| linkvertise.com/538599/2020-2022-belle-delphine?o=sharing | 172.67.187.81 | 301 Moved Permanently | 0 B |
URL HTTP/1.1linkvertise.com/538599/2020-2022-belle-delphine?o=sharing IP172.67.187.81:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /538599/2020-2022-belle-delphine?o=sharing HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 07 Jan 2023 13:30:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 07 Jan 2023 14:30:46 GMT
Location: https://linkvertise.com/538599/2020-2022-belle-delphine?o=sharing
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=izB3xcH4%2BKHtDuqRzdCrkLFjhTdHj26sU%2BKnc5OQ1QMWf2YpxzrTfYAgFRgNi2G7Z16dAn06pyfvHs8z%2FjUq6WzJGVUtfn3oX5bTJGgALZRdNTqhicpsWVYZYzHFud4fyzo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
X-Frame-Options: sameorigin
Server: cloudflare
CF-RAY: 785d0cc8687c0b69-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashb782882bdabaf3b08e64120922b4a4b7 2035ed7fc9fb5b6ee9715601ba43de5f94d0c0e9 3fe7d1a9a55b86ec25d02634749ccfae11f3477033ba8cd7ac4131b7948ba619
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FE7D1A9A55B86EC25D02634749CCFAE11F3477033BA8CD7AC4131B7948BA619"
Last-Modified: Sat, 07 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14368
Expires: Sat, 07 Jan 2023 17:30:14 GMT
Date: Sat, 07 Jan 2023 13:30:46 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash516b9d6951b09439a51d5284994ed92f 5c78edb38bae36caa8e2db8ed6635a32e46c91dd eaaf4ebc59d2a06d02b552154c5adb7c713ffc4a7f5caabcff1c2b4cd6ec5c7b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EAAF4EBC59D2A06D02B552154C5ADB7C713FFC4A7F5CAABCFF1C2B4CD6EC5C7B"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19451
Expires: Sat, 07 Jan 2023 18:54:57 GMT
Date: Sat, 07 Jan 2023 13:30:46 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 07 Jan 2023 12:41:24 GMT
content-type: application/json
age: 2962
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash58a88989d0e4169e84e081f784a49322 23776710f7b469db00cbb0136f2e01c254b88c1d a49577e8c84184370e4123a2210d184fbf7533af3dbb0394abae256f8f39c23b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A49577E8C84184370E4123A2210D184FBF7533AF3DBB0394ABAE256F8F39C23B"
Last-Modified: Thu, 05 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10005
Expires: Sat, 07 Jan 2023 16:17:31 GMT
Date: Sat, 07 Jan 2023 13:30:46 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash75f0037a1d53a9a5321a796206ec3e24 70d42c9bf1334f20e1cea4ce3c8212e0e780ee77 80ec1e61f9563e799c9f44ea31e616c37daea1b9670091fbbc6efc39ebafe3d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "80EC1E61F9563E799C9F44EA31E616C37DAEA1B9670091FBBC6EFC39EBAFE3D3"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10429
Expires: Sat, 07 Jan 2023 16:24:35 GMT
Date: Sat, 07 Jan 2023 13:30:46 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashb1fcd419a4245617397846e8d17233f6 2a037ce244587640b27ead9a0ec2af4f862d91b2 e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qI1d4wQdWZcS8kIsBnpNuOILfdZZACw6wPERdBo842VwBcqNgNyCV6KuWR8RVUvqIjb8nZB2+dc=
x-amz-request-id: YSD5ZQP6FFQ6QRB8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 07 Jan 2023 13:15:19 GMT
age: 927
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash58a88989d0e4169e84e081f784a49322 23776710f7b469db00cbb0136f2e01c254b88c1d a49577e8c84184370e4123a2210d184fbf7533af3dbb0394abae256f8f39c23b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A49577E8C84184370E4123A2210D184FBF7533AF3DBB0394ABAE256F8F39C23B"
Last-Modified: Thu, 05 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10005
Expires: Sat, 07 Jan 2023 16:17:31 GMT
Date: Sat, 07 Jan 2023 13:30:46 GMT
Connection: keep-alive
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 07 Jan 2023 13:30:46 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.25.14 | 200 OK | 28 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.25.14:0
File typeASCII text, with very long lines (65451) Hash638a4990025383a0f83ebf29bdb84a68 153e8818dc42f598e47fde8cf398f1447649a4d0 878e34b89800bb271d3588e526eb3598eb3822e263f3bdaf53645847d39d0ad6
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 60365
expires: Thu, 28 Dec 2023 13:30:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=spSdsjiXXbGbREl1LrixOnUeDJBqxVrTK5Dv8jhYzgwTQPZLYhJ1tTvYwXCF45Jfdj4PbAih3%2BYBj8vaLgoLAPaRrP5%2FmKI6eA7PriMLODKag2N4BP%2B0kfZ3wAU79oPNRxpnIWyp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 785d0ccbbcd91c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css | 104.17.25.14 | 200 OK | 10 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css IP104.17.25.14:0
Hash9f8ae150e614ee49febe1ac6088202e6 5f5d1a1a96289a0fa1d052d8dd59d5a236e5227e c931e5cbd1bbd7e7e6802ce040c35ce7c1d7425988b767c6a29bedbfa2eb496f
GET /ajax/libs/font-awesome/5.10.2/css/all.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:47 GMT
content-type: text/css; charset=utf-8
content-length: 10228
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-111e5"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 64839
expires: Thu, 28 Dec 2023 13:30:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ipqT%2BxBfVkehdBetzHTzM6j6tvWG6jaBZY%2FDk9PlS8z%2BA2WALD23qD8Vv45w1LOHCgJ0LojntnBTgQ3hdIrzkvsyUCF5WRRjR%2BD4n05WjRkzcnyPDawGRzShf%2F%2Fq32tq5cY%2FKUbS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 785d0ccbbcda1c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash101eeea17ae08a712763d24816169527 a5165223bb742687de33a98f74789d5fa82365a9 e864bb9cf301287ba6bcbf7acc07c1911b26cca3983318bd6330916eadb635b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3500
Cache-Control: max-age=137797
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:47 GMT
Etag: "63b8dda0-117"
Expires: Mon, 09 Jan 2023 03:47:24 GMT
Last-Modified: Sat, 07 Jan 2023 02:49:04 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash101eeea17ae08a712763d24816169527 a5165223bb742687de33a98f74789d5fa82365a9 e864bb9cf301287ba6bcbf7acc07c1911b26cca3983318bd6330916eadb635b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3567
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:47 GMT
Last-Modified: Sat, 07 Jan 2023 12:31:20 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
|
|
| p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css | 95.101.11.112 | 200 OK | 5 B |
URL HTTP/2p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css IP95.101.11.112:0 ASN#20940 Akamai International B.V.
