url3770.candyswag.us/ls/click?upn=27Z9OXc8Mo5nSEPt-2FOvolDNm0Vh5xQGc17x3tnx-2BOUEJeEiDXO-2FmvvZc35mjXLWXNp6hojZgZ6fywpQlniFzBQ-3D-3DaKaU_MldBJzuGuicob36R6t2ksl5jcaezw3pJ1KxiJcBjo-2BWH4HnENMectVvloKgjZ65VobqKeGMlU3QNqfJuako2G0TJDpUGxFQy5WH-2FKNQ2XrrHaS5wIVOuQfjhKUbHeYVstKUOIcPrDCm-2F7jv2NyhJxOtM0AMerj3oXi3ZJvfnlo6bzLZp4YXaef0fgYif-2FMLLfd0ar6B2EEJKHQ1mbZeM-2FkzEsswOvytnQi2L-2BoFFKF-2BnMiaHWBuDyw2pI7icWOEq-2BAJfymiofkG68dunlxelDTaE6OzaP6n7006loymYNDS5d99f9cQgSuGFgVjI-2B-2FRKiMNV4VybtfZq6c6QqCRwFZnR-2BD5yMp00r7LPAoav-2B2Fm83WefJkc5K-2BW4HdUpMP-2FIZ9u3O1HXerDHADg1fid4CkoeoFg2QprZ0BBPb38cN-2FcucH2-2BR-2BazRMVATLzFQvEBV8SuPJrxoBEzc1IvM8njw0JFIulpbppmsGOHJZYacqK7vLHjb-2FhX64Lyd4FkTpmGcmAVQcKriI6ptIGeqgGBzSidjBG-2Ff6U6eL7cSgVhsQsOOHVeiY14WNxLnrZmm12zamGmU3p1B2mhwd7OtEPZ5IWlU-2FEofdqDyD9ch5K7bqDeuythtuclPQU2dvlwXjpR4sthLJeS5hIQVYfZfO-2B0w6Tr3r3AOdMtkWC5LVC2KbHlK3jpWC30DDF8dJ8bXSAIcbl08Cyq6eycDFpQMkilYEp60qGVpQN2o2UjVHDoOMOz9achbCnlzFH9gEbEbZ7lZ50V5SI5vvbdxTB-2BHelXylmqVq1eB0SIn1iNE36xgi31P0y9cxS0nAbP7DEkn6SJqVNP1QmiuyDQ-2BLc5WmiR1vG0VdpqQFauJx-2B57nFIUwOnWDxh0aR0vQCZ5qOXjCgKUxFXxkzEprC75VY-2BAIVnuEeXqZ0nrjy0v1Kz6ps9FZd7tlXL1L675kF29Dn5Lr5
167.89.115.56302 Found 70 B URL HTTP/1.1 url3770.candyswag.us/ls/click?upn=27Z9OXc8Mo5nSEPt-2FOvolDNm0Vh5xQGc17x3tnx-2BOUEJeEiDXO-2FmvvZc35mjXLWXNp6hojZgZ6fywpQlniFzBQ-3D-3DaKaU_MldBJzuGuicob36R6t2ksl5jcaezw3pJ1KxiJcBjo-2BWH4HnENMectVvloKgjZ65VobqKeGMlU3QNqfJuako2G0TJDpUGxFQy5WH-2FKNQ2XrrHaS5wIVOuQfjhKUbHeYVstKUOIcPrDCm-2F7jv2NyhJxOtM0AMerj3oXi3ZJvfnlo6bzLZp4YXaef0fgYif-2FMLLfd0ar6B2EEJKHQ1mbZeM-2FkzEsswOvytnQi2L-2BoFFKF-2BnMiaHWBuDyw2pI7icWOEq-2BAJfymiofkG68dunlxelDTaE6OzaP6n7006loymYNDS5d99f9cQgSuGFgVjI-2B-2FRKiMNV4VybtfZq6c6QqCRwFZnR-2BD5yMp00r7LPAoav-2B2Fm83WefJkc5K-2BW4HdUpMP-2FIZ9u3O1HXerDHADg1fid4CkoeoFg2QprZ0BBPb38cN-2FcucH2-2BR-2BazRMVATLzFQvEBV8SuPJrxoBEzc1IvM8njw0JFIulpbppmsGOHJZYacqK7vLHjb-2FhX64Lyd4FkTpmGcmAVQcKriI6ptIGeqgGBzSidjBG-2Ff6U6eL7cSgVhsQsOOHVeiY14WNxLnrZmm12zamGmU3p1B2mhwd7OtEPZ5IWlU-2FEofdqDyD9ch5K7bqDeuythtuclPQU2dvlwXjpR4sthLJeS5hIQVYfZfO-2B0w6Tr3r3AOdMtkWC5LVC2KbHlK3jpWC30DDF8dJ8bXSAIcbl08Cyq6eycDFpQMkilYEp60qGVpQN2o2UjVHDoOMOz9achbCnlzFH9gEbEbZ7lZ50V5SI5vvbdxTB-2BHelXylmqVq1eB0SIn1iNE36xgi31P0y9cxS0nAbP7DEkn6SJqVNP1QmiuyDQ-2BLc5WmiR1vG0VdpqQFauJx-2B57nFIUwOnWDxh0aR0vQCZ5qOXjCgKUxFXxkzEprC75VY-2BAIVnuEeXqZ0nrjy0v1Kz6ps9FZd7tlXL1L675kF29Dn5Lr5
IP 167.89.115.56:0
File type HTML document, ASCII text
Hash e534b99b4b56c638c2bd5de935380e8c
49cdf46d0bc3a661335a89eb753ad6f2059061af
0df5299ae337f6f43fe1fc11ae424717b01b25b1d62de066b24a1da98fdbb135
GET /ls/click?upn=27Z9OXc8Mo5nSEPt-2FOvolDNm0Vh5xQGc17x3tnx-2BOUEJeEiDXO-2FmvvZc35mjXLWXNp6hojZgZ6fywpQlniFzBQ-3D-3DaKaU_MldBJzuGuicob36R6t2ksl5jcaezw3pJ1KxiJcBjo-2BWH4HnENMectVvloKgjZ65VobqKeGMlU3QNqfJuako2G0TJDpUGxFQy5WH-2FKNQ2XrrHaS5wIVOuQfjhKUbHeYVstKUOIcPrDCm-2F7jv2NyhJxOtM0AMerj3oXi3ZJvfnlo6bzLZp4YXaef0fgYif-2FMLLfd0ar6B2EEJKHQ1mbZeM-2FkzEsswOvytnQi2L-2BoFFKF-2BnMiaHWBuDyw2pI7icWOEq-2BAJfymiofkG68dunlxelDTaE6OzaP6n7006loymYNDS5d99f9cQgSuGFgVjI-2B-2FRKiMNV4VybtfZq6c6QqCRwFZnR-2BD5yMp00r7LPAoav-2B2Fm83WefJkc5K-2BW4HdUpMP-2FIZ9u3O1HXerDHADg1fid4CkoeoFg2QprZ0BBPb38cN-2FcucH2-2BR-2BazRMVATLzFQvEBV8SuPJrxoBEzc1IvM8njw0JFIulpbppmsGOHJZYacqK7vLHjb-2FhX64Lyd4FkTpmGcmAVQcKriI6ptIGeqgGBzSidjBG-2Ff6U6eL7cSgVhsQsOOHVeiY14WNxLnrZmm12zamGmU3p1B2mhwd7OtEPZ5IWlU-2FEofdqDyD9ch5K7bqDeuythtuclPQU2dvlwXjpR4sthLJeS5hIQVYfZfO-2B0w6Tr3r3AOdMtkWC5LVC2KbHlK3jpWC30DDF8dJ8bXSAIcbl08Cyq6eycDFpQMkilYEp60qGVpQN2o2UjVHDoOMOz9achbCnlzFH9gEbEbZ7lZ50V5SI5vvbdxTB-2BHelXylmqVq1eB0SIn1iNE36xgi31P0y9cxS0nAbP7DEkn6SJqVNP1QmiuyDQ-2BLc5WmiR1vG0VdpqQFauJx-2B57nFIUwOnWDxh0aR0vQCZ5qOXjCgKUxFXxkzEprC75VY-2BAIVnuEeXqZ0nrjy0v1Kz6ps9FZd7tlXL1L675kF29Dn5Lr5 HTTP/1.1
Host: url3770.candyswag.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Sun, 27 Nov 2022 01:00:42 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 70
Connection: keep-alive
Location: https://youengage.me/p/6344b5808cc3bc01000371d4
X-Robots-Tag: noindex, nofollow
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 150792cfc458af013998f4ef6bdf5f74
d5179b2dcb11d06f82606bf6eb6648319998d63e
72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9082
Expires: Sun, 27 Nov 2022 03:32:05 GMT
Date: Sun, 27 Nov 2022 01:00:43 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6053
Cache-Control: max-age=126678
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:43 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 12:12:01 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 00:17:33 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2590
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16058
Expires: Sun, 27 Nov 2022 05:28:21 GMT
Date: Sun, 27 Nov 2022 01:00:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QEMv3+xCPP8O1vSTA4S3JjxW7KqNFMtn66gc5fDVWLBwFvX3OctajihHJGmPVsa4SvgsBk6idoM=
x-amz-request-id: NR3W2CG1QJ5N273C
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 00:41:25 GMT
age: 1158
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 01:00:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/5yKkvCbnVRI
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5yKkvCbnVRI
IP 142.250.74.35:0
Hash a3ca4c29b632407a93551e0801b7a9cd
c0280c1ba352f2b5412e542074d4bf2360f0358c
fd9bcf93b58723b8949d3602ece5ba58fca2919fa8c374e4beef084c503489f7
POST /s/gts1d4/5yKkvCbnVRI HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:43 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
youengage.me/p/6344b5808cc3bc01000371d4
34.120.184.123200 OK 3.7 kB URL HTTP/2 youengage.me/p/6344b5808cc3bc01000371d4
IP 34.120.184.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 688b7506cb286ab343e9afa847c6e278
3683aac5f49f15683f366d6a664debde680187f1
f36e96f013de6db7793d7f0acfa0224ebc102ecf1995154f3db1c282d926104c
Analyzer Verdict Alert quad9 Sinkholed
GET /p/6344b5808cc3bc01000371d4 HTTP/1.1
Host: youengage.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html
last-modified: Sat, 12 Nov 2022 21:14:26 GMT
accept-ranges: bytes
x-cloud-trace-context: 811247d6dc832d9ddecd37076a6ea439
date: Sun, 27 Nov 2022 01:00:43 GMT
server: Google Frontend
content-length: 3739
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
youengage.me/bower_components/4screens-angular-preload-image/angular-preload-image.css
34.120.184.123200 OK 970 B URL HTTP/2 youengage.me/bower_components/4screens-angular-preload-image/angular-preload-image.css
IP 34.120.184.123:0
Hash 9a7c9028ead617d30b1f3302970d47d4
b150043ab80115c6d188bd2975e86e0f78443d24
dd9f479703286a86be59ca572145cb69d0a8564433b21dedc4f29e3c56d2ba7f
Analyzer Verdict Alert quad9 Sinkholed
GET /bower_components/4screens-angular-preload-image/angular-preload-image.css HTTP/1.1
Host: youengage.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/p/6344b5808cc3bc01000371d4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 29 Jun 2021 14:29:27 GMT
accept-ranges: bytes
x-cloud-trace-context: 1f700dbad67e69ca7f2e34e1ff49bbcc
date: Sun, 27 Nov 2022 01:00:43 GMT
server: Google Frontend
content-length: 970
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
youengage.me/bower_components/angularjs-slider/dist/rzslider.min.css
34.120.184.123200 OK 4.1 kB URL HTTP/2 youengage.me/bower_components/angularjs-slider/dist/rzslider.min.css
IP 34.120.184.123:0
File type ASCII text, with very long lines (3825)
Hash fb77d9c639c21aa6acb2cf4eadd0985b
a330d84d9ee18ff73ce68ab2c5924f3644dfbe35
405878f44802cbcfbc5b0b003922d649b1d759bac75c471297c961d3152e9031
Analyzer Verdict Alert quad9 Sinkholed
GET /bower_components/angularjs-slider/dist/rzslider.min.css HTTP/1.1
Host: youengage.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/p/6344b5808cc3bc01000371d4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 26 May 2022 09:09:30 GMT
accept-ranges: bytes
x-cloud-trace-context: 49afc9169b8f7fd41657fb2705129d57
date: Sun, 27 Nov 2022 01:00:43 GMT
server: Google Frontend
content-length: 4080
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
youengage.me/scripts/ffb822a6.scripts-engage-form.js
34.120.184.123200 OK 20 kB URL HTTP/2 youengage.me/scripts/ffb822a6.scripts-engage-form.js
IP 34.120.184.123:0
File type ASCII text, with very long lines (20403), with no line terminators
Hash ffb822a6ae076e14e6b3bbbb65687298
c14af0fbdf6dc7617808f284b2fd16bc5d41ac70
5f969d6717de6b93e872ecf14576040f27e9e8e2d1717dd23a7321d6840e9c58
Analyzer Verdict Alert quad9 Sinkholed
GET /scripts/ffb822a6.scripts-engage-form.js HTTP/1.1
Host: youengage.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/p/6344b5808cc3bc01000371d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 12 Nov 2022 21:14:13 GMT
accept-ranges: bytes
x-cloud-trace-context: 0dbbb6d3166dc567f1e78d6eb9bfcd8b
date: Sun, 27 Nov 2022 01:00:43 GMT
server: Google Frontend
content-length: 20403
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
youengage.me/styles/project/6fc4b321.main.css
34.120.184.123200 OK 99 kB URL HTTP/2 youengage.me/styles/project/6fc4b321.main.css
IP 34.120.184.123:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash b91894222a981016c8c39743b986a098
4ee4d491428fec04fc6b3a9d8c3d29fb5eea5211
9cdeec7958af2a98b2146db8a611d5bd1ba1c613d295c16b87afb62f2ee4dd6c
