linkvertise.com/477524/ur69baby?o=sharing
301 Moved Permanently 0 B URL HTTP/1.1 linkvertise.com/477524/ur69baby?o=sharing
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /477524/ur69baby?o=sharing HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 03 Feb 2023 21:19:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 03 Feb 2023 22:19:51 GMT
Location: https://linkvertise.com/477524/ur69baby?o=sharing
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ftezwTC8SNXae1K9C27supTMFpZJPi%2FJQyHuJ53uNdzEJEIFg0ikF%2BHvX%2BtVyqTq1DSf8fv%2FogUK9lLzAOhr2Ez4wnhXuu%2Bo14QgfWnp26oPNIVV0lNqLBHyD%2F2ID%2FoVh90%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
X-Frame-Options: sameorigin
Server: cloudflare
CF-RAY: 793e35095cfc74d1-LHR
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5777
Expires: Fri, 03 Feb 2023 22:56:08 GMT
Date: Fri, 03 Feb 2023 21:19:51 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ec47f9eed203ae063b9c210009de54a9
19ff156471b9cffbc2432c5b65543bdd18e36271
3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3634
Expires: Fri, 03 Feb 2023 22:20:25 GMT
Date: Fri, 03 Feb 2023 21:19:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 20:36:11 GMT
content-type: application/json
age: 2620
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6807
Expires: Fri, 03 Feb 2023 23:13:18 GMT
Date: Fri, 03 Feb 2023 21:19:51 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: a07KIXB4ppMswrEUKgUGOyHXH6AeLxGw+zjGAAEjDyrZTlD2JBQD9MjBndMuAdReWDNkpe2cFu8=
x-amz-request-id: Z5HDCY82MZPTTJC2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 20:52:33 GMT
age: 1638
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 30c0da3312f1d17617065bd0f04dd5d0
d752fc25b0183cadb69f11ebd1cf8e60d8f6c795
3fb18a4e4226e27e07c8075ebd39fc47579d137ef3240dfea492b9753f71fb7b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FB18A4E4226E27E07C8075EBD39FC47579D137EF3240DFEA492B9753F71FB7B"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4445
Expires: Fri, 03 Feb 2023 22:33:56 GMT
Date: Fri, 03 Feb 2023 21:19:51 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 21:19:51 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 30c0da3312f1d17617065bd0f04dd5d0
d752fc25b0183cadb69f11ebd1cf8e60d8f6c795
3fb18a4e4226e27e07c8075ebd39fc47579d137ef3240dfea492b9753f71fb7b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FB18A4E4226E27E07C8075EBD39FC47579D137EF3240DFEA492B9753F71FB7B"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4445
Expires: Fri, 03 Feb 2023 22:33:56 GMT
Date: Fri, 03 Feb 2023 21:19:51 GMT
Connection: keep-alive
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
File type ASCII text, with very long lines (65451)
Hash 638a4990025383a0f83ebf29bdb84a68
153e8818dc42f598e47fde8cf398f1447649a4d0
878e34b89800bb271d3588e526eb3598eb3822e263f3bdaf53645847d39d0ad6
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:51 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1191775
expires: Wed, 24 Jan 2024 21:19:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ry%2BwFFK7oLTMnlfzKPNAutZSJDYmLzT6K7oAtMIRbqvoQrH8fM7WaptRPMWe9lWt%2FpGXmNJuXfHm8rztq6X4nDgMG75wkLAgEK0uxDM5SIVnTa2qKVxde9VoM5Mfb38G0Hq6HGyr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 793e350d2da6b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css
200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css
IP
Hash 9f8ae150e614ee49febe1ac6088202e6
5f5d1a1a96289a0fa1d052d8dd59d5a236e5227e
c931e5cbd1bbd7e7e6802ce040c35ce7c1d7425988b767c6a29bedbfa2eb496f
GET /ajax/libs/font-awesome/5.10.2/css/all.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:51 GMT
content-type: text/css; charset=utf-8
content-length: 10228
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-111e5"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1362331
expires: Wed, 24 Jan 2024 21:19:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8J4Ra3TzZu1jEfsCPe9HmmB%2FEAZ9AWCAm7%2FElOtGCCPUgh2CNcRgK2kxwTQADnEGsbgtb4zRKoEYW9r3TcbQA71v4r7gxTz%2Fgl3eDEVPSpkPvTS04gzp7U1PsZwum5MKO0AzPODG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 793e350d2db5b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css
200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css
IP
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Fri, 03 Feb 2023 21:19:51 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 907398d5fb78588b0c610c0d649899e0
dfc0840362757a0f70c5cfc54b76c994912c39be
de8325abe2d1aef1555a0b54a5a4d73d05ef0e14600a0c91136510c46705de20
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1869
Cache-Control: max-age=108026
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:51 GMT
Etag: "63dc7625-116"
Expires: Sun, 05 Feb 2023 03:20:17 GMT
Last-Modified: Fri, 03 Feb 2023 02:49:09 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
200 OK 278 B IP
Hash 907398d5fb78588b0c610c0d649899e0
dfc0840362757a0f70c5cfc54b76c994912c39be
de8325abe2d1aef1555a0b54a5a4d73d05ef0e14600a0c91136510c46705de20
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5283
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:51 GMT
Last-Modified: Fri, 03 Feb 2023 19:51:48 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css
200 OK 16 kB URL HTTP/2 maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css
IP
ASN #60068 Datacamp Limited
Hash b7b61451f0f872d655f458da331d5b66
81a8d72610d1795c2edfa6017423a44f26bba0c6
3cb829e8940e182d88887c81d9eba86e6acf03da4258b6a2db65336aaeb71fd7
GET /vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css HTTP/1.1
Host: maxst.icons8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:51 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"15e81-wb0UGHttyzbvrSHlFxH4lBgB3g8"
last-modified: 2022-05-16T12:30:47.897Z
server-timing: -;dur=0;desc="Generate"
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
x-accel-expires: @1968663892
server: CDN77-Turbo
x-77-nzt: AblMCRTFXp7/IxBSAQ
x-77-nzt-ray: af585630c2b5fe88777add63386e7539
x-cache: HIT
x-age: 22155299
