGBA, non-interlaced\012- data
Hash b9c1f6949e61fdf5272ce94b2d297eec
c60dda0dea1215405f6c2fba5f30ab6c92efc1d0
bb8ce1ceb98f2a5be933d8bd813e774cd03d3d37d54ac00fa6c6534a99a45dae
GET /images/public/money-tree.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/png
content-length: 27646
last-modified: Mon, 16 Jan 2023 19:17:51 GMT
etag: "63c5a2df-6bfe"
expires: Wed, 14 Feb 2024 20:48:40 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1442765
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wKK%2FsYdJIVeAe%2FI6wV6YIW4eg79c5douDTxuIbl39Yf%2FSnafXl4t9%2FiJOaiC%2FoYH420sldaZ%2FL7F6NJewySx0ZDv%2FQT1FLobb1dETZ%2Fduy1ZGvOOua9o81CWXYKmGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ef57b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-GGDCMPL4QP
142.250.74.168200 OK 79 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-GGDCMPL4QP
IP 142.250.74.168:0
File type ASCII text, with very long lines (21772)
Hash 724e96767fa5d94f3e3b53cacbbc5b19
445a93378afba66b3ecdcd8cb5f9fc854bee664c
82177af82d142e9b8f2353336ca3a952435f1e0fef1cdf8ab475a0f278eb630a
GET /gtag/js?id=G-GGDCMPL4QP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 25 Mar 2023 18:12:22 GMT
expires: Sat, 25 Mar 2023 18:12:22 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78872
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 3a85d9c2de0b1015b62c81a1ab7fe625
389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238
717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cuty.io/images/shared/locale-es.png
104.21.75.208200 OK 13 kB URL HTTP/2 cdn.cuty.io/images/shared/locale-es.png
IP 104.21.75.208:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash cd2f27e52bb7592e28676a86a3309158
796b9f96cbd568743713d06478e26c8e690e3723
0e656966f1958200ae6fbba050fc6eaebb9b1c60edaaffca31d26525bc59c826
GET /images/shared/locale-es.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/png
content-length: 12579
last-modified: Mon, 16 Jan 2023 19:17:51 GMT
etag: "63c5a2df-3123"
expires: Fri, 09 Feb 2024 16:24:56 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3802702
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lnjp6az8t%2BAHFG4IRErUvl2l4yfrZIoG6pvweaa%2FzoiLVkfC8D53gRrBgSbTvoz69R2shkm5NF5PpOi%2BBWp8BTfiiOcHuHdYevkxvXle8TAy8cV%2BLAKNdse3YWoX8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ef65b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/locale-fr.png
104.21.75.208200 OK 16 kB URL HTTP/2 cdn.cuty.io/images/shared/locale-fr.png
IP 104.21.75.208:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash d5c12041f2ddd200c2c881e5be833179
52ca2be8bf29666646ce347a5d0ef3f6cd547ca9
8c1d20e07e73934ea05d1a1990ad742073d9c674d81b09c2f76fa08eaf286eaf
GET /images/shared/locale-fr.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/png
content-length: 16411
last-modified: Tue, 03 Jan 2023 22:11:44 GMT
etag: "63b4a820-401b"
expires: Fri, 12 Jan 2024 18:04:16 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5670226
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9oJwCwtRjwJ6JgzsC4iUBjJQmjmJVhA6m%2B0dfyAWClVWVBIA%2FAmLE7BMI4p5whedoTQOLqs1i8YTdjTL3ynGXnChGnkp72bANwVKqlRJunie0rYpFV1IR%2FzDPCVfGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ff73b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/bitcoin.png
104.21.75.208200 OK 31 kB URL HTTP/2 cdn.cuty.io/images/public/bitcoin.png
IP 104.21.75.208:0
File type PNG image data, 2000 x 417, 8-bit colormap, non-interlaced\012- data
Hash c072d65a81198a616ea588f4654f1cfb
53ec193adf51c7fcb1a642f680443d90bb3ce91d
391c02102b6a7cce91c572feec8533ecf7b26f7fa1d040ffd940660221abfc4f
GET /images/public/bitcoin.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/png
content-length: 30766
last-modified: Mon, 16 Jan 2023 19:17:51 GMT
etag: "63c5a2df-782e"
expires: Sat, 03 Feb 2024 14:04:46 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1442765
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VUbxELUSkchXr8a%2BZ2qVjWDUkbvIWQGKSj5HWWQetg4rzEFKcFyAeSm3TvrYgN017oZNG4WPJZwZe0xZXRASYes1m94n9Tj71ZSj5GKYCOVXVRrszC0FTnXTQCISVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ef5ab500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/linkedin-icon.png
104.21.75.208200 OK 228 kB URL HTTP/2 cdn.cuty.io/images/shared/linkedin-icon.png
IP 104.21.75.208:0
File type PNG image data, 976 x 970, 8-bit/color RGBA, non-interlaced\012- data
Size 228 kB (227769 bytes)
Hash c25b56612bfcb856e442fcb4fa58d958
10caff4d659c98702bd44b334e124402ef9649b4
53016dc352cde2e291cd6b4ba2fddf3cf5f4aec3c1cc75af07302ef63409222c
GET /images/shared/linkedin-icon.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/png
content-length: 227769
last-modified: Mon, 16 Jan 2023 19:17:51 GMT
etag: "63c5a2df-379b9"
expires: Fri, 16 Feb 2024 21:23:53 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3182315
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z8nQgRFoVjJys%2FS%2FcVFHdAcHiNwh%2FPqryyA64K4nlfz0LTEkKefh%2Bav3psPQY6MuccJEsPwv%2FG%2FPet9qUECkXmTTsxhMcjtdO1Vu%2BFnG7YZ%2Fp62Xz1ZWgliC4Eqeqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ef4fb500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/locale-ar.png
104.21.75.208200 OK 51 kB URL HTTP/2 cdn.cuty.io/images/shared/locale-ar.png
IP 104.21.75.208:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash c81b22802da2b0f2d79452c15098ddb3
abd99b0b24da4d6d74513bb6b2b3311289a3dacc
7b93d647c94f9591b74af237bd20641b982004b56285802a69a2d83fa4b3b8a5
GET /images/shared/locale-ar.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/png
content-length: 51070
last-modified: Mon, 16 Jan 2023 19:17:51 GMT
etag: "63c5a2df-c77e"
expires: Fri, 26 Jan 2024 23:06:56 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4303697
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MHVwTN%2F0aLuMuLAijZ2vqD%2Bp9LH9fQVgdxY%2Fm6WuzGfARAOU%2BiVxxN8mqhKil2VTv7aTAHYVVwiWODvW1DL4NyA9T5thU9BMTTB3luO4UkM7Y4TfKbUUcE6m6M3pYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ff6cb500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/perfectMoney.png
104.21.75.208200 OK 202 kB URL HTTP/2 cdn.cuty.io/images/public/perfectMoney.png
IP 104.21.75.208:0
File type PNG image data, 5000 x 1023, 8-bit/color RGBA, non-interlaced\012- data
Size 202 kB (202386 bytes)
Hash 4d75a89e0baae4c6032c0fa68053830f
c9a28f03bf0e3fbbb2807db76921973872d8b390
0e007c0179add623da4b02762178d86c0d3ef3c69e8284b62f8d2e34380e0dbf
GET /images/public/perfectMoney.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/png
content-length: 202386
last-modified: Tue, 03 Jan 2023 22:11:44 GMT
etag: "63b4a820-31692"
expires: Fri, 05 Jan 2024 18:13:01 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6719586
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=igg64yFqKCeO6ydsjksCbXSFhnUKKJNUGIcWLx8OPzc3lN3IdaY9OLgHmtfU6ueZfN4CJVFXzi%2BLUVa%2Bbdj6fMZxoXXZOYthkALfIw3HwYWh1UA3JZkgLkPtO8PNdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ef5db500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/facebook-icon.png
104.21.75.208200 OK 170 B URL HTTP/2 cdn.cuty.io/images/shared/facebook-icon.png
IP 104.21.75.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 92619173676942ddb284d1520af0129c
ae57393f65b60bb02f0324882da4bfcd78a1426a
1d4073de5206d5aec02fedc9178f938e07f91fe49d4ba4ea246b90a800f0b124
GET /images/shared/facebook-icon.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/webp
content-length: 170
cache-control: max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=409
content-disposition: inline; filename="facebook-icon.webp"
vary: Accept
etag: "63b16742-199"
expires: Mon, 01 Jan 2024 10:59:14 GMT
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
cf-cache-status: HIT
age: 7195982
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mxOB5lp%2FMOzd%2Bf4G9PHHuzQME4lf8PEu4fWkkDJ69erNDQJE1Hn5mdQ108pWudQueYzsJnO2STDdCgWKZrxYuWvqfn1xJftNpuQuse9myjRPzWccSmtrkSqLT1SUgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad91f262fc9b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/twitter-icon.png
104.21.75.208200 OK 809 B URL HTTP/2 cdn.cuty.io/images/shared/twitter-icon.png
IP 104.21.75.208:0
File type PNG image data, 32 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 057b26d74519a32a2e278d6c89d97d19
6e8f8c66b55bddf2c37c169babaf372e11015267
977c15df2295c7f457b797893def2a978abae8f05c957a2176f9c650ca9305d8
GET /images/shared/twitter-icon.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/png
content-length: 809
last-modified: Mon, 16 Jan 2023 19:17:51 GMT
etag: "63c5a2df-329"
expires: Fri, 09 Feb 2024 16:07:45 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2566521
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mvX7Eq6ZJNFpP0dCm8tl1ritcHjWwq44v6QMZeIKqv3kHLHTAhySglOYbXyW3MAOm%2FxEj1iQ7cQ76kHUQylygnAmbfNHqrMWL3TbqGoOhCc5gfb3a54oMixeR5hRNg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f262fccb500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/heading-background.png
104.21.75.208200 OK 97 kB URL HTTP/2 cdn.cuty.io/images/public/heading-background.png
