birdurls.com/aZ11xM47
172.67.157.154301 Moved Permanently 0 B IP 172.67.157.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aZ11xM47 HTTP/1.1
Host: birdurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 05 Feb 2023 22:19:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 05 Feb 2023 23:19:05 GMT
Location: https://birdurls.com/aZ11xM47
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ozKyl3iqM%2FwvgdAALMRUXPFvSvrekEL3J6c0O%2BLvS0ikqjkyF3kdus%2FQYZsPBU3KvRXSnRTzdvxCtDlnW%2FTeDeQEEBJA%2F0ry008IiGwvBciYoYAEyZuWu6S%2BQYPpPYA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794f0690fd430b31-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3789
Expires: Sun, 05 Feb 2023 23:22:15 GMT
Date: Sun, 05 Feb 2023 22:19:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12485
Expires: Mon, 06 Feb 2023 01:47:11 GMT
Date: Sun, 05 Feb 2023 22:19:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 21:33:58 GMT
content-type: application/json
age: 2708
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18620
Expires: Mon, 06 Feb 2023 03:29:26 GMT
Date: Sun, 05 Feb 2023 22:19:06 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash cbf78ae53a12e8e24a6b7d6fea3a4ff5
4ad79a5a4ec1617364f40349cad7976c6639c3e0
dda17771895ec0007a4da122680160dd6a011d99943e3cbaa28887afb9d321e1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4526
Cache-Control: max-age=116095
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:06 GMT
Etag: "63df3c2b-116"
Expires: Tue, 07 Feb 2023 06:34:01 GMT
Last-Modified: Sun, 05 Feb 2023 05:18:35 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +0YjBXUzb3zXAFfiPRT58RSmrXpAr2bpDRjynGOb0gdkWmueUlCz5WORY6HWiEejlRN6LHmNUXk=
x-amz-request-id: GCSE0X9CFX2BR2MP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 21:53:27 GMT
age: 1539
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 22:19:06 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash cbf78ae53a12e8e24a6b7d6fea3a4ff5
4ad79a5a4ec1617364f40349cad7976c6639c3e0
dda17771895ec0007a4da122680160dd6a011d99943e3cbaa28887afb9d321e1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4526
Cache-Control: max-age=116095
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:06 GMT
Etag: "63df3c2b-116"
Expires: Tue, 07 Feb 2023 06:34:01 GMT
Last-Modified: Sun, 05 Feb 2023 05:18:35 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5ec901100323aad6c304ab84532a1964
2126a627de54f47d5c2ee095fba31e9a04935457
2e72b47f1d9cb6e49e8c7d30daba05311409e0359012456f9c54d824d3937b39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2999
Cache-Control: max-age=134058
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:06 GMT
Etag: "63df884d-118"
Expires: Tue, 07 Feb 2023 11:33:24 GMT
Last-Modified: Sun, 05 Feb 2023 10:43:25 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 21:51:16 GMT
age: 1670
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3249
Expires: Sun, 05 Feb 2023 23:13:15 GMT
Date: Sun, 05 Feb 2023 22:19:06 GMT
Connection: keep-alive
push.services.mozilla.com/
54.185.76.10101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.185.76.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IP7WmkjnW5JwNVSnAgB40A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: OuHY86DKA6YdR1qSIdIvD1RBqFA=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3848
Expires: Sun, 05 Feb 2023 23:23:16 GMT
Date: Sun, 05 Feb 2023 22:19:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3848
Expires: Sun, 05 Feb 2023 23:23:16 GMT
Date: Sun, 05 Feb 2023 22:19:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3848
Expires: Sun, 05 Feb 2023 23:23:16 GMT
Date: Sun, 05 Feb 2023 22:19:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3848
Expires: Sun, 05 Feb 2023 23:23:16 GMT
Date: Sun, 05 Feb 2023 22:19:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9070541c-6707-464e-b141-b6c767d8a58a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9070541c-6707-464e-b141-b6c767d8a58a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 062e186a259eda97173695240a492c63
9b476a4ec219667f560b88199a3a4e4b0a93b579
d18570d3c4ada689b5c2a99b0783ce41c629bd125e6683cf225e01b7032f14a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9070541c-6707-464e-b141-b6c767d8a58a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12256
x-amzn-requestid: 1b959eb9-cf69-414c-b57b-4a63277d709c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fvgx-EhgoAMF2wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc7b3f-2c58e8ac2aee8a8f409a93a0;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 03:10:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mujn0m9G4SIcD-5qZiD5kaYHg8x3rDtx-jYus-hrWFx_UjWEMNM_Tw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 04:43:25 GMT
age: 63343
etag: "9b476a4ec219667f560b88199a3a4e4b0a93b579"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7a466d89c75ff3459b7328591db52cf
c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb
e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:51:29 GMT
age: 1659
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 251f1a5d671fb797fb98e9a71754c341
335425603d9eec146a3c03422dbca91134272e53
74932f07561287e33302aabcf9c639e9df7ae0fbc4bf71f5467310aabafea208
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6202
x-amzn-requestid: 01b85fcd-69a0-49da-8640-32a3ef19378a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bUFEJoAMFapg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c48-14817e717361e09170714e9d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1_1mEN4j5cciWEiimz4PRjx3PNGnrSRib9oEJAdYLrrtyjqnz_zvcQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:30:31 GMT
age: 38917
etag: "335425603d9eec146a3c03422dbca91134272e53"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: c11233d1-ef16-4b03-9174-a493011dc0ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEoFHOKIAMFZwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8166-4a290e811547293f437311bb;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:49:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1F0bxib8bn4kZvGBTL63ecNDDEy6XZ8kIb8K5BNqusVL9SvAAARUJw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:05:50 GMT