Hash83d24d4b43cc7eef2b61e66c95f3d158 f0cafc285ee23bb6c28c5166f305493c4331c84d 1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Sat, 07 Jan 2023 13:30:47 GMT
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash101eeea17ae08a712763d24816169527 a5165223bb742687de33a98f74789d5fa82365a9 e864bb9cf301287ba6bcbf7acc07c1911b26cca3983318bd6330916eadb635b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3500
Cache-Control: max-age=137797
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:47 GMT
Etag: "63b8dda0-117"
Expires: Mon, 09 Jan 2023 03:47:24 GMT
Last-Modified: Sat, 07 Jan 2023 02:49:04 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash17cf9dce587a0172ed5024014092613a c4d54d41bb2065c443b71ce4cb0765afcf25ff5d c9e7f02104dba48ac14728545d4e4fbc2393ab6c2cb4b36504aad9626f8d10b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash8b64a17d9b8c33515817fc19dd6f60d7 a752305109964bc1ef3537debed9c40c44198cea 8f7b7d229100176e82780eb0c3808b410b078025237210d8b5037c30ac3b0987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG | 142.250.74.168 | 200 OK | 734 kB |
URL HTTP/2www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG IP142.250.74.168:0
File typeASCII text, with very long lines (65536), with no line terminators Size734 kB (733831 bytes) Hash0ff522ac54649a04e5aaf51de0e66cf1 64a47a87410aada66342528625a8e774b63e60aa e895d237e7d4e758dab95e2822ef2751350ac5d6d62537e62bc2c800d6fcd33e
GET /gtm.js?id=GTM-TZ69NZG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 07 Jan 2023 13:30:47 GMT
expires: Sat, 07 Jan 2023 13:30:47 GMT
cache-control: private, max-age=900
last-modified: Sat, 07 Jan 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 50879
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 | 216.58.207.227 | 200 OK | 11 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data Hash1f6d3cf6d38f25d83d95f5a800b8cac3 279f300ca2cbbdf9f5036ef2f438607fbf377daa 796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:13 GMT
expires: Sat, 06 Jan 2024 13:33:13 GMT
cache-control: public, max-age=31536000
age: 86254
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 07 Jan 2023 12:33:40 GMT
age: 3427
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash8b64a17d9b8c33515817fc19dd6f60d7 a752305109964bc1ef3537debed9c40c44198cea 8f7b7d229100176e82780eb0c3808b410b078025237210d8b5037c30ac3b0987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash17cf9dce587a0172ed5024014092613a c4d54d41bb2065c443b71ce4cb0765afcf25ff5d c9e7f02104dba48ac14728545d4e4fbc2393ab6c2cb4b36504aad9626f8d10b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash8589b6a84dd5a09ec546aff38bbd2515 1c3a3d8a69ae7a3ebda64292caf0e0f5968e81f7 f013da155203f0509d56e8174c2ae5ed23aad413b4391f276efd388519743b17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2799
Cache-Control: max-age=159762
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:47 GMT
Etag: "63b9362a-1d7"
Expires: Mon, 09 Jan 2023 09:53:29 GMT
Last-Modified: Sat, 07 Jan 2023 09:06:50 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
|
|
| sand.ostrichesica.com/clicktrue_invocation.js?id=14473 | 54.230.111.3 | 200 OK | 30 kB |
URL HTTP/2sand.ostrichesica.com/clicktrue_invocation.js?id=14473 IP54.230.111.3:0
File typeUnicode text, UTF-8 text, with very long lines (65530), with no line terminators Hash7531e34d0a71f1aec77743adc4c304a7 4618aa95a1d1696421756b181133571b8a2dc8d1 6f0a253d65110dd9f5ca67656130e4b7684c4148c3e36944ad16bb6faf7a6b59
GET /clicktrue_invocation.js?id=14473 HTTP/1.1
Host: sand.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 30502
content-encoding: gzip
server: Caddy
date: Sat, 07 Jan 2023 09:02:04 GMT
cache-control: max-age=43200
expires: Sat, 07 Jan 2023 20:28:12 GMT
etag: "1462b-0Y2Bvdv+9oyUNS+AzJCk4mFb6YQ"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5kW7WkbExLv176AGPbnlp9X4Rrdb70yQ0DeUZx__en1DQ9yjeThFxg==
age: 18155
X-Firefox-Spdy: h2
|
|
| maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css | 185.76.9.14 | 200 OK | 16 kB |
URL HTTP/2maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css IP185.76.9.14:0 ASN#60068 Datacamp Limited
File typeASCII text, with very long lines (65536), with no line terminators Hashe08d2f98cbed04c58217e418ef401fd3 6ebb9a61a6a7e490786ac9e6211ba938bfb92bf7 0d618f03f819f0f37f06d66dbfb5268e0a078704a40ba4505f5be96b36d666b0
GET /vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css HTTP/1.1
Host: maxst.icons8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:47 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"15e81-wb0UGHttyzbvrSHlFxH4lBgB3g8"
last-modified: 2022-05-16T12:30:47.897Z
server-timing: -;dur=0;desc="Generate"
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
x-accel-expires: @1968663886
server: CDN77-Turbo
x-77-nzt: AblMCQ3++9D/uQkuAQ
x-77-nzt-ray: c0a4cc28afd0d5af0774b9636eaf6e05
x-cache: HIT
x-age: 19794361
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| js.chargebee.com/v2/animation.css | 143.204.55.13 | 200 OK | 758 B |
URL HTTP/2js.chargebee.com/v2/animation.css IP143.204.55.13:0
Hashf8a79fc47c28375628855b4c78ff6f85 b2fb79a766c233408a6e0dd38a169dee2e88d4b0 e3b7f54cf81a0ff1f16662abce7b1970ed6a8a8191da96cf05dcf6644d203df3
GET /v2/animation.css HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 758
last-modified: Wed, 21 Dec 2022 06:42:01 GMT
x-amz-version-id: 0TS7jDN5QG2C56R40FJkXTmET2U0z2t7
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Sat, 07 Jan 2023 13:30:15 GMT
cache-control: max-age=300,public
etag: "f8a79fc47c28375628855b4c78ff6f85"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: N2zf0gUzbemKo2z0Z9l1M5nogVW0ZCgTgoMyvc_6tULOVKZ7U6LErw==
age: 166
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash092428b37cdfa6279672a9de1a282b27 3bb17c7822a54fab779bd2aab243829116a2fa69 cd71aaa0df823ece0cefe4f1d33297c755656c5cfccfdbfb0bfb093865649bc3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5252
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:47 GMT
Last-Modified: Sat, 07 Jan 2023 12:03:15 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash092428b37cdfa6279672a9de1a282b27 3bb17c7822a54fab779bd2aab243829116a2fa69 cd71aaa0df823ece0cefe4f1d33297c755656c5cfccfdbfb0bfb093865649bc3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5168
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:47 GMT
Last-Modified: Sat, 07 Jan 2023 12:04:39 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280
|
|