IP 104.21.75.208:0
File type PNG image data, 1440 x 720, 8-bit/color RGBA, non-interlaced\012- data
Hash 5093929f0b4530ad1f101639d6a191d8
437d251f18b6473d2d56e1f6dc92d5d907509924
d2f1a492a7dd6129ab6b1819a6df840311762f3f3f90d5f44596c94a3d355e9a
GET /images/public/heading-background.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.cuty.io/css/public.css?id=a66d1b3f490ee5b9c79bc9f7135b2531
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/png
content-length: 96971
cache-control: max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: origSize=107203, status=webp_bigger
etag: "63b16742-1a2c3"
expires: Mon, 01 Jan 2024 10:59:14 GMT
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
cf-cache-status: HIT
age: 7195988
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Op1uK1748angsYuy3WhljHzrrval8%2BV3iLUKFRQn6KjKBW0MiRMBSg3sYDG4TB%2FyOVro6VeZviO0T6Cv7xMljJM5Z5YAqWDwjZLiThX7slPqskobIUthk%2BESM8HiUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f26d8fab500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
live.demand.supply/e/e.js?e=ll&d=234&cs=c&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
104.16.134.22200 OK 0 B URL HTTP/2 live.demand.supply/e/e.js?e=ll&d=234&cs=c&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
IP 104.16.134.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /e/e.js?e=ll&d=234&cs=c&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: application/javascript; charset=UTF-8
content-length: 1
access-control-allow-origin: *
cache-control: s-maxage=2592000,stale-if-error=604800
cf-bgj: minify
cf-polished: origSize=2
etag: "fa63a24c8b1ff57adc9b8a7e825bdde5-ssl"
x-nf-request-id: 01GTBP42Y54ZY0EGBW8C2X9N8J
cf-cache-status: HIT
age: 1965852
accept-ranges: bytes
set-cookie: __cf_bm=A.XRNR_sB29vMM_nnvPuaQRHyqv42Ta.c_NfcBh2z7E-1679767942-0-Af0tlLc/7NrDMf0+aseKtO3J8BrFMonmbLrZuaHVHQ8xvJ5gDekY2Y9QNLmqMR1SGXMt45YPOvwy0OgA1YWwnn8=; path=/; expires=Sat, 25-Mar-23 18:42:22 GMT; domain=.demand.supply; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f26dec4b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/js/layouts/base.js?id=bc813ca38dc4dbda754827e747c2432c
104.21.75.208200 OK 38 kB URL HTTP/2 cdn.cuty.io/js/layouts/base.js?id=bc813ca38dc4dbda754827e747c2432c
IP 104.21.75.208:0
File type Unicode text, UTF-8 text, with very long lines (61216), with no line terminators
Hash 9ad48acac485f60fd52cf48d3dfc7753
261e1a47be087475b8f12f683e4c7261dc00b92d
3f38889dae19861b7c475f1fd95edac4d04e7edb6b66a5966ee36e3a027c96ad
GET /js/layouts/base.js?id=bc813ca38dc4dbda754827e747c2432c HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
etag: W/"63c5a2df-1a0b0"
expires: Tue, 16 Jan 2024 19:17:53 GMT
last-modified: Mon, 16 Jan 2023 19:17:51 GMT
vary: Accept-Encoding, Accept-Encoding
cf-cache-status: HIT
age: 5871210
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jKXqSX%2Ba9kSvFNGRndAnKQplmLxOewugm5jemG%2BhxaJxgxAxhR%2BVejE6106Z0a%2BJX%2FyM3cjy6sOPUQXBolFp1MCMzpCfMZjb4J99tw6Hnyu7yWLeS%2BxHnejPu4oFUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad91f26986ab500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/css/public.css?id=a66d1b3f490ee5b9c79bc9f7135b2531
104.21.75.208200 OK 10 kB URL HTTP/2 cdn.cuty.io/css/public.css?id=a66d1b3f490ee5b9c79bc9f7135b2531
IP 104.21.75.208:0
File type ASCII text, with very long lines (52522), with no line terminators
Hash 3f2c54de9a67e84c6a8ce00fd5f3af43
10191ac83b84d4b8a767b4d76498ec036556300c
a2097355584d0ddd8a4c7194868d3c3603b88ac43849b08ba00b721160f125cb
GET /css/public.css?id=a66d1b3f490ee5b9c79bc9f7135b2531 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: text/css
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=52548
etag: W/"63ac510a-cd44"
expires: Mon, 01 Jan 2024 10:59:13 GMT
last-modified: Wed, 28 Dec 2022 14:22:02 GMT
vary: Accept-Encoding, Accept-Encoding
cf-cache-status: HIT
age: 7195988
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BdaF8UITQ7tjQWbtsfIzI6OE8UCqy7UvmPxbaTrgdwRHAKSA9SYOb4Rdt4zzpEHRLhS1wgeDi3r1bsYvQvX3n8XfgkjDnwHHok%2BQHP41WZkrVY2ZndZehh58jusWlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad91f25ef4db500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/js/public/links/first.js?id=d283d38a711a8751c0103864121763a6
104.21.75.208200 OK 7.9 kB URL HTTP/2 cdn.cuty.io/js/public/links/first.js?id=d283d38a711a8751c0103864121763a6
IP 104.21.75.208:0
File type ASCII text, with very long lines (24369), with no line terminators
Hash 0c7a829b6d8ec4fe17f5ec5fbe650954
12e3cadd3f2754dcb322a5874185296f85167202
37bba45c9657e8929ea2104745a868dc11af5138eb70744fd61c1ca92df211ac
GET /js/public/links/first.js?id=d283d38a711a8751c0103864121763a6 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=24370
etag: W/"63c5a2df-5f32"
expires: Tue, 16 Jan 2024 19:17:53 GMT
last-modified: Mon, 16 Jan 2023 19:17:51 GMT
vary: Accept-Encoding, Accept-Encoding
cf-cache-status: HIT
age: 5871210
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UVnjznsZSSionShmImq4P1VgsrJL6xXHdWUn0gI%2FI3La2B9oebOUU%2B23xTqGT%2Fnd5fGYVIsS8aMgjphiFarBt0qr17G4HdgdIN3ElMLUP%2BwR1VcJe19kgjqnZgzhFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad91f26986fb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
live.demand.supply/x/e.js?ce=bb&r=cutty.app_auto_728x90_sticky_display_bottom&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
104.16.134.22200 OK 0 B URL HTTP/2 live.demand.supply/x/e.js?ce=bb&r=cutty.app_auto_728x90_sticky_display_bottom&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
IP 104.16.134.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /x/e.js?ce=bb&r=cutty.app_auto_728x90_sticky_display_bottom&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: application/javascript; charset=UTF-8
content-length: 1
access-control-allow-origin: *
cache-control: s-maxage=2592000,stale-if-error=604800
cf-bgj: minify
cf-polished: origSize=2
etag: "fa63a24c8b1ff57adc9b8a7e825bdde5-ssl"
x-nf-request-id: 01GTFKYZ3VR4CG4HV7P4AS38RA
cf-cache-status: HIT
age: 1965841
accept-ranges: bytes
set-cookie: __cf_bm=RQhU3lCu4YzNqRy1Z57DjOCeUxOTOCiRFytfru7Kx00-1679767942-0-ATZoS4JMYy57CwsIK8bQjO9fyCRrUHQEiD7v6csBm/VbqV6ufBwmtia8rhltKje6f6/eAS9hVe6TM/ED1TByuL0=; path=/; expires=Sat, 25-Mar-23 18:42:22 GMT; domain=.demand.supply; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f272f0db4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash b644abd1d83faa6f0327486dae33b18d
cb745aa55db6976159ef31ff8835e2b26fd32109
784e1b0a41a50629890a6fd6f58beb9f3a6eb5ba56aa35c671e5217d839aeeac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cuty.io/js/public/layouts/app.js?id=59b76b5d9a43e5c8987a2f96fb488131
104.21.75.208200 OK 140 kB URL HTTP/2 cdn.cuty.io/js/public/layouts/app.js?id=59b76b5d9a43e5c8987a2f96fb488131
IP 104.21.75.208:0
File type Unicode text, UTF-8 text, with very long lines (65346), with no line terminators
Size 140 kB (139501 bytes)
Hash 2ed946765cecaca213fb9efc9c72a9a2
18c3cf5f29809dc0e2f51eb9ee54b1e77ba99e2f
79bd785f373ad87501aeeb136ca001915b725fa91cf2074016abd9fdcafb7404
GET /js/public/layouts/app.js?id=59b76b5d9a43e5c8987a2f96fb488131 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=343473
etag: W/"63c5a2df-53db1"
expires: Tue, 16 Jan 2024 19:17:53 GMT
last-modified: Mon, 16 Jan 2023 19:17:51 GMT
vary: Accept-Encoding, Accept-Encoding
cf-cache-status: HIT
age: 1714360
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AF3TPe1geP5Adban8Q2yF4tGvv1tXqs6qRFDT3SSD0ul0wJl%2F%2FVZbTeorTVqVDfrVkq2HYa0u%2FP%2BIaC%2BSPCwKHXgNjtlZIFbmfQgzeAYl5wKP1igzlWDu9tfhcgBdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad91f262fcfb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
live.demand.supply/x/e.js?ce=fs&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
104.16.134.22200 OK 0 B URL HTTP/2 live.demand.supply/x/e.js?ce=fs&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
IP 104.16.134.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /x/e.js?ce=fs&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: application/javascript; charset=UTF-8
content-length: 1
access-control-allow-origin: *
cache-control: s-maxage=2592000,stale-if-error=604800
cf-bgj: minify
cf-polished: origSize=2
etag: "fa63a24c8b1ff57adc9b8a7e825bdde5-ssl"
x-nf-request-id: 01GTFKYZ3VR4CG4HV7P4AS38RA
cf-cache-status: HIT
age: 1965841
accept-ranges: bytes
set-cookie: __cf_bm=dFOxd19OHAaKzFpLYamJmUjld4_28kyP9uRomSOBOVA-1679767942-0-AbPb0Kf0r3tTY/WzNo70VcA5SH1Qb+j/PrY9bg7f5YjJX6JEWfZswltiWazyrlxbpyhqQ9lzlX2ocJ6BvkdC43A=; path=/; expires=Sat, 25-Mar-23 18:42:22 GMT; domain=.demand.supply; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f27dffbb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 1.5 kB IP 216.58.211.3:0
Hash 2052ab92063dfbee83a0ea23e02b074e
f05a9e846ad668c1b72a754601f2a014e05024aa
8f44771a18841ce11cf2382fd193e4e25a6e9daaddd712cdb5d38397993561b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js