age: 798
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 013fa296-a431-410b-b3fb-7417b3e877eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpIQAFCMIAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ed99-2e1daa8b75977de07c48b8fc;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 04:42:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UzQGDCYe_8AuYYLaLSAWzHQhwJMpzpXWbjE5AwukevW6G6SLDxDjmA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:42:59 GMT
age: 66969
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:24:01 GMT
age: 39307
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 35 kB IP 93.184.220.29:0
Hash f78fb83e8c2df81bafa8359bfeb8eac3
84fbc4490a18c78304d68236a9beed4485ac2be1
9ab5b92fd37c6fd8aff08371a02cbf361f59708298bfbc1bec2a6faf4f53dd96
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2758
Cache-Control: max-age=99585
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:08 GMT
Etag: "63df0297-118"
Expires: Tue, 07 Feb 2023 01:58:52 GMT
Last-Modified: Sun, 05 Feb 2023 01:12:55 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 921bf8a656073528f8f8708414ff17db
aa5e6ea80d9f72966476b110fda8dc4f2a391295
ecc8fda7538b961c6cccf14d15a9f6d7aee20eccba43c527e9d4d1b1e46dfb3b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6363
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:08 GMT
Last-Modified: Sun, 05 Feb 2023 20:33:05 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 921bf8a656073528f8f8708414ff17db
aa5e6ea80d9f72966476b110fda8dc4f2a391295
ecc8fda7538b961c6cccf14d15a9f6d7aee20eccba43c527e9d4d1b1e46dfb3b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6363
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:08 GMT
Last-Modified: Sun, 05 Feb 2023 20:33:05 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 7943eeb63b88048c01f8133c25a76389
498265ecbfca0d0f54fa6f018983d903e04596f4
491ae891c0686664a73da953763f60fbf89a3b0cb85286916a749177bc5adf47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2758
Cache-Control: max-age=99585
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:08 GMT
Etag: "63df0297-118"
Expires: Tue, 07 Feb 2023 01:58:52 GMT
Last-Modified: Sun, 05 Feb 2023 01:12:55 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
cdn.unblockia.com/h.js
143.204.55.84200 OK 153 kB IP 143.204.55.84:0
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Size 153 kB (153223 bytes)
Hash 0298f5b07154a01756527ea50aa20b69
473894f7fb0c7c329f3c2863d667a78fd591b0e0
aaba2da3595a52a2c502beecd3cd9eeaeedc93faf904ac17e50104e55f465090
GET /h.js HTTP/1.1
Host: cdn.unblockia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 153223
date: Sun, 05 Feb 2023 06:08:20 GMT
last-modified: Wed, 01 Feb 2023 16:56:57 GMT
etag: "0298f5b07154a01756527ea50aa20b69"
x-amz-meta-codebuild-content-sha256: d2cad23c06f64c92abd687e9af25313addce67d5a9659ca62882437bd5a89900
x-amz-version-id: hY4L4iRWDT4x4HpHoBgZQ_jDylmV88m0
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:eu-west-1:987257285531:build/unblockia-loader-codebuild-project:eed14b09-bf79-4256-9d87-8421f120fcea
x-amz-meta-codebuild-content-md5: cf2e8578aabfc94a9bd8e460e1034106
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ey6qZGTFrquQfZcxL9izaV0KEwQuBbp9HjWCSO-KvTH_yNok5iGt3w==
age: 58249
vary: Origin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9206c3ba6d5a17d62244c438fd03496e
069e8257aebe618953434b1299d065540125a512
937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-132429996-17
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-132429996-17
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash 46ea76ccab42ca62e9eacc47ef371f4d
f760fd76c65cf2cfc877d54a9552de93b7e3fb1d
409cd7ec3f126fa2ccb672115429d48fbbd888fb99dbda1e819f5ed6a29a7ea2
GET /gtag/js?id=UA-132429996-17 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 22:19:08 GMT
expires: Sun, 05 Feb 2023 22:19:08 GMT
cache-control: private, max-age=900
last-modified: Sun, 05 Feb 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43917
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:400,700%7CMuli:300,300i,400
142.250.74.106200 OK 934 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:400,700%7CMuli:300,300i,400
IP 142.250.74.106:0
Hash f2ec6c499e44b7db4d6e2474702dbb60
f47914eaac2b342a4b61630253fdf649af4f693e
5dc2bacac12764a203325291a53b505068e508d866ff08c4a276b394fb7e0de3
GET /css?family=Montserrat:400,700%7CMuli:300,300i,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 22:19:08 GMT
date: Sun, 05 Feb 2023 22:19:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=6
185.76.9.16200 OK 1.4 kB URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=6
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
Hash 6c35b36f248a35d0040d011f119aa9e2
57bb4c4424d970893a5fcf30bbf492d5363fdf6d
5692213eba98b2d6fd554e400d473564631d42be40a9303ffa8575e97ccebfc9
GET /s/requestform.js?siteId=37837&formatId=6 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676067781
server: CDN77-Turbo
x-77-nzt: AblMCQ1ycSnvF6ICAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be06366f6a52b
x-cache: HIT
x-age: 172567
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=11
185.76.9.16200 OK 1.4 kB URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=11
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
Hash 1e6bfb35b8ad9258fcad49f6f9e4d9be
defacb3eab3aa30bbb9aea2b5131053a64adbc84
153ca39e464ad2148bb9773e6201b489f6943f87bae089d465e6ac4d34bbcfd5
GET /s/requestform.js?siteId=37837&formatId=11 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676067781
server: CDN77-Turbo
x-77-nzt: AblMCQ3Y0l/vF6ICAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be0638fc2862c
x-cache: HIT
x-age: 172567
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ads.themoneytizer.com/s/gen.js?type=28
185.76.9.16200 OK 2.9 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=28
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
Hash 95d669010d1c0689add6ab71c4e32634
2bb7f920039cfe79aafdd98db2570663a9cbdfff
f8e53e4efb0875da6f8e7954aedbf8b16399121b148de8137f37ab49cf57c908
GET /s/gen.js?type=28 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676052495