| push.services.mozilla.com/ | 54.203.75.56 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.203.75.56:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xXDnVVH0j494H2y9Ob011g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: LQPyjSV7xVnQ8+BvJgUfxdiIzbU=
|
|
| js.chargebee.com/v2/master-4bc76e806d82eef02ccbab51978cb5a1.html | 143.204.55.13 | 200 OK | 70 kB |
URL HTTP/2js.chargebee.com/v2/master-4bc76e806d82eef02ccbab51978cb5a1.html IP143.204.55.13:0
Hashfdf68bcc3c995d3007495f62b99b52c4 ce2af04229458805c458137af029354fabc79e4e a0d1c0aa6b868f3e3c37a882f9a3ecfe9aa7ce7e22caf93d979fc768ec2a486e
GET /v2/master-4bc76e806d82eef02ccbab51978cb5a1.html HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 203
last-modified: Wed, 04 Jan 2023 09:07:41 GMT
x-amz-version-id: sjvf7H14Bgggtw1DRR3DygPMOcnzec8i
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Sat, 07 Jan 2023 13:29:41 GMT
cache-control: max-age=300,public
etag: "71bbffb65ab9aadab5774420f260d4c2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BpDC1R1svMTNRawlcBtm3DIuezVlKvuFSXhO38uPgvsXy8yluC239g==
age: 76
X-Firefox-Spdy: h2
|
|
| publisher.linkvertise.com/api/v1/account | 172.67.187.81 | 204 No Content | 0 B |
URL HTTP/2publisher.linkvertise.com/api/v1/account IP172.67.187.81:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/account HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Sat, 07 Jan 2023 13:30:48 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=t0NXizvcevwiSfsrLiSXMasIlGb2yKrj49nONFsr; expires=Sun, 07-Jan-2024 13:30:48 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3rRB30%2FoSZ6tDx5N8suuXduSlaOq1ho9WWf6W%2BH4fRBqmxbrje8%2BuUzCZep1d1ZXOlYExLOX09JdxdAhndZmHfkuGyLHkCmVmIkrg4%2B0ecNFG3UU1im%2FqLyRJff4wGnlY7WomEvbxU4zO7XW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 785d0cd1fb050afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 | 216.58.207.227 | 200 OK | 128 kB |
URL HTTP/2fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 128360, version 1.0\012- data Size128 kB (128360 bytes) Hash393b5d8b3fd798486652801f3ee8c6ea 979383e09be691921a211f5fc4ef97fc4406e4dd 83be7b2f504af2c948c5106fa907dc4224380a7b75a993a7bff52cd71ec8c7d3
GET /s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128360
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:12 GMT
expires: Sat, 06 Jan 2024 13:33:12 GMT
cache-control: public, max-age=31536000
age: 86256
last-modified: Thu, 25 Aug 2022 00:09:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 958 B |
IP93.184.220.29:0
Hashe5f7518e95161e2aebb1ba0b9cd271fd db694f139f4ec8ec7908c025c151a8ec154d28a1 a636a7ae915a7afa9e0e6ce80193f4bb3c85cf2dc9051e3bf5369e2059bcdf41
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5253
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:48 GMT
Last-Modified: Sat, 07 Jan 2023 12:03:15 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280
|
|
| publisher.linkvertise.com/api/v1/redirect/link/static/538599/2020-2022-belle-delphine?origin= | 172.67.187.81 | 204 No Content | 0 B |
URL HTTP/2publisher.linkvertise.com/api/v1/redirect/link/static/538599/2020-2022-belle-delphine?origin= IP172.67.187.81:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/redirect/link/static/538599/2020-2022-belle-delphine?origin= HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 07 Jan 2023 13:30:48 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=8e7YGIfcmEOPLtxawFOckRMRtrBii5n7w3mq9fAg; expires=Sun, 07-Jan-2024 13:30:48 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=so4x4uMjhAyGWYEN1yiFcaCXfdgXgNppQ%2FzI8IVyqRcVIlZ9Kqnk%2Bm6%2BdvvJLEFPnJfK%2FF6TfMoQPf%2FLT2cDJ4WWOXvuF1BnL42kJdXK%2BaWukFqfqQhnmg6tBP4RjIWdqtUxjKBD4Wm%2Fcj%2FR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 785d0cd25b440afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 542 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash229a4ca44c856722ae14a08778aa8ed2 8be6c2c28da93e4184bffdb6b6103d1b79ee769d 0a7789190b62c344f487237cca00ee9697819561685418fa6e256625e4ec4e8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "646CE3CD0C4635FB8A893BB1A8D487A38DF8E8D185219DB36E5CF3D318F46035"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13902
Expires: Sat, 07 Jan 2023 17:22:30 GMT
Date: Sat, 07 Jan 2023 13:30:48 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashc1ac568fa3359872f9acb847bf103766 cce3f201c48d93ce2b238fa64d981fc23ed8d046 646ce3cd0c4635fb8a893bb1a8d487a38df8e8d185219db36e5cf3d318f46035
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "646CE3CD0C4635FB8A893BB1A8D487A38DF8E8D185219DB36E5CF3D318F46035"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13902
Expires: Sat, 07 Jan 2023 17:22:30 GMT
Date: Sat, 07 Jan 2023 13:30:48 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash457ca75ed75785c514fb36a16792410f fcc640c00713c93633d0b2887104c8fbc6c754f9 ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11741
Expires: Sat, 07 Jan 2023 16:46:29 GMT
Date: Sat, 07 Jan 2023 13:30:48 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash457ca75ed75785c514fb36a16792410f fcc640c00713c93633d0b2887104c8fbc6c754f9 ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11741
Expires: Sat, 07 Jan 2023 16:46:29 GMT
Date: Sat, 07 Jan 2023 13:30:48 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash457ca75ed75785c514fb36a16792410f fcc640c00713c93633d0b2887104c8fbc6c754f9 ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11741
Expires: Sat, 07 Jan 2023 16:46:29 GMT
Date: Sat, 07 Jan 2023 13:30:48 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash457ca75ed75785c514fb36a16792410f fcc640c00713c93633d0b2887104c8fbc6c754f9 ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11741
Expires: Sat, 07 Jan 2023 16:46:29 GMT
Date: Sat, 07 Jan 2023 13:30:48 GMT
Connection: keep-alive
|
|
| publisher.linkvertise.com/api/v1/redirect/link/static/538599/2020-2022-belle-delphine?origin= | 172.67.187.81 | 200 OK | 12 kB |
URL HTTP/2publisher.linkvertise.com/api/v1/redirect/link/static/538599/2020-2022-belle-delphine?origin= IP172.67.187.81:0
File typeJSON data\012- , ASCII text, with very long lines (22830), with no line terminators Hash2235579d72672030b3f01b635ce4d5c8 e4e5a69e04cdb71e46d85fcd6ccb72aeb0c5bc76 b06206b10ecdc9b3dc6f2328d96e6a144a96ea6a4bf91a04101034a637a24b5c