142.250.74.35200 OK 166 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js
IP 142.250.74.35:0
File type HTML document, ASCII text, with very long lines (597)
Size 166 kB (166058 bytes)
Hash 4043af37a3392a9db521ff9ab62d9608
83828688e7a2259ed2f77345851a16122383b422
ee076822f35390ee382cda71759a2eec8f4db2bc18e4e3acd586173c29dab321
GET /recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166058
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 16:20:35 GMT
expires: Tue, 19 Mar 2024 16:20:35 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Mar 2023 04:02:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 438707
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
youradexchange.com/ut/hb.php?cb=0.11395540017259143
172.64.109.25204 No Content 0 B URL HTTP/2 youradexchange.com/ut/hb.php?cb=0.11395540017259143
IP 172.64.109.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ut/hb.php?cb=0.11395540017259143 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 950
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 25 Mar 2023 18:12:22 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ltHOQ3nmHF5j6iCcJa5Jn38%2BnrbJWjsKnxBYUnF8i1F1xFuNQs8vDqWSWRAOUqxhyxbWTxeNfa31hkiUKsutvL6qh3Z1pFTboyiG9Yj51C5YW0IhmF61JiVPVFIJi8R%2BZa3JaIA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad91f283b960666-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.130200 OK 53 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.130:0
Hash 047706bb161640cc84e0ccfd3511bf0e
39c8d616675cea53e4f83e3921b611dd4791512a
68bf6f9cf93b9e308ea7917a2ccc7313e77ca481bc9dee2ff60658348ff02e66
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27419
date: Sat, 25 Mar 2023 18:12:22 GMT
expires: Sat, 25 Mar 2023 18:12:22 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1522 / 126 of 1000 / last-modified: 1679695742"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.162200 OK 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cutty.app/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 25 Mar 2023 18:12:22 GMT
expires: Sat, 25 Mar 2023 18:12:22 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 6498404754236990946
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 48553
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5716bd17f0cc1d649bcba4a6400ad0fa
752def7b1cf7d2f2e8213b28cb17f93e1015d333
ef78bd37975cc2a43c78562c8fcd9977f92a2ef525b87cfcef89f114f28eac3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5716bd17f0cc1d649bcba4a6400ad0fa
752def7b1cf7d2f2e8213b28cb17f93e1015d333
ef78bd37975cc2a43c78562c8fcd9977f92a2ef525b87cfcef89f114f28eac3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 248b003a4a6dda3d2c481cfd45e49176
ae6e1dbc704dbe302549888e545689eb88e83bb9
14df223924711cca8488c64942b656023cb6e69cb83863ccd0f9cdb8ac4682fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cuty.io/images/public/step-2.svg
104.21.75.208200 OK 748 B URL HTTP/2 cdn.cuty.io/images/public/step-2.svg
IP 104.21.75.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (591)
Hash 1f7eb8b84a85369053ad0d902d8047af
cf0b99e1a4c53f536943aa03f94595b658f2a8fc
ceb6a4b970eafed76de5b540ec6734005d86fb13dd193b7dd498e58ae8fa55dc
GET /images/public/step-2.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
etag: W/"63b16742-607"
expires: Mon, 01 Jan 2024 10:59:13 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 7195987
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eQB0rVSl3DvhAFONTTJpNilR3dlAc%2B7vMID%2F8%2BZAxGsYC0fd%2BZedJiIbmw6bb4Eigkrs8juPK%2Fdtw1J0mBcpWgAetqRHUSphwlIHhq36XhzMVYFUP5xDoGtbdTBHNg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ef51b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/x.svg
104.21.75.208200 OK 259 B URL HTTP/2 cdn.cuty.io/images/shared/x.svg
IP 104.21.75.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 3b98487796dec05843a47a70b1232385
8d54a72ffaf65eb31c5ba97fd37d91c9c7f3c38a
c74f0f014f52c9ac4ac432e3495bbb682ade2cb52da1d72f5c6d23b467f693b3
GET /images/shared/x.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
etag: W/"63b16742-d1"
expires: Mon, 01 Jan 2024 10:59:14 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 7195988
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TikjOX0VYG06kFe2CLRg3aKzJEObr5kF5oId0bWzDVicvX82UW7U3hLWckFKh3FMkpa%2B35JVNSyI6QylDNa3Xq3yEclYRxJdhI4JFK7zyykno2fz1OTyQpr4qg%2F5gA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f262fc6b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 248b003a4a6dda3d2c481cfd45e49176
ae6e1dbc704dbe302549888e545689eb88e83bb9
14df223924711cca8488c64942b656023cb6e69cb83863ccd0f9cdb8ac4682fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023032201&st=env
142.250.74.162200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023032201&st=env
IP 142.250.74.162:0
File type JSON data\012- , ASCII text, with very long lines (14745), with no line terminators
Hash 86a05f0f05ff57cd3e374dbd66b6535d
fec6d31fce70e94debb5720b5830904a1b9c435a
fad30de63d35e883ec103d928c78594ba61488d7a12b831a0e26adfd98aa3aea
GET /getconfig/sodar?sv=200&tid=gpt&tv=2023032201&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Sat, 25 Mar 2023 18:12:23 GMT
server: cafe
content-length: 11132
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 1faaa6e2a96df65e726bea8a873f5a1d
11b1d41aecbf8830cef3bb3d79667c3ae14fb7e5
ca8c2aeb31c285308a18a4eb8680fb9a1f52d26a61f83e2ca4a83b921aa49552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c6ffe815fdc6ef01cce9eafd080ecba4.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
172.217.21.161200 OK 2.7 kB URL HTTP/2 c6ffe815fdc6ef01cce9eafd080ecba4.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: c6ffe815fdc6ef01cce9eafd080ecba4.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Sat, 25 Mar 2023 18:12:23 GMT
expires: Sun, 24 Mar 2024 18:12:23 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
172.217.21.161200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sat, 25 Mar 2023 18:12:23 GMT
expires: Sat, 25 Mar 2023 18:12:23 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-GGDCMPL4QP>m=45je33m0&_p=698837673&cid=931631500.1679767956&ul=en-us&sr=1280x1024&_s=1&sid=1679767956&sct=1&seg=0&dl=https%3A%2F%2Fcutty.app%2FNDFkAmiS3q0&dt=Shorten%20Links%20And%20Earn%20Money%20%7C%20Cuty&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-GGDCMPL4QP>m=45je33m0&_p=698837673&cid=931631500.1679767956&ul=en-us&sr=1280x1024&_s=1&sid=1679767956&sct=1&seg=0&dl=https%3A%2F%2Fcutty.app%2FNDFkAmiS3q0&dt=Shorten%20Links%20And%20Earn%20Money%20%7C%20Cuty&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-GGDCMPL4QP>m=45je33m0&_p=698837673&cid=931631500.1679767956&ul=en-us&sr=1280x1024&_s=1&sid=1679767956&sct=1&seg=0&dl=https%3A%2F%2Fcutty.app%2FNDFkAmiS3q0&dt=Shorten%20Links%20And%20Earn%20Money%20%7C%20Cuty&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://cutty.app
date: Sat, 25 Mar 2023 18:12:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
live.demand.supply/e/e.js?gl=0.01&b=3&r=cutty.app_auto_728x90_sticky_display_bottom&sy=493a63f8-8d76-49f0-9316-a1debf86a28c&ts=97&cd=2&pud=234&pus=c&pue=866&pid=90&pis=c&pie=967&ppd=91&pps=a&ppe=968&pcl=1185&ttc=1022&tti=2345&ttif=0&lca=968&lcak=ppe&lct=968&lctk=ppe&mlbr=fi&mlos=wi&mlla=en&mlco=us&mldo=cutty.app&mlre=undefined&mlin=0&mlsi=728x90&mlbw=unknown&mlcs=NaN&mltp=c4814b6d-9758-4451-8167-7694bfa080b3&e=lm&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
104.16.134.22200 OK 0 B URL HTTP/2 live.demand.supply/e/e.js?gl=0.01&b=3&r=cutty.app_auto_728x90_sticky_display_bottom&sy=493a63f8-8d76-49f0-9316-a1debf86a28c&ts=97&cd=2&pud=234&pus=c&pue=866&pid=90&pis=c&pie=967&ppd=91&pps=a&ppe=968&pcl=1185&ttc=1022&tti=2345&ttif=0&lca=968&lcak=ppe&lct=968&lctk=ppe&mlbr=fi&mlos=wi&mlla=en&mlco=us&mldo=cutty.app&mlre=undefined&mlin=0&mlsi=728x90&mlbw=unknown&mlcs=NaN&mltp=c4814b6d-9758-4451-8167-7694bfa080b3&e=lm&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
IP 104.16.134.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /e/e.js?gl=0.01&b=3&r=cutty.app_auto_728x90_sticky_display_bottom&sy=493a63f8-8d76-49f0-9316-a1debf86a28c&ts=97&cd=2&pud=234&pus=c&pue=866&pid=90&pis=c&pie=967&ppd=91&pps=a&ppe=968&pcl=1185&ttc=1022&tti=2345&ttif=0&lca=968&lcak=ppe&lct=968&lctk=ppe&mlbr=fi&mlos=wi&mlla=en&mlco=us&mldo=cutty.app&mlre=undefined&mlin=0&mlsi=728x90&mlbw=unknown&mlcs=NaN&mltp=c4814b6d-9758-4451-8167-7694bfa080b3&e=lm&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:23 GMT
content-type: application/javascript; charset=UTF-8
content-length: 1
access-control-allow-origin: *
cache-control: s-maxage=2592000,stale-if-error=604800
cf-bgj: minify
cf-polished: origSize=2
etag: "fa63a24c8b1ff57adc9b8a7e825bdde5-ssl"
x-nf-request-id: 01GTBP42Y54ZY0EGBW8C2X9N8J
cf-cache-status: HIT
age: 1965853
accept-ranges: bytes
set-cookie: __cf_bm=hl9CdfWEj642nnEIddqmh8grxdLJpEJD8b4T_7EAw3g-1679767943-0-AUDEP9PVaZsVw9c8ipJ9vw4M9NCrPXhVVFjgzV35vFF+m91ffoZ8R7d4xcHulj2qTZCEs2p+g9AL3XJj68lhZkc=; path=/; expires=Sat, 25-Mar-23 18:42:23 GMT; domain=.demand.supply; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f2f2a9bb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.prod.uidapi.com/uid2SecureSignal.js