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/project/6fc4b321.main.css HTTP/1.1
Host: youengage.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/p/6344b5808cc3bc01000371d4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 12 Nov 2022 21:14:26 GMT
accept-ranges: bytes
x-cloud-trace-context: 72fb3de2cbf83e011825b65b24b4be5c
date: Sun, 27 Nov 2022 01:00:43 GMT
server: Google Frontend
content-length: 98701
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
code.jquery.com/jquery-1.12.4.min.js
69.16.175.10200 OK 34 kB URL HTTP/2 code.jquery.com/jquery-1.12.4.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (32077)
Hash fc7624613c4e25843694cdb7fa956f05
7765bb4016ae929e22be579ccde505b94c2a63c1
49c97d70ef48bfdc1d7b96271b5613bb099b2c040ebdf5624962aea92ff428ae
GET /jquery-1.12.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 01:00:43 GMT
content-encoding: gzip
content-length: 33738
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-17b8b"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669510843.dop220.sk1.t,1669510843.cds215.sk1.hn,1669510843.cds251.sk1.c
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 13c265f2c258e0bcea2ac1149188d332
3d42f91eec1fae7ff5e243d2a35afdd5a6d58db0
26666f4ea8fe16648ef9593216b725f692a1cb913763b186cd19d59e7875a930
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5249
Cache-Control: max-age=113282
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:43 GMT
Etag: "6381b9bc-117"
Expires: Mon, 28 Nov 2022 08:28:45 GMT
Last-Modified: Sat, 26 Nov 2022 07:01:16 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
youengage.me/scripts/f337aad9.vendor-engage-form.js
34.120.184.123200 OK 482 kB URL HTTP/2 youengage.me/scripts/f337aad9.vendor-engage-form.js
IP 34.120.184.123:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 482 kB (482334 bytes)
Hash f337aad97aa6ef46102e39705101965f
9e213e5496934049cb90d1e5fd6fc7b93559056c
1ed45197527b9bcbe3c0c5fdfc46fd32473879a951b00feda8c06ffe020e93f0
Analyzer Verdict Alert quad9 Sinkholed
GET /scripts/f337aad9.vendor-engage-form.js HTTP/1.1
Host: youengage.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/p/6344b5808cc3bc01000371d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 12 Nov 2022 21:14:13 GMT
accept-ranges: bytes
x-cloud-trace-context: ddf4dd1b76e40aff58bf3b8b955ea1c0
date: Sun, 27 Nov 2022 01:00:43 GMT
server: Google Frontend
content-length: 482334
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
93.184.220.66200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 7899fffaf0046efb7f9be2495d9dc928
d4c60d88e8deea577a50f9d20e1b6b3a20cba2cf
07d50450f22df0588cc1b67f5a124cb91d99a032a229586eb7dc490cce9f7f30
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 384
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Sun, 27 Nov 2022 01:00:43 GMT
Etag: "6633f9603c759c40d9b200995454f17c+gzip"
Last-Modified: Wed, 02 Nov 2022 19:43:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F713)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=2
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29221
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 13c265f2c258e0bcea2ac1149188d332
3d42f91eec1fae7ff5e243d2a35afdd5a6d58db0
26666f4ea8fe16648ef9593216b725f692a1cb913763b186cd19d59e7875a930
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5249
Cache-Control: max-age=113282
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:43 GMT
Etag: "6381b9bc-117"
Expires: Mon, 28 Nov 2022 08:28:45 GMT
Last-Modified: Sat, 26 Nov 2022 07:01:16 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-W5MXBGD
142.250.74.168200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-W5MXBGD
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash cfecdbafbf03382b0503e3e94b71084f
f7594e7b1375c50116b58609692dbbe77afcb18f
4bfc1047d112487dc0d14ad534d51ce0856b09768fa0a9cd0a55231a62edf354
GET /gtm.js?id=GTM-W5MXBGD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 01:00:43 GMT
expires: Sun, 27 Nov 2022 01:00:43 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46201
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
youengage.me/views/project/main.html
34.120.184.123200 OK 3.9 kB URL HTTP/2 youengage.me/views/project/main.html
IP 34.120.184.123:0
File type ASCII text, with very long lines (1110)
Hash 09e2348a59505b111ab8133507a0b9ee
4f6a0da1fd2524f5f7ec2684b2f8b068f49f6a23
eeae86ad6bff01c8bacc13aec67a03edc46d87dff5596ed7f696a0b3d8a36e4f
Analyzer Verdict Alert quad9 Sinkholed
GET /views/project/main.html HTTP/1.1
Host: youengage.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/p/6344b5808cc3bc01000371d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Sat, 12 Nov 2022 21:14:27 GMT
accept-ranges: bytes
x-cloud-trace-context: 4c6e5e10474b59ef93e22b8fc84f9cc7
date: Sun, 27 Nov 2022 01:00:43 GMT
server: Google Frontend
content-length: 3911
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=https%3A%2F%2Fyouengage.me
93.184.220.66200 OK 472 B URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=https%3A%2F%2Fyouengage.me
IP 93.184.220.66:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
GET /widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=https%3A%2F%2Fyouengage.me HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 2083190
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sun, 27 Nov 2022 01:00:43 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:59 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
youengage.me/images/2aecb08e.icon.png
34.120.184.123200 OK 16 kB URL HTTP/2 youengage.me/images/2aecb08e.icon.png
IP 34.120.184.123:0
File type PNG image data, 625 x 625, 8-bit/color RGBA, non-interlaced\012- data
Hash f0bfbb9708032668b9ae690de2740b10
84018ccae45155836ee0e0ac0ada99a950d8e08b
02b41ab40c435109012a7505942c392de0e96beb5386b7b58198e0419a8af0e8
Analyzer Verdict Alert quad9 Sinkholed
GET /images/2aecb08e.icon.png HTTP/1.1
Host: youengage.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/p/6344b5808cc3bc01000371d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Sat, 12 Nov 2022 21:13:42 GMT
accept-ranges: bytes
x-cloud-trace-context: 6b9bd1ba83b0333f686bf726eee6bac5
date: Sun, 27 Nov 2022 01:00:43 GMT
server: Google Frontend
content-length: 16460
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 00:08:54 GMT
cache-control: public,max-age=3600
age: 3109
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
youengage.me/views/project/directive-branding-logo.html
34.120.184.123200 OK 516 B URL HTTP/2 youengage.me/views/project/directive-branding-logo.html
IP 34.120.184.123:0
File type exported SGML document, ASCII text, with very long lines (516), with no line terminators
Hash 980cd02ee074e7e32de704a2a0fa60a1
4ef8879d10911480794b0b5fdf88826ab14d5701
0c58ff6927c566fe665e78b3b24dd15811acb4188206eab2e380af553ebc7a5b
Analyzer Verdict Alert quad9 Sinkholed
GET /views/project/directive-branding-logo.html HTTP/1.1
Host: youengage.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/p/6344b5808cc3bc01000371d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Sat, 12 Nov 2022 21:14:27 GMT
accept-ranges: bytes
x-cloud-trace-context: 571854e6a6b40cccb6a85ffeeb3edf3a
date: Sun, 27 Nov 2022 01:00:43 GMT
server: Google Frontend
content-length: 516
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 3e533a83bbf21bb87fad240736b76404
227a0bab463bffffe4f42340dd9fd69d04e9d9ff
a9d92e70f13212b9df7c847552b8e2fc4bd056946d4a3c15596d5f8b6301e828
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5595
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:43 GMT
Last-Modified: Sat, 26 Nov 2022 23:27:28 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2141
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:44 GMT
Last-Modified: Sun, 27 Nov 2022 00:25:04 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/s/gts1d4/54fqyInnByo
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/54fqyInnByo
IP 142.250.74.35:0
Hash 42d6fb2f7e737a011857e6b46efc95da
1aa76b8c94838d8200821d29a320db66743a2b96
3d8b4675cd3bef5da53069e0099e7308d7013dbb83a4a7e975f658a2f2dd284f
POST /s/gts1d4/54fqyInnByo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:44 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/54fqyInnByo
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/54fqyInnByo
IP 142.250.74.35:0
Hash 42d6fb2f7e737a011857e6b46efc95da
1aa76b8c94838d8200821d29a320db66743a2b96
3d8b4675cd3bef5da53069e0099e7308d7013dbb83a4a7e975f658a2f2dd284f
POST /s/gts1d4/54fqyInnByo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:44 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
syndication.twitter.com/settings?session_id=9ebbd4213c0cdbfa708137d4fa08a3cf1e6c0ba5
104.244.42.8200 OK 374 B URL HTTP/2 syndication.twitter.com/settings?session_id=9ebbd4213c0cdbfa708137d4fa08a3cf1e6c0ba5
IP 104.244.42.8:0
File type JSON data\012- , ASCII text, with very long lines (913), with no line terminators
Hash 925c2a7587f39436ea29513221652474
695b7f2f3d99f407bcdfd0b372db0e28193cc60c
62e36e14e5c219119cb51c3cdf43a2005512a1bd6ebf2d68d0c610a2e6e3ef0f