GET /api/v1/redirect/link/static/538599/2020-2022-belle-delphine?origin= HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:48 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=MsKq8YFVrDnN1iQTTWPbEpRC9kAeMx6QxLL822gY; expires=Sun, 07-Jan-2024 13:30:48 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EWoJraavn%2FLnOy9wsJLe776URXULuMaaz0sEW29FhWv9k%2BDgOoqOzjSW1pChHCTbcyCWtv%2FNVYRgvRWALUh%2FOUPndGk9wHTJ80Gh7yj12YyzP4FCEJd77AuD4vPl6C%2Fi0b5ZAIG9%2Fa%2Bv%2BAga"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 785d0cd2dbbd0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| js.chargebee.com/v2/chargebee.js | 143.204.55.13 | 200 OK | 93 kB |
URL HTTP/2js.chargebee.com/v2/chargebee.js IP143.204.55.13:0
Hash40176955f794edda5e966364e9c3dd7a 53b436405cc624fe798b84ae8258738c6c3a28e9 e77a124f26f3e1ec90d88e45978ba3d1cad7ab9260f97c8713060b9b7c22db23
GET /v2/chargebee.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 04 Jan 2023 09:07:40 GMT
x-amz-version-id: JK1EtZ02H9P7PmgktPzQ24tSkOmFQBI6
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sat, 07 Jan 2023 13:26:12 GMT
cache-control: max-age=300,public
etag: W/"0206b534a027d670907ff1b6bfcb05e4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SBSIonlfVkSx_uEhwRExWBDAY-R1OgWJ_LapoDcj8n5ZZ50-rZ_Y6w==
age: 276
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1787721-cbc0-4d0c-9ab8-c2bf14e3c622.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1787721-cbc0-4d0c-9ab8-c2bf14e3c622.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash65a13b7b11843a364e80dbc2d54345ff 5b24f4bf17da840e61d96b0ed7452911539dbf67 8dea14e05eb2a0c850fe9441b605f50ec6206baf57da4293f2297cab0a82fe37
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1787721-cbc0-4d0c-9ab8-c2bf14e3c622.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10064
x-amzn-requestid: 7b970f82-e9fa-43e8-8757-60ae808a2cff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eP6kCEsSIAMFVBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b63e19-4884229c1545eef72380e7d2;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 03:03:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wWDCvYZY8VpfF4a5AWmjrZZx3vzUv7qWCz_g9vNlkMz5Sy3NaaWMVQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 03:33:10 GMT
age: 35858
etag: "5b24f4bf17da840e61d96b0ed7452911539dbf67"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7308753d-b099-45a9-ac63-aeb8be417c01.jpeg | 34.120.237.76 | 200 OK | 4.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7308753d-b099-45a9-ac63-aeb8be417c01.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4ac8905d1d5c1d4287877b2cd12c578f 3dba315adee4a143e7368e64c52c8766895a754c 7c19db731473111c9e8a0d939b1204b59e11a887cd90774b48d3dfa974cb491d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7308753d-b099-45a9-ac63-aeb8be417c01.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4795
x-amzn-requestid: b8d2ba5b-92d8-40cc-8954-55bd8ed1dd34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eS7RFFznIAMFe4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b7726d-00b967487cd1c1380f7f66d5;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 00:59:25 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: J5tHsDq4lTlbPv5Mn-ed27WzQv8bSPH21bGKTfYmKg3Y1hVZ_3Y2qA==
via: 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 548adcda884eed02304ba5d6a1d7f514.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 09:24:53 GMT
age: 14755
etag: "3dba315adee4a143e7368e64c52c8766895a754c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32750e1f-43b2-4ea2-9562-1ec8c85222fe.jpeg | 34.120.237.76 | 200 OK | 8.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32750e1f-43b2-4ea2-9562-1ec8c85222fe.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash05977aeaee3d020a9e54b103bff0072e 74f544d78132f079b849fc2ef613a892c515378f 72b0b5e6ed8685fa24bd66e4173db1701b4a48b3df15c86228b833e615935da8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32750e1f-43b2-4ea2-9562-1ec8c85222fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8704
x-amzn-requestid: 1a997886-3172-4ba2-967d-328539cf685c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eVxErFfVoAMFhYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b89550-7c30a3ff5d97f8b421776fb5;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 21:40:32 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: CKplX8NiGi4DVG0lwV2LILGwKdV6wOzThlE7SEjStyLgYQieTmJfPw==
via: 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 21:47:57 GMT
age: 56571
etag: "74f544d78132f079b849fc2ef613a892c515378f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js | 104.18.11.207 | 200 OK | 22 kB |
URL HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP104.18.11.207:0
File typeASCII text, with very long lines (50758) Hash67ab37e283ef88aab1a944f40b94616a 28d91d18285c59813e06c398d6821c845bf2af66 4461e66882b4e8f3381ad78f72830d262ecb98cbdd66ee9f127357da1b31a688
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:47 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: ed8d946baeeb2ee38f4aebce8d84f641
cdn-cache: HIT
cf-cache-status: HIT
age: 16141537
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 785d0ccc3fecb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.thinksuggest.org/simple/suggest-min-unpacked.js | 176.9.175.232 | 200 OK | 54 kB |
URL HTTP/1.1www.thinksuggest.org/simple/suggest-min-unpacked.js IP176.9.175.232:0 ASN#24940 Hetzner Online GmbH
Hashe322d6fa79a9b879c823e01d08a81401 992efdeca95bb15db561d4257a8dc059fbcae423 b70b28a216f6d6d0720c3474db5cf2588e21184219da980c3887458d79445102
GET /simple/suggest-min-unpacked.js HTTP/1.1
Host: www.thinksuggest.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 13:30:48 GMT
Content-Type: application/javascript
Content-Length: 51487
Last-Modified: Fri, 05 Jun 2020 12:39:04 GMT
Connection: keep-alive
ETag: "5eda3ce8-c91f"
Accept-Ranges: bytes
|
|
| paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F538599%2F2020-2022-belle-delphine%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1673098236558&hl=1&op=0&ag=1317291471&rand=041272290626778991565176012512760125220912811716501625070271070017822928271&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=9szyYEvEdT&pto=1814&ver=49&gac=-&mei=&ap=&duid=1.1673098236.fHPjOaSwodL6ckqR&suid=1.1673098236.oF74H7poNv8Ncebu&tuid=1.1673098236.0RyPDWdWoNhMZFvw&fbc=->m=W10%3D&it=59%2C1448%2C52&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 | 54.83.110.109 | 200 OK | 960 B |