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 13 kB IP
Hash 2a21afe9797813dbaeefea8d4e31e46c
7daafd8e0ce42ec648943db9d2ee309221e41527
44a07b4f7898a5580ad355602e53b3a0a0c827a5627974aacb7909bed0634572
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP
Hash ef61b0279b555159ee32279b88bdc1ef
42e22bb6142b47b08be5456e827ddb63be0dc99d
5f3ed4e19d3482f5a76c7a5f4ceb9b1d4588574d0d13a2932b9b3c4b6e9fe308
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 00:48:21 GMT
expires: Tue, 30 Jan 2024 00:48:21 GMT
cache-control: public, max-age=31536000
age: 419491
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 21:07:19 GMT
age: 753
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18663
Expires: Sat, 04 Feb 2023 02:30:55 GMT
Date: Fri, 03 Feb 2023 21:19:52 GMT
Connection: keep-alive
js.chargebee.com/v2/animation.css
200 OK 758 B URL HTTP/2 js.chargebee.com/v2/animation.css
IP
Hash f8a79fc47c28375628855b4c78ff6f85
b2fb79a766c233408a6e0dd38a169dee2e88d4b0
e3b7f54cf81a0ff1f16662abce7b1970ed6a8a8191da96cf05dcf6644d203df3
GET /v2/animation.css HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 758
last-modified: Thu, 02 Feb 2023 08:38:43 GMT
x-amz-version-id: g1mbCLE5jWEtoxgqbjZDxUQVubRcL5hh
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Fri, 03 Feb 2023 21:15:47 GMT
cache-control: max-age=300,public
etag: "f8a79fc47c28375628855b4c78ff6f85"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kMnhXINKog7jGHfayHIap9UNwfg0QC4yEGbnzob_aMmzw6DVZwxI_g==
age: 245
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
200 OK 22 kB URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
IP
File type ASCII text, with very long lines (65324)
Hash 44129a82842153ef9b965abfb506612a
c0964eb2ee1a76d48e4e09e31915415d74e18bbc
8a3908fb32a414703eff3e435566b1e5598eb3a5d50c500e70eb1a5c20d003d7
GET /bootstrap/4.1.3/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:51 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 12/11/2021 23:51:22
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 873d47ad8054cd5f5d4a8793d245560e
cdn-cache: HIT
cf-cache-status: HIT
age: 1354483
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 793e350dbdaf1c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sand.ostrichesica.com/clicktrue_invocation.js?id=14473
200 OK 32 kB URL HTTP/2 sand.ostrichesica.com/clicktrue_invocation.js?id=14473
IP
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 37aeaba156d969db4e16b1992889018b
85983ac2fb401a905a4b4ca29fc42a53d30aaa43
3257d1e724786b2f2b7d5e9d0e6687b93799156816198cf678fac438eb7e76f3
GET /clicktrue_invocation.js?id=14473 HTTP/1.1
Host: sand.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 31901
content-encoding: gzip
server: Caddy
date: Fri, 03 Feb 2023 13:37:55 GMT
cache-control: max-age=43200
expires: Sat, 04 Feb 2023 01:37:50 GMT
etag: "15743-uehjuGYPwWxP/DnjsF6UJEzeCMc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7xwgKYY9joIsXzt-Odz3bl3IKgAyDxUgqrMkN5zHH3gu8jpZJUP_Yg==
age: 27722
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 6011ca41985869650399b4759909b89e
27bed2e88a7654b7605bafb83a4be1ece7e2a295
4d5e937c8fb22108eb95b54bb897f1bbda243afd7b62e99f23a600d890a5a2c7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6503
Cache-Control: max-age=146108
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:52 GMT
Etag: "63dcf8cd-116"
Expires: Sun, 05 Feb 2023 13:55:00 GMT
Last-Modified: Fri, 03 Feb 2023 12:06:37 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
200 OK 278 B IP
Hash 6011ca41985869650399b4759909b89e
27bed2e88a7654b7605bafb83a4be1ece7e2a295
4d5e937c8fb22108eb95b54bb897f1bbda243afd7b62e99f23a600d890a5a2c7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6421
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:52 GMT
Last-Modified: Fri, 03 Feb 2023 19:32:51 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 278
js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html
200 OK 203 B URL HTTP/2 js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f8b310373855a5c3f476ebe44fbb7c50
bb4305b1d788c605028cad28f1210d941486eddc
e2335ee83781668ff411e81f2e5200f3a5759aa9f92d93b8e0c2738960444ed0
GET /v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 203
last-modified: Thu, 02 Feb 2023 08:38:43 GMT
x-amz-version-id: bXOn1NOPXbkLnpJrrJ4PlmrQN1lHLpgs
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Fri, 03 Feb 2023 21:18:39 GMT
cache-control: max-age=300,public
etag: "f8b310373855a5c3f476ebe44fbb7c50"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 09-tPUHxb45ANlcOokC0pmUe3NcBGp-LZMTpyoxkhWu4kTsOprD48g==
age: 89
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/account
204 No Content 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/account
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/account HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 21:19:52 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=kB0USkpROo5XBdr6geexrPX279Xrk2OyvObAH5Eu; expires=Sat, 03 Feb 2024 21:19:52 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cK%2B49TgUOFSmaoHUSRjWbJgbT8%2FtbCuLjIeexxD5EwTu990MMwxpLC18PGt2G2MhhcY1UEMqi%2F57x3FkrB%2BV%2FWL8uAaH8CJQXg%2FX2LGg5XM7VLxcxqMm3V6Js98sq%2BJIe42m7XySwTDul9rj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 793e3512d8be71de-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
200 OK 128 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 128360, version 1.0\012- data
Size 128 kB (128360 bytes)
Hash 393b5d8b3fd798486652801f3ee8c6ea
979383e09be691921a211f5fc4ef97fc4406e4dd
83be7b2f504af2c948c5106fa907dc4224380a7b75a993a7bff52cd71ec8c7d3
GET /s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128360
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 00:56:02 GMT
expires: Mon, 29 Jan 2024 00:56:02 GMT
cache-control: public, max-age=31536000
age: 505430
last-modified: Thu, 25 Aug 2022 00:09:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/redirect/link/static/477524/ur69baby?origin=