server: CDN77-Turbo
x-77-nzt: AblMCQ2oyfP/zd0CAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be063be16222b
x-cache: HIT
x-age: 187853
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b0c933d059049a9d63dfd5bf194cdad
1116f2f77351192d4c25f5b5299dd2af99563532
ecb207edf56ba3ab9474d2da4c75961b7cb7f2dd6e8122bd83a385e9fe07f020
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECB207EDF56BA3AB9474D2DA4C75961B7CB7F2DD6E8122BD83A385E9FE07F020"
Last-Modified: Sat, 04 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6743
Expires: Mon, 06 Feb 2023 00:11:31 GMT
Date: Sun, 05 Feb 2023 22:19:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b0c933d059049a9d63dfd5bf194cdad
1116f2f77351192d4c25f5b5299dd2af99563532
ecb207edf56ba3ab9474d2da4c75961b7cb7f2dd6e8122bd83a385e9fe07f020
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECB207EDF56BA3AB9474D2DA4C75961B7CB7F2DD6E8122BD83A385E9FE07F020"
Last-Modified: Sat, 04 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6743
Expires: Mon, 06 Feb 2023 00:11:31 GMT
Date: Sun, 05 Feb 2023 22:19:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b0c933d059049a9d63dfd5bf194cdad
1116f2f77351192d4c25f5b5299dd2af99563532
ecb207edf56ba3ab9474d2da4c75961b7cb7f2dd6e8122bd83a385e9fe07f020
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECB207EDF56BA3AB9474D2DA4C75961B7CB7F2DD6E8122BD83A385E9FE07F020"
Last-Modified: Sat, 04 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6743
Expires: Mon, 06 Feb 2023 00:11:31 GMT
Date: Sun, 05 Feb 2023 22:19:08 GMT
Connection: keep-alive
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.35200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 07:08:09 GMT
expires: Sat, 03 Feb 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 227459
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform3.js?siteId=37837&formatId=1
185.76.9.16200 OK 117 kB URL HTTP/2 ads.themoneytizer.com/s/requestform3.js?siteId=37837&formatId=1
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
Size 117 kB (117252 bytes)
Hash 4cb39d57ef444bfc0a6140d7ba5f945f
31cda06fe732b9299a8bd7eddf4128c9e2cf9f6f
f586bc4ef4db5c32259d7990651c943b4d421e4293dd24f6ba9004e782bc1619
GET /s/requestform3.js?siteId=37837&formatId=1 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676105413
server: CDN77-Turbo
x-77-nzt: AblMCQ07AOn/Fw8CAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be0632047c92e
x-cache: HIT
x-age: 134935
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 036ffc4858040f8572e04f98d6b2a6e0
101f68ac5ff63e9b6717b0b8e19da8045f30edb2
3278919dab4fa17984a5ad03f188a22a8165fa93dca86e96e16796a586159b3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3278919DAB4FA17984A5AD03F188A22A8165FA93DCA86E96E16796A586159B3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4402
Expires: Sun, 05 Feb 2023 23:32:30 GMT
Date: Sun, 05 Feb 2023 22:19:08 GMT
Connection: keep-alive
c.tmyzer.com/c/?s=37837&f=2&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=37837&f=2&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=37837&f=2&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Feb 2023 22:19:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:0A18_36264064:01BB_63E02B5C_3F95DF3:1C64B
X-IPLB-Instance: 38438
c.tmyzer.com/c/?s=37837&f=11&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=37837&f=11&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=37837&f=11&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Feb 2023 22:19:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:F5A3_36264064:01BB_63E02B5C_3F94923:2C9C0
X-IPLB-Instance: 20686
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b0c933d059049a9d63dfd5bf194cdad
1116f2f77351192d4c25f5b5299dd2af99563532
ecb207edf56ba3ab9474d2da4c75961b7cb7f2dd6e8122bd83a385e9fe07f020
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECB207EDF56BA3AB9474D2DA4C75961B7CB7F2DD6E8122BD83A385E9FE07F020"
Last-Modified: Sat, 04 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6743
Expires: Mon, 06 Feb 2023 00:11:31 GMT
Date: Sun, 05 Feb 2023 22:19:08 GMT
Connection: keep-alive
ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=1
185.76.9.16200 OK 879 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=1
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
Hash 5468e4da4e9adabdb0792916c8168b0e
583e0a41c76adc72ddbad8bb001c2099e7660da7
dcfec1cd303a5de1eb36cce81063db66c46040dfc44332ab036127c52c1c22da
GET /s/requestform.js?siteId=37837&formatId=1 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676105413
server: CDN77-Turbo
x-77-nzt: AblMCQ0Ux3n/Fw8CAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be0635954ac2c
x-cache: HIT
x-age: 134935
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.intelligenceadx.com/lightgallery.min.js
185.76.9.16200 OK 89 kB URL HTTP/2 www.intelligenceadx.com/lightgallery.min.js
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
Hash 29648180ce4016a252d4780502c5fcc7
6631598f50cc7582bf9a651cf18fb09740703cf0
262aadb6e5a426d76a2f5e893323769c2fb2ec63ff3e2e9574b1b23e0c6dff41
GET /lightgallery.min.js HTTP/1.1
Host: www.intelligenceadx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: application/x-javascript
alt-svc: quic="185.76.9.13:443"; ma=2592000; v="44,43,39"
expires: Wed, 08 Feb 2023 16:18:23 GMT
access-control-allow-origin: *
link: <https://intelligenceadx.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-accel-expires: @1675873103
server: CDN77-Turbo
x-77-nzt: AblMCQ0RqwXvjZoFAA
x-77-nzt-ray: c0a4cc2833fc686c5c2be0630b22bd31
x-cache: HIT
x-age: 367245
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
c.tmyzer.com/c/?s=37837&f=28&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=37837&f=28&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=37837&f=28&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Feb 2023 22:19:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:D4ED_36264064:01BB_63E02B5C_3FA08E1:2273B
X-IPLB-Instance: 41595
ads.themoneytizer.com/s/gen.js?type=1
185.76.9.16200 OK 2.4 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=1
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (2659)