URL HTTP/2paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F538599%2F2020-2022-belle-delphine%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1673098236558&hl=1&op=0&ag=1317291471&rand=041272290626778991565176012512760125220912811716501625070271070017822928271&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=9szyYEvEdT&pto=1814&ver=49&gac=-&mei=&ap=&duid=1.1673098236.fHPjOaSwodL6ckqR&suid=1.1673098236.oF74H7poNv8Ncebu&tuid=1.1673098236.0RyPDWdWoNhMZFvw&fbc=->m=W10%3D&it=59%2C1448%2C52&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 IP54.83.110.109:0
File typeASCII text, with very long lines (2705), with no line terminators Hashc5a9c751aa6fce3655eaadaaec589c36 b79542faa8223114215e039133f3eec87bd0a604 1dee327171ceb9cd306b54fb0cb792fb32105b9d87b70934526ae3e42483081e
GET /ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F538599%2F2020-2022-belle-delphine%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1673098236558&hl=1&op=0&ag=1317291471&rand=041272290626778991565176012512760125220912811716501625070271070017822928271&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=9szyYEvEdT&pto=1814&ver=49&gac=-&mei=&ap=&duid=1.1673098236.fHPjOaSwodL6ckqR&suid=1.1673098236.oF74H7poNv8Ncebu&tuid=1.1673098236.0RyPDWdWoNhMZFvw&fbc=->m=W10%3D&it=59%2C1448%2C52&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Sat, 07 Jan 2023 13:30:48 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=5ac908442f6f73c3aeab1c8133439d70; Max-Age=29030400; Path=/; Expires=Sat, 09 Dec 2023 13:30:48 GMT; HttpOnly; Secure; SameSite=None
content-length: 960
X-Firefox-Spdy: h2
|
|
| js.chargebee.com/v2/131-8c7776ecc7c9b90c28c0.js | 143.204.55.13 | 200 OK | 47 kB |
URL HTTP/2js.chargebee.com/v2/131-8c7776ecc7c9b90c28c0.js IP143.204.55.13:0
Hash5986c3592246513cb535890616f96f6f 7b550607c1213efbaefe2ade5f805bf2b93a82d7 358fe115b9db95345f91b984d5086bc9ea5ee5e962c60269eb433ff8d73a1d41
GET /v2/131-8c7776ecc7c9b90c28c0.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-4bc76e806d82eef02ccbab51978cb5a1.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 04 Jan 2023 09:07:40 GMT
x-amz-version-id: 3Q3oDIclGhLTr2EqW3TvpSPcldrTMmt.
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sat, 07 Jan 2023 13:26:27 GMT
cache-control: max-age=300,public
etag: W/"c7d1c21361671678316b0cb4ee7cff8d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wBxD42lumNSHYu88nqKg8fjyDaRiLGOvyNtWAeJNuSU6aWh8NznpTA==
age: 261
X-Firefox-Spdy: h2
|
|
| cdn.taboola.com/libtrc/linkvertise-link-to/loader.js | 151.101.129.44 | 200 OK | 26 kB |
URL HTTP/2cdn.taboola.com/libtrc/linkvertise-link-to/loader.js IP151.101.129.44:0
File typeUnicode text, UTF-8 text, with very long lines (28630) Hashef3df84d859539ac015ead10271e8ffe 914e02a0b40d2c112f926d8163a402c96a1229dd ec6dc85fe7f66a6663b0ec53c39308357d8474ef0901f2687c395130d9730a9e
GET /libtrc/linkvertise-link-to/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 9ZiAZg5paDXTpXffuOYFH7JhvBsvZFUx3mdQbLq638OUEyNWLXK01Rp843vvoIChFm7y0bWlio0=
x-amz-request-id: TBAXDPHYEXMBG5JV
last-modified: Thu, 05 Jan 2023 10:13:21 GMT
etag: "cf5cf64da3a1d675bd1f91bf56d57d18"
x-amz-version-id: BUYZRbkTukvTljvDoOXcPEddXkR5bS73
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sat, 07 Jan 2023 13:30:48 GMT
via: 1.1 varnish
age: 82
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673098249.708625,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 84
content-length: 25657
X-Firefox-Spdy: h2
|
|
| js.chargebee.com/v2/135-7be6d9636e1a3d4046be.js | 143.204.55.13 | 200 OK | 1.1 kB |
URL HTTP/2js.chargebee.com/v2/135-7be6d9636e1a3d4046be.js IP143.204.55.13:0
File typeASCII text, with very long lines (2788) Hashd63ea891d9d5bc353c63eeb202e7fee7 fb7f044e6398dbadcb66d31cd4bac8c970c7f273 5e02283a7e98628cb50c7710f4a3474b5633a951035a01ad7c7516af59b0d464
GET /v2/135-7be6d9636e1a3d4046be.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-4bc76e806d82eef02ccbab51978cb5a1.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 04 Jan 2023 09:07:40 GMT
x-amz-version-id: 3pFyYWa1Hc6S9LRxvB5Q.ZDPdYryOLZr
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sat, 07 Jan 2023 13:25:51 GMT
cache-control: max-age=300,public
etag: W/"2f88b448a99ecf497ad6cf6f26b47042"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: K4PNv6wIjPRJZ4gjAPMn9rNKH2RnHbYzTyh2Bd-2D5zCEYPkoKbCRQ==
age: 297
X-Firefox-Spdy: h2
|
|
| paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=9szyYEvEdT&ts=482&cb=1673098237040 | 54.83.110.109 | 200 OK | 43 B |
URL HTTP/2paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=9szyYEvEdT&ts=482&cb=1673098237040 IP54.83.110.109:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdb04c7b378cb2db912c3ba8a5a774ee3 dee34bd86c3484d31002182aa2b7caa4699126b8 98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=37dfbd8ee84e00136dedc73ce2458e959225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5f15896a2417071a10acf9f29f674cd3d08007243b1ffc2e715280388c619651615722c05a015c36005ccfea6c4f77be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c7c47240e0aa2df7a687e07acf94a7b8ca3f22893b552771a2eaca5ac9c9023b7cfc248b5038e523c60cbe986a7b376cccee879cf774a91bac333074aae3f34eec55620b79bae6adc59a259b78710c746c2d07dc43a358b9b27da678d80bdafd3bafe4d7faa6feee2a47c4e35aecf71c4e150b9445a1395080bc68f8f8899add661866ad1deedc854c33c3574843873c4dad1592490b025e541f794499167bf7a520b0c8c76f14dddcdee27f88632c00fb19dceda27c019486ee9551150684273cbec3bf4499482c721a6bf6bf69720cca9efbe25cfffa711267a88c8504fdcbb1f7104b4b4a27bb62688a800fdea45b160a330964fc912d7a820da1921e0c38e746b7a395738014e16b4e08a6bd102be4d4c402fe6e237bfc2675d9dff80eec06a91b6a59e94e4bdb20e1668e94d94b7476f8544661bde6b5f726ae824d9711dbaec813cf426df5bd8fe7e88aa118b3f4a78741076019ddee5dd3b785593104796d5c7bbd2833371f9e4da22e8970e11ae94552e75ebd3990033bd4ce8438d58a7668918dbd401a1f94ba2e9d48dcb1c3bb1b72969d427facee5e6&cri=9szyYEvEdT&ts=482&cb=1673098237040 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=5ac908442f6f73c3aeab1c8133439d70
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Sat, 07 Jan 2023 13:30:48 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
|
|
| linkvertise.chargebeestaticv2.com/api/internal/1673098200/retrieve_js_info | 54.230.111.75 | 202 Accepted | 0 B |
URL HTTP/2linkvertise.chargebeestaticv2.com/api/internal/1673098200/retrieve_js_info IP54.230.111.75:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/internal/1673098200/retrieve_js_info HTTP/1.1
Host: linkvertise.chargebeestaticv2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-requested-with
Referer: https://js.chargebee.com/
Origin: https://js.chargebee.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