204 No Content 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/477524/ur69baby?origin=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/redirect/link/static/477524/ur69baby?origin= HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 21:19:52 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=77jrETPH1Xvfvvp6b1IyRfjRbs9vriZfoMIq9Nqu; expires=Sat, 03 Feb 2024 21:19:52 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8LvqSn95NidbVTht4NoYmJ2gMr3d9C%2FfRUFgEFaqbctNFGWbZ6W3E3dhEaRBsP1Xr1ThmQzAhtqJnISELBWm%2BYPRzBJfTVKCOGbQcHoAoHKRjmI5UBCNYk7sRPwQ6MQp1dpV89wrMk3zYaBe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 793e351308f371de-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 950 B IP
Hash 7585736c7b8be6cb3b461f95c0793e90
a8bb4bb133d4b5f6745dcb521ca0dc6633c38c3a
3f7bbf0495c02f5d53ffb788d2033bc7f2e971aa9ed41fa10cec1f5eeb306dce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6503
Cache-Control: max-age=146108
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:52 GMT
Etag: "63dcf8cd-116"
Expires: Sun, 05 Feb 2023 13:55:00 GMT
Last-Modified: Fri, 03 Feb 2023 12:06:37 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
publisher.linkvertise.com/api/v1/redirect/link/static/477524/ur69baby?origin=
200 OK 6.9 kB URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/477524/ur69baby?origin=
IP
File type JSON data\012- , ASCII text, with very long lines (24011), with no line terminators
Hash 581d2ebd6cd4db5b6d15d33252d441da
7639019d81d74f1888d6ae7521b7cc536518d778
ef38ae4ba18a584d6161de36090240580f1e2c1574cbf5d8e72ccda041ee25a6
GET /api/v1/redirect/link/static/477524/ur69baby?origin= HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:53 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=BBrTu54mx9stNbxwYOZbga9Jk3P4Tp3kPiV3u8cm; expires=Sat, 03 Feb 2024 21:19:53 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x6eVLPXanm2S8ITsnwPWvRiWvjy3p1t2xBKPZVlpdWGCTCDdEyRJ2JCaxkZzvKYkPojo7FqfgikypSq0tTGqBGgYbmsgNuMCFuoQPVm4rC2672cXDpAvF7IePlkFtAX7Ay0NoOyPz%2BOndgZR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 793e3513695c71de-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/account
200 OK 52 kB URL HTTP/2 publisher.linkvertise.com/api/v1/account
IP
File type JSON data\012- , ASCII text, with very long lines (932), with no line terminators
Hash dd21c50e688281f1161bbf6ccd88e408
8554037549b4c96e5fb89e2a750520b73dd5f299
86a02f1a3c7d81e152f7bcffa8c35b22f0f6401f0ecea563f74db2c51f7e0303
GET /api/v1/account HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:52 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=GhOB6wmCYFSqzEG9j5JJBl54yCh4xGT3edme065v; expires=Sat, 03 Feb 2024 21:19:52 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9OBg2dz0bPbsfDpw1d9xUCD6ggEGi50SvB0nyA4KL0qVUJrbuCF0Umju%2Bi4mAYUmKR%2BqDMeK27t2Atl4DVNQS4g0HITtOgTJNB%2BukaftlgBuEr2pJZibqnxV1z4hQK5USzTvaJy5d91fsQwX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 793e3513494371de-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
script.hotjar.com/modules.bca0d1c28285412bb689.js
200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js
IP
File type Unicode text, UTF-8 text, with very long lines (49086)
Hash e923aa360dc485b9df86355bd040c998
03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec
9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676
GET /modules.bca0d1c28285412bb689.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67924
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e923aa360dc485b9df86355bd040c998"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HmJ3SPCsktqjiQth7xZYVn-4zYnPpfSq1OXWwBjwIz4RiM1lQMKDJw==
age: 29387
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-3321028.js?sv=7
200 OK 4.5 kB URL HTTP/2 static.hotjar.com/c/hotjar-3321028.js?sv=7
IP
File type ASCII text, with very long lines (7460)
Hash 057824be863c6f76662e173bcb3b226c
d7aaf49421aa429039631a2e1b27160de22b2f7f
339e5d50061a231dbe7a4fe64207b0c5db0ba3d31c848816a1ba5180db4ce84a
GET /c/hotjar-3321028.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Fri, 03 Feb 2023 21:19:02 GMT
cache-control: max-age=60
etag: W/954b35478e3ef3fc1375ec665faa4105
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LjfK16FlfiZLfDDQlPsAx0x81f4qozUmEMccoS6EZtfMUQlg5uNuGA==
age: 54
X-Firefox-Spdy: h2
paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F477524%2Fur69baby%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675459225475&hl=1&op=0&ag=1317291471&rand=940821712091557725100605021952710897901125000520911200950050500069172621078&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%2Fbz1zaGFyaW5nIl0sWy01MSwiLSJdLFstNTIsIi0iXSxbLTUzLCIwMTAiXSxbLTU0LCJ7XCJoXCI6W1wiNDEwNDMxNjIzXCIsXCIyNjM5MjIyNDY4XCIsXCJfM1wiLFwiMjg3Mjg5OTMyMFwiXSxcImRcIjpbXSxcImJcIjpbXCJfMVwiLFwiMTA2NDgyMjY4N1wiLFwiNDEwNDMxNjIzXCIsXCIyNjM5MjIyNDY4XCJdLFwic1wiOjF9Il0sWy01NSwiMSJdLFsiZGRiIiwiMCw4LDAsMCwxLDIsMCwwLDAsMCwxLDAsMCwwLDAsMCwxLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwyLDAsMCwwLDEsMCwwLDAsMCwwLDIsMCw3LDIsMCwxNSwwLDEsMCwwLDAsMCwxLDAiXSxbImJuY2giLDc3XSxbImFibmNoIiw3N11d&dep=0&pre=0&sdd=%7B%7D&cri=e3wmAeK5tL&pto=1791&ver=50&gac=-&mei=&ap=&duid=1.1675459225.bWxzwBQq6H650Fn1&suid=1.1675459225.nOSkWRqMndPbOK2E&tuid=1.1675459225.I9ylX7e8gI4SeMN8&fbc=->m=W10%3D&it=64%2C1515%2C76&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
200 OK 944 B URL HTTP/2 paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F477524%2Fur69baby%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675459225475&hl=1&op=0&ag=1317291471&rand=940821712091557725100605021952710897901125000520911200950050500069172621078&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%2Fbz1zaGFyaW5nIl0sWy01MSwiLSJdLFstNTIsIi0iXSxbLTUzLCIwMTAiXSxbLTU0LCJ7XCJoXCI6W1wiNDEwNDMxNjIzXCIsXCIyNjM5MjIyNDY4XCIsXCJfM1wiLFwiMjg3Mjg5OTMyMFwiXSxcImRcIjpbXSxcImJcIjpbXCJfMVwiLFwiMTA2NDgyMjY4N1wiLFwiNDEwNDMxNjIzXCIsXCIyNjM5MjIyNDY4XCJdLFwic1wiOjF9Il0sWy01NSwiMSJdLFsiZGRiIiwiMCw4LDAsMCwxLDIsMCwwLDAsMCwxLDAsMCwwLDAsMCwxLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwyLDAsMCwwLDEsMCwwLDAsMCwwLDIsMCw3LDIsMCwxNSwwLDEsMCwwLDAsMCwxLDAiXSxbImJuY2giLDc3XSxbImFibmNoIiw3N11d&dep=0&pre=0&sdd=%7B%7D&cri=e3wmAeK5tL&pto=1791&ver=50&gac=-&mei=&ap=&duid=1.1675459225.bWxzwBQq6H650Fn1&suid=1.1675459225.nOSkWRqMndPbOK2E&tuid=1.1675459225.I9ylX7e8gI4SeMN8&fbc=->m=W10%3D&it=64%2C1515%2C76&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP
File type ASCII text, with very long lines (2641), with no line terminators
Hash 153422bdfadbdd422262047b95776848
4181990e9fbadfbd1ec685332b315ee90cfe1372
5f58b2e80855afea44879a44e06f1ae88ea09602562df8dcae018cd95acf5bad
GET /ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F477524%2Fur69baby%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675459225475&hl=1&op=0&ag=1317291471&rand=940821712091557725100605021952710897901125000520911200950050500069172621078&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%2Fbz1zaGFyaW5nIl0sWy01MSwiLSJdLFstNTIsIi0iXSxbLTUzLCIwMTAiXSxbLTU0LCJ7XCJoXCI6W1wiNDEwNDMxNjIzXCIsXCIyNjM5MjIyNDY4XCIsXCJfM1wiLFwiMjg3Mjg5OTMyMFwiXSxcImRcIjpbXSxcImJcIjpbXCJfMVwiLFwiMTA2NDgyMjY4N1wiLFwiNDEwNDMxNjIzXCIsXCIyNjM5MjIyNDY4XCJdLFwic1wiOjF9Il0sWy01NSwiMSJdLFsiZGRiIiwiMCw4LDAsMCwxLDIsMCwwLDAsMCwxLDAsMCwwLDAsMCwxLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwyLDAsMCwwLDEsMCwwLDAsMCwwLDIsMCw3LDIsMCwxNSwwLDEsMCwwLDAsMCwxLDAiXSxbImJuY2giLDc3XSxbImFibmNoIiw3N11d&dep=0&pre=0&sdd=%7B%7D&cri=e3wmAeK5tL&pto=1791&ver=50&gac=-&mei=&ap=&duid=1.1675459225.bWxzwBQq6H650Fn1&suid=1.1675459225.nOSkWRqMndPbOK2E&tuid=1.1675459225.I9ylX7e8gI4SeMN8&fbc=->m=W10%3D&it=64%2C1515%2C76&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Fri, 03 Feb 2023 21:19:53 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=553f6ac0a3fd36caae141f2e9b9740c5; Max-Age=29030400; Path=/; Expires=Fri, 05 Jan 2024 21:19:53 GMT; HttpOnly; Secure; SameSite=None
content-length: 944
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/linkvertise-link-to/loader.js
200 OK 42 kB URL HTTP/2 cdn.taboola.com/libtrc/linkvertise-link-to/loader.js
IP
File type Unicode text, UTF-8 text, with very long lines (28389)
Hash e5078363dd73d6a94b167f0e790ab83b
b8c906a7fed58db0e22da4225f42fa2f8b55a788
fcda90893b8d66b0120c3f8019178dc5838a4072308fbbdd4ea13d7b0c9a335f
GET /libtrc/linkvertise-link-to/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: eLGq6S/pYksYFG3TlkJlaLaM1TZydA3v9BiY97hPNBpwHGmn1LwFw4dYNjre1vnwaOhDP55H9/M=
x-amz-request-id: PB6PFYKV7AYHBHNS
x-amz-replication-status: PENDING
last-modified: Thu, 02 Feb 2023 10:12:04 GMT
etag: "5bf1d13cb36eac418dea084e7c4ce58a"
x-amz-version-id: DaEa574DexENf_8lQW1GNo9lOuPA8sH3
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Fri, 03 Feb 2023 21:19:53 GMT
via: 1.1 varnish
age: 65
x-served-by: cache-bma1653-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1675459193.457804,VS0,VE0
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 84
content-length: 41487
X-Firefox-Spdy: h2
linkvertise.chargebeestaticv2.com/api/internal/1675458900/retrieve_js_info
202 Accepted 0 B URL HTTP/2 linkvertise.chargebeestaticv2.com/api/internal/1675458900/retrieve_js_info
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/internal/1675458900/retrieve_js_info HTTP/1.1
Host: linkvertise.chargebeestaticv2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-requested-with
Referer: https://js.chargebee.com/
Origin: https://js.chargebee.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
content-length: 0
date: Fri, 03 Feb 2023 21:19:53 GMT
cache-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
pragma: no-cache
access-control-allow-origin: https://js.chargebee.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token
access-control-allow-methods: GET, OPTIONS, POST
server: ChargeBee
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: evOXcaGOpSfNpV3tTdd3kn0t9CaFct8sSOCa_-z8mjIe-2txsSKptA==
X-Firefox-Spdy: h2
linkvertise.chargebeestaticv2.com/api/internal/1675458900/retrieve_js_info
200 OK 451 B URL HTTP/2 linkvertise.chargebeestaticv2.com/api/internal/1675458900/retrieve_js_info
IP
File type JSON data\012- , ASCII text, with very long lines (451), with no line terminators
Hash 53e8a4bad15d11a2df3eb6a44e64734b
9681853dd64480d24c5482edfe9ddbc138008f19
6cb113617c09dcd449abccfe4341acc4ba667bce0ca54f92b95ffc0f03b16a79
GET /api/internal/1675458900/retrieve_js_info HTTP/1.1
Host: linkvertise.chargebeestaticv2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://js.chargebee.com
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=utf-8
content-length: 451
date: Fri, 03 Feb 2023 21:14:58 GMT
cache-control: max-age=0, must-revalidate, public, s-maxage=3600
expires: Thu, 01 Jan 1970 00:00:00 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: https://js.chargebee.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token
access-control-allow-methods: GET, OPTIONS, POST
server: ChargeBee
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BlrYpdjnooboz7vTaJ1VmQwoJzej2aJgPqXPleXXHS86s0wAGxlz6g==
age: 295
X-Firefox-Spdy: h2
paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F477524%2Fur69baby%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675459226007&hl=1&op=0&ag=1317291471&rand=932662781621068000072127012921056767919600097951272621172905082610961021879&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDQ0NjFdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFsiY2IiLCIwLDAsMCwwLDEsMCwwLDAsMCwwLDIsMCwwLDAsMCwwLDAsMSwwLDAsMSwwLDAsMCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMCwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMiJdLFstMSwiTGludXggeDg2XzY0Il0sWy0yLCI1LElMSFlMQjlCTFRhMkpxUWczRm9lZWwyd1liRTJvZ0JJS0o2Y1IwMDBNSkhRd1lUREdZYWh2M3V0NzFWcFhSOU84K001clZTS3Mxa1BCZS8vOTlzblZKR3BVZFBmZHp6bjNPZmMiXSxbLTMsIltdIl0sWy00LCItIl0sWy01LCItIl0sWy02LCJ7XCJ3XCI6W1wiMFwiLFwiJFwiLFwialF1ZXJ5XCIsXCJib290c3RyYXBcIixcImpRdWVyeTM0MTA3MTQ0NjM1MTQ2NDkxODA5MVwiLFwiZGF0YUxheWVyXCIsXCJmNzA1XCIsXCJjYkpzb25QXCIsXCJfX2NvcmUtanNfc2hhcmVkX19cIixcImNiX3dpbmRvd19sb2dnZXJcIixcIl9fU0VOVFJZX19cIixcIkNoYXJnZWJlZVwiLFwiaXNBZEJsb2NrQWN0aXZlXCIsXCJfbU5IYW5kbGVcIixcIm1lZGlhbmV0X3ZlcnNpb25JZFwiLFwibWVkaWFuZXRfY2hubVwiLFwibWVkaWFuZXRfY2hubTJcIixcIm1lZGlhbmV0X2Nobm0zXCIsXCJtZWRpYW5ldF9taXNjXCIsXCJNRDVcIixcIkNIRVFndWFyZFwiLFwid2VicGFja0NodW5rbHZfd2ViXCIsXCJOb3RpZnlQYWludEV2ZW50XCIsXCIkbG9jYWxpemVcIixcIlpvbmVcIixcIl9fem9uZV9zeW1ib2xfX1Byb21pc2VcIixcIl9fem9uZV9zeW1ib2xfX2ZldGNoXCIsXCJfX3pvbmVfc3ltYm9sX19xdWV1ZU1pY3JvdGFza1wiLFwiX196b25lX3N5bWJvbF9fc2V0VGltZW91dFwiLFwiX196b25lX3N5bWJvbF9fY2xlYXJUaW1lb3V0XCIsXCJfX3pvbmVfc3ltYm9sX19zZXRJbnRlcnZhbFwiLFwiX196b25lX3N5bWJvbF9fY2xlYXJJbnRlcnZhbFwiLFwiX196b25lX3N5bWJvbF9fcmVxdWVzdEFuaW1hdGlvbkZyYW1lXCIsXCJfX3pvbmVfc3ltYm9sX19jYW5jZWxBbmltYXRpb25GcmFtZVwiLFwiX196b25lX3N5bWJvbF9fYWxlcnRcIixcIl9fem9uZV9zeW1ib2xfX3Byb21wdFwiLFwiX196b25lX3N5bWJvbF9fY29uZmlybVwiLFwiX196b25lX3N5bWJvbF9fTXV0YXRpb25PYnNlcnZlclwiLFwiX196b25lX3N5bWJvbF9fSW50ZXJzZWN0aW9uT2JzZXJ2ZXJcIixcIl9fem9uZV9zeW1ib2xfX0ZpbGVSZWFkZXJcIixcIl9fem9uZV9zeW1ib2xfX29ub25kZXZpY2Vtb3Rpb25wYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uZGV2aWNlb3JpZW50YXRpb25wYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uYWJzb2x1dGVkZXZpY2VvcmllbnRhdGlvbnBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXljb25uZWN0cGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheWRpc2Nvbm5lY3RwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5YWN0aXZhdGVwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5ZGVhY3RpdmF0ZXBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXlwcmVzZW50Y2hhbmdlcGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmFib3J0cGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmJsdXJwYXRjaGVkXCJdLFwiblwiOltdLFwiZFwiOltdfSJdLFstNywiLSJdLFstOCwiLSJdLFstOSwiKyJdLFstMTAsIi0iXSxbLTExLCJ7XCJ0XCI6XCJcIixcIm1cIjpbXCJEZXNjcmlwdGlvblwiXX0iXSxbLTEyLCJcInVuc3BlY2lmaWVkXCIiXSxbLTEzLCItIl0sWy0xNCwiLSJdLFstMTUsIi0iXSxbLTE2LCIwIl0sWy0xNywiMTYiXSxbLTE4LCJbMSwwLDAsMF0iXSxbLTE5LCJbMCwwLDAsMCwwLDAsMSwyNCwyNCxcIi1cIiwxMjgwLDEwMDIsMTI4MCwxMDI0LDEyODAsMTAyNCwxMjgwLDkzOSwwLDAsMCwwLFwiLVwiLFwiLVwiXSJdLFstMjAsIjE0NTUwMjkwMzMuMTY3NTQ1OTIyNiJdLFstMjEsIi0iXSxbLTIyLCJbXCJuXCIsXCJuXCJdIl0sWy0yMywiKyJdLFstMjQsIltdIl0sWy0yNSwiLSJdLFstMjYsIi0iXSxbLTI3LCItIl0sWy0yOCwiZW4tVVMsZW4iXSxbLTI5LCItIl0sWy0zMCwiW1widlwiLDBdIl0sWy0zMSwiZmFsc2UiXSxbLTMyLCIwIl0sWy0zMywiLSJdLFstMzQsIi0iXSxbLTM1LCJbMTY3NTQ1OTIyNTk5OCwwXSJdLFstMzYsIltcIjUvNFwiLFwiNS80XCJdIl0sWy0zNywiLSJdLFstMzgsImksLTEsLTEsMzQxLDAsNDcsMCwxLDg3LDc3LC0xLDAsLDE2MzksMjMxNCwyMzE1Il0sWy0zOSwiW1wiMjAxMDAxMDFcIiwwLFwiR2Vja29cIixcIk5ldHNjYXBlXCIsXCJNb3ppbGxhXCIsXCIyMDE4MTAwMTAwMDAwMFwiLG51bGwsZmFsc2UsbnVsbCxmYWxzZSxudWxsLDBdIl0sWy00MCwiMzciXSxbLTQxLCItIl0sWy00MiwiMTc3MDA1MDA4MSJdLFstNDMsIjAwMDAwMDAxMDAwMDAwMDAwMTExMTAwMTAwIl0sWy00NCwiMCw1LDAsNSJdLFstNDUsIjAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCJdLFstNDYsIjAiXSxbLTQ3LCJVVEMsZW4tVVMsbGF0bixncmVnb3J5Il0sWy00OCwiMCwwIl0sWy00OSwiLSJdLFstNTAsImh0dHBzOi8vbGlua3ZlcnRpc2UuY29tLzQ3NzUyNC91cjY5YmFieT9vPXNoYXJpbmciXSxbLTUxLCItIl0sWy01MiwiLSJdLFstNTMsIjAxMCJdLFstNTQsIntcImhcIjpbXCI0MTA0MzE2MjNcIixcIjI2MzkyMjI0NjhcIixcIl8zXCIsXCIyODcyODk5MzIwXCJdLFwiZFwiOltdLFwiYlwiOltcIl8xXCIsXCIxMDY0ODIyNjg3XCIsXCI0MTA0MzE2MjNcIixcIjI2MzkyMjI0NjhcIl0sXCJzXCI6MX0iXSxbLTU1LCIxIl0sWyJkZGIiLCIwLDUsMCwxLDEsMiwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDIsMCwwLDAsMSwxLDAsMCwwLDAsMCwwLDEsMiwwLDAsMSwxLDAsMCwwLDAsMCwwIl0sWyJibmNoIiwzNF0sWyJhYm5jaCIsMzRdXQ%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=zm9ib6SJHQ&pto=2323&ver=50&gac=1455029033.1675459226&mei=&ap=&duid=1.1675459225.bWxzwBQq6H650Fn1&suid=1.1675459225.nOSkWRqMndPbOK2E&tuid=1.1675459225.I9ylX7e8gI4SeMN8&fbc=->m=W10%3D&it=80%2C1515%2C76&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
200 OK 961 B URL HTTP/2 paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F477524%2Fur69baby%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675459226007&hl=1&op=0&ag=1317291471&rand=932662781621068000072127012921056767919600097951272621172905082610961021879&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=zm9ib6SJHQ&pto=2323&ver=50&gac=1455029033.1675459226&mei=&ap=&duid=1.1675459225.bWxzwBQq6H650Fn1&suid=1.1675459225.nOSkWRqMndPbOK2E&tuid=1.1675459225.I9ylX7e8gI4SeMN8&fbc=->m=W10%3D&it=80%2C1515%2C76&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP
File type ASCII text, with very long lines (2721), with no line terminators
Hash 4a3acc42f2a8608188177198f1e5f67e
877957daffa9b4514c987e9ec4698f0e059cdc0a
15bed9632bd05dc8c250a967e365eca39387e188e3bf52288ddc976d4902d528
GET /ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F477524%2Fur69baby%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675459226007&hl=1&op=0&ag=1317291471&rand=932662781621068000072127012921056767919600097951272621172905082610961021879&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=zm9ib6SJHQ&pto=2323&ver=50&gac=1455029033.1675459226&mei=&ap=&duid=1.1675459225.bWxzwBQq6H650Fn1&suid=1.1675459225.nOSkWRqMndPbOK2E&tuid=1.1675459225.I9ylX7e8gI4SeMN8&fbc=->m=W10%3D&it=80%2C1515%2C76&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=553f6ac0a3fd36caae141f2e9b9740c5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Fri, 03 Feb 2023 21:19:53 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 961
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/impl.20230202-7-RELEASE.js
200 OK 197 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20230202-7-RELEASE.js
IP
File type ASCII text, with very long lines (65509)
Size 197 kB (196774 bytes)
Hash 6c8bebeb6999cf852ffb50992f277f93
e9cc101b6311233b8ce20f7ea7edc96659170737
836b7903173c3eceb3af03b778561ced0a8514efed55fa31ae9586105d337672
GET /libtrc/impl.20230202-7-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: jHWwPfTfIEKAae35dBYuyOVQICXru9NeIkH3zgVMh5dfA/hKyjuHrLAKBWtGLn8LF0Unj9jy2js=
x-amz-request-id: MBYW12D9WWKCPRHK
x-amz-replication-status: PENDING
last-modified: Fri, 03 Feb 2023 20:52:27 GMT
etag: "d13f9a1a452a849e65f87ebbc2aedeaf"
x-amz-version-id: ocxSjY5GEvF9rEoe8vEmsvykzFsxJRO.