Hash f22118ed811a9321e75253b291d41b4a
525e21af604773b0d321eb8c5eb14c3a3814a7a9
a388a3461ccd5caba8f178e9f0f4ee84a759a08388d5b85915637b2832ca86dc
GET /s/gen.js?type=1 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676052494
server: CDN77-Turbo
x-77-nzt: AblMCQ0SmmH/zt0CAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be0632c4f1a2b
x-cache: HIT
x-age: 187854
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ba6a3b01ed9a1b27b2917f9cba5a59e1
7bc5fc055a16456f6247adfb8bedbf4c83602c8c
785024750322b6ee8e1e9cd17d3a733150a129ee7e3c301048535b740fc0ba06
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5475
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:09 GMT
Last-Modified: Sun, 05 Feb 2023 20:47:55 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=3
185.76.9.16200 OK 878 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=3
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
Hash 401e3acd991ae3e2fa1159c200c76d52
eada0efd6c8563f3aca6f18a6eb84e084ebab12e
8b33452ad8bc42828f27ff304329e9759278b8fce9772fdb664b287dd2ad4690
GET /s/requestform.js?siteId=37837&formatId=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676067781
server: CDN77-Turbo
x-77-nzt: AblMCQ2FrZ//F6ICAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be06355779c2b
x-cache: HIT
x-age: 172567
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 1477744ca58888706eb423d04c644e6e
db1514fe35ceae3a882d4f458b529561c3c68fac
40465956eaadfa80f157b5fe6452f8acad61c5e105b3daa5be2489b85e09b917
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3046
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:09 GMT
Last-Modified: Sun, 05 Feb 2023 21:28:23 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 312
c.tmyzer.com/c/?s=37837&f=31&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=37837&f=31&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=37837&f=31&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Feb 2023 22:19:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:71C3_36264064:01BB_63E02B5C_3F8C19A:6014
X-IPLB-Instance: 38442
onetag-sys.com/usync/?pubId=2a897e3f18e6769&cb=1675635591050
51.89.9.251204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?pubId=2a897e3f18e6769&cb=1675635591050
IP 51.89.9.251:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=2a897e3f18e6769&cb=1675635591050 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=3
185.76.9.16200 OK 105 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=3
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
Size 105 kB (105165 bytes)
Hash c35938a485144133e2ea308b88a21cbd
e5696dde25e03a13e7ae67f4ec671fd5366ad042
771b449836a43710080733387afc03dec9324c035b55ac754a56ebabda84f8fd
GET /s/gen.js?type=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676052494
server: CDN77-Turbo
x-77-nzt: AblMCQ0QZkj/zt0CAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be06382268e2b
x-cache: HIT
x-age: 187854
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 57fdf2746ac19b2c2093149d3ded7b25
06f6dcf2ac2f7a9cebe8c071067727dc5686fca1
ca8f1accae24f6fa5a101d38d72d4d933886080e487dd0ee75d246f2853a4791
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8F1ACCAE24F6FA5A101D38D72D4D933886080E487DD0EE75D246F2853A4791"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3713
Expires: Sun, 05 Feb 2023 23:21:02 GMT
Date: Sun, 05 Feb 2023 22:19:09 GMT
Connection: keep-alive
c.tmyzer.com/c/?s=37837&f=19&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=37837&f=19&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=37837&f=19&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Feb 2023 22:19:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:0A18_36264064:01BB_63E02B5C_3F95DFE:1C64B
X-IPLB-Instance: 38438
p.cpx.to/p/12770/px.js
52.18.129.185200 OK 2.0 kB IP 52.18.129.185:0
File type ASCII text, with very long lines (1990), with no line terminators
Hash 6085a6f4e9b48a25e34c1deaa093c629
26cb4dc453a172fa4d88d185e15e63cd02622213
9172511f521591659279037b12a0217c1114549ad0e1c832a4eaa5f023279ad1
GET /p/12770/px.js HTTP/1.1
Host: p.cpx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: max-age=2419200, public
content-type: application/javascript; charset=UTF-8
date: Sun, 05 Feb 2023 22:19:08 GMT
Content-Length: 1990
Connection: keep-alive
tag.leadplace.fr/libJsLP.js
145.239.193.51200 OK 5.5 kB URL HTTP/1.1 tag.leadplace.fr/libJsLP.js
IP 145.239.193.51:0
Hash a0c24f993bc0901cfe62d1e801cb2b45
7eb2bdce06161ae486bc8e7ecd0b5c9c4f7b2984
80fccb00db57a177d26368cda09f8a540cf1aa641b8b6837047e86d3bd8d6333
GET /libJsLP.js HTTP/1.1
Host: tag.leadplace.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 05 Feb 2023 22:19:09 GMT
Content-Type: application/javascript
Content-Length: 5547
Last-Modified: Thu, 14 Oct 2021 07:27:52 GMT
ETag: "6167dbf8-15ab"
Accept-Ranges: bytes
X-IPLB-Request-ID: 5B5A2A9A:FC28_91EFC133:01BB_63E02B5D_6C44C9E3:14262
X-IPLB-Instance: 29922
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 901bb3c4ac9fc3d76b87d6f93100b868
fdcf65b447c4a84369832f9c0fda52279f901c37
4931529e5822a9fdf9390095936aa58856247adff1a50b874bd2981403c1c7d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3502
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:09 GMT
Last-Modified: Sun, 05 Feb 2023 21:20:47 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
a.teads.tv/analytics/tag.js
2.18.173.43200 OK 3.4 kB URL HTTP/2 a.teads.tv/analytics/tag.js
IP 2.18.173.43:0
File type ASCII text, with very long lines (4822)
Hash 6ddfb3a828a563a7719081ff9aeedaba
80286455b7c85311df5f997714b83380ac02fd6d
826524e59a21d4190f923f804a17db1513e1ee3cb4a5ed12f3bb6a5b4f370835
GET /analytics/tag.js HTTP/1.1
Host: a.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +hi3J8gLh7odTbzzwPTTi1cNLRiMIMeCbLwhFS3fdhvnkPc6F/KidF+aylAlaVgqP4umQC5X3TY=
x-amz-request-id: VYTSDGA8QVA7F7Y0
last-modified: Wed, 02 Nov 2022 09:38:15 GMT
etag: "6ddfb3a828a563a7719081ff9aeedaba"
x-amz-server-side-encryption: AES256
x-amz-version-id: Y6qsPmt0o95KDo3Ibo2euzqSnxQebNV8
accept-ranges: bytes
content-type: text/javascript;charset=utf-8
content-length: 3391
cache-control: private, max-age=3600