content-length: 0
date: Sat, 07 Jan 2023 13:30:48 GMT
cache-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
pragma: no-cache
access-control-allow-origin: https://js.chargebee.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token
access-control-allow-methods: GET, OPTIONS, POST
server: ChargeBee
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: w020SOxpleA2XZ6dj-OMTPKiVLWhRucOSd2vioBHvAsaCFcBlGd5ng==
X-Firefox-Spdy: h2
|
|
| linkvertise.chargebeestaticv2.com/api/internal/1673098200/retrieve_js_info | 54.230.111.75 | 200 OK | 451 B |
URL HTTP/2linkvertise.chargebeestaticv2.com/api/internal/1673098200/retrieve_js_info IP54.230.111.75:0
File typeJSON data\012- , ASCII text, with very long lines (451), with no line terminators Hash1fd29d64b65e4251fe961aa88ba6cbeb a6da1c6ff5171f81765905047adf3d57503a8f17 54186a2b5565a22675a38c9feff6fa886631482135ecdcde5933c5d2009c9d76
GET /api/internal/1673098200/retrieve_js_info HTTP/1.1
Host: linkvertise.chargebeestaticv2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://js.chargebee.com
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=utf-8
content-length: 451
date: Sat, 07 Jan 2023 12:35:39 GMT
cache-control: max-age=0, must-revalidate, public, s-maxage=3600
expires: Thu, 01 Jan 1970 00:00:00 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: https://js.chargebee.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token
access-control-allow-methods: GET, OPTIONS, POST
server: ChargeBee
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DKsIIWQVnDc5GrfouklDgoltnG3EK9td24bKj6iP3tnkkii9xU0NuQ==
age: 3309
X-Firefox-Spdy: h2
|
|
| cdn.taboola.com/libtrc/impl.20230105-3-RELEASE.js | 151.101.129.44 | 200 OK | 151 kB |
URL HTTP/2cdn.taboola.com/libtrc/impl.20230105-3-RELEASE.js IP151.101.129.44:0
File typeASCII text, with very long lines (65509) Size151 kB (150998 bytes) Hashee3681757e301932a93752654015340c eba7fc9fb7f80444e1acefc6fa8b0b958d33b45e 6a1dd4386e934f722db0277f87df5d9bf9636560ef1b4f40de0cff7ef5e03195
GET /libtrc/impl.20230105-3-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: jtsOelsddE1Gxdpy/XgV+jpVR6VrcL75sgV5BWRBxedDqFh7kBsWuFfbqDs7/e3orrvLzCPc1M4=
x-amz-request-id: 220FA5RD3080XA3C
last-modified: Thu, 05 Jan 2023 09:38:26 GMT
etag: "ee3681757e301932a93752654015340c"
content-encoding: br
x-amz-version-id: hXHa26_sBbyEnu_DDR6oYE5rJwXXfDli
content-type: application/javascript
accept-ranges: bytes
date: Sat, 07 Jan 2023 13:30:48 GMT
via: 1.1 varnish
age: 13867
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 7738
x-timer: S1673098249.898096,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 15
server: AmazonS3-br
content-length: 150998
X-Firefox-Spdy: h2
|
|
| contextual.media.net/dmedianet.js?cid=8CUG57U1V | 2.18.172.23 | 200 OK | 49 kB |
URL HTTP/2contextual.media.net/dmedianet.js?cid=8CUG57U1V IP2.18.172.23:0
Hash85ba563b7572c322d6449ff9fbe22967 27a483126841140930b86d3dd7113fd0a7565479 ac970d3df639d52cf00dd538f6d7e179466b51b2a792f3a4708898aa947bde89
GET /dmedianet.js?cid=8CUG57U1V HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-type: text/javascript; charset=utf-8
x-mnt-h: 8-16
x-mnt-w: 8-35
etag: "95aea3c7782890a34fd6be584a8e48aa"
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Sat, 07 Jan 2023 13:35:48 GMT
date: Sat, 07 Jan 2023 13:30:48 GMT
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash29bbb88937e291fb70ac7920c1e4eeb1 d95e6da4d4dc4c4e301ff073f057c417986099fe f5b298d0f4129a8139623fef229a0cda537587b380837c81968f418f3fba8c69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- | 216.58.207.228 | 200 OK | 583 B |
URL HTTP/2www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- IP216.58.207.228:0
File typeASCII text, with very long lines (884), with no line terminators Hashc7b4de624a969d49347d8cce63abeb2e 310f1fa8d554a0f0d724933e63ac86982c3b5c58 08f49c671edaa0de76210e2bd6b23e8b7bb0c005af1d67fb1c25a8c5581aed21
GET /recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 07 Jan 2023 13:30:49 GMT
date: Sat, 07 Jan 2023 13:30:49 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 583
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=myIvLurGxg&ts=149&cb=1673098237433 | 54.83.110.109 | 200 OK | 43 B |
URL HTTP/2paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=myIvLurGxg&ts=149&cb=1673098237433 IP54.83.110.109:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdb04c7b378cb2db912c3ba8a5a774ee3 dee34bd86c3484d31002182aa2b7caa4699126b8 98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=myIvLurGxg&ts=149&cb=1673098237433 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=5ac908442f6f73c3aeab1c8133439d70
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Sat, 07 Jan 2023 13:30:49 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash5ddd48b55142ea746fa6165da9c75916 a2e4ddea65431b1b1bddbcbf257874fddd7cc332 f6f85f03bb7716bf8d960e8cd94b66495040371cc68c1642f4a30e0f95e7c27e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js | 216.58.211.3 | 200 OK | 165 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js IP216.58.211.3:0
File typeASCII text, with very long lines (658) Size165 kB (164706 bytes) Hash0b7fccb24ee065a01fdde10928c03c3f 9b198014f81844820588c202cc24bf5e03bf3dd7 68756de8f0d6742525ddaca56ab350e34d822777e86939fea27eb704ae013280
GET /recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://js.chargebee.com
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164706
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 16:14:32 GMT
expires: Sat, 06 Jan 2024 16:14:32 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Dec 2022 05:24:10 GMT
content-type: text/javascript
age: 76577
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| trc.taboola.com/linkvertise-link-to/log/2/debug?tim=13%3A30%3A37.477&type=warn&msg=protected%20media%3A%20enableFraudDetection&llvl=2&id=6689&cv=20230105-3-RELEASE&pct=1 | 151.101.129.44 | 204 No Content | 0 B |
URL HTTP/2trc.taboola.com/linkvertise-link-to/log/2/debug?tim=13%3A30%3A37.477&type=warn&msg=protected%20media%3A%20enableFraudDetection&llvl=2&id=6689&cv=20230105-3-RELEASE&pct=1 IP151.101.129.44:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /linkvertise-link-to/log/2/debug?tim=13%3A30%3A37.477&type=warn&msg=protected%20media%3A%20enableFraudDetection&llvl=2&id=6689&cv=20230105-3-RELEASE&pct=1 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: Varnish
retry-after: 0
cache-control: no-store
x-sy: true