GET /settings?session_id=9ebbd4213c0cdbfa708137d4fa08a3cf1e6c0ba5 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 01:00:43 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Sun, 27 Nov 2022 01:00:44 GMT
content-length: 374
content-encoding: gzip
x-transaction-id: bf807df375b90a50
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 117
x-connection-hash: 35ab5d9494b2a74997200f5c2aa2f432762cac4538cfd71c8a4487fdeb75ca4a
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 27 Nov 2022 00:41:08 GMT
expires: Sun, 27 Nov 2022 02:41:08 GMT
cache-control: public, max-age=7200
age: 1176
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
public.youengage.me/api/v1/query/6344b5808cc3bc01000371d4/questions
34.120.184.123200 OK 14 kB URL HTTP/2 public.youengage.me/api/v1/query/6344b5808cc3bc01000371d4/questions
IP 34.120.184.123:0
File type JSON data\012- , ASCII text, with very long lines (13482), with no line terminators
Hash 6abeda7c09800595bce4954133fb3940
15b7065f02ac92b39ff8f7fc78628730b8345070
296cd395beff0357e955cb15da262f5d4abf57ab3d5cea9dfb64563bd521ac0d
Analyzer Verdict Alert quad9 Sinkholed
GET /api/v1/query/6344b5808cc3bc01000371d4/questions HTTP/1.1
Host: public.youengage.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://youengage.me
vary: Origin
access-control-allow-credentials: true
content-type: application/json; charset=utf-8
content-length: 13482
etag: W/"34aa-FbcGXwKskrOf+Pf8eGKHMLg0UHA"
date: Sun, 27 Nov 2022 01:00:44 GMT
via: 1.1 google
set-cookie: GCLB=CNa4rujhjqPfwAE; path=/; HttpOnly; expires=Mon, 28-Nov-2022 01:00:44 GMT
alt-svc: clear
X-Firefox-Spdy: h2
public.youengage.me/api/v1/query/6344b5808cc3bc01000371d4
34.120.184.123200 OK 6.5 kB URL HTTP/2 public.youengage.me/api/v1/query/6344b5808cc3bc01000371d4
IP 34.120.184.123:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6454), with no line terminators
Hash a2ec1c24db13a1b9bf82a45139ddc9c0
cde958a936b316618100ef0d1aee776dab10d703
9ecfd0e4c53bc615edc1c63f8bfa757761f1f3a8ba96749d3d1bbbcbc16b2e08
Analyzer Verdict Alert quad9 Sinkholed
GET /api/v1/query/6344b5808cc3bc01000371d4 HTTP/1.1
Host: public.youengage.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://youengage.me
vary: Origin
access-control-allow-credentials: true
content-type: application/json; charset=utf-8
content-length: 6456
etag: W/"1938-zelYqTazFmGBAO8NGu53basQ1wM"
date: Sun, 27 Nov 2022 01:00:44 GMT
via: 1.1 google
set-cookie: GCLB=CL_8-rzYwc7fIw; path=/; HttpOnly; expires=Mon, 28-Nov-2022 01:00:44 GMT
alt-svc: clear
X-Firefox-Spdy: h2
youengage.me/views/project/question-startPage.html
34.120.184.123200 OK 7.2 kB URL HTTP/2 youengage.me/views/project/question-startPage.html
IP 34.120.184.123:0
File type exported SGML document, ASCII text, with very long lines (1788)
Hash 4488a920d22b371e9d893225a8495b69
901ee179f5ed3708c138a7576afc46da93ad53c5
add39cd1de2df7e785ae8e3064f962ec3089391e4a52ca1cf66a1cbe7b6900a3
Analyzer Verdict Alert quad9 Sinkholed
GET /views/project/question-startPage.html HTTP/1.1
Host: youengage.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/p/6344b5808cc3bc01000371d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Sat, 12 Nov 2022 21:14:27 GMT
accept-ranges: bytes
x-cloud-trace-context: add0c1dd2ac999c59888859a2475a7cd
date: Sun, 27 Nov 2022 01:00:44 GMT
server: Google Frontend
content-length: 7211
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
public.youengage.me/api/v1/query/6344b5808cc3bc01000371d4/custom-variables
34.120.184.123200 OK 2 B URL HTTP/2 public.youengage.me/api/v1/query/6344b5808cc3bc01000371d4/custom-variables
IP 34.120.184.123:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
Analyzer Verdict Alert quad9 Sinkholed
GET /api/v1/query/6344b5808cc3bc01000371d4/custom-variables HTTP/1.1
Host: public.youengage.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://youengage.me
vary: Origin
access-control-allow-credentials: true
content-type: application/json; charset=utf-8
content-length: 2
etag: W/"2-l9Fw4VUO7kr8CvBlt4zaMCqXZ0w"
date: Sun, 27 Nov 2022 01:00:44 GMT
via: 1.1 google
set-cookie: GCLB=CMquo4i60evzaw; path=/; HttpOnly; expires=Mon, 28-Nov-2022 01:00:44 GMT
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/KYrF5uoMA58
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/KYrF5uoMA58
IP 142.250.74.35:0
Hash 5c92149bd1c4d761a73d3dd42730cbe7
0014597a32bbc8d61024871491dce9b02a399ea1
ca9b6b35e0ca02d7b7549ed1f47c7114616abf5c856ddc78b5a00f44c286a810
POST /s/gts1d4/KYrF5uoMA58 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:44 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.187.102.159101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.102.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 27gZmrN3s+47297N9WgxKg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2XOakH7TLSnoz0raZRNnsAKLKUo=
backend.youengage.me/uploads/themes/4/d/1/6344b5808cc3bc01000371d4_theme.css
34.120.184.123200 OK 5.0 kB URL HTTP/2 backend.youengage.me/uploads/themes/4/d/1/6344b5808cc3bc01000371d4_theme.css
IP 34.120.184.123:0
File type ASCII text, with very long lines (2239)
Hash d0e27d71332221c784c366408b84064a
39935a4bce66d892264b64bee9cf6ea6933e5817
2787e63b64d53ee8ceae7c4f2597418b36937dc02591f2de5b4265e2fc2aa5ac
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/themes/4/d/1/6344b5808cc3bc01000371d4_theme.css HTTP/1.1
Host: backend.youengage.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
vary: Origin
access-control-allow-credentials: true
accept-ranges: bytes
date: Sun, 27 Nov 2022 01:00:44 GMT
cache-control: public, max-age=0
last-modified: Fri, 18 Nov 2022 22:27:04 GMT
etag: W/"1368-4279201713"
content-type: text/css; charset=UTF-8
content-length: 4968
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/klaviyo.js?company_id=UL4WA3
151.101.86.133200 OK 921 B URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=UL4WA3
IP 151.101.86.133:0
File type ASCII text, with very long lines (2028)
Hash f849f278f8493717a5d6cd37473e54c8
a6cf355cee14aeafc487a3c251bb59f99fcf5f1d
9a7922403c73e22efb51bfbcc4d7daedad6a2fd9defdf2719e3b798faa171623
GET /onsite/js/klaviyo.js?company_id=UL4WA3 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, OPTIONS
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
content-type: application/javascript
etag: W/"e32e5c8b3ac7bf68e707aa767ee8420e"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 27 Nov 2022 01:00:44 GMT
age: 273368
x-served-by: cache-lga21979-LGA, cache-bma1651-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1669510844.456830,VS0,VE103
vary: Accept-Encoding
content-length: 921
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://youengage.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 21:48:50 GMT
expires: Thu, 23 Nov 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 270714
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 83cd94ec0579ea37bc7a36e4eadbb091
ddacc7864a773c7440f6235c7aee70ded6579ce1
8f9e3d4fbc26686175f4c560ed23aa3d5a6a14ed01139f6f7cdaf9d542307b3b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6266
Cache-Control: max-age=112859
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:44 GMT
Etag: "6381b41d-117"
Expires: Mon, 28 Nov 2022 08:21:43 GMT
Last-Modified: Sat, 26 Nov 2022 06:37:17 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
static.klaviyo.com/onsite/js/runtime.a8ef631c8b8460d3e957.js?cb=1
151.101.86.133200 OK 8.1 kB URL HTTP/2 static.klaviyo.com/onsite/js/runtime.a8ef631c8b8460d3e957.js?cb=1
IP 151.101.86.133:0
File type ASCII text, with very long lines (19473), with no line terminators
Hash 39e64f56954c42b43cc384cf1e0c3731
bbdf03fbc36e64426dc43bfd1f27d60489d6cddc
a34478f63b3b1bf8961e77fb9f38a154379574973a945fa6690aa1e2162c5fb0
GET /onsite/js/runtime.a8ef631c8b8460d3e957.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LcnloDViSGmngOe1XAQL7J26gE18h4WQdO0khCUtmwOPKeUBg7GZShE/rJMNj97D2SkJ4KVlae8=
x-amz-request-id: GZRPWVEJJ044SSAH
last-modified: Fri, 18 Nov 2022 15:32:15 GMT
etag: "79c90fd1d1397b500594e00805a2ea59"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: R6MP9_b0BhtLI5ZwP6FFsPjCkadN.MZX
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 27 Nov 2022 01:00:44 GMT
age: 273474
x-served-by: cache-lga21968-LGA, cache-bma1632-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 201944
vary: Accept-Encoding
content-length: 8052
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/fender_analytics.42a910303762129b987c.js?cb=1
151.101.86.133200 OK 11 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/fender_analytics.42a910303762129b987c.js?cb=1
IP 151.101.86.133:0
File type ASCII text, with very long lines (27749), with no line terminators
Hash 0cfada57d478d97560b453019c523816
4503f32aa052c4ab0be24d9e3d383ce0ca568b0b
9a6fb085ebc0985e24aad977f126412a763fb7920f819e592e9baa1ff6362708
GET /onsite/js/fender_analytics.42a910303762129b987c.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TVj4JadKocCV4h3NElq7oufjh6VUPmKs/RmMK3GsmHVEIEljMrEcW06e1Di1LhQKmT1Dja0y3h4=
x-amz-request-id: GVJMDN3QM916A9S6
last-modified: Tue, 25 Oct 2022 15:47:53 GMT
etag: "141ae207735ed4c2a3fb9ba628dca228"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: 3uoP2mttpPOUARdp4efml6Pc5m5_bVca