date: Sun, 05 Feb 2023 22:19:09 GMT
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
ced.sascdn.com/tag/1097/smart.js
95.101.10.83200 OK 33 kB URL HTTP/1.1 ced.sascdn.com/tag/1097/smart.js
IP 95.101.10.83:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash ab5d7bcba6f9bbe86e71d3f75061efc8
bf137eb7dc8285e29d986f6b8f3272f6f979bc0e
a973cdadddcd9ba18f6e262f602d39e091090e4a94ac036b3fc4f7428e5b84e6
GET /tag/1097/smart.js HTTP/1.1
Host: ced.sascdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 32964
Cache-Control: public, max-age=7200
Expires: Mon, 06 Feb 2023 00:19:09 GMT
Date: Sun, 05 Feb 2023 22:19:09 GMT
Connection: keep-alive
d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
143.204.42.129200 OK 26 kB URL HTTP/1.1 d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
IP 143.204.42.129:0
File type ASCII text, with very long lines (16085)
Hash 8703fc9eead243fe2f47380e962d7fa2
3d9f707259112fa9ccdd1e676f00eadcff71906c
b47b4ca26c57e3dceebd7abd067df9622599bed6bfb11b480f92d09a945cd213
GET /a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js HTTP/1.1
Host: d2zur9cc2gf1tx.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 25704
Connection: keep-alive
Accept-Ranges: bytes
Date: Sun, 05 Feb 2023 07:43:38 GMT
Last-Modified: Mon, 18 Feb 2019 16:54:28 GMT
Server: Apache
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mB4EPpYyqMVeIL-m8pUrZvnU2BRebhIwdV5Aqva61bKkBW7UJHpmEw==
Age: 52531
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 8942dac2c3b84167c8c1c36c8c5dbc24
3202c79b026ed05cd1568065cfba03cffe066637
998bc79f4dc7577f16aa29eea707a9f74380352848fae678f2f9e1a5a5ea42c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4050
Cache-Control: max-age=139416
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:09 GMT
Etag: "63df9923-138"
Expires: Tue, 07 Feb 2023 13:02:45 GMT
Last-Modified: Sun, 05 Feb 2023 11:55:15 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 312
s-img.mgid.com/g/12578242/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDEvMTAxOTI0LzA4ZjYwOGNlNmFkODgzNzFkMjM3YTkwN2E3ZTMyNzU0LmpwZWc.webp?v=1675635549-6OvgarLPDIY29d06Omy41LSakvvMSTteoprBRctXCV8
104.19.132.78200 OK 14 kB URL HTTP/2 s-img.mgid.com/g/12578242/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDEvMTAxOTI0LzA4ZjYwOGNlNmFkODgzNzFkMjM3YTkwN2E3ZTMyNzU0LmpwZWc.webp?v=1675635549-6OvgarLPDIY29d06Omy41LSakvvMSTteoprBRctXCV8
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c60308684c270b6416fda60ab916fa99
d4729add3d45c6d4a16e83a55b72870cb7aca715
19f1f6a3e7e3c4f5528776a40ea295a2c9a02f97150bdb3c3dda3ba300ec6c58
GET /g/12578242/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDEvMTAxOTI0LzA4ZjYwOGNlNmFkODgzNzFkMjM3YTkwN2E3ZTMyNzU0LmpwZWc.webp?v=1675635549-6OvgarLPDIY29d06Omy41LSakvvMSTteoprBRctXCV8 HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 14040
x-mg-request-uuid: e8efe27f-45dd-4406-8606-08b1c3b6ed2c
access-control-allow-origin: *
last-modified: Tue, 29 Mar 2022 06:54:37 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8899749
accept-ranges: bytes
set-cookie: __cf_bm=GGjAFXBYLzNoSF21TPQC5j.fs_4PlU3jsWl.omGrhgA-1675635549-0-Ac1BwS016hzxsjLWWI3P7FXlSx4NZ1+Fn6+mGmc2EAcIqRCgB7DVfXd7sattlj9xobrOVQ00hqfbLKeLAmynaY4=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a85b1ab500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/11533309/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMTAvMTAxOTI0Lzc2MGI0NjNkODYzZmEzYjQ3MzZlMGE3YTc0N2M1ODcyLmpwZWc.webp?v=1675635549-n-90CfqGkwxQ5YsURvWBYvSEX6FTxkjWjSmKRJk1UDk
104.19.132.78200 OK 18 kB URL HTTP/2 s-img.mgid.com/g/11533309/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMTAvMTAxOTI0Lzc2MGI0NjNkODYzZmEzYjQ3MzZlMGE3YTc0N2M1ODcyLmpwZWc.webp?v=1675635549-n-90CfqGkwxQ5YsURvWBYvSEX6FTxkjWjSmKRJk1UDk
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ad40e96b014755a90a4a78d5f524a7d1
0c5801305259a5beda6cf3f783daeacb91d4949d
803ee768b54cddf8a3ce326ba0cba71f13d19cbb529ce8efb7c2d7b18b52be9a
GET /g/11533309/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMTAvMTAxOTI0Lzc2MGI0NjNkODYzZmEzYjQ3MzZlMGE3YTc0N2M1ODcyLmpwZWc.webp?v=1675635549-n-90CfqGkwxQ5YsURvWBYvSEX6FTxkjWjSmKRJk1UDk HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 17642
x-mg-request-uuid: 329e3d27-0a49-402b-8460-559e5819bc15
access-control-allow-origin: *
last-modified: Wed, 01 Dec 2021 12:25:18 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 4578189
accept-ranges: bytes
set-cookie: __cf_bm=ffaZNdDDif6JwkA2R0N5a8RTmhPWQeleeh1heQH2DAk-1675635549-0-Afjw01cxnqKCKXt4BjLuf4LQ51evXPwDsY2r4XowFpxEcA+h8sqDcWlMFH0DVJso8jwDsxFITro3BtE4KPJtb/Q=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a85b17b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/12578200/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDkvMTAxOTI0LzBlOTc3ODY1ZmU1MzhmNjBkMGEwODAwYTFmN2FiODgxLmpwZWc.webp?v=1675635549-fNmoxK7BTp_UMONAKJxS8xIFaYYAjAfnhuacd5gItaY
104.19.132.78200 OK 27 kB URL HTTP/2 s-img.mgid.com/g/12578200/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDkvMTAxOTI0LzBlOTc3ODY1ZmU1MzhmNjBkMGEwODAwYTFmN2FiODgxLmpwZWc.webp?v=1675635549-fNmoxK7BTp_UMONAKJxS8xIFaYYAjAfnhuacd5gItaY
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f7431a18dc7b53319fe26013400a5419
2e0b1c8d56adcd2f10c3c31246bc00bdff0077e9
808e9399310addd6f3148818b17d43626a115f75143f06bbfffa650caeb9f843
GET /g/12578200/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDkvMTAxOTI0LzBlOTc3ODY1ZmU1MzhmNjBkMGEwODAwYTFmN2FiODgxLmpwZWc.webp?v=1675635549-fNmoxK7BTp_UMONAKJxS8xIFaYYAjAfnhuacd5gItaY HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 26916
x-mg-request-uuid: 199dfa47-8935-42eb-bb96-7608b1d60111
access-control-allow-origin: *
last-modified: Tue, 29 Mar 2022 06:54:55 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8898814
accept-ranges: bytes
set-cookie: __cf_bm=sWTrYD.p3igRjVeAXlrxtLhXFAK9EChU.ZuC8AxqUts-1675635549-0-ATAZ1re1Y2Q+nc40uk2RO8xWF1GYXfQ4htkY3ONQjHt3cO379J0I84RJdEz4Id1HiIyOEHGLwA7/DGgBMHwUS3c=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a85b20b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/12578217/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wMy8xMDE5MjQvMTRiZjlkNzQ0NjRhNmM3NmIyNjU1MGE0OGMzMmEwMTEuanBlZw.webp?v=1675635549-NApzWVkAb3nua2KfoK8XIbZiQUoIyYQX5zMN6H9OF-s