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Fri, 03 Feb 2023 21:19:53 GMT
via: 1.1 varnish
age: 1645
x-served-by: cache-bma1653-BMA
x-cache: HIT
x-cache-hits: 800
x-timer: S1675459194.574894,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 15
content-length: 196774
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/redirect/link/477524/ur69baby/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
204 No Content 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/477524/ur69baby/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/redirect/link/477524/ur69baby/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 21:19:53 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=NjnjUGx1vmlvkHNzzMn6Rg7d0JPAGs9cIQvJkQ8Q; expires=Sat, 03 Feb 2024 21:19:53 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fy4Nb6yQzZ8mX1lmfh%2B04cXY6MJ%2B4HRM3cc1SwLz86vgYcak%2BXpp97daoR7ucmPj8EK4642ygMUpus8a2HlmLtFQAVWxvgI%2FfzoPlpy2t%2BFMxCn5l3WA43Hbqn%2BnApcBfWPz7%2FxqGs8mqe61"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 793e3517ffdc71de-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=vGy4WDmducZkFNqJa67xy7YRZIIqjZcQf1Dm2aU8%2FMO1YlvznrjYj%2FRV1o4c0IIiV%2B89&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
204 No Content 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=vGy4WDmducZkFNqJa67xy7YRZIIqjZcQf1Dm2aU8%2FMO1YlvznrjYj%2FRV1o4c0IIiV%2B89&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/validate-traffic?cheq_response=vGy4WDmducZkFNqJa67xy7YRZIIqjZcQf1Dm2aU8%2FMO1YlvznrjYj%2FRV1o4c0IIiV%2B89&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 21:19:53 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=44d8rqk76I2kUXkyhs7aHo16ruVZlEnIXxGjZKVn; expires=Sat, 03 Feb 2024 21:19:53 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XWy4sTIY5r82pX4mRgzPPo%2BpwHVfwLZfa4rBMO8D49EBiw2LzaWu9NnBNNLGfbFy%2BErFC%2BflQuczOTjjRMi8qcl7SOpIuTqBlGd%2B2KBPp2PoGGsy5z1JKIAkJAPeIxqCGiP7qcDuBbx78lL9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 793e3517ffd871de-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-7DRMH8RP03>m=45je3210&_p=555907925&cid=1455029033.1675459226&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675459225&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F477524%2Fur69baby%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 30 kB URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-7DRMH8RP03>m=45je3210&_p=555907925&cid=1455029033.1675459226&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675459225&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F477524%2Fur69baby%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash dab1abfbe712b7a74a2dbab03dcd84cb
d1c260db8380bdf7f8f6cc97d4c4122aa379395f
02e48eef1ae8bc60bcf9360a33d90e45fae9ac4cdeecac738544b3cdc57be96f
POST /g/collect?v=2&tid=G-7DRMH8RP03>m=45je3210&_p=555907925&cid=1455029033.1675459226&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675459225&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F477524%2Fur69baby%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://linkvertise.com
date: Fri, 03 Feb 2023 21:19:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
paper.ostrichesica.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136debc330e346839e9225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5f15896a2417071a10acf9f29f674c8780df017d6c1baf7b2150843d8c339651310122c5505556670d58c2be384a77be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c2b46200409a1db2c36280facf91c2b89a8a72ec1b15b764929adf5ac9d9c24efcfc248b5038e523c60cbe986a7b376cccee879cf774a91bac333074aae3f34eec55620b79bae6adc59a259b6831fc74dcfd03a863e3cc4c875917a91c0f4e1dbbaf1132bea3df4eeab6a0e6aaed96091b75ea116540bc5232597ccc3c881a4d57e883dd3deedde36ae6c7c3083683b9384d1166790a633aa0ba7cb0d977da86e145946cd76f14dd0c4ba74bd842ecc11ebcf849b6bce170468fe7f1a58794568ecaa23ec05879ad073f7ce3eafc17d96d1bdab2ad9e7bc0f362ac8a71e40db96075105f8fac932b63088f74ef3f26cee6eaa5a964fd715d4b421c11a27f8b391603b527c117e4e0543b8eb9e6dcc03b1424b472cf1b64dda864a6bb6f298c8dd2dc495e2f9868ef1f059532eb802dfe24b6491427b1ad164587569ff79ad73079c94a238ed029658d5ff4c9fc7769b0e1d3d3246394ac8d2eec93d65549c1f4091d6d0b9b2cf4d7c97f9e115919a7b2ca1d67169148799cb4a33f567d34d95718e2389509f9101f2bb2ef0c2cbabd8353eb0b3603adc21b487e6fa4adf3979&cri=zm9ib6SJHQ&ts=118&cb=1675459226125
200 OK 43 B URL HTTP/2 paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=zm9ib6SJHQ&ts=118&cb=1675459226125
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=zm9ib6SJHQ&ts=118&cb=1675459226125 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=553f6ac0a3fd36caae141f2e9b9740c5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Fri, 03 Feb 2023 21:19:53 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 621b586028d5acaf29b8777ca0872ce1
9d2a358576d0acab58e2eacf7765b686cee9181f
a7c99a5217e394c715679780ae1e3e60202653547212b0a4fd2efab0e1a01015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-
200 OK 584 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-
IP
File type ASCII text, with very long lines (884), with no line terminators
Hash ffa92c1a96485ba730e51de7d5ef5fb9
8dd883c58e5e51e68260ca6067d3fdde2aa1dd4a
f97b9e35db46fb28c9da9ea8f4c0eaee60fe1e73b090fdf74d264a40e6f662ba
GET /recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 03 Feb 2023 21:19:53 GMT
date: Fri, 03 Feb 2023 21:19:53 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
IP
File type ASCII text, with very long lines (633)
Size 164 kB (163841 bytes)
Hash fe98364486b3206867b17008f995646f
35a5e9aa210970f7abd718d99e629c6982a3cc02
1fd703cb16e3f6f3f7192109d19c69d6e5ac1cfa0feb5b105a86564b7970d28a
GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://js.chargebee.com
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 08:53:11 GMT
expires: Wed, 31 Jan 2024 08:53:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 02:51:47 GMT
content-type: text/javascript
age: 304002
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash a066fb1e4ce413ebe177c2531a594cc3
49a39c4ee5c1e5d7e07ab17d703262c495b217d1
464f12dd3b739f5fe9f4875253f7567c660988f10950704b5cf145037599f3f6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5962
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:53 GMT
Last-Modified: Fri, 03 Feb 2023 19:40:31 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
publisher.linkvertise.com/api/v1/redirect/link/477524/ur69baby/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
200 OK 458 B URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/477524/ur69baby/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
IP
File type JSON data\012- , ASCII text, with very long lines (916), with no line terminators
Hash 38b1aa8a286e108fe026a8bf03ae33bf
8e3d41994e5bbbcf4b9a1b2cd153d5005815f87e