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 27 Nov 2022 01:00:44 GMT
age: 273474
x-served-by: cache-lga21944-LGA, cache-bma1654-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 173872
vary: Accept-Encoding
content-length: 10696
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/static.2a7d6da79b4746dd65dc.js?cb=1
151.101.86.133200 OK 5.2 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/static.2a7d6da79b4746dd65dc.js?cb=1
IP 151.101.86.133:0
File type ASCII text, with very long lines (12470), with no line terminators
Hash e37f3eaaa7977e6460d9dada42028dc1
becb39c0c0ee1c0531730e3c4a56c24bd29075d1
bf2fb0a1407521d637f701a5e34d8fd4c036569ab8ab2788ee43b264b4210ef7
GET /onsite/js/static.2a7d6da79b4746dd65dc.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DRdqDIMtaNuCHiGswJTReVYzua9qr/SUSDGNh0Ozub13IAxj2qsZp/Egcan0SIBk6RYTwd2y1Xo=
x-amz-request-id: GVJT343FGT95KTYV
last-modified: Tue, 25 Oct 2022 15:47:53 GMT
etag: "77892ad2b77ecca4245d2b89d47eed08"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: 7wBZPekhsgwGATIHgi7HH2bztiL97mm4
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 27 Nov 2022 01:00:44 GMT
age: 273474
x-served-by: cache-lga21924-LGA, cache-bma1654-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 177707
vary: Accept-Encoding
content-length: 5239
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/sharedUtils.b9e0df35334cc1e651b6.js?cb=1
151.101.86.133200 OK 14 kB URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.b9e0df35334cc1e651b6.js?cb=1
IP 151.101.86.133:0
File type Unicode text, UTF-8 text, with very long lines (35750), with no line terminators
Hash 1896346c72197b43859e4bfb57e2d85d
93873b55c021a9ef1ad9ef23438ecd45ce966c4e
f9feb00888ace100ce22f082c9817d1023692a04cc07e6b91e6fac6cf15b8d92
GET /onsite/js/sharedUtils.b9e0df35334cc1e651b6.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: UjdIdiHtl2D/aiNrgKDEOoJSfB0lTAHDB1dnDJUv3a454ad/xltT5fkAtEvJZtVBdM8AH0pvqUA=
x-amz-request-id: YQX2RCWFWYNCFA5N
last-modified: Fri, 11 Nov 2022 00:12:58 GMT
etag: "10241c59a86c7928f90d45a55b13bc7c"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: O4eT1_jDn59DvpPe9ex9946DLSV9H08f
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 27 Nov 2022 01:00:44 GMT
age: 273474
x-served-by: cache-lga21973-LGA, cache-bma1632-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 184205
vary: Accept-Encoding
content-length: 13847
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 77b4e096caa381b6c35145231699afbc
b2fd940ca43dcda7dbd3dad92d8d46976f9be7a7
78f52bdc0cddd8b831ae2f6ccd9dcd683f9a08b083cb14a6a057770d2389d685
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6500
Cache-Control: max-age=153416
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:45 GMT
Etag: "638251a1-117"
Expires: Mon, 28 Nov 2022 19:37:41 GMT
Last-Modified: Sat, 26 Nov 2022 17:49:21 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
region1.analytics.google.com/g/collect?v=2&tid=G-Q41VPLKTTC>m=2oeb90&_p=414462940&_gaz=1&cid=1888414717.1669510844&ul=en-us&sr=1280x1024&_s=1&sid=1669510844&sct=1&seg=0&dl=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&dt=Personalized%20gourmet%20gifts&en=page_view&_fv=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-Q41VPLKTTC>m=2oeb90&_p=414462940&_gaz=1&cid=1888414717.1669510844&ul=en-us&sr=1280x1024&_s=1&sid=1669510844&sct=1&seg=0&dl=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&dt=Personalized%20gourmet%20gifts&en=page_view&_fv=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-Q41VPLKTTC>m=2oeb90&_p=414462940&_gaz=1&cid=1888414717.1669510844&ul=en-us&sr=1280x1024&_s=1&sid=1669510844&sct=1&seg=0&dl=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&dt=Personalized%20gourmet%20gifts&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://youengage.me
date: Sun, 27 Nov 2022 01:00:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-Q41VPLKTTC&cid=1888414717.1669510844>m=2oeb90&aip=1
142.250.150.156204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-Q41VPLKTTC&cid=1888414717.1669510844>m=2oeb90&aip=1
IP 142.250.150.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-Q41VPLKTTC&cid=1888414717.1669510844>m=2oeb90&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://youengage.me
date: Sun, 27 Nov 2022 01:00:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 77b4e096caa381b6c35145231699afbc
b2fd940ca43dcda7dbd3dad92d8d46976f9be7a7
78f52bdc0cddd8b831ae2f6ccd9dcd683f9a08b083cb14a6a057770d2389d685
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6500
Cache-Control: max-age=153416
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:45 GMT
Etag: "638251a1-117"
Expires: Mon, 28 Nov 2022 19:37:41 GMT
Last-Modified: Sat, 26 Nov 2022 17:49:21 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
forms.hubspot.com/collected-forms/v1/config/json?portalId=22224354&utk=
104.19.155.83200 OK 46 kB URL HTTP/2 forms.hubspot.com/collected-forms/v1/config/json?portalId=22224354&utk=
IP 104.19.155.83:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b1e23bee36f732cdd2443d0210d01bbf
5aebe3fdb823513f0017ce8482f157ec4241898f
183d3afa1a1c75fe8c6737272cdd47406d9a46b918cd0eee3ee15cc4e61cfb48
GET /collected-forms/v1/config/json?portalId=22224354&utk= HTTP/1.1
Host: forms.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 01:00:45 GMT
content-type: application/json;charset=utf-8
vary: origin
x-hubspot-correlation-id: b268d468-8e09-4778-aae7-f644c6832b58
access-control-allow-credentials: false
access-control-allow-origin: https://youengage.me
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=xHdmLbWgpcDSynPvi7oM7rD0v.vMhjrqSaIeRflJhL8-1669510845-0-ARHaVtpEqofyLv4zNgEQ0OrdJcVe63CwDYED4MZyygLLvOq9gG4QQWJq+W7gdgjCrnMkHIwKemUzaXGT4667+00=; path=/; expires=Sun, 27-Nov-22 01:30:45 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c7XTacRYjS5qBNO0S3BXrF7PPm1MloL00rSstAiszWvgkZgROlxUvYTMdX0WPZVMiHh%2Fn5t44yvBlitQU%2Fuzza5f5BkB30sqDQwSlI0nt8Wn2EY4VSgg%2Fz%2BB6SAyLfM%2BVYag"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7706edbe0fd8b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.121200 OK 4.6 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.121:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (12961)
Hash c1a25b303b61b25e995516f5559bcdea
3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=64910
date: Sun, 27 Nov 2022 01:00:45 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 8e8eb95c73dd45c16d333aad08a85ee2
015b09ce97050aeca3e80743a922573e8eb86f81
7363380d4dd3265ee78ff1f9611d3ed0c3ab9ff55a74b77d620604db8b5587e8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1329
Cache-Control: max-age=165869
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:45 GMT
Etag: "63829679-2d7"
Expires: Mon, 28 Nov 2022 23:05:14 GMT
Last-Modified: Sat, 26 Nov 2022 22:43:05 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 727
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash d3c9b092aee5820bdab6595daad65d61
89e983faeedf25b3e15696f9bf6dbf76feb07868
58d24c4dde4a578c2c0191a19a5a42bdcb5be03b21a1907f60c8deaee78b7331
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ae452333438465bef0a71a80768855a0
dae89646a66487e12b6dba40b7796c4b608506bd
dc15bc4a1e175a446f69fedc8475164a75477dd7a455b044f0ca85884f873917
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4862
Cache-Control: max-age=97376
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:45 GMT
Etag: "63817d1f-1d7"
Expires: Mon, 28 Nov 2022 04:03:41 GMT
Last-Modified: Sat, 26 Nov 2022 02:42:39 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Sun, 27 Nov 2022 01:00:45 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1626-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
cdn.mxpnl.com/libs/mixpanel-js-wrapper.js
130.211.5.208200 OK 6.6 kB URL HTTP/2 cdn.mxpnl.com/libs/mixpanel-js-wrapper.js
IP 130.211.5.208:0
File type ASCII text, with very long lines (501)
Hash 2fcd4b5a41af18b592774f266a0dc591
01300cc2fe7f5b953dbcbdc90bebc5e48232955c
f7f3e6ee42d0056db510a3c59bb5f0de8015e0f7699ef5a238f775c415e8991a
GET /libs/mixpanel-js-wrapper.js HTTP/1.1
Host: cdn.mxpnl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvG-77hNBgHn5-4hggmv2h-xy2QPU_ewwl26QzDB1VpXkxtQZi4Qr6xcl2U5I1SnbIbwJ2Q0jgMvCpchWgGyeEFPg
x-goog-generation: 1640032597520874
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 6622
x-goog-hash: crc32c=4kYBnQ==, md5=L81LWkGvGLWSd08mag3FkQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6622
access-control-allow-origin: *
server: UploadServer
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
date: Sun, 27 Nov 2022 00:33:11 GMT
expires: Sun, 27 Nov 2022 01:33:11 GMT
cache-control: public, max-age=3600
age: 1654
last-modified: Mon, 20 Dec 2021 20:36:37 GMT
etag: "2fcd4b5a41af18b592774f266a0dc591"
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-Q41VPLKTTC&cid=1888414717.1669510844>m=2oeb90&aip=1&z=1072231798
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-Q41VPLKTTC&cid=1888414717.1669510844>m=2oeb90&aip=1&z=1072231798