104.19.132.78200 OK 16 kB URL HTTP/2 s-img.mgid.com/g/12578217/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wMy8xMDE5MjQvMTRiZjlkNzQ0NjRhNmM3NmIyNjU1MGE0OGMzMmEwMTEuanBlZw.webp?v=1675635549-NApzWVkAb3nua2KfoK8XIbZiQUoIyYQX5zMN6H9OF-s
IP 104.19.132.78:0
Hash 9c541e5eb63485563bc9ae311c8e55a4
1345a4ae1396b79df1564acfc2862967808b55e3
a26d13c6596fdc9225cd8ed4ef4c666c8682d250dd633b109757349846fc9e43
GET /g/12578217/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wMy8xMDE5MjQvMTRiZjlkNzQ0NjRhNmM3NmIyNjU1MGE0OGMzMmEwMTEuanBlZw.webp?v=1675635549-NApzWVkAb3nua2KfoK8XIbZiQUoIyYQX5zMN6H9OF-s HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 14282
x-mg-request-uuid: 498795f5-264e-4404-995c-c319892f968f
access-control-allow-origin: *
last-modified: Tue, 29 Mar 2022 06:54:03 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 1531995
accept-ranges: bytes
set-cookie: __cf_bm=Ud_GrL46nNpwxLTqFEzCEPFdxl4YLF2TIaHW_t79kAI-1675635549-0-ASbU3gt/z+FKKYWQTOA22rEj9H0pHF9hNKyAiGbFbEr4ijJtm+Hqfl9pXNeRNqDhCNxpMAACcA/LY1G1whTiluc=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a85b13b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/8164911/492x277/32x5x928x522/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjAtMDcvMTAxOTI0L2ZkNjNmZDY4NmUwMGVjZTk0NWNkZmI5MzgzOWVkMmEzLmpwZWc.webp?v=1675635549-uyWrMEXlLS7G4unje76-HOtnggRXA4kJ9QlXUpBzlVE
104.19.132.78200 OK 6.2 kB URL HTTP/2 s-img.mgid.com/g/8164911/492x277/32x5x928x522/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjAtMDcvMTAxOTI0L2ZkNjNmZDY4NmUwMGVjZTk0NWNkZmI5MzgzOWVkMmEzLmpwZWc.webp?v=1675635549-uyWrMEXlLS7G4unje76-HOtnggRXA4kJ9QlXUpBzlVE
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 70c109f2f954d32c8922a9e00bb8264d
dfd1e5af340d65aa61f2dd25025c3dd5842f602e
b0d8147e8f40393850e9cc39b60eadb80b6622297a5e672fc70bab70346b5c36
GET /g/8164911/492x277/32x5x928x522/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjAtMDcvMTAxOTI0L2ZkNjNmZDY4NmUwMGVjZTk0NWNkZmI5MzgzOWVkMmEzLmpwZWc.webp?v=1675635549-uyWrMEXlLS7G4unje76-HOtnggRXA4kJ9QlXUpBzlVE HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 6236
x-mg-request-uuid: 68a79693-781a-418d-835b-1fe09dd10287
access-control-allow-origin: *
last-modified: Sat, 17 Sep 2022 09:50:49 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8899754
accept-ranges: bytes
set-cookie: __cf_bm=IYbhlrsBzGYLLePhXVmuvsFAwifnuL.YwrXlDWgZ4R8-1675635549-0-ASwwHXcoMbO7oG+lJ+uKQPuygyNBEBhg/UZ6VjSjs+HylKp4qUcRFAmOHVDJlurGCEHAhpJOguaCVBoEzFq9jLE=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a85b14b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/12578201/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDYvMTAxOTI0Lzg1OGE2ZDNmODc1YTJkNDI2MjQwNGY2NGY4ZWU4NTIyLmpwZWc.webp?v=1675635549-zTehZJg5kqJTArWTs9LphBf4AvcxRxvo-6AggYGfZqg
104.19.132.78200 OK 9.7 kB URL HTTP/2 s-img.mgid.com/g/12578201/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDYvMTAxOTI0Lzg1OGE2ZDNmODc1YTJkNDI2MjQwNGY2NGY4ZWU4NTIyLmpwZWc.webp?v=1675635549-zTehZJg5kqJTArWTs9LphBf4AvcxRxvo-6AggYGfZqg
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e7c8203c6569b3f38c5e336a5b14a6c4
cdb810a6f15075865e57a25fb0235241403408c4
4a7b5ab9b41646bcbbe65808c9c07cdcb7841045ad6c0c60e30a7b72bb4e6e91
GET /g/12578201/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDYvMTAxOTI0Lzg1OGE2ZDNmODc1YTJkNDI2MjQwNGY2NGY4ZWU4NTIyLmpwZWc.webp?v=1675635549-zTehZJg5kqJTArWTs9LphBf4AvcxRxvo-6AggYGfZqg HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 9684
x-mg-request-uuid: 37646fa7-146c-49f3-b20b-ffcf3d97ad63
access-control-allow-origin: *
last-modified: Tue, 29 Mar 2022 06:53:58 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8899721
accept-ranges: bytes
set-cookie: __cf_bm=1PtRzcuNBuwY1ytO_poh1fr4eFnsMoXPPqXRafT.dkU-1675635549-0-AbvbmM1KQiyW2DOjJf7kX0bAgUkiuH0V+DJq4DUHmBpHAwFQrbdVniBNS5WJhC5k6qINCCPLL+m89F5BcWWIjnQ=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a85b18b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/3805636/328x328/8x0x822x822/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMTktMDUvMTAxOTI0LzAxNWZjNWI5YTM5MmQzMjY3NzRkOTljYTE3M2YzMmE3LmpwZWc.webp?v=1675635549-5Ajr7HELL5Y0SAM3hd9SUt-lIV5kt6eqFyT6PPYX2b4
104.19.132.78200 OK 8.3 kB URL HTTP/2 s-img.mgid.com/g/3805636/328x328/8x0x822x822/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMTktMDUvMTAxOTI0LzAxNWZjNWI5YTM5MmQzMjY3NzRkOTljYTE3M2YzMmE3LmpwZWc.webp?v=1675635549-5Ajr7HELL5Y0SAM3hd9SUt-lIV5kt6eqFyT6PPYX2b4
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 60623b4a8a9ab58b147fbc70b282e5a9
b1ca757e7046c79ed8e849dea0668c86f1469fe3
583e02f77ae2db392ec27149b18ba39304a985c5ec33cc31c22ea001c73b0c76
GET /g/3805636/328x328/8x0x822x822/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMTktMDUvMTAxOTI0LzAxNWZjNWI5YTM5MmQzMjY3NzRkOTljYTE3M2YzMmE3LmpwZWc.webp?v=1675635549-5Ajr7HELL5Y0SAM3hd9SUt-lIV5kt6eqFyT6PPYX2b4 HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 8312
x-mg-request-uuid: 792b550f-dce1-4640-a1d6-995ff84cc0be
access-control-allow-origin: *
last-modified: Wed, 10 Aug 2022 17:05:40 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8897604
accept-ranges: bytes
set-cookie: __cf_bm=ndzqN.Xnhg23MflzhHmy3Nb6TYpdNKxnxPsGYucgvT4-1675635549-0-Act7aURaOCLxRVe6qbtTspnJ3Q5r1q+mbelex0/zzBSgDUjEzZtzAB75K4RqjyuZ/J96RBnnt49CF9tN7zn+084=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a85b1db500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/13780641/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDcvMTAxOTI0LzY5Y2FmYzRiNGQzZmRhNGU4ZmZhOTdkNTM5ZmU0Y2FjLmpwZWc.webp?v=1675635549-weIY2kDOHOXGyaG-8oNEdkaG8TN4fPAv0CH8X4PW9-0
104.19.132.78200 OK 10 kB URL HTTP/2 s-img.mgid.com/g/13780641/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDcvMTAxOTI0LzY5Y2FmYzRiNGQzZmRhNGU4ZmZhOTdkNTM5ZmU0Y2FjLmpwZWc.webp?v=1675635549-weIY2kDOHOXGyaG-8oNEdkaG8TN4fPAv0CH8X4PW9-0
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b68b82d7d67f9bbb0d763b335082d5f1
199633d426c0b89184aeb4b1774ab44d75f81b4f
e4ee66336569a39d7077d9e95191e7434eaab556503e00a19ccde53635c2d624