54.230.80.236200 OK 1.9 kB URL HTTP/1.1 cdn.prod.uidapi.com/uid2SecureSignal.js
IP 54.230.80.236:0
File type ASCII text, with very long lines (1859), with no line terminators
Hash aded621b17723f487b3c9d0e43cf2f94
90fbec381aa4a6ae2a2bb37eb082291432a1ab18
71fc1599035adc6bc34df2117b8631285905f97737ba730af28644ee6a0d8dde
GET /uid2SecureSignal.js HTTP/1.1
Host: cdn.prod.uidapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 1859
Connection: keep-alive
Last-Modified: Mon, 23 Jan 2023 04:07:36 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 25 Mar 2023 05:18:47 GMT
ETag: "aded621b17723f487b3c9d0e43cf2f94"
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: W05CGyVXS4hX9L1b9o81q9KeK6AwDx39Irj9c0PqFMndCZm4Ac3ZSQ==
Age: 46416
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 1.3 kB IP 216.58.211.3:0
File type gzip compressed data, max compression\012- data
Hash e8e553f0350df1f7cdec39d60216701b
8d66ce291fe9eebe1b00991eb780fb2660057f87
b4bcc3cacf230889bb06470d2fd0231ba90e46c97701f278410e9feedc6b25e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 154ef93611074de64f533fb7ced2a354
3b518959fbe6d6a274c854d52099e9fefdee4dcc
33dae5d3859920914d42af2c992735bca6e8625ee31ee24c871cbab2872d45af
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 154ef93611074de64f533fb7ced2a354
3b518959fbe6d6a274c854d52099e9fefdee4dcc
33dae5d3859920914d42af2c992735bca6e8625ee31ee24c871cbab2872d45af
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 154ef93611074de64f533fb7ced2a354
3b518959fbe6d6a274c854d52099e9fefdee4dcc
33dae5d3859920914d42af2c992735bca6e8625ee31ee24c871cbab2872d45af
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 154ef93611074de64f533fb7ced2a354
3b518959fbe6d6a274c854d52099e9fefdee4dcc
33dae5d3859920914d42af2c992735bca6e8625ee31ee24c871cbab2872d45af
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012302271541000/amp4ads-v0.mjs
142.250.74.65200 OK 62 kB URL HTTP/2 cdn.ampproject.org/rtv/012302271541000/amp4ads-v0.mjs
IP 142.250.74.65:0
File type Unicode text, UTF-8 text, with very long lines (65008)
Hash 1339ec70ef22f9a9bbc60211432c7b8d
15965f972a1a3c3a62942d5cf53bf220f325cc01
7125067e8ee20da59444918dc7c190803551bb7aa627d49dcc63ae82996aba30
GET /rtv/012302271541000/amp4ads-v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 61845
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 18 Mar 2023 20:14:56 GMT
expires: Sun, 17 Mar 2024 20:14:56 GMT
cache-control: public, max-age=31536000
etag: "4fba9ccee66ca96a"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 597447
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
live.demand.supply/e/e.js?gl=0.01&b=3&r=cutty.app_fluid_lb%2Bsq_firstpagefirstbannerad2&sy=493a63f8-8d76-49f0-9316-a1debf86a28c&ts=97&cd=2&mlbr=fi&mlos=wi&mlla=en&mlco=us&mldo=cutty.app&mlre=undefined&mlin=0&mlsi=770x280&mlbw=unknown&mlcs=NaN&mltp=c4814b6d-9758-4451-8167-7694bfa080b3&e=lm&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
104.16.134.22200 OK 0 B URL HTTP/2 live.demand.supply/e/e.js?gl=0.01&b=3&r=cutty.app_fluid_lb%2Bsq_firstpagefirstbannerad2&sy=493a63f8-8d76-49f0-9316-a1debf86a28c&ts=97&cd=2&mlbr=fi&mlos=wi&mlla=en&mlco=us&mldo=cutty.app&mlre=undefined&mlin=0&mlsi=770x280&mlbw=unknown&mlcs=NaN&mltp=c4814b6d-9758-4451-8167-7694bfa080b3&e=lm&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
IP 104.16.134.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /e/e.js?gl=0.01&b=3&r=cutty.app_fluid_lb%2Bsq_firstpagefirstbannerad2&sy=493a63f8-8d76-49f0-9316-a1debf86a28c&ts=97&cd=2&mlbr=fi&mlos=wi&mlla=en&mlco=us&mldo=cutty.app&mlre=undefined&mlin=0&mlsi=770x280&mlbw=unknown&mlcs=NaN&mltp=c4814b6d-9758-4451-8167-7694bfa080b3&e=lm&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:23 GMT
content-type: application/javascript; charset=UTF-8
content-length: 1
access-control-allow-origin: *
cache-control: s-maxage=2592000,stale-if-error=604800
cf-bgj: minify
cf-polished: origSize=2
etag: "fa63a24c8b1ff57adc9b8a7e825bdde5-ssl"
x-nf-request-id: 01GTBP42Y54ZY0EGBW8C2X9N8J
cf-cache-status: HIT
age: 1965853
accept-ranges: bytes
set-cookie: __cf_bm=qWkTr4HB2K27zMLZWTnXYXjrwTRP8ELWwTQFlpxHSbo-1679767943-0-AdFn2gL91v2Tgj29uLwc0iAEPYFtZ4xfF+dWt95JhPJGOD7qEeIRfdjIfNSiJ/d1L8hDMkg5iFZXtwTqABaNJp4=; path=/; expires=Sat, 25-Mar-23 18:42:23 GMT; domain=.demand.supply; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f2f9b3eb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012302271541000/v0/amp-ad-exit-0.1.mjs
142.250.74.65200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012302271541000/v0/amp-ad-exit-0.1.mjs
IP 142.250.74.65:0
File type ASCII text, with very long lines (14764)
Hash b768be4ec895091a432dcd125d02d18a
403f5cacc316fa63e34b9c966fb1f407289960f7
a3d9373ac3cf42c49d24ab565dc6725919c09819f82485c2216e0998562b77a6
GET /rtv/012302271541000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cutty.app/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5236
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 14:23:00 GMT
expires: Tue, 19 Mar 2024 14:23:00 GMT
cache-control: public, max-age=31536000
etag: "cedf9691907d886d"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 445763
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012302271541000/v0/amp-analytics-0.1.mjs
142.250.74.65200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012302271541000/v0/amp-analytics-0.1.mjs
IP 142.250.74.65:0
File type ASCII text, with very long lines (65534)
Hash 97148bebedae50d7264d4d5405be0a3b
db63df3856d8695f61b0c171b88d6ebc88620e36
0c4b6a78c0561c36ed709f09039426304fcbe06e0f58e4e21209c59c401cba73
GET /rtv/012302271541000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cutty.app/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28954
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 13:46:30 GMT
expires: Tue, 19 Mar 2024 13:46:30 GMT
cache-control: public, max-age=31536000
etag: "eb54a928dd76f593"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 447953
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012302271541000/v0/amp-form-0.1.mjs
142.250.74.65200 OK 13 kB URL HTTP/2 cdn.ampproject.org/rtv/012302271541000/v0/amp-form-0.1.mjs
IP 142.250.74.65:0
File type Unicode text, UTF-8 text, with very long lines (41068)
Hash 29e6ca8d9edc05b4a956dcce746de287
01e641dc83f7983e17ddaf615178cd01cf68da48
5ed7c51df3267031660c777660ef695cceb8c82e22b1a417e07a4a6f9de2330f
GET /rtv/012302271541000/v0/amp-form-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cutty.app/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12965
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 19:09:03 GMT
expires: Sat, 23 Mar 2024 19:09:03 GMT
cache-control: public, max-age=31536000
etag: "2e1a930b1f14d060"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 83000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012302271541000/v0/amp-fit-text-0.1.mjs
142.250.74.65200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012302271541000/v0/amp-fit-text-0.1.mjs
IP 142.250.74.65:0
File type ASCII text, with very long lines (5021)
Hash 29310274e55382559cb128e7210c3290
c4ee1bfdccf9bcdb6c3f3522021c698233ed11f5
f0ec8e4452c0078c6f320b8f9117ebae510dd5732e1ab6abb8cf2d71ec52cdab
GET /rtv/012302271541000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cutty.app/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1898
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 25 Mar 2023 11:58:24 GMT
expires: Sun, 24 Mar 2024 11:58:24 GMT
cache-control: public, max-age=31536000
etag: "aaf5c93962f41d5e"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 22439
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 154ef93611074de64f533fb7ced2a354
3b518959fbe6d6a274c854d52099e9fefdee4dcc
33dae5d3859920914d42af2c992735bca6e8625ee31ee24c871cbab2872d45af
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
live.demand.supply/e/e.js?gl=0.01&b=3&r=cutty.app_fluid_lb%2Bsq_firstpagelastbannerad1&sy=493a63f8-8d76-49f0-9316-a1debf86a28c&ts=97&cd=2&mlbr=fi&mlos=wi&mlla=en&mlco=us&mldo=cutty.app&mlre=undefined&mlin=0&mlsi=770x280&mlbw=unknown&mlcs=NaN&mltp=c4814b6d-9758-4451-8167-7694bfa080b3&e=lm&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
104.16.134.22200 OK 0 B URL HTTP/2 live.demand.supply/e/e.js?gl=0.01&b=3&r=cutty.app_fluid_lb%2Bsq_firstpagelastbannerad1&sy=493a63f8-8d76-49f0-9316-a1debf86a28c&ts=97&cd=2&mlbr=fi&mlos=wi&mlla=en&mlco=us&mldo=cutty.app&mlre=undefined&mlin=0&mlsi=770x280&mlbw=unknown&mlcs=NaN&mltp=c4814b6d-9758-4451-8167-7694bfa080b3&e=lm&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
IP 104.16.134.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /e/e.js?gl=0.01&b=3&r=cutty.app_fluid_lb%2Bsq_firstpagelastbannerad1&sy=493a63f8-8d76-49f0-9316-a1debf86a28c&ts=97&cd=2&mlbr=fi&mlos=wi&mlla=en&mlco=us&mldo=cutty.app&mlre=undefined&mlin=0&mlsi=770x280&mlbw=unknown&mlcs=NaN&mltp=c4814b6d-9758-4451-8167-7694bfa080b3&e=lm&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:23 GMT