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-Q41VPLKTTC&cid=1888414717.1669510844>m=2oeb90&aip=1&z=1072231798 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 01:00:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.200200 OK 11 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39007), with no line terminators
Hash 22e2e3226eb5ada04929a2e43307eeda
04615fa88f80567974bdeb0f103ca5909746ebd7
41feebdfb0b03cd7fee2eb886adef6f3f1f85d3f14215e9a388d2a50e42efb9b
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11421
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 09 Nov 2022 21:23:50 GMT
accept-ranges: bytes
etag: "077538f81f4d81:0"
vary: Accept-Encoding
set-cookie: MUID=0994FF259CF761120794ED4C9DA060BB; domain=.bing.com; expires=Fri, 22-Dec-2023 01:00:45 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3EF6370D321B48F8AC2DCD1FA64F68A4 Ref B: OSL30EDGE0421 Ref C: 2022-11-27T01:00:45Z
date: Sun, 27 Nov 2022 01:00:44 GMT
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: zncBLqwe/KZAiPaJ7soWfWy6gZmqAXPNeNYrc8fwyFyv5TwKb9ShmZFpEcn38x+SbRMeVBzEUjiYn37bAK7tDQ==
content-length: 27340
x-fb-trip-id: 1904183273
date: Sun, 27 Nov 2022 01:00:45 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 8e8eb95c73dd45c16d333aad08a85ee2
015b09ce97050aeca3e80743a922573e8eb86f81
7363380d4dd3265ee78ff1f9611d3ed0c3ab9ff55a74b77d620604db8b5587e8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1329
Cache-Control: max-age=165869
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:45 GMT
Etag: "63829679-2d7"
Expires: Mon, 28 Nov 2022 23:05:14 GMT
Last-Modified: Sat, 26 Nov 2022 22:43:05 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ae452333438465bef0a71a80768855a0
dae89646a66487e12b6dba40b7796c4b608506bd
dc15bc4a1e175a446f69fedc8475164a75477dd7a455b044f0ca85884f873917
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4862
Cache-Control: max-age=97376
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:45 GMT
Etag: "63817d1f-1d7"
Expires: Mon, 28 Nov 2022 04:03:41 GMT
Last-Modified: Sat, 26 Nov 2022 02:42:39 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
s.pinimg.com/ct/core.js
23.38.200.197200 OK 1.1 kB IP 23.38.200.197:0
File type ASCII text, with very long lines (1146), with no line terminators
Hash 8d9d0550c915347e312e24f00d311e50
cb44712b22cb011b759da4e741b543238839c735
57d73d188a6162bec272876156addbd7b02a2c6941c45653b8d3453e998e0b5b
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "8d9d0550c915347e312e24f00d311e50"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
143.204.55.101200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP 143.204.55.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SwLJuBOLmNa2T-Ko1zD9JGFBcz5Jr_3oPJRJ5CxPwd8sw_rhXm5R7Q==
age: 301839
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 5e2195a89bc40a0f86d65f5bd37b2800
73fffbca1a817efcd4e556889943ad7ae52d1289
33b9d87931b2eca381bbbd0dbf9870f04faba4f54b151fb56ee1f7efdbfb6655
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2997
Cache-Control: max-age=128635
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:45 GMT
Etag: "6381fe83-139"
Expires: Mon, 28 Nov 2022 12:44:40 GMT
Last-Modified: Sat, 26 Nov 2022 11:54:43 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6589
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sun, 27 Nov 2022 01:00:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6589
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sun, 27 Nov 2022 01:00:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6589
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sun, 27 Nov 2022 01:00:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6589
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sun, 27 Nov 2022 01:00:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6589
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sun, 27 Nov 2022 01:00:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6ee5071a31d351c552aa651e40b16189
6fca9136030ea6f67be44e428ea39c34ff3e28e7
8d52f14267b8bd47119954796ff6c5d54eb6aa5d23c6e8bbd246108a5b89c1d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8254
x-amzn-requestid: e12624ea-58c6-4f39-826c-8a1d87ebc5ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFySQGegIAMF-HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637efda7-2c5e216a0d8a1502615186a8;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 05:14:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0Ylris3tg94-66p8L5kYl2zgnVZ4mCc04ju96DslaB97Dfr-6nTyfA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
age: 11911
etag: "6fca9136030ea6f67be44e428ea39c34ff3e28e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2212cf75f99dc67fd45db47f7101d754
4b4a8c8e8aeccfff25d2748720dcef8fed287126
7b2d2e302faba8f273b51031fa48b444cb7839733b90e8c9d077ca63637320d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6954
x-amzn-requestid: 94a02687-72f2-4796-a7ea-d3f28b412566
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1jHpGBVIAMFsSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63787efd-22666b18283ae59b1348bf47;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 07:00:13 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: feZayJeKq9jWHQ-rjutNr6buIjLVeIdY0A_ZeGo6NKgoQ6BBT3XQaw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 22:22:57 GMT
age: 9468
etag: "4b4a8c8e8aeccfff25d2748720dcef8fed287126"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
js.hscollectedforms.net/collectedforms.js
104.17.128.171200 OK 30 kB URL HTTP/2 js.hscollectedforms.net/collectedforms.js
IP 104.17.128.171:0
File type Unicode text, UTF-8 text, with very long lines (65392), with no line terminators
Hash 5f11f83ff464b3f9b9cd919d5a5dd1be
cb076412d49ffd8ef0243033ecb418f3fd6a8f67
4a6d512cb9ab800394aca0910ab8f44e01e64fbc4da67998a1cc0f772bebe0bf
GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 01:00:45 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Wed, 16 Nov 2022 03:41:33 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: _5EZs_H26Fc6JgVRh7ahoi0orqifRkcW
etag: W/"59a69a76233d8365d7266548d5703c09"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3042bd56e0ca0a7910df89f6b5e95e9e.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: tpwaTeI7juG2CPtnChVRmpIsRgAewPF0OthhHKvJctLUhyibZBTp6g==
cache-control: s-maxage=600, max-age=300
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=collected-forms-embed-js/static-1.311/bundles/project.js&cfRay=7706edbbc9250b31-IAD
x-hs-target-asset: collected-forms-embed-js/static-1.311/bundles/project.js
access-control-allow-origin: *
x-hs-cache-status: HIT
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: MISS
server: cloudflare
cf-ray: 7706edbbc9250b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
age: 11911
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1db6041a0bdb2319ae85afcc30caaeec
3b0ec6a7188dadf986f72fda8110296d9abd6f35
05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: y0ofyT6UcPjB8mfRR1VMjHSTW64Qb_EQ0rrjsOdbby1CG-xMIFJMPw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:49:19 GMT
age: 11486
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F661e728e-05a1-40d9-ae81-c058443324b3.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F661e728e-05a1-40d9-ae81-c058443324b3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 892849386662d30042f01ab952a3ec14
3b349ac17a00d68875e64bee110ec85d07cffda2
893797d55f15081d45af7a31af9fefe106ace9ba236e9b113787d07ab416faf9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F661e728e-05a1-40d9-ae81-c058443324b3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9926
x-amzn-requestid: 4e2c72af-2cce-4740-9962-6a7f9e217272
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b_cVCHwEoAMF3lQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c7420-51c2e04b4fae5b576a679db5;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 07:02:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rZTk5ONMhQB66WF0VWIRmlTOdzEJO-NJVl4TCibzbH2fZXY_9Mx9kQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 18:42:19 GMT
age: 22706
etag: "3b349ac17a00d68875e64bee110ec85d07cffda2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
res.cloudinary.com/youengage/image/upload/f_auto,fl_lossy,q_auto,w_1280,h_939,c_fit,dpr_1.0,e_blur:500/console/633e10228cc3bc0100034454.png
151.101.85.137200 OK 16 kB URL HTTP/2 res.cloudinary.com/youengage/image/upload/f_auto,fl_lossy,q_auto,w_1280,h_939,c_fit,dpr_1.0,e_blur:500/console/633e10228cc3bc0100034454.png
IP 151.101.85.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x724, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash de2bcd41ec0c5f420940062665548e18
dec318693cfc80364856ced482fcdcfb9a008a12
bf27ea83006def61259b6306184e039f5d11526c87f0ab63d39fb326bd071c0e
GET /youengage/image/upload/f_auto,fl_lossy,q_auto,w_1280,h_939,c_fit,dpr_1.0,e_blur:500/console/633e10228cc3bc0100034454.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="633e10228cc3bc0100034454.webp"
content-type: image/webp
etag: "de2bcd41ec0c5f420940062665548e18"
last-modified: Sun, 27 Nov 2022 01:00:46 GMT
x-request-id: a12e38d4a495ebd8e04a341f0455f85c
date: Sun, 27 Nov 2022 01:00:45 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1423;cpu=1;start=2022-11-27T01:00:44.313Z;desc=miss,rtt;dur=17,cloudinary;dur=964;start=2022-11-27T01:00:44.637Z,cld-id;desc=a12e38d4a495ebd8e04a341f0455f85c