content-type:
access-control-allow-credentials: true
accept-ranges: bytes
date: Sat, 07 Jan 2023 13:30:49 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1673098249.273315,VS0,VE0
x-vcl-time-ms: 0
X-Firefox-Spdy: h2
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-7DRMH8RP03>m=2oe120&_p=1689664127&cid=1471613408.1673098237&ul=en-us&sr=1280x1024&_s=1&sid=1673098237&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F538599%2F2020-2022-belle-delphine%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1 | 216.239.34.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-7DRMH8RP03>m=2oe120&_p=1689664127&cid=1471613408.1673098237&ul=en-us&sr=1280x1024&_s=1&sid=1673098237&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F538599%2F2020-2022-belle-delphine%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1 IP216.239.34.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7DRMH8RP03>m=2oe120&_p=1689664127&cid=1471613408.1673098237&ul=en-us&sr=1280x1024&_s=1&sid=1673098237&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F538599%2F2020-2022-belle-delphine%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://linkvertise.com
date: Sat, 07 Jan 2023 13:30:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 313 B |
IP93.184.220.29:0
Hash3fdc76da459b56e95258d586f13a4e83 2bc50b144c63f0175e6a3ce6adbc901bb2a55e33 650eaa67ab5d8cca964ca27408ad1e9c4bfa416a4d9cc891e0a578fb716d5828
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2017
Cache-Control: max-age=169083
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:49 GMT
Etag: "63b95da3-139"
Expires: Mon, 09 Jan 2023 12:28:52 GMT
Last-Modified: Sat, 07 Jan 2023 11:55:15 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 313
|
|
| trc-events.taboola.com/linkvertise-link-to/log/2/debug?tim=13%3A30%3A37.479&type=usage&msg=rtus&llvl=2&id=3735&cv=20230105-3-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D | 141.226.228.48 | 204 No Content | 0 B |
URL HTTP/2trc-events.taboola.com/linkvertise-link-to/log/2/debug?tim=13%3A30%3A37.479&type=usage&msg=rtus&llvl=2&id=3735&cv=20230105-3-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D IP141.226.228.48:0 ASN#200478 Taboola.com ltd
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /linkvertise-link-to/log/2/debug?tim=13%3A30%3A37.479&type=usage&msg=rtus&llvl=2&id=3735&cv=20230105-3-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sat, 07 Jan 2023 13:30:49 GMT
x-fastly-to-nlb-rtt: 22197
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS | 178.250.0.157 | 200 OK | 9.1 kB |
URL HTTP/2gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS IP178.250.0.157:0
Hashe92b3bf94f07a0337e1ecd483c828ecb 7fa55fcce3377997b23a0a37bd05a0fd90bf5333 5e24603b8f99e05c039c5a446ff437ed4a6ce70a4a05fecdf4ecb2443a028aef
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:49 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 818822
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com | 178.250.0.157 | 200 OK | 18 kB |
URL HTTP/2gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com IP178.250.0.157:0
Hashf99c93e98f8a0b0d1220508ef4e50e29 809aa4b79e90fe299fabbbf3bf4c6fb27b778c54 7a91f0adef30aca45be443980492a574fac17ea28344accbd3e4d3ff192bd161
GET /syncframe?origin=rtus&topUrl=linkvertise.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:48 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
uid=38d70563-ad0a-42e9-a6da-93b1729d6758; expires=Thu, 01 Feb 2024 13:30:49 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 463883
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| dnacdn.net/dna | 178.250.2.146 | 200 OK | 0 B |
IP178.250.2.146:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:49 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=KIddyF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czN1eXRpbWJxNXhUOEI4OWFDaWZCRlNlNlg4a3JPODBZMHhNeSUyQiUyRktDV1pN; expires=Thu, 01 Feb 2024 13:30:49 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 299629
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 313 B |
IP93.184.220.29:0
Hash677b82eb1477e35eb16015d6c01e2dc8 48a365d40058a1f90adb94d72f97af2a422f0d3e 7cbea0764e63431e5543aafdf873e091654a2a5ffd4ef7992aea986fd2a24d6c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 501
Cache-Control: max-age=140570
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:49 GMT
Etag: "63b8f42e-139"
Expires: Mon, 09 Jan 2023 04:33:39 GMT
Last-Modified: Sat, 07 Jan 2023 04:25:18 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 313
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 313 B |
IP93.184.220.29:0
Hash677b82eb1477e35eb16015d6c01e2dc8 48a365d40058a1f90adb94d72f97af2a422f0d3e 7cbea0764e63431e5543aafdf873e091654a2a5ffd4ef7992aea986fd2a24d6c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 469
Cache-Control: max-age=140538
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:49 GMT
Etag: "63b8f42e-139"
Expires: Mon, 09 Jan 2023 04:33:07 GMT
Last-Modified: Sat, 07 Jan 2023 04:25:18 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
|
|
| gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS | 178.250.0.157 | 200 OK | 0 B |
URL HTTP/2gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS IP178.250.0.157:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-crto-bundle
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:50 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE
access-control-allow-origin: https://linkvertise.com
server-processing-duration-in-ticks: 639041
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 314 B |
IP93.184.220.29:0
Hash0ede8e94b27c6ba53cf654abe3fa5a4f a96d515d30f36b9d706a2e4db36f9b78b5cf7be1 e6b9de53725d6b51d6053a04843252bad0debbe113f74722119edcf41544e3bd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4204
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 13:30:50 GMT
Last-Modified: Sat, 07 Jan 2023 12:20:47 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 314
|
|
| csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 | 178.250.0.162 | 200 OK | 43 B |
URL HTTP/2csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 IP178.250.0.162:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashb4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:50 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
|
|
| ag.gbc.criteo.com/newidsd | 185.235.84.8 | 200 OK | 40 B |
URL HTTP/2ag.gbc.criteo.com/newidsd IP185.235.84.8:0