content-type: application/javascript; charset=UTF-8
content-length: 1
access-control-allow-origin: *
cache-control: s-maxage=2592000,stale-if-error=604800
cf-bgj: minify
cf-polished: origSize=2
etag: "fa63a24c8b1ff57adc9b8a7e825bdde5-ssl"
x-nf-request-id: 01GTBP42Y54ZY0EGBW8C2X9N8J
cf-cache-status: HIT
age: 1965853
accept-ranges: bytes
set-cookie: __cf_bm=NjK2fxxhBQE3Qfj9ZkP3iawyIpms8aXMLOrRD7GcpMM-1679767943-0-AYidnMi2FuFO5zicXH5LvNc/lx6TjZf+76AyBNqu+ScuJZ5sKc0LGWCNC/MeoISLLbpTP/ysAYW8KTMNNao++R8=; path=/; expires=Sat, 25-Mar-23 18:42:23 GMT; domain=.demand.supply; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f2ffbb9b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
live.demand.supply/e/e.js?gl=0.01&b=3&r=cutty.app_fluid_sq_firstpagemiddlebannerad1&sy=493a63f8-8d76-49f0-9316-a1debf86a28c&ts=97&cd=2&mlbr=fi&mlos=wi&mlla=en&mlco=us&mldo=cutty.app&mlre=undefined&mlin=0&mlsi=770x280&mlbw=unknown&mlcs=NaN&mltp=c4814b6d-9758-4451-8167-7694bfa080b3&e=lm&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
104.16.134.22200 OK 0 B URL HTTP/2 live.demand.supply/e/e.js?gl=0.01&b=3&r=cutty.app_fluid_sq_firstpagemiddlebannerad1&sy=493a63f8-8d76-49f0-9316-a1debf86a28c&ts=97&cd=2&mlbr=fi&mlos=wi&mlla=en&mlco=us&mldo=cutty.app&mlre=undefined&mlin=0&mlsi=770x280&mlbw=unknown&mlcs=NaN&mltp=c4814b6d-9758-4451-8167-7694bfa080b3&e=lm&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
IP 104.16.134.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /e/e.js?gl=0.01&b=3&r=cutty.app_fluid_sq_firstpagemiddlebannerad1&sy=493a63f8-8d76-49f0-9316-a1debf86a28c&ts=97&cd=2&mlbr=fi&mlos=wi&mlla=en&mlco=us&mldo=cutty.app&mlre=undefined&mlin=0&mlsi=770x280&mlbw=unknown&mlcs=NaN&mltp=c4814b6d-9758-4451-8167-7694bfa080b3&e=lm&dsReferer=Y3V0dHkuYXBwL05ERmtBbWlTM3Ew HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:23 GMT
content-type: application/javascript; charset=UTF-8
content-length: 1
access-control-allow-origin: *
cache-control: s-maxage=2592000,stale-if-error=604800
cf-bgj: minify
cf-polished: origSize=2
etag: "fa63a24c8b1ff57adc9b8a7e825bdde5-ssl"
x-nf-request-id: 01GTBP42Y54ZY0EGBW8C2X9N8J
cf-cache-status: HIT
age: 1965853
accept-ranges: bytes
set-cookie: __cf_bm=.86SfwVlZmKdlDgQRFwcoehQ2TENODnmE2lbNMfVNVg-1679767943-0-AUorp0n4C8aKyklGh5VKuBWDwod7kIk6RP4jyNr3BW7DFM+CP43cjjXbe2Bss9gcpCOWz8NXYgz6BYWlvOs+UXk=; path=/; expires=Sat, 25-Mar-23 18:42:23 GMT; domain=.demand.supply; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f303c27b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4382
Expires: Sat, 25 Mar 2023 19:25:25 GMT
Date: Sat, 25 Mar 2023 18:12:23 GMT
Connection: keep-alive
cdn.id5-sync.com/api/1.0/esp.js
104.22.53.86200 OK 18 kB URL HTTP/2 cdn.id5-sync.com/api/1.0/esp.js
IP 104.22.53.86:0
Hash d34f760584bdd32a6c8bd16c036a4c6b
eb6805ee35fa25eed8303cbe79b18aa31a1f512d
e9400c1e8ec9433247a1357a39300922012b7d417cdfa7ad1f3ab1c5a8113414
GET /api/1.0/esp.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:23 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: ZjWvYdCQ+n+8pVPo4fgjrkJtLsHSUGhVHJHK8qr0o38/ZNHeA+tbvOrvX+a5AuqVu4Tgr//ghOk=
x-amz-request-id: PETS1203JXCZQ7S0
last-modified: Mon, 13 Feb 2023 11:21:55 GMT
etag: W/"b988c8d91b8a22dcd50f129d3a9d67f1"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 2779
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7ad91f2fbf5cb529-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4382
Expires: Sat, 25 Mar 2023 19:25:25 GMT
Date: Sat, 25 Mar 2023 18:12:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4382
Expires: Sat, 25 Mar 2023 19:25:25 GMT
Date: Sat, 25 Mar 2023 18:12:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b6f4d1-af89-4aaf-acec-609bb76366de.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b6f4d1-af89-4aaf-acec-609bb76366de.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 70169fbc493bf12f91f072aa3a30ddde
4cd24b81bd6ade3ab5ff90fc88b0f7497e93391d
8b5fc3c8421d5696522231c3490a0853709897f5c9b645bd5e84398cf84089aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b6f4d1-af89-4aaf-acec-609bb76366de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12071
x-amzn-requestid: 02bb2a93-c0aa-4d43-aa99-759a0418bc20
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTigfGHYoAMF8BQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e179c-2258162e1901b5cd6e7144d3;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: JviLRALJFla17_jzjfSJ_krfBT1kOqoPPt03e8ymXPQGRlLXmrERsQ==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 73915
etag: "4cd24b81bd6ade3ab5ff90fc88b0f7497e93391d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dd191e3a122d6e31f81e6e9d434c58d6
aec88022970c93289434f8097e4a663da33e5271
1f00c901ef479637ec703d7924526a970cb13dd2635b2bbb68b285df9d98e011
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6185
x-amzn-requestid: 223de50b-9a7e-4ac7-9305-336658eec4ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiwYHoLoAMFXtg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e1802-226bd8524ade75234053ff50;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:37:06 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: tMnTFkK-AtSlEsQskvoxwwCjddndz5GBLHiV5RHi3QumyL6MVC9ovg==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 73915
etag: "aec88022970c93289434f8097e4a663da33e5271"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
142.250.74.3200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP 142.250.74.3:0
File type Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Hash 53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cutty.app
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:43 GMT
expires: Sat, 23 Mar 2024 10:26:43 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
age: 114340
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5773974a7341690f006b052ad02c94db
1b11316c952e2195da1646dd94671669e7e3bc2b
a06b72138745500cacc919fea29536ebd4188a1c483f6123e3402458e299f16a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7800
x-amzn-requestid: bad99b1e-3923-4de9-8bea-4dd04e96f7cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTigfFGcIAMFdBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e179c-0826b92d4c4af16553503600;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 9AGLmjvUSTKIsYIWECOR8QwdF4PP1tP1TweUm0VYvxQ0qskqj3YuLA==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:18 GMT
age: 73925
etag: "1b11316c952e2195da1646dd94671669e7e3bc2b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aecd210f66f83c73c3450d047ae7448a
d68861e96e12e8a3f293dbae8b687f05b6e15afb
22b69c41c56e5538d91f824d5dc2e63ab5563f99ae8e429c9166f4b397cacd0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5296
x-amzn-requestid: 11fdf0c8-244c-4cd5-bfa7-4c77d777174f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzEqkIAMFXOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-5c241d63598dbf595b54ead5;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: b1KWFmKdRQ4DU0v5JmC7AJatpv2B5FAHKVWL7pFiyh13fqYDA5qydA==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 73915
etag: "d68861e96e12e8a3f293dbae8b687f05b6e15afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ncagzm12kJaHQtYhhjUUhcfXVfbwMdonoNYqpK-QXEmLfyyENgFnFA==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 08:51:06 GMT
age: 33677
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 73f9697594d173d623b331b5c35eab8d
6323f751f6b7517f062a0442480f672086ea02a1
116cb71658b31e87f19c390b242c684f6505cc8edf90b7fc934ac726fc7ddd18
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8635
x-amzn-requestid: fc715b03-f48f-4300-b752-ab157a684f08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihcETyIAMFhYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a2-68f685ec0f50dae026ea3f64;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: ogff88YPb_ia9BPyBI0afIy9cWym7eDnXHKykpTS3NVG4EY_SUENDA==
via: 1.1 ba490acb2ea716cd57876286ed686786.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
etag: "6323f751f6b7517f062a0442480f672086ea02a1"
content-type: image/jpeg
age: 73915
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
c.cintnetworks.com/c.gif?a=7504&i=7&e=1&c=2&ip
51.120.98.192200 OK 43 B URL HTTP/1.1 c.cintnetworks.com/c.gif?a=7504&i=7&e=1&c=2&ip
IP 51.120.98.192:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash ba036c43037cfe89320d1ef7b64cd43f
88c72d3e26047eb1e45e5564a76427734f120efe
42cb846e07917f6731406e500f24aeb2e88c42cda124eaa59e08c5331cad8bcb
GET /c.gif?a=7504&i=7&e=1&c=2&ip HTTP/1.1
Host: c.cintnetworks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cutty.app/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 43
Content-Type: image/gif
Date: Sat, 25 Mar 2023 18:12:22 GMT
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
P3P: CP="This is not a P3P policy! See https://cint.com/cookie-usage/ for more info."