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 15670
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=fc7480cc-c029-4a13-8bef-152057e6f7dc&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=0ee3c579-d5cd-4b2e-983a-86befdeca957&tw_document_href=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7fr5&type=javascript&version=2.3.29
104.244.42.5200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=fc7480cc-c029-4a13-8bef-152057e6f7dc&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=0ee3c579-d5cd-4b2e-983a-86befdeca957&tw_document_href=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7fr5&type=javascript&version=2.3.29
IP 104.244.42.5:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=fc7480cc-c029-4a13-8bef-152057e6f7dc&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=0ee3c579-d5cd-4b2e-983a-86befdeca957&tw_document_href=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7fr5&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 01:00:45 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=59eeeaa6-fc37-4fa1-9444-8210186cc8bf; Max-Age=63072000; Expires=Tue, 26 Nov 2024 01:00:45 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 8291757dc93b81d6
strict-transport-security: max-age=0
x-response-time: 106
x-connection-hash: 4351b32c3ebd8e8ebbde352b21edcd936d679e5f56c85eeb71b3d561e1aa3316
X-Firefox-Spdy: h2
script.hotjar.com/modules.e1bdbadbcc63daea6270.js
143.204.55.40200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.e1bdbadbcc63daea6270.js
IP 143.204.55.40:0
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 53db6c810ee48127f87a9c79e206fc67
aa53e521ba10b23524afc519c6e6ba8d1eb5147c
f89c4d3c17828a5c54ecc60f5107e2bfe92cb8b4622fb766fda6d1fca1c95fdd
GET /modules.e1bdbadbcc63daea6270.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68720
date: Thu, 24 Nov 2022 08:09:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "53db6c810ee48127f87a9c79e206fc67"
last-modified: Thu, 24 Nov 2022 08:08:08 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3gCCC0stBXdn4X4DjhPZ9JxZ4wYQ7j-rzaC6yMQeHS9cRH6ObQiPlA==
age: 233499
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=52001968&tm=gtm002&Ver=2&mid=3e5aa6ee-074b-4e6e-a545-22490f059a4a&sid=ec668e106dee11ed970ff77f9121e400&vid=ec66b5806dee11eda5b4adcbcf903ba4&vids=1&msclkid=N>m_tag_source=1&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Personalized%20gourmet%20gifts&p=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&r=<=1081&evt=pageLoad&sv=1&rn=224503
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=52001968&tm=gtm002&Ver=2&mid=3e5aa6ee-074b-4e6e-a545-22490f059a4a&sid=ec668e106dee11ed970ff77f9121e400&vid=ec66b5806dee11eda5b4adcbcf903ba4&vids=1&msclkid=N>m_tag_source=1&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Personalized%20gourmet%20gifts&p=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&r=<=1081&evt=pageLoad&sv=1&rn=224503
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=52001968&tm=gtm002&Ver=2&mid=3e5aa6ee-074b-4e6e-a545-22490f059a4a&sid=ec668e106dee11ed970ff77f9121e400&vid=ec66b5806dee11eda5b4adcbcf903ba4&vids=1&msclkid=N>m_tag_source=1&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Personalized%20gourmet%20gifts&p=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&r=<=1081&evt=pageLoad&sv=1&rn=224503 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=27C763F0DF206A4B18327199DE776BB6; domain=.bing.com; expires=Fri, 22-Dec-2023 01:00:45 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 246583AF0A9546B5904F35FCE54B1353 Ref B: OSL30EDGE0421 Ref C: 2022-11-27T01:00:45Z
date: Sun, 27 Nov 2022 01:00:44 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 34a2ae73c45783e61c78c40d26a75a0e
12fd141729517b33c8d6648c55a567e919f15491
9e6d47e2c435d849a8e0976090da1b4cc52b91d31087aad48f18953d0364d69f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2184
Cache-Control: max-age=168852
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:45 GMT
Etag: "63829ec9-13a"
Expires: Mon, 28 Nov 2022 23:54:57 GMT
Last-Modified: Sat, 26 Nov 2022 23:18:33 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 314
s.pinimg.com/ct/lib/main.9a94ee76.js
23.38.200.197200 OK 21 kB URL HTTP/2 s.pinimg.com/ct/lib/main.9a94ee76.js
IP 23.38.200.197:0
File type Unicode text, UTF-8 text, with very long lines (59858), with no line terminators
Hash e43867aadc515024dd460d8611098a12
c4fd1b2ace2f8a96a38e4b4996be8d7c46fdfd3f
76d528cb411bf6ff7fd77619aa507bec3bdf7f02063add1d9fe9009088f78d98
GET /ct/lib/main.9a94ee76.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "e43867aadc515024dd460d8611098a12"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 20728
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
bat.bing.com/p/action/52001968.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/52001968.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/52001968.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=0B96BF502E4B617F276EAD392F1C607E; domain=.bing.com; expires=Fri, 22-Dec-2023 01:00:45 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8B1AD5DC103A47F7AA09A97CCF20B09B Ref B: OSL30EDGE0421 Ref C: 2022-11-27T01:00:45Z
date: Sun, 27 Nov 2022 01:00:44 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 30f833b25d6e5af2229d9584c6f6cf97
ee79c3fa994d53c1d0687ca61353d63cce459e25
1bc091991c4663dbc86ae735e47ddc3e887a24661050ad9f24b8d458bfd11a6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.clarity.ms/eus2/s/0.6.43/clarity.js
13.107.238.53200 OK 55 kB URL HTTP/2 www.clarity.ms/eus2/s/0.6.43/clarity.js
IP 13.107.238.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (55029)
Hash 441723b72633b1ac9757ad7c63168005
806166ca9ebb5839dd90a5e5c9335e3e0b18c169
cc8a16ce849d72f106bd67187e4b60c20da3093375202bf0b53f23e8f40a8b11
GET /eus2/s/0.6.43/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-length: 55116
content-type: application/javascript;charset=utf-8
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8fceb15c2864c"
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-cache: CONFIG_NOCACHE
x-azure-ref: 0vbaCYwAAAADM37jED/yQSagvvBJ3O0clQ1BIMzBFREdFMDQwOQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Sun, 27 Nov 2022 01:00:44 GMT
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=498B3BAB83794099821BC2EA810EC352&RedC=c.clarity.ms&MXFR=106EC644402060B83874D42D44206E77
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=106EC644402060B83874D42D44206E77; domain=.clarity.ms; expires=Fri, 22-Dec-2023 01:00:45 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Sun, 27 Nov 2022 01:00:45 GMT
content-length: 0
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-213368891-1&cid=1888414717.1669510844&jid=1024272978&_u=aEDAAEABQAAAACAAI~&z=144100522
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-213368891-1&cid=1888414717.1669510844&jid=1024272978&_u=aEDAAEABQAAAACAAI~&z=144100522
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-213368891-1&cid=1888414717.1669510844&jid=1024272978&_u=aEDAAEABQAAAACAAI~&z=144100522 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 01:00:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
vc.hotjar.io/sessions/2707984?s=0.25&r=0.09519315609715917
54.230.111.91204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/2707984?s=0.25&r=0.09519315609715917
IP 54.230.111.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/2707984?s=0.25&r=0.09519315609715917 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Sun, 27 Nov 2022 01:00:45 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: id_rec1rEfepO9GTwcCo_zg7YmHpKybqlZdRo1TB6Ejvjyr9-VmX5g==
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3690988&time=1669510845366&url=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=3690988&time=1669510845366&url=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=3690988&time=1669510845366&url=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4 HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3690988%26time%3D1669510845366%26url%3Dhttps%253A%252F%252Fyouengage.me%252Fp%252F6344b5808cc3bc01000371d4%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJvvA8m9oV0VgAAAYS2mdXPNFyACNsvOweV1IlyILLQXz_vhmwiVliu6hPfc6pb0-_5XRYM4_4lqA; Max-Age=2592000; Expires=Tue, 27 Dec 2022 01:00:45 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKl27qmqc83BQAAAYS2mdXPQYuSUSqHYPeAUlvLKkfEZxuMG1TifQT3hr9yGGnyeJnlvL93eIctm0NsXuDaqw; Max-Age=2592000; Expires=Tue, 27 Dec 2022 01:00:45 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&87fec20e-e397-437c-81a1-d5a5231805b5"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 27-Nov-2023 01:00:45 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2378:u=1:x=1:i=1669510845:t=1669597245:v=2:sig=AQG5laBz1r_JPcl8q6HAt163NbOuWVtS"; Expires=Mon, 28 Nov 2022 01:00:45 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXuaUjrEZ/2KuWJA6p/aw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 2F15F5A49AB2443080581DD9620B4463 Ref B: OSL30EDGE0117 Ref C: 2022-11-27T01:00:45Z