File typeJSON data\012- , ASCII text, with no line terminators Hash63a2e3e7180a3f8270afd5ca123a0fb9 5da91179027c8630a8420e1a22177b7c428b80dc f67c2047751843d44d755c3cb847cf3230a07689ca3709789ee4bf57dcdab206
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:48 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 98429
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5c619dc-4aba-44fa-b20f-5156f0b5ce48.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5c619dc-4aba-44fa-b20f-5156f0b5ce48.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5196aa81157b1c7f02a2aeec700cb184 f298bf34671800af23c78a4dcc14ff0ed60f48e8 ecdaf55df4565409bd6f6cb66a7272e9a6f3cee750437df658d4412827e0d042
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5c619dc-4aba-44fa-b20f-5156f0b5ce48.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10809
x-amzn-requestid: 6871f0ab-096d-42bc-82c4-ed72871efd30
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d4DgmF_EIAMF_Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63acb2d0-551e264261f23a0f3afa9213;Sampled=0
x-amzn-remapped-date: Wed, 28 Dec 2022 21:19:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BoHEdJaS8XPY5eqT7q4mdxypOsnxpFgvMoB5O8iKkMSiNicBZgz5mw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 21:49:53 GMT
age: 56462
etag: "f298bf34671800af23c78a4dcc14ff0ed60f48e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| dnacdn.net/dna | 178.250.2.146 | 200 OK | 0 B |
IP178.250.2.146:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=KIddyF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czN1eXRpbWJxNXhUOEI4OWFDaWZCRlNlNlg4a3JPODBZMHhNeSUyQiUyRktDV1pN
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:49 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=noBL3180M0RITmhlJTJCZkMwOUJGQlhaMUN2czN1eXRpbWJxNXhUOEI4OWFDaWZCRlFybCUyRjg2cnUyJTJCeW9COWJpNyUyRlNjQlk; expires=Thu, 01 Feb 2024 13:30:50 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 351031
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| gem.gbc.criteo.com/newidsd | 185.235.84.46 | 200 OK | 0 B |
URL HTTP/2gem.gbc.criteo.com/newidsd IP185.235.84.46:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:49 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 105101
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css | 104.18.11.207 | 200 OK | 0 B |
URL HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css IP104.18.11.207:0
GET /bootstrap/4.1.3/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:47 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 2021-04-23 06:08:39
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: c62efa4acc8489a2647d63073221c51f
cdn-cache: HIT
cf-cache-status: HIT
age: 21207566
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 785d0ccc4fefb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| publisher.linkvertise.com/api/v1/account | 172.67.187.81 | 200 OK | 0 B |
URL HTTP/2publisher.linkvertise.com/api/v1/account IP172.67.187.81:0
GET /api/v1/account HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:48 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=KVto4ATo1WL1llgvV8imOKiGDZTrGPRK6V66C8OF; expires=Sun, 07-Jan-2024 13:30:48 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zzR15RUN4ehum0B%2BkqIOmefLVoLJI4o2U4aXxDDzcX1fHgFXbDFsj1nC2HvYo4c4N7ptt1cTsHw7qG3TcKcWrUlQZC8Ad8dYd9y4Dbx%2FiKGsusJZaNcM%2Fx0QaAx1J7matUZNdJgXNesxnM2j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 785d0cd26b560afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| js.chargebee.com/v2/master-4be6ae49ada5a99f44f2.js | 143.204.55.13 | 200 OK | 0 B |
URL HTTP/2js.chargebee.com/v2/master-4be6ae49ada5a99f44f2.js IP143.204.55.13:0
GET /v2/master-4be6ae49ada5a99f44f2.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-4bc76e806d82eef02ccbab51978cb5a1.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 04 Jan 2023 09:07:40 GMT
x-amz-version-id: 637oXimGuV6SQRP68MR6S2yNdYqzR2vM
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sat, 07 Jan 2023 13:28:24 GMT
cache-control: max-age=300,public
etag: W/"c010eb9df349bdeda1ecc5378cbe2318"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mxR0Plm_cvgef3Gd6XtWia16l4ye4oTRffLtmufCaTOkx9UoISO8eA==
age: 145
X-Firefox-Spdy: h2
|
|
| linkvertise.com/538599/2020-2022-belle-delphine?o=sharing | 172.67.187.81 | 200 OK | 0 B |
URL HTTP/2linkvertise.com/538599/2020-2022-belle-delphine?o=sharing IP172.67.187.81:0
GET /538599/2020-2022-belle-delphine?o=sharing HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:46 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n281SzTwyVQuHdv0uUsxOVmdTKrmbN70jmRRAbcUp0cjr4eUx8QC0Il4idNfPEsCrcGCr4Fco3ZywJptIevb5zqpPqm5bc17HQAmIPdmHt%2FvwMn9uF%2FNo0mrDfNvfkCT11A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 785d0cc9ba79fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| gum.criteo.com/sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=noBL3180M0RITmhlJTJCZkMwOUJGQlhaMUN2czN1eXRpbWJxNXhUOEI4OWFDaWZCRlFybCUyRjg2cnUyJTJCeW9COWJpNyUyRlNjQlk&idsd=-1278343447,-707904401&cw=1&rtusCallerId=72&lsw=1 | 178.250.0.157 | 200 OK | 0 B |
URL HTTP/2gum.criteo.com/sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=noBL3180M0RITmhlJTJCZkMwOUJGQlhaMUN2czN1eXRpbWJxNXhUOEI4OWFDaWZCRlFybCUyRjg2cnUyJTJCeW9COWJpNyUyRlNjQlk&idsd=-1278343447,-707904401&cw=1&rtusCallerId=72&lsw=1 IP178.250.0.157:0
GET /sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=noBL3180M0RITmhlJTJCZkMwOUJGQlhaMUN2czN1eXRpbWJxNXhUOEI4OWFDaWZCRlFybCUyRjg2cnUyJTJCeW9COWJpNyUyRlNjQlk&idsd=-1278343447,-707904401&cw=1&rtusCallerId=72&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 13:30:50 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1416014
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| js.chargebee.com/v2/pi-worker-4bc76e806d82eef02ccbab51978cb5a1.js | 143.204.55.13 | 200 OK | 0 B |
URL HTTP/2js.chargebee.com/v2/pi-worker-4bc76e806d82eef02ccbab51978cb5a1.js IP143.204.55.13:0
GET /v2/pi-worker-4bc76e806d82eef02ccbab51978cb5a1.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-4bc76e806d82eef02ccbab51978cb5a1.html
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 04 Jan 2023 09:07:40 GMT
x-amz-version-id: 4CNsfL6G4_ssbB_pl.dX76jhfhQ.rKWt
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sat, 07 Jan 2023 13:26:49 GMT
cache-control: max-age=300,public
etag: W/"e63d2a6e7674d2a545e50840655b3933"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iWPfOesRooNpyg4HBlZ6myOvkJU1_mlHIYNYKqIu9skCymgEZog3bg==
age: 242
X-Firefox-Spdy: h2
|
|