Arr-Disable-Session-Affinity: true
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 678d29248aa32ac654d461a9453b0bcb
4bfd729759e57cf5444488ca7a7fb637d79c6f9f
90203638d9d2afd2de6de65e8884a8aba4396212df76357380172b0053f6dd53
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "90203638D9D2AFD2DE6DE65E8884A8ABA4396212DF76357380172B0053F6DD53"
Last-Modified: Sat, 25 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5305
Expires: Sat, 25 Mar 2023 19:40:48 GMT
Date: Sat, 25 Mar 2023 18:12:23 GMT
Connection: keep-alive
id5-sync.com/api/esp/increment?counter=no-config
162.19.138.116204 0 B URL HTTP/1.1 id5-sync.com/api/esp/increment?counter=no-config
IP 162.19.138.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/esp/increment?counter=no-config HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://cutty.app
access-control-allow-credentials: true
date: Sat, 25 Mar 2023 18:12:23 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
bcp.crwdcntrl.net/6/map
18.200.134.47200 OK 60 B IP 18.200.134.47:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5a900c1b637abda8b62738d3d93fab8a
cbbe17155fcc9aef7feedcb0055fd16f3a964735
4834858ef62f6c1c070e5cb483512054f00b16ab2b0d39936bc9bec22f0c6384
POST /6/map HTTP/1.1
Host: bcp.crwdcntrl.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 50
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:24 GMT
content-type: application/json;charset=utf-8
content-length: 60
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.23.156
access-control-allow-credentials: true
access-control-allow-origin: https://cutty.app
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2
tags.crwdcntrl.net/lt/c/16589/sync.min.js
54.230.111.37200 OK 39 kB URL HTTP/2 tags.crwdcntrl.net/lt/c/16589/sync.min.js
IP 54.230.111.37:0
Hash 615ca36bd468d00df376904a9c1db73b
bd525c05a799ca263414b299062ef947ea1e66af
f7290beed8a356675cc4ecc309d39b9d954f46bc04e3c7de7e764ac20418650b
GET /lt/c/16589/sync.min.js HTTP/1.1
Host: tags.crwdcntrl.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 22 Mar 2023 22:36:59 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Fri, 24 Mar 2023 22:50:07 GMT
cache-control: public, max-age=86400
etag: W/"4fd6c99ca40fed5d11cbd9e1b76a92f1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yxI0yqnolIUyhd59PbN8CfGEkeYtBcxrQsH4fXfmyptQyPwMJy6-Cg==
age: 69737
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a953a9bc0129f404c586d798892c4f1d
099ab04894beacfb569046a30a87871c936d97c3
c091f54d04b4dbf26c9876f1783c47fab3b81615522c84679afcd2eaf82cff03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_276.js
142.250.74.70200 OK 38 kB URL HTTP/2 s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_276.js
IP 142.250.74.70:0
File type ASCII text, with very long lines (3095)
Hash 4f9b890a6c4cfbbfd0fb7eff98bf4dde
2db204fb0ee448842b40f84463234ea496763130
8e0d4c67a688228e1ba10b1e1dc367c078edf7e9bc35be0bd4ae8c0ce980647c
GET /879366/express_html_inpage_rendering_lib_200_276.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://c6ffe815fdc6ef01cce9eafd080ecba4.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://c6ffe815fdc6ef01cce9eafd080ecba4.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 37872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 25 Mar 2023 18:05:11 GMT
expires: Sun, 26 Mar 2023 18:05:11 GMT
cache-control: public, max-age=86400
age: 433
last-modified: Wed, 02 Mar 2022 23:07:26 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a953a9bc0129f404c586d798892c4f1d
099ab04894beacfb569046a30a87871c936d97c3
c091f54d04b4dbf26c9876f1783c47fab3b81615522c84679afcd2eaf82cff03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 18:12:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cuty.io/images/shared/burger.svg
104.21.75.208200 OK 0 B URL HTTP/2 cdn.cuty.io/images/shared/burger.svg
IP 104.21.75.208:0
GET /images/shared/burger.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
etag: W/"63b16742-cf"
expires: Mon, 01 Jan 2024 10:59:14 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 7195988
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yDHTALog8%2BirDSDlup4M3lXyii8kHfISSlZoHZBiUNTNLKK93IG%2FxM%2B0ja7VBfsTZtqDsu3zbLQTIMoaWbvsz52sys%2BnZhAI0Yux9c9GEC5hvEpOunlIZxe1EfGIjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f262fc2b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/logo.svg
104.21.75.208200 OK 0 B URL HTTP/2 cdn.cuty.io/images/shared/logo.svg
IP 104.21.75.208:0
GET /images/shared/logo.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
etag: W/"63b16742-175a"
expires: Mon, 01 Jan 2024 10:59:14 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 7195988
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WKWvMHjN2b7dsVwoEE1pl1l%2FKfwpEQj7jFaGjdZghynMjtgb%2FIdklVvVD%2FTegJUKb0DbkRbXUhkLDHxPGNKEyFd1r%2FEk%2FTmisMLlkfoVHqVKMUbqyhXy0DFoNNAHAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ef53b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/step-3.svg
104.21.75.208200 OK 0 B URL HTTP/2 cdn.cuty.io/images/public/step-3.svg
IP 104.21.75.208:0
GET /images/public/step-3.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
etag: W/"63b16742-45b"
expires: Mon, 01 Jan 2024 10:59:13 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 7195987
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OSdjOoR7qCQeYmo4qyIsoVOnEIJciovfenr7UAU38iVSUJsXW%2BA0M97aGthrxm51532DgGBMTOmRql038Q4rYcNd8ZLLCtQ2lsHXWUFXBLavuoEr0%2BR7ufWg6Ibc2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ef55b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/arrow-down.svg
104.21.75.208200 OK 0 B URL HTTP/2 cdn.cuty.io/images/shared/arrow-down.svg
IP 104.21.75.208:0
GET /images/shared/arrow-down.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
etag: W/"63b16742-dc"
expires: Mon, 01 Jan 2024 10:59:14 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5671297
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UA0fAQ%2FutgRzzNIP0%2BMSlmIEWWFymZXM7yQ%2FPwVT3ixfIAPRCpALRjpFryn1GoZMFgdiaTsZ2YKb%2BAfKh05xSoK7CeQ1wkFE7QCBm6vxNrOXQMZbdPG4IiUH284oow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ef64b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cutty.app/NDFkAmiS3q0
104.26.12.177200 OK 0 B IP 104.26.12.177:0
Analyzer Verdict Alert fortinet Malware
GET /NDFkAmiS3q0 HTTP/1.1
Host: cutty.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:21 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
cache-control: must-revalidate, no-cache, no-store, private
pragma: no-cache
expires: -1
x-frame-options: SAMEORIGIN, SAMEORIGIN
set-cookie: XSRF-TOKEN=eyJpdiI6IjY5S25Qelg0NDBRdTVGQzVuU29EVFE9PSIsInZhbHVlIjoiaW9lb2dQZlVkbC9TSWJRdm91ejhpdW5lZW5YcUJYSDJFYXRudlk5bXlsZVJpcy9kN2xtYURJREhIa1ZJVkhZZlpwWGpvWUt5Y1dmb1BwWVF5K3BUcHBraE1URW5ORWVDR2NnQkVrNUYyK3QvN3lLU0NtdUFydmVTUytNOXZpTk8iLCJtYWMiOiJlM2I5NDljZDE3YjU4ODIzMDRhMGUzMGI4YWE1NjQyMmRmOWNhZjgzYjg1ZTg5ZmIyNGQ4NWU3MTM1NTBlZTdhIiwidGFnIjoiIn0%3D; expires=Sat, 01 Apr 2023 18:12:21 GMT; Max-Age=604800; path=/; samesite=lax
cuty_session=eyJpdiI6IktRZjJDV21HelJWOFh6OXIxNlQ4Smc9PSIsInZhbHVlIjoiODBlemszbVIrKzUzd0xUMjlzcTR3VU1GRnpJTkluYXNmcHRNWU94SDdocW96UGFieUduQzk2RTBnQkNTa3gwWWpHRWVpV2d6WEFRdDBXRjI4QlN2OUhRYUg3RGF3ako1dXpKZzl4NElUNjNON3BwVUlmUGRDd0Qwc1l3NHRHQVIiLCJtYWMiOiIwZGQxNTkxNGU1MzVlYmEzNzY5ZDg0NWEyM2VhYTRiZDNiZDUwMGViYTM2NGY4ZTk5NTRmMGMxZjRlYzI5MmFjIiwidGFnIjoiIn0%3D; expires=Sat, 01 Apr 2023 18:12:21 GMT; Max-Age=604800; path=/; httponly; samesite=lax
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=02ImgMs9xlqJ4bu7Zm%2Bw%2FbvLMo6nXJMocYBfH4AUZRG7YpgBIuyd79j283alz22P5%2BN%2F%2BgDzO4wqALTU4LPF7sqUeE5lKjNLWtSxN4pHMRhQDfwZD6P59y1VMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad91f22bf89b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
asacdn.com/script/suv4.js
104.21.93.4200 OK 0 B URL HTTP/2 asacdn.com/script/suv4.js
IP 104.21.93.4:0
GET /script/suv4.js HTTP/1.1
Host: asacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:21 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdva1GL-zem81PR4O3eiJ9dkT0HTVcjWrplBOpZhz8e5Oy6vWKUKKgBICA34gc3HDjQxv5r1LGbI_UT_7chuHgbXGA
x-goog-generation: 1679650649325399
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 102179
x-goog-hash: crc32c=Jg0kbw==, md5=hizmZ+0kHiRLNeUbgoMwtw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sat, 25 Mar 2023 18:07:24 GMT
cache-control: public, max-age=14400
age: 797
last-modified: Fri, 24 Mar 2023 09:37:29 GMT
etag: W/"862ce667ed241e244b35e51b828330b7"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lDZZaBnz5z%2FypZAM3PK5q45PNm6wedM6w8W4Kxx7bgovESRRR3JP4N68sMxl60MhbSEKid2gMCiZsm2dTIoTfxYU7YFIV9Ikus4n8%2B2D8%2FarfrICnXYZs8rYJse7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f252913b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap
172.217.21.170200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap
IP 172.217.21.170:0
GET /css2?family=Inter:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 25 Mar 2023 18:12:21 GMT
date: Sat, 25 Mar 2023 18:12:21 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
live.demand.supply/p4/v16-2-0/Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
104.16.134.22200 OK 0 B URL HTTP/2 live.demand.supply/p4/v16-2-0/Y3V0dHkuYXBwL05ERmtBbWlTM3Ew
IP 104.16.134.22:0
GET /p4/v16-2-0/Y3V0dHkuYXBwL05ERmtBbWlTM3Ew HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Cookie: demandSupplyTi=c4814b6d-9758-4451-8167-7694bfa080b3; __cf_bm=pHyZH1UXF5RuSRbTxuxf.e8F30JIsFPG3EquYlnNgeg-1679767942-0-AbxnWWalDje+P9pkYPTsopMzpl+qLgMP9AY/vnTzWkSkuYTqADmoWE2vh+cVSXnUiOuMGXQlj9TchQbypZJgLqo=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: text/javascript
access-control-allow-origin: *
cache-control: max-age=3600, s-maxage=7200, stale-while-revalidate=3600, stale-if-error=84600
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f261a1c069b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cuty.io/NDFkAmiS3q0
172.67.181.253302 Found 0 B IP 172.67.181.253:0
Analyzer Verdict Alert fortinet Malware
GET /NDFkAmiS3q0 HTTP/1.1
Host: cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sat, 25 Mar 2023 18:12:21 GMT
content-type: text/html; charset=UTF-8
location: https://cutty.app/NDFkAmiS3q0
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IkZDM0pyZ0VMQ1dZQkpBVWlZeDRzR2c9PSIsInZhbHVlIjoibURDY3ZhSWZXMXVRYkdrZ1dnOVV0SEtvTngxaUV0UGY0cG80ejJiclNUNGdBempMWE9jUUVxUGptWi9pSUdzYjlOMFQ1YkFUM1VlNjdOU2dkaU1tMnZlcy9LUGUrQ2pqYm1KeW82MnhyVkZVakZhUFlxbVNab2w0Zm9TWkpxRzciLCJtYWMiOiJjM2FkYmRiYWMzOGIwZTlmZmU2OGU1NjMyYmE5YWFmNzY4Y2Y5NTAzN2FmMTcxMTg4MzFmNTgwZGQzNGM0YTgzIiwidGFnIjoiIn0%3D; expires=Sat, 01 Apr 2023 18:12:21 GMT; Max-Age=604800; path=/; samesite=lax
cuty_session=eyJpdiI6IkNjYVkwNmR1ZTZQWFVlTnRnWjhwbGc9PSIsInZhbHVlIjoiZFp2U3J5cGpielJ3WUpwQUQxOG9HR2QrcFJ4cDBaSnNMaUFQNVYxN2FNemRySVZ0TlI1c2JPaXpDOGpneXdMRDNEb2txa3R6ZVVWL05DcmZsdzJMSUhlTUZlU2VncWFGZ2NtSmZNKzYyQ2t5ZWh5VDhFWk5UUUF1a2c1OGN4OEkiLCJtYWMiOiIzNjYxZDgxYzllZWI3NTQ3N2E4ZGQ3NmRmMmFhMzQ4ZWZmOTdlMGRhYmU4NzVkNjU0MzZkMTRmMTEwYWMxZTU5IiwidGFnIjoiIn0%3D; expires=Sat, 01 Apr 2023 18:12:21 GMT; Max-Age=604800; path=/; httponly; samesite=lax
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=huXJ21YMfiDFkGaOhxHsiTSFUNwAOquNCBmF4jUZwJ3LLMrZTeURMdWAl4x99f0rMLF7RPj47%2ByCU7ZXX4a9rf5GCiU6PmEy6RDrZKcAW9ENWrh4g%2FncS3fC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad91f213aea067b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/step-1.svg
104.21.75.208200 OK 0 B URL HTTP/2 cdn.cuty.io/images/public/step-1.svg
IP 104.21.75.208:0
GET /images/public/step-1.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
etag: W/"63b16742-658"
expires: Mon, 01 Jan 2024 10:59:13 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 7195987
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PZgo2Xnr55rIQIGsHF23ebB6g54hTW9H6ruPviKAa5xPTAVlcO9%2FEeZ3F8icTlqqzxzI413awdWzg3XWfiC3Ybg3A6GvKQqGhr7gtBO43ZOZZQNDhYZ2w7WN9IR7BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f25ef50b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cutty.app/cdn-cgi/challenge-platform/h/b/cv/result/7ad91f22bf89b509
104.26.12.177200 OK 0 B URL HTTP/2 cutty.app/cdn-cgi/challenge-platform/h/b/cv/result/7ad91f22bf89b509
IP 104.26.12.177:0
POST /cdn-cgi/challenge-platform/h/b/cv/result/7ad91f22bf89b509 HTTP/1.1
Host: cutty.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12286
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/NDFkAmiS3q0
Cookie: XSRF-TOKEN=eyJpdiI6IjY5S25Qelg0NDBRdTVGQzVuU29EVFE9PSIsInZhbHVlIjoiaW9lb2dQZlVkbC9TSWJRdm91ejhpdW5lZW5YcUJYSDJFYXRudlk5bXlsZVJpcy9kN2xtYURJREhIa1ZJVkhZZlpwWGpvWUt5Y1dmb1BwWVF5K3BUcHBraE1URW5ORWVDR2NnQkVrNUYyK3QvN3lLU0NtdUFydmVTUytNOXZpTk8iLCJtYWMiOiJlM2I5NDljZDE3YjU4ODIzMDRhMGUzMGI4YWE1NjQyMmRmOWNhZjgzYjg1ZTg5ZmIyNGQ4NWU3MTM1NTBlZTdhIiwidGFnIjoiIn0%3D; cuty_session=eyJpdiI6IktRZjJDV21HelJWOFh6OXIxNlQ4Smc9PSIsInZhbHVlIjoiODBlemszbVIrKzUzd0xUMjlzcTR3VU1GRnpJTkluYXNmcHRNWU94SDdocW96UGFieUduQzk2RTBnQkNTa3gwWWpHRWVpV2d6WEFRdDBXRjI4QlN2OUhRYUg3RGF3ako1dXpKZzl4NElUNjNON3BwVUlmUGRDd0Qwc1l3NHRHQVIiLCJtYWMiOiIwZGQxNTkxNGU1MzVlYmEzNzY5ZDg0NWEyM2VhYTRiZDNiZDUwMGViYTM2NGY4ZTk5NTRmMGMxZjRlYzI5MmFjIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: text/plain; charset=UTF-8
set-cookie: __cf_bm=sj8va9hh8Wg7fLsdWIiM7Em3lnQnPZFPT5jfmDOEQs4-1679767942-0-AQPVIo58/1Ncw/m4R5C9rgSlKGnOvMwNc/jqjhsoM0SybDyaUEEbLgtgMAEhPtNKvNKv34SmTO3wgLpEOqbRjnbWs3Q1CDQ1J3TMkf7RnuJD8liU9USYBRV3YKeE0xOoQA==; path=/; expires=Sat, 25-Mar-23 18:42:22 GMT; domain=.cutty.app; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zcDlfb%2B0R5D7ifAfbm3MXSRikZQFIxxvtH7p8abXMcbde1ZO%2Bu%2FVSPfRjCEbU6pxubKn4NtjJTf2HkAJDndkx3dUyDoi1ztpPCifJqNc%2BnV%2BJVghN47diaXBYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad91f2a2899b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