date: Sun, 27 Nov 2022 01:00:45 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=fc7480cc-c029-4a13-8bef-152057e6f7dc&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=0ee3c579-d5cd-4b2e-983a-86befdeca957&tw_document_href=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7fr5&type=javascript&version=2.3.29
104.244.42.67200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=fc7480cc-c029-4a13-8bef-152057e6f7dc&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=0ee3c579-d5cd-4b2e-983a-86befdeca957&tw_document_href=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7fr5&type=javascript&version=2.3.29
IP 104.244.42.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=fc7480cc-c029-4a13-8bef-152057e6f7dc&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=0ee3c579-d5cd-4b2e-983a-86befdeca957&tw_document_href=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7fr5&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 01:00:45 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_lgKgBVq/siXLSgstcqEv4w=="; Max-Age=63072000; Expires=Tue, 26 Nov 2024 01:00:45 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 8b4d9de5307bc5eb
strict-transport-security: max-age=631138519
x-response-time: 102
x-connection-hash: 9fe9ca006f7c6f1d820d95a1ad6d8a5968173b42cc625a22554e672b01678e6d
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=498B3BAB83794099821BC2EA810EC352&RedC=c.clarity.ms&MXFR=106EC644402060B83874D42D44206E77
204.79.197.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=498B3BAB83794099821BC2EA810EC352&RedC=c.clarity.ms&MXFR=106EC644402060B83874D42D44206E77
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=498B3BAB83794099821BC2EA810EC352&RedC=c.clarity.ms&MXFR=106EC644402060B83874D42D44206E77 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://youengage.me/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=498B3BAB83794099821BC2EA810EC352&MUID=3288E9EE8437606B04C6FB8785606104
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=3288E9EE8437606B04C6FB8785606104; domain=c.bing.com; expires=Fri, 22-Dec-2023 01:00:46 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 04FFE06974EF477A983945A516F49EE5 Ref B: OSL30EDGE0421 Ref C: 2022-11-27T01:00:45Z
date: Sun, 27 Nov 2022 01:00:45 GMT
content-length: 0
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/3690988/domain/youengage.me/token
54.230.111.112200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/3690988/domain/youengage.me/token
IP 54.230.111.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/3690988/domain/youengage.me/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://youengage.me/
Origin: https://youengage.me
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Sun, 27 Nov 2022 01:00:45 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6rGnBCEkZQDkMMwwWSynfLUnjMzLCxEHzhsuPiDf3Sx_U8jIiaJkrg==
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=498B3BAB83794099821BC2EA810EC352&MUID=3288E9EE8437606B04C6FB8785606104
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=498B3BAB83794099821BC2EA810EC352&MUID=3288E9EE8437606B04C6FB8785606104
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=498B3BAB83794099821BC2EA810EC352&MUID=3288E9EE8437606B04C6FB8785606104 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://youengage.me/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Thu, 13 Oct 2022 20:07:05 GMT
accept-ranges: bytes
etag: "40db785d3fdfd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Sun, 27-Nov-2022 01:10:46 GMT; path=/; SameSite=None; Secure;
date: Sun, 27 Nov 2022 01:00:45 GMT
content-length: 42
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2613643518370&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1669510845797&dep=2%2CPAGE_LOAD
23.38.200.197200 OK 373 B URL HTTP/2 ct.pinterest.com/user/?tid=2613643518370&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1669510845797&dep=2%2CPAGE_LOAD
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash 7c95bf1e7580e7dfa7f4f5c10b0addd9
a1e3954cd6a0d4a5fc0a6c344d91e6c24504722b
1f8cb83a1e4eedc470a6d0c6acc5f5ff13fa65639378a8a14d5db82e288b2e17
GET /user/?tid=2613643518370&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1669510845797&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVpESm1aVE5oT1dFdFpUWmlOeTAwTkRreUxUbGpOR010WWprMlpqVmxZMkk1WVRVNQ
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://youengage.me
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 373
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 1239847761726297
date: Sun, 27 Nov 2022 01:00:46 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1669510846.20416a90
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613643518370&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%229a94ee76%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1669510845798
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613643518370&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%229a94ee76%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1669510845798
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613643518370&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%229a94ee76%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1669510845798 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1121790345229023
date: Sun, 27 Nov 2022 01:00:46 GMT
akamai-grn: 0.274f2417.1669510846.20416aca
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 0179baf5ec5e7b83a87754b610733eea
2a8cde6961b030ae16954fcb196a86b4b36fd70b
aed0c506abbc2b33decadb4b2d5ef82e3cff474b48bce5ebe8cce1294435cae1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=144717
Date: Sun, 27 Nov 2022 01:00:46 GMT
Etag: "63822fdf-1d7"
Expires: Mon, 28 Nov 2022 17:12:43 GMT
Last-Modified: Sat, 26 Nov 2022 15:25:19 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2jjRpd-MizClkKHMW6BBD44L2BoMQj9Qf8XcL_Y3W91JPt5mM1iGCQ==
Age: 6444
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3690988%26time%3D1669510845366%26url%3Dhttps%253A%252F%252Fyouengage.me%252Fp%252F6344b5808cc3bc01000371d4%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3690988%26time%3D1669510845366%26url%3Dhttps%253A%252F%252Fyouengage.me%252Fp%252F6344b5808cc3bc01000371d4%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3690988%26time%3D1669510845366%26url%3Dhttps%253A%252F%252Fyouengage.me%252Fp%252F6344b5808cc3bc01000371d4%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://youengage.me/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=3690988&time=1669510845366&url=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&26f12a81-aa6f-46f8-8b3a-666664d3b3b7"; Domain=.linkedin.com; Expires=Mon, 27-Nov-2023 01:00:46 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20221127010046966fcb8a-d5ef-4a2f-8c31-1df587e9548cAQEChY89MNA8jPN8bL-ut8cPf8lxcLBZ"; Domain=.www.linkedin.com; Expires=Mon, 27-Nov-2023 01:00:46 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2Njk1MTA4NDY7MjswMjEm24IeqDAvqY/93F9MPyGicxdn3VqK1dKDL2kCol78Mg==; Domain=.linkedin.com; Expires=Fri, 26 May 2023 01:00:46 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2420:u=1:x=1:i=1669510846:t=1669597246:v=2:sig=AQH5wZ9X0eDqwix9q6Oa3Qb92Qwd7nmd"; Expires=Mon, 28 Nov 2022 01:00:46 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXuaUjt4OpvLe5mFKqegw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: BCC9F04399AF4BAEBA61A0CC0ADBD09A Ref B: OSL30EDGE0117 Ref C: 2022-11-27T01:00:46Z
date: Sun, 27 Nov 2022 01:00:45 GMT
content-length: 0
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=525875488542939&ev=PageView&dl=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&rl=&if=false&ts=1669510845993&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22221458696860831%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22721454209014907%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1669510845992.821688918&it=1669510845421&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=525875488542939&ev=PageView&dl=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&rl=&if=false&ts=1669510845993&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22221458696860831%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22721454209014907%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1669510845992.821688918&it=1669510845421&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=525875488542939&ev=PageView&dl=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&rl=&if=false&ts=1669510845993&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22221458696860831%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22721454209014907%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1669510845992.821688918&it=1669510845421&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 27 Nov 2022 01:00:46 GMT
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
23.38.200.197200 OK 323 B IP 23.38.200.197:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 5444138536625115
date: Sun, 27 Nov 2022 01:00:46 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1669510846.20416cf3