348c233d85498d2334861173d3ab7586eb2535f563803da903309a604ea98ce1
POST /api/v1/redirect/link/477524/ur69baby/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Content-Length: 92
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:53 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=PeXAEvfIdADWnpq21iqs7ZaQ953vJPs8ti1fQZLn; expires=Sat, 03 Feb 2024 21:19:53 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cL9Ri6sNWQwRtNul9XHNUnRjAigO4IT5eWcN%2FO33ZaUKxyxVgpOYeM9njsL0kRjl29RNDNQArtHuYr93U0pzBn2oaTEQHRDqlfDso3qb3LPMhbnER3Y38ZTmjgEVYBcCS5o0AvkuPJr1zZ5r"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 793e3518586371de-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trc-events.taboola.com/linkvertise-link-to/log/2/debug?tim=21%3A20%3A26.266&type=usage&msg=rtus&llvl=2&id=9059&cv=20230202-7-RELEASE<=deflated&uuid=8ebcb4b2a5a8072c434340780ff8b9e3a9723cdd1084b70a37a613f5c3cb7b4d&dcc=2&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/linkvertise-link-to/log/2/debug?tim=21%3A20%3A26.266&type=usage&msg=rtus&llvl=2&id=9059&cv=20230202-7-RELEASE<=deflated&uuid=8ebcb4b2a5a8072c434340780ff8b9e3a9723cdd1084b70a37a613f5c3cb7b4d&dcc=2&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /linkvertise-link-to/log/2/debug?tim=21%3A20%3A26.266&type=usage&msg=rtus&llvl=2&id=9059&cv=20230202-7-RELEASE<=deflated&uuid=8ebcb4b2a5a8072c434340780ff8b9e3a9723cdd1084b70a37a613f5c3cb7b4d&dcc=2&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Fri, 03 Feb 2023 21:19:53 GMT
x-fastly-to-nlb-rtt: 21945
access-control-allow-credentials: true
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4983
Expires: Fri, 03 Feb 2023 22:42:56 GMT
Date: Fri, 03 Feb 2023 21:19:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4983
Expires: Fri, 03 Feb 2023 22:42:56 GMT
Date: Fri, 03 Feb 2023 21:19:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4982
Expires: Fri, 03 Feb 2023 22:42:56 GMT
Date: Fri, 03 Feb 2023 21:19:54 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4982
Expires: Fri, 03 Feb 2023 22:42:56 GMT
Date: Fri, 03 Feb 2023 21:19:54 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4982
Expires: Fri, 03 Feb 2023 22:42:56 GMT
Date: Fri, 03 Feb 2023 21:19:54 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:57:49 GMT
age: 84125
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3490571dd2de0a747987b9a0e18cccc8
18e9f8f160d3515f1cb31fc7538ac762a6cab344
1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10796
x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi0XKG93oAMFtsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XTZJAn0LMAfFtaQ2bN8z58cCsUT5GzxDMnHVB_iw9E_NskHQ-BgbRQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:19:26 GMT
age: 84437
etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e706db8a6107758a148463e916f2532d
4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81
673f18036a53f8ff297ef6a63fd094e7c41d90f3960f0e687a741cc7dd3f6172
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6791
x-amzn-requestid: 665115ea-728e-4a55-aaf8-b09db3fa67a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffl96FIzIAMFYGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61d25-0abbd7262ca10b7a7d2bf9eb;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:15:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nPgaBSGyLJQnN0ofVRFniW2LqzgKVWchSKYSjYCmuPtpL9Ner81ARQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:14:03 GMT
age: 83151
etag: "4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a6aaf87a867f93dc9268a8b27973b97
f52ccbe6cbced1994acb13a00b05436553b6813e
3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hSyEfSDToqgfnFIW68Krz-ANYUNQoUPWhyb-8xDUarI6mnVLXriHDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:59:54 GMT
age: 84000
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
200 OK 22 kB URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP
Hash fa9c4c744faad22554e240cceeff1db5
1401af7be46fba480309429fec9f7a0801644546
bc2bf0ff072799c64b76eeca78fb0bfe60db0936a59c6e1f5d0d3c6c2963598c
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:53 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 390205
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 84713
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 5dfa21f8ce56c91a0c67c55831571dea
ad9d3cc818ab39bc1fe96b76a080a75534b4e7fc
72f14d1cb9b14526ae15d26c0998c852299987397075fda52aa8c65052d5604b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4365
Cache-Control: max-age=116290
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:54 GMT
Etag: "63dc8caf-139"
Expires: Sun, 05 Feb 2023 05:38:04 GMT
Last-Modified: Fri, 03 Feb 2023 04:25:19 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
200 OK 313 B IP
Hash 5dfa21f8ce56c91a0c67c55831571dea
ad9d3cc818ab39bc1fe96b76a080a75534b4e7fc
72f14d1cb9b14526ae15d26c0998c852299987397075fda52aa8c65052d5604b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3871
Cache-Control: max-age=115796
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:54 GMT
Etag: "63dc8caf-139"
Expires: Sun, 05 Feb 2023 05:29:50 GMT
Last-Modified: Fri, 03 Feb 2023 04:25:19 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
200 OK 312 B IP
Hash 8602f3483627681e198ec06f8f53eed7
ea3630c6a4466f2385dcb6dcfd18307f4fa0de72
31d7c84235658a98181ddf2d7b73a336acaf2bd58e6947515fb6793d72bb03e1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4528
Cache-Control: max-age=149520
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:55 GMT
Etag: "63dd0ddb-138"
Expires: Sun, 05 Feb 2023 14:51:55 GMT
Last-Modified: Fri, 03 Feb 2023 13:36:27 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 312
gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com
200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash 2cf12a61c5f3f23abe6f26d2181f908c
7cc44e27a14d87f3a8180a7b3a99f6fbc52f99c8
f0b7a85374c53a3a5e3dc9074aa1587df2e43cbd4835cb777f23ae7492cf2041
GET /syncframe?origin=rtus&topUrl=linkvertise.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:54 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
uid=2e85eed5-3dae-4cfa-bb53-fe9083e8d2f3; expires=Wed, 28 Feb 2024 21:19:54 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 790014
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
dnacdn.net/dna
200 OK 131 B IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 2f9e18e3733969102ea4a8ec2ea2186f
38ab882159808b80f961ecbfffb65c0328d07fd4
082d44f4740852f916468325ffe55a255d8dbfb8247eecec14dac6d8868ed279
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=dvBpqF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czJGY2xLYkFscENIJTJCc1pEelkzSTkyZFp3dlNkeGN6MTBZVTNReTh3cVdmcg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:54 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=b__4pl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czJGY2xLYkFscENIJTJCc1pEelkzSTkyZmhwJTJGTVclMkZLYnpMRlVVNU1hJTJGa2lXbQ; expires=Wed, 28 Feb 2024 21:19:55 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 319730