live.demand.supply/up.js
104.16.134.22200 OK 0 B IP 104.16.134.22:0
GET /up.js HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 7ad91f252959069b-OSL
age: 69
cache-control: max-age=1200,must-revalidate,stale-while-revalidate=3600
etag: W/"80cb6d37c081c52264f3bc093c1c886c-ssl-df"
link: <https://live.demand.supply/impl.v16.5.0.js>; rel=preload; as=script,<https://live.demand.supply/p4/v16-2-0/Y3V0dHkuYXBwLw==>; rel=preload; as=script
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=4391
timing-allow-origin: *
x-nf-request-id: 01GSTTFB4JV28SJ9RRAV4DKHJV
set-cookie: demandSupplyTi=c4814b6d-9758-4451-8167-7694bfa080b3; demandSupplyTc = null; demandSupplyTcI = null; SameSite=None; Secure; Max-Age=63072000
__cf_bm=pHyZH1UXF5RuSRbTxuxf.e8F30JIsFPG3EquYlnNgeg-1679767942-0-AbxnWWalDje+P9pkYPTsopMzpl+qLgMP9AY/vnTzWkSkuYTqADmoWE2vh+cVSXnUiOuMGXQlj9TchQbypZJgLqo=; path=/; expires=Sat, 25-Mar-23 18:42:22 GMT; domain=.demand.supply; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
live.demand.supply/ds.2.html
104.16.134.22200 OK 0 B URL HTTP/2 live.demand.supply/ds.2.html
IP 104.16.134.22:0
GET /ds.2.html HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=2592000,immutable,stale-if-error=604800
timing-allow-origin: *
x-nf-request-id: 01GTBP5NF015THFEWANJPFTDCD
cf-cache-status: HIT
age: 1965851
set-cookie: __cf_bm=3jPdZmbG9AoNVH6vZ4KQEhVkgcQCL1SDyNDi.x57c5o-1679767942-0-AR9vsD3QP56NeOqMgrvb3k/bTRP8QgP8MLmkUOrEsxIVJhyVRi7aEdSfjjAC3XYbXEYwKFoy/3wCUAh76BhvYBo=; path=/; expires=Sat, 25-Mar-23 18:42:22 GMT; domain=.demand.supply; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad91f262a29069b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/gh/prebid/shared-id/pubcid.js/docs/pubcid.min.js
104.16.89.20200 OK 0 B URL HTTP/2 cdn.jsdelivr.net/gh/prebid/shared-id/pubcid.js/docs/pubcid.min.js
IP 104.16.89.20:0
GET /gh/prebid/shared-id/pubcid.js/docs/pubcid.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:23 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: master
x-jsd-version-type: branch
etag: W/"2dc-IrZxm/sP4aqtIfs1EfEw6Dg5q1Y"
x-served-by: cache-fra-eddf8230042-FRA, cache-yyz4568-YYZ
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 34401
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FATKoJsPzQ3AONkVOZoJXhwoQvVULd9XWOeYz1G%2BmgTffms8jHjY0H9y80PJXro%2FcsUrc7e0aa93QgXtBD%2BwsqJRWF1YUl3w%2Bh2EZHbMEeQbZT0Fzh3egQkJVlAIvB3x5PI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad91f2eff01b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
cutty.app/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1679760000
104.26.12.177200 OK 0 B URL HTTP/2 cutty.app/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1679760000
IP 104.26.12.177:0
GET /cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1679760000 HTTP/1.1
Host: cutty.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjY5S25Qelg0NDBRdTVGQzVuU29EVFE9PSIsInZhbHVlIjoiaW9lb2dQZlVkbC9TSWJRdm91ejhpdW5lZW5YcUJYSDJFYXRudlk5bXlsZVJpcy9kN2xtYURJREhIa1ZJVkhZZlpwWGpvWUt5Y1dmb1BwWVF5K3BUcHBraE1URW5ORWVDR2NnQkVrNUYyK3QvN3lLU0NtdUFydmVTUytNOXZpTk8iLCJtYWMiOiJlM2I5NDljZDE3YjU4ODIzMDRhMGUzMGI4YWE1NjQyMmRmOWNhZjgzYjg1ZTg5ZmIyNGQ4NWU3MTM1NTBlZTdhIiwidGFnIjoiIn0%3D; cuty_session=eyJpdiI6IktRZjJDV21HelJWOFh6OXIxNlQ4Smc9PSIsInZhbHVlIjoiODBlemszbVIrKzUzd0xUMjlzcTR3VU1GRnpJTkluYXNmcHRNWU94SDdocW96UGFieUduQzk2RTBnQkNTa3gwWWpHRWVpV2d6WEFRdDBXRjI4QlN2OUhRYUg3RGF3ako1dXpKZzl4NElUNjNON3BwVUlmUGRDd0Qwc1l3NHRHQVIiLCJtYWMiOiIwZGQxNTkxNGU1MzVlYmEzNzY5ZDg0NWEyM2VhYTRiZDNiZDUwMGViYTM2NGY4ZTk5NTRmMGMxZjRlYzI5MmFjIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: application/javascript; charset=UTF-8
x-control-type-options: nosniff
cache-control: max-age=14400, public
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9XHCywkkizY83WlOKhFCTpuavT8N3l60VJrtYPrkkevLf0KeR0Aqg1Jz5SfnUyKli52Qz7WsfBZcaGMrja6e8gu0WUovSGRcP5DdmoSMuRqI%2FD4Sdk7Ge9AsUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad91f27cdaab509-OSL
content-encoding: br
X-Firefox-Spdy: h2
youradexchange.com/script/suurl4.php?r=5890046&cbur=0.7248787018479536&cbiframe=0&cbWidth=1280&cbHeight=939&cbtitle=Shorten%20Links%20And%20Earn%20Money%20%7C%20Cuty&cbpage=https%3A%2F%2Fcutty.app%2FNDFkAmiS3q0&cbref=&cbdescription=&cbkeywords=cuty%2C%20url%20shortener%2C%20shorten%20urls%2C%20best%20url%20shortener%2C%20shorten%20links%20and%20earn%20money%2C%20url%20shortener%20online%2C%20earn%20money%2C%20earn%20money%20online&cbcdn=asacdn.com&aggr=0&ts=1679767955736
172.64.109.25200 OK 0 B URL HTTP/2 youradexchange.com/script/suurl4.php?r=5890046&cbur=0.7248787018479536&cbiframe=0&cbWidth=1280&cbHeight=939&cbtitle=Shorten%20Links%20And%20Earn%20Money%20%7C%20Cuty&cbpage=https%3A%2F%2Fcutty.app%2FNDFkAmiS3q0&cbref=&cbdescription=&cbkeywords=cuty%2C%20url%20shortener%2C%20shorten%20urls%2C%20best%20url%20shortener%2C%20shorten%20links%20and%20earn%20money%2C%20url%20shortener%20online%2C%20earn%20money%2C%20earn%20money%20online&cbcdn=asacdn.com&aggr=0&ts=1679767955736
IP 172.64.109.25:0
GET /script/suurl4.php?r=5890046&cbur=0.7248787018479536&cbiframe=0&cbWidth=1280&cbHeight=939&cbtitle=Shorten%20Links%20And%20Earn%20Money%20%7C%20Cuty&cbpage=https%3A%2F%2Fcutty.app%2FNDFkAmiS3q0&cbref=&cbdescription=&cbkeywords=cuty%2C%20url%20shortener%2C%20shorten%20urls%2C%20best%20url%20shortener%2C%20shorten%20links%20and%20earn%20money%2C%20url%20shortener%20online%2C%20earn%20money%2C%20earn%20money%20online&cbcdn=asacdn.com&aggr=0&ts=1679767955736 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cutty.app/
Origin: https://cutty.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2dqojkD9vQKPIlaXH2K75zFWfeMP9izfCoGjccLP7LFNkSUouyD34itbM9NaGjEDltE9H5kPcjSeBDZlQN1YpKzcpu213XDJRBCLZsrJfjLEs1qwk4niJt9veYWKBtt6lVts6Q8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad91f27cbea719e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/js/public/layouts/_partials/nav-links.js?id=cb6ca06ebf3b73dfb125ec3f7db93abc
104.21.75.208200 OK 0 B URL HTTP/2 cdn.cuty.io/js/public/layouts/_partials/nav-links.js?id=cb6ca06ebf3b73dfb125ec3f7db93abc
IP 104.21.75.208:0
GET /js/public/layouts/_partials/nav-links.js?id=cb6ca06ebf3b73dfb125ec3f7db93abc HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 18:12:22 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
etag: W/"63c5a2df-c19"
expires: Tue, 16 Jan 2024 19:17:53 GMT
last-modified: Mon, 16 Jan 2023 19:17:51 GMT
vary: Accept-Encoding, Accept-Encoding
cf-cache-status: HIT
age: 5871210
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qWWbLiLQI%2Fp9p7oyuW2YF4gEGyxNCorUmwWVYL9caR44a0DXe5TAdij7qoUs0lhBq5z5Ai9Y0Wij16vuTa6aa1P6n2dluSQJSVb7vJZsmw4Z2UHhiGQDmA1Cc7JfCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad91f266820b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2