GET /g/13780641/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDcvMTAxOTI0LzY5Y2FmYzRiNGQzZmRhNGU4ZmZhOTdkNTM5ZmU0Y2FjLmpwZWc.webp?v=1675635549-weIY2kDOHOXGyaG-8oNEdkaG8TN4fPAv0CH8X4PW9-0 HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 10190
x-mg-request-uuid: 3a0c0e9e-0c4b-4964-9807-d4509db282fd
access-control-allow-origin: *
last-modified: Thu, 11 Aug 2022 08:44:36 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8899710
accept-ranges: bytes
set-cookie: __cf_bm=l58L2940YjBWP.77.ATGMzzimB2PGwyEi2LtLomcBMc-1675635549-0-ARVk9jNXDKGYFI00k5gGih1nrBvVP2bTP/AcDQorRexvnpIdL1MXm1mEtoQCrOHX1LE3vHSFdqQkDydwjHWWnyc=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a85b1fb500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/15112097/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMTIvMTAxOTI0LzYyODFhZGQwMmUzNjE1NzFlMjlhYzE5NDUwYjFkYTUxLnBuZw.webp?v=1675635549-vddkwLC0mTXv0TXYw4K3LRAPc6RcI1T1xaGfYVwJ0Zs
104.19.132.78200 OK 9.1 kB URL HTTP/2 s-img.mgid.com/g/15112097/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMTIvMTAxOTI0LzYyODFhZGQwMmUzNjE1NzFlMjlhYzE5NDUwYjFkYTUxLnBuZw.webp?v=1675635549-vddkwLC0mTXv0TXYw4K3LRAPc6RcI1T1xaGfYVwJ0Zs
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1e78bfc1b79ca4e79e6249e429d91f64
9458fdab6047d717e821435b2776fc53c307b105
8c3b2653c3fbfda31e307c9adc2c01b3a8b80ebc083ec27d8ab4a88fe7d97a92
GET /g/15112097/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMTIvMTAxOTI0LzYyODFhZGQwMmUzNjE1NzFlMjlhYzE5NDUwYjFkYTUxLnBuZw.webp?v=1675635549-vddkwLC0mTXv0TXYw4K3LRAPc6RcI1T1xaGfYVwJ0Zs HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 9052
x-mg-request-uuid: 7773a6db-2d84-461e-b5fe-20ea81c0920c
access-control-allow-origin: *
last-modified: Thu, 12 Jan 2023 09:58:05 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 2117987
accept-ranges: bytes
set-cookie: __cf_bm=HSsem4dj3gkwkSr1bOU6WUsbWut_zME2bUySSnPjwas-1675635549-0-AXcn9j8lS5PB06sDk42LBHbggOLZBaR1KHtoTqfOvqr4Dil4D2RuXu1cPwMPJix2eoPXmpweUk3lSb0A2Anw4vU=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a85b1cb500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/10881016/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDMvMTAxOTI0LzIxMTM4ZDdjYzg0NGNjZGI1OGE5OTJhZmQ2ZWZlMWU4LmpwZWc.webp?v=1675635549-dDf0xrbx4FyAYFpOFGcACoWOPpg8lS3GIMZDv-4D3Nw
104.19.132.78200 OK 13 kB URL HTTP/2 s-img.mgid.com/g/10881016/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDMvMTAxOTI0LzIxMTM4ZDdjYzg0NGNjZGI1OGE5OTJhZmQ2ZWZlMWU4LmpwZWc.webp?v=1675635549-dDf0xrbx4FyAYFpOFGcACoWOPpg8lS3GIMZDv-4D3Nw
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 60b49e4c269995044bb3e12fc6d38b8d
73111a36f11690fc6bebdca151a8b4fb63a60226
dc891a906412fddefb174ffb8704d8d6a861a55c6e46489b00d705dbab662be4
GET /g/10881016/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDMvMTAxOTI0LzIxMTM4ZDdjYzg0NGNjZGI1OGE5OTJhZmQ2ZWZlMWU4LmpwZWc.webp?v=1675635549-dDf0xrbx4FyAYFpOFGcACoWOPpg8lS3GIMZDv-4D3Nw HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 13022
x-mg-request-uuid: 5513c1ac-9126-48cc-89d9-c39036d7faba
access-control-allow-origin: *
last-modified: Thu, 11 Nov 2021 16:41:42 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8897621
accept-ranges: bytes
set-cookie: __cf_bm=N7NEAWQpjV6tIoh9O3rfrEAUjeMoTfiD6j4zffykWrg-1675635549-0-AWju4UpsbXfh2H5r2PgoyLoHlxYpj3dir2lxnT68dI6TuUND4arj9JU5htwmnFoTafyXkqITZtfJQDxsFukVSpI=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a85b21b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/10881037/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDkvMTAxOTI0LzA3YTgxM2I5YzE2MmQyMTQxM2M3ZmQ1YjUxMTQ5Njk5LmpwZWc.webp?v=1675635549-9YDJr8U3brejVE5dTR-NUqXEwN38W7eiHUe29dw9d88
104.19.132.78200 OK 9.1 kB URL HTTP/2 s-img.mgid.com/g/10881037/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDkvMTAxOTI0LzA3YTgxM2I5YzE2MmQyMTQxM2M3ZmQ1YjUxMTQ5Njk5LmpwZWc.webp?v=1675635549-9YDJr8U3brejVE5dTR-NUqXEwN38W7eiHUe29dw9d88
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ba261ead7e8851280952e8b59be69d93
121d25ad404924eb42e7e954bdf4f2191432e473
6b1656ef608e2b7e36e0c3eee761cf40f711b51d1fa775663a71465c254a6a89
GET /g/10881037/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDkvMTAxOTI0LzA3YTgxM2I5YzE2MmQyMTQxM2M3ZmQ1YjUxMTQ5Njk5LmpwZWc.webp?v=1675635549-9YDJr8U3brejVE5dTR-NUqXEwN38W7eiHUe29dw9d88 HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 9072
x-mg-request-uuid: 80dabefd-a012-4eba-a82c-6d94d0a0110e
access-control-allow-origin: *
last-modified: Thu, 11 Nov 2021 15:59:14 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8897997
accept-ranges: bytes
set-cookie: __cf_bm=vHq8cBRr4UMM3e.r4H3kzJM7MQCAn0SQiqIrKu.OQfc-1675635549-0-AfY7wGMWWG/oZfF8nW0BWwyfWjndly0oJ/dS1UBpsGaFQW0ztKCcEtdMTtZmYDUeVPi+6QEpktR484RIbDtCkvU=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a85b22b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/11533494/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDYvMTAxOTI0LzY2YzhhMjFiZGMwZTg5NWVkNDcyYTQzMjNmMTE3MTI3LmpwZWc.webp?v=1675635549-QG7h6zA0x_s63hDv2y30xWnPCOls-LFvxxAwJ6TwiV8
104.19.132.78200 OK 20 kB URL HTTP/2 s-img.mgid.com/g/11533494/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDYvMTAxOTI0LzY2YzhhMjFiZGMwZTg5NWVkNDcyYTQzMjNmMTE3MTI3LmpwZWc.webp?v=1675635549-QG7h6zA0x_s63hDv2y30xWnPCOls-LFvxxAwJ6TwiV8
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0ad4887bf2695f4aaac7b9579a6f41b0
aae62e20c070ddd03d45fd28b5ad89813bed8f5a
9b2e0fbd34d2be7d79a87aac74c192337b53fbe0099b6115bf0eb9c1c4b4293b
GET /g/11533494/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDYvMTAxOTI0LzY2YzhhMjFiZGMwZTg5NWVkNDcyYTQzMjNmMTE3MTI3LmpwZWc.webp?v=1675635549-QG7h6zA0x_s63hDv2y30xWnPCOls-LFvxxAwJ6TwiV8 HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 19522
x-mg-request-uuid: 656a6c2d-ded8-469c-a7b7-56eb343f8f43
access-control-allow-origin: *
last-modified: Wed, 01 Dec 2021 12:34:22 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8899710
accept-ranges: bytes