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3690988&time=1669510845366&url=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=3690988&time=1669510845366&url=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=3690988&time=1669510845366&url=https%3A%2F%2Fyouengage.me%2Fp%2F6344b5808cc3bc01000371d4&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://youengage.me/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&e0936271-3579-49a6-8309-f9d617f91c5d"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 27-Nov-2023 01:00:46 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2435:u=1:x=1:i=1669510846:t=1669597246:v=2:sig=AQGMX16S2g73QkWbo503RgQ2oR3rMwDm"; Expires=Mon, 28 Nov 2022 01:00:46 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXuaUjwLxmJADm+yQfz6w==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: BA70AFA2B71645FF8FE21EB6A1756989 Ref B: OSL30EDGE0117 Ref C: 2022-11-27T01:00:46Z
date: Sun, 27 Nov 2022 01:00:45 GMT
content-length: 0
X-Firefox-Spdy: h2
ws7.hotjar.com/api/v2/client/ws
52.211.199.18101 Switching Protocols 0 B URL HTTP/1.1 ws7.hotjar.com/api/v2/client/ws
IP 52.211.199.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v2/client/ws HTTP/1.1
Host: ws7.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://youengage.me
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: V5n6Z6FLOGZTlp8B+86H2Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 27 Nov 2022 01:00:46 GMT
Content-Type: application/octet-stream
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UZFrvy+t2l6gPxHqFyLPGTXGQbU=
Sec-WebSocket-Extensions: permessage-deflate
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 9549
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://youengage.me
access-control-allow-credentials: true
date: Sun, 27 Nov 2022 01:00:45 GMT
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/2707984/visit-data?sv=7
63.34.182.251200 OK 130 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/2707984/visit-data?sv=7
IP 63.34.182.251:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3ac5a1abb0b1156eb94593de38e35ee8
9118cc2bc5d0509b6767bf1e98c41daa4760f2fe
9cfd20c9bc14e494dbc0f213bc0132f4982b5b6b092fa36c8d086f45d781765a
POST /api/v2/client/sites/2707984/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 112
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 01:00:46 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 699
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://youengage.me
access-control-allow-credentials: true
date: Sun, 27 Nov 2022 01:00:46 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 146 kB IP 93.184.220.29:0
File type gzip compressed data, from Unix\012- data
Size 146 kB (146196 bytes)
Hash d425c553b9fd2ee71c7879671e71019c
6721b3cb867005ea90fb3437d3514dd424095ce6
7fbe8c8f32fc2b8a8b673f52a0fc041a4e1aa491bf8e79ef9e94f86ca3e08fdd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5917
Cache-Control: max-age=123305
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 01:00:50 GMT
Etag: "6381de4e-1d7"
Expires: Mon, 28 Nov 2022 11:15:55 GMT
Last-Modified: Sat, 26 Nov 2022 09:37:18 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
api-js.mixpanel.com/track/?verbose=1&ip=1&_=1669510850673
35.186.241.51200 OK 25 B URL HTTP/2 api-js.mixpanel.com/track/?verbose=1&ip=1&_=1669510850673
IP 35.186.241.51:0
File type JSON data\012- , ASCII text, with no line terminators
Hash fa4859df2aaba80141861afa205fe74e
d486b5a249527d022cc009bdc9c197efb66f23a2
e39a8118ec6cdf6ac33e6961518e9fe6ba3f6caf099aeeaec1389c2108ba90ba
POST /track/?verbose=1&ip=1&_=1669510850673 HTTP/1.1
Host: api-js.mixpanel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2588
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: https://youengage.me
access-control-expose-headers: X-MP-CE-Backoff
access-control-max-age: 1728000
cache-control: no-cache, no-store
content-type: application/json
strict-transport-security: max-age=604800; includeSubDomains
date: Sun, 27 Nov 2022 01:00:50 GMT
content-length: 25
x-envoy-upstream-service-time: 17
server: envoy
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:regular:400:500:600
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins:regular:400:500:600
IP 142.250.74.10:0
GET /css?family=Poppins:regular:400:500:600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 01:00:44 GMT
date: Sun, 27 Nov 2022 01:00:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2707984.js?sv=7
143.204.55.84200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2707984.js?sv=7
IP 143.204.55.84:0
GET /c/hotjar-2707984.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 01:00:45 GMT
cache-control: max-age=60
etag: W/7fae1f5c8bf48971be673d02287402ee
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8Vc3BnNaFeXTR1UKJziiUwpY46x_-pHFKSzvhapPyrJ5H6ErLtInPg==
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1669510800000/22224354.js
104.17.68.176200 OK 0 B URL HTTP/2 js.hs-analytics.net/analytics/1669510800000/22224354.js
IP 104.17.68.176:0
GET /analytics/1669510800000/22224354.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 01:00:45 GMT
content-type: text/javascript
x-amz-id-2: 9CCZEDgQGxR2EegQ/PP7j5kE7cjCq0I8vbHjQ5DbAhOB+ZqaLeU1AeaR7xg1LxQBgD825KeFprw=
x-amz-request-id: 9YT3MPQFP1AX4Y44
last-modified: Fri, 04 Nov 2022 21:29:12 GMT
etag: W/"85e7fc0142730de425b5617153880918"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Sun, 27 Nov 2022 01:05:45 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 7706edc01975b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/3690988/domain/youengage.me/token
54.230.111.112200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/3690988/domain/youengage.me/token
IP 54.230.111.112:0
GET /partner/3690988/domain/youengage.me/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sun, 27 Nov 2022 01:00:46 GMT
access-control-allow-origin: *
cache-control: public, max-age=38016
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N8wKvQEIhoPoQxGbloc1iHPhuWisH7w2XhEJbtXuuVDOS78LVGmRRA==
X-Firefox-Spdy: h2
ws7.hotjar.com/api/v2/sites/2707984/recordings/content
52.211.199.18200 OK 0 B URL HTTP/2 ws7.hotjar.com/api/v2/sites/2707984/recordings/content
IP 52.211.199.18:0
POST /api/v2/sites/2707984/recordings/content HTTP/1.1
Host: ws7.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 29982
Origin: https://youengage.me
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 01:00:46 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
js-na1.hs-scripts.com/22224354.js
104.17.214.204200 OK 0 B URL HTTP/2 js-na1.hs-scripts.com/22224354.js
IP 104.17.214.204:0
GET /22224354.js HTTP/1.1
Host: js-na1.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 01:00:44 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B0E3DEB05FB52EC746B9658B3700C54016BCB9911000000000000000000
cache-control: public, max-age=30
vary: origin, Accept-Encoding
x-hubspot-correlation-id: fac663ef-4367-4a19-ab47-9f5d87f8ac22
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://youengage.me
last-modified: Sun, 27 Nov 2022 01:00:44 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 7706edb99d11fac0-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.clarity.ms/tag/9dbwyeuzaz
13.107.238.53200 OK 0 B URL HTTP/2 www.clarity.ms/tag/9dbwyeuzaz
IP 13.107.238.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /tag/9dbwyeuzaz HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=a71454a50ea7479386f1386dfa5f671d.20221127.20231127; expires=Mon, 27 Nov 2023 01:00:45 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:3f60b293-70d6-4805-b0bb-3484f0a73bf0
x-cache: CONFIG_NOCACHE
x-azure-ref: 0vbaCYwAAAAB9wNDDYOv4TbzTYbnQIR+HQ1BIMzBFREdFMDQwOQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Sun, 27 Nov 2022 01:00:44 GMT
X-Firefox-Spdy: h2
www.clarity.ms/tag/9dbwyeuzaz
13.107.238.53200 OK 0 B URL HTTP/2 www.clarity.ms/tag/9dbwyeuzaz
IP 13.107.238.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /tag/9dbwyeuzaz HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=0b187dc51554480a893580d83f98e176.20221127.20231127; expires=Mon, 27 Nov 2023 01:00:45 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:dfa4d45a-f309-4181-9ede-77e6e6c0ecf0
x-cache: CONFIG_NOCACHE
x-azure-ref: 0vbaCYwAAAADqNW1xJiFrSYhHAMZcQnvvQ1BIMzBFREdFMDQwOQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Sun, 27 Nov 2022 01:00:44 GMT
X-Firefox-Spdy: h2
js.hs-banner.com/22224354.js
172.64.154.85200 OK 0 B URL HTTP/2 js.hs-banner.com/22224354.js
IP 172.64.154.85:0
GET /22224354.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youengage.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 01:00:45 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: +WY4nz+NWY/hsxY/PYpKjShddho05KqVEkiwqanElUgqB2wuHqT1DicSYul7gTaa5cYm4KMfBYg=
x-amz-request-id: 9YTEVNFNAFZZ19A8
last-modified: Wed, 26 Oct 2022 00:13:17 GMT
etag: W/"d4cb94193cc71861d617feff8cd969f8"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: jCIlZh5wYVBuDzMp0gZahdatRISjetxx
access-control-allow-origin: https://youengage.me
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Sun, 27 Nov 2022 01:05:45 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 7706edbbfe90b509-OSL
content-encoding: br
X-Firefox-Spdy: h2