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 715806b036d01666267128c6d97faf0e
8416126b5e46dcdc8b068cd6e2408878c1bcdfeb
834be2a6ba0f4e731963c0d35a9ec3cb89aef79652afd5712cadd5607e2adf10
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5933
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:19:55 GMT
Last-Modified: Fri, 03 Feb 2023 19:41:03 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 313
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
200 OK 8.9 kB URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP
Hash a7917165f92984fcb1125ba9a4133f8a
1a15cafc98af7ab7472dadf63d193fb763845abb
64fe514fcb90132d7abbe29a5353c3dcbb61943a5161c572b78cca60075ea736
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-crto-bundle: iBqKeV9CS3RyT2ZxYVExdk1RdUZxdnRXd2Z1a1Q0TVowc2d3R0NEQVp4JTJCNGNkMWllUnF6bENhMEllV2NBanFQRmZuU1ZEODVGd0ozTTBFb0xKTTVJY3BhSG42OWlNOVV5dEtlN2h0dkJmZzNUYXdnWXNwJTJGVVZaZ09ydExYcFNPNTdXZ1g3WE00UTJFbFlQd2JPc2dsWGJtbUdRJTNEJTNE
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:54 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://linkvertise.com
server-processing-duration-in-ticks: 1870461
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
js.chargebee.com/v2/136-04294f7bee4da31abb6d.js
200 OK 0 B URL HTTP/2 js.chargebee.com/v2/136-04294f7bee4da31abb6d.js
IP
GET /v2/136-04294f7bee4da31abb6d.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 02 Feb 2023 08:38:42 GMT
x-amz-version-id: NSlm2Jg29xJx93Rrs7mbrPf.GhDDN61Q
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Fri, 03 Feb 2023 21:17:02 GMT
cache-control: max-age=300,public
etag: W/"9aef1ba966da7d13bb8f9410eea89309"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OIvbhLGfQYWhczcp0-7mSdCW_FjwpO_HzYT9dliXMn-cvP2hjYewUw==
age: 176
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=b__4pl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czJGY2xLYkFscENIJTJCc1pEelkzSTkyZmhwJTJGTVclMkZLYnpMRlVVNU1hJTJGa2lXbQ&idsd=288348345,1915777388&cw=1&rtusCallerId=72&lsw=1
200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=b__4pl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czJGY2xLYkFscENIJTJCc1pEelkzSTkyZmhwJTJGTVclMkZLYnpMRlVVNU1hJTJGa2lXbQ&idsd=288348345,1915777388&cw=1&rtusCallerId=72&lsw=1
IP
GET /sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=b__4pl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czJGY2xLYkFscENIJTJCc1pEelkzSTkyZmhwJTJGTVclMkZLYnpMRlVVNU1hJTJGa2lXbQ&idsd=288348345,1915777388&cw=1&rtusCallerId=72&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:54 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 898495
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:54 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 163674
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
linkvertise.com/477524/ur69baby?o=sharing
200 OK 0 B URL HTTP/2 linkvertise.com/477524/ur69baby?o=sharing
IP
GET /477524/ur69baby?o=sharing HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:51 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1t9AtWEbfjBu2uaG2cfwFdC0FT4eF8q1P9Ip28rWfv%2B%2BaLWIXAFf1qriPklyany7ad0F01LMf8Z8Px46t3vns61hkRxDDfvpnTv3j9y%2FMNp9iilP%2FaWCEV4yrsvfaw%2BJtSs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 793e350baa39773b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
IP
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:51 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: ed8d946baeeb2ee38f4aebce8d84f641
cdn-cache: HIT
cf-cache-status: HIT
age: 18502481
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 793e350dbdad1c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:54 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 100841
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
js.chargebee.com/v2/master-28f23e4f7b94abf18b9f.js
200 OK 0 B URL HTTP/2 js.chargebee.com/v2/master-28f23e4f7b94abf18b9f.js
IP
GET /v2/master-28f23e4f7b94abf18b9f.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 02 Feb 2023 08:38:42 GMT
x-amz-version-id: sBqFHnwLy79Wl0TJWpdafjWm.LCL_tH_
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Fri, 03 Feb 2023 21:19:50 GMT
cache-control: max-age=300,public
etag: W/"948dc641ad9d6d9c0fff32585c0f3beb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lMYsOhpVtud_RnR9ZHmL9YRUTKFztvsdvp4LUunhPH1XcFTrjHtttw==
age: 4
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=vGy4WDmducZkFNqJa67xy7YRZIIqjZcQf1Dm2aU8%2FMO1YlvznrjYj%2FRV1o4c0IIiV%2B89&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
200 OK 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=vGy4WDmducZkFNqJa67xy7YRZIIqjZcQf1Dm2aU8%2FMO1YlvznrjYj%2FRV1o4c0IIiV%2B89&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
IP
GET /api/v1/validate-traffic?cheq_response=vGy4WDmducZkFNqJa67xy7YRZIIqjZcQf1Dm2aU8%2FMO1YlvznrjYj%2FRV1o4c0IIiV%2B89&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:19:53 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=JV2o0MRx94gC8BwSCBauVJzyxNdACvFvk1e0rFmD; expires=Sat, 03 Feb 2024 21:19:53 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jeWQo19qnqEo3cI4Ykr3pMOGWAjkL972SbSWhM60u9VtPU6spiymP9HCzElCU0xS2rRZlenaHZFB0Vxgv2rbbvBtVByC3BdyjHyQ%2F0RMrAB08ob6X8UWKKjCJEl0i6HngKOk4xMS0UcQ95e9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 793e3518686f71de-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.chargebee.com/v2/148-3987f172361378a6883f.js
200 OK 0 B URL HTTP/2 js.chargebee.com/v2/148-3987f172361378a6883f.js
IP
GET /v2/148-3987f172361378a6883f.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 02 Feb 2023 08:38:42 GMT
x-amz-version-id: g8QbkeSlglOFXISI9gUwE71gXE_D32gK
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Fri, 03 Feb 2023 21:16:22 GMT
cache-control: max-age=300,public
etag: W/"6d813d6e32089bc8a6b827ee01e287ec"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hzD9RVZjwvzwDLd0yWmVrrSNjeJ0xPQUFKS6ehF-Lt_hIHrek6rfXw==
age: 211
X-Firefox-Spdy: h2
js.chargebee.com/v2/152-dba6a3a9f49f90e94d8d.js
200 OK 0 B URL HTTP/2 js.chargebee.com/v2/152-dba6a3a9f49f90e94d8d.js
IP
GET /v2/152-dba6a3a9f49f90e94d8d.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 02 Feb 2023 08:38:42 GMT
x-amz-version-id: Ie3xwbsL01lSj9Q7NGbZIrO0mzwpN_BH
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Fri, 03 Feb 2023 21:16:02 GMT
cache-control: max-age=300,public
etag: W/"4238223b72262e874558e29d28e551b3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: o1mF5eVnPrQQBcUYvgbSHDysa0zQgGbZfGRvMuxkQfm11xUYT-T1Vg==
age: 232
X-Firefox-Spdy: h2
172.64.207.34
178.250.6.162
23.36.76.226
185.76.9.26
141.226.228.48
104.17.25.14
93.184.220.29