set-cookie: __cf_bm=OJ3mP0x.hlpWQwIMowJfVAVTiWCmd2xps01VSBye1Y0-1675635549-0-AVOrTNJbYBH5ZeOwVPG5D0ZKTSXKwkv+LzJD9RkdhN4Xc1Ccc07ncPFH1arasfhov7hJW7BShJK9Wg36p3uyeNU=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a85b10b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/3946103/328x328/211x13x447x447/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMTktMDcvMTAxOTI0LzA3MDI4YzkxMmQ0NmY1MjBlMGQzMDhhOTdlZDI3MmE3LmpwZWc.webp?v=1675635549-fveZAQXCUkjVmjZIfFm1MeRRFAATvbFCGLyodgLuqdc
104.19.132.78200 OK 14 kB URL HTTP/2 s-img.mgid.com/g/3946103/328x328/211x13x447x447/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMTktMDcvMTAxOTI0LzA3MDI4YzkxMmQ0NmY1MjBlMGQzMDhhOTdlZDI3MmE3LmpwZWc.webp?v=1675635549-fveZAQXCUkjVmjZIfFm1MeRRFAATvbFCGLyodgLuqdc
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9ac59cc83b3aba2a75e0a010d02997ad
bf9a11af45807c99eb17b1c7b2707ddb4cc334c1
87cb14d9799abd25f8612aad38430603b2e9e68a8def89551ee77c34afe6433d
GET /g/3946103/328x328/211x13x447x447/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMTktMDcvMTAxOTI0LzA3MDI4YzkxMmQ0NmY1MjBlMGQzMDhhOTdlZDI3MmE3LmpwZWc.webp?v=1675635549-fveZAQXCUkjVmjZIfFm1MeRRFAATvbFCGLyodgLuqdc HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 13782
x-mg-request-uuid: f7d4fd73-eb6e-4fea-b383-b2c56aba9c9c
access-control-allow-origin: *
last-modified: Wed, 10 Aug 2022 18:38:15 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8899721
accept-ranges: bytes
set-cookie: __cf_bm=agFu0Tqw3RELdkJoRBvoDxIwibIQMegxPRp7kR84HxM-1675635549-0-AeLJdKb52axTDc3X93irVPAQ5yv4uSOXR1Fj1b0SU0/FHyLqj8pbEmwEFAUOMCn+s8OZKv++ERr9scj8zgFyQg0=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a85b24b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/15112063/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMTIvMTAxOTI0L2FhZjhiOWY4ZjM1MTgzZDBiNjJjNjNhMTA2YmU1OTMwLmpwZw.webp?v=1675635549-adU6jltHiCgWbPZmR8tCCew0n__KyuwMaWccNTXq0rA
104.19.132.78200 OK 15 kB URL HTTP/2 s-img.mgid.com/g/15112063/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMTIvMTAxOTI0L2FhZjhiOWY4ZjM1MTgzZDBiNjJjNjNhMTA2YmU1OTMwLmpwZw.webp?v=1675635549-adU6jltHiCgWbPZmR8tCCew0n__KyuwMaWccNTXq0rA
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 89869f8162ae908bb3f27dbec6018f19
6d7b94ba27fe7c46d5cb2d719b33b48228357a50
8564e4ed018a864db2adce2a7f069b2bdbf0d1c4df952be616226425915c7edc
GET /g/15112063/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMTIvMTAxOTI0L2FhZjhiOWY4ZjM1MTgzZDBiNjJjNjNhMTA2YmU1OTMwLmpwZw.webp?v=1675635549-adU6jltHiCgWbPZmR8tCCew0n__KyuwMaWccNTXq0rA HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 14968
x-mg-request-uuid: 8a8943fa-381a-4ab9-8377-8ed65eb4a1c1
access-control-allow-origin: *
last-modified: Thu, 12 Jan 2023 10:06:41 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 2117530
accept-ranges: bytes
set-cookie: __cf_bm=qBXOBO4IBY48oK5N5w2Et9c2v4BTmLw01CI8eip5xjY-1675635549-0-AWVSxT8ayqZdjrTadr68SPRBS0HYmpha6E9vTJ52In87l/2Tu5eTeIY2iHfDkuAJWHOvw082i8tlWenhm8x43Ow=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a85b25b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/11533314/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMTEvMTAxOTI0LzE2Mzk2NDRkNGVkNWZkMzBlNDNkOTNmNjc3ZTQwYTM1LmpwZWc.webp?v=1675635549-4hW5OXvde_y1D3lpqli8k7nGYh6ozX5StwfO1mxonj8
104.19.132.78200 OK 16 kB URL HTTP/2 s-img.mgid.com/g/11533314/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMTEvMTAxOTI0LzE2Mzk2NDRkNGVkNWZkMzBlNDNkOTNmNjc3ZTQwYTM1LmpwZWc.webp?v=1675635549-4hW5OXvde_y1D3lpqli8k7nGYh6ozX5StwfO1mxonj8
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d8251961f446a1c6261191e8874747cb
4aa74da47b9a65282a1a5ab92797d4b4492d467a
d55e39cee1b7831300779c73bb5d250fbc7dc0521eab50f53047a4402c72bda6
GET /g/11533314/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMTEvMTAxOTI0LzE2Mzk2NDRkNGVkNWZkMzBlNDNkOTNmNjc3ZTQwYTM1LmpwZWc.webp?v=1675635549-4hW5OXvde_y1D3lpqli8k7nGYh6ozX5StwfO1mxonj8 HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 16492
x-mg-request-uuid: d7cc81aa-bca8-41c1-b09e-aee7d4b638e3
access-control-allow-origin: *
last-modified: Wed, 01 Dec 2021 12:24:27 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8898966
accept-ranges: bytes
set-cookie: __cf_bm=sPmWsNC4I76lFVMHAfEKbq.TwWLHygCM2PPRYzpqPz0-1675635549-0-AY13XB8WqXZWc9mIsENESqJMt+sPPuQXPDRRAlS+UZoHPXmYT361pr2PX+ezWkAyJr/LFmX5F5JLefbTMB2+WfI=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a86b35b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/8193514/328x328/0x213x1081x1081/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjAtMDIvMTAxOTI0LzZhY2MwZWM3MWNiNDAyMDM4ZDU5YTlkMGE3MzE5MzAyLnBuZw.webp?v=1675635549-LKtBYiMXvMaDKYLKOhlJJCUqJ4qFK9KZdc5YjVUrGVo
104.19.132.78200 OK 14 kB URL HTTP/2 s-img.mgid.com/g/8193514/328x328/0x213x1081x1081/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjAtMDIvMTAxOTI0LzZhY2MwZWM3MWNiNDAyMDM4ZDU5YTlkMGE3MzE5MzAyLnBuZw.webp?v=1675635549-LKtBYiMXvMaDKYLKOhlJJCUqJ4qFK9KZdc5YjVUrGVo
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5b733a0cb9b128da4e45389f4e3881fd
b58fc223e26e878268b4b73dc28d632b74add5c0
1c5118f106516ca71fa8bf5e0eeb10665cb9c701862df20fdfb17152383b1ba8
GET /g/8193514/328x328/0x213x1081x1081/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjAtMDIvMTAxOTI0LzZhY2MwZWM3MWNiNDAyMDM4ZDU5YTlkMGE3MzE5MzAyLnBuZw.webp?v=1675635549-LKtBYiMXvMaDKYLKOhlJJCUqJ4qFK9KZdc5YjVUrGVo HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 13622
x-mg-request-uuid: 5b75936c-a46a-4192-8865-41631dcbc35e
access-control-allow-origin: *
last-modified: Wed, 10 Aug 2022 14:27:00 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8899253
accept-ranges: bytes
set-cookie: __cf_bm=ICtVOZYpGx1EoyNh1AwJldsWu1RiH9TX9DKwWxov0LM-1675635549-0-AXzHVmVD7+xXRuVEIOqHEBM/o8/kTx3VJb7vhb2S977uWEMVRT86+nyMa6QPyeZZ0g2Oz29xcM/JzJ/H95Qeheg=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a87b47b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1195dd6a2166c4b6c4f45510e64cbd2c
1600d859c9c6e74468bbd3d30b86a666ff307116
d0603547733c0617e521f5f0c1766800d3541f1afc470b8f8c94ca58d34df1c1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5706
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:09 GMT
Last-Modified: Sun, 05 Feb 2023 20:44:03 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 36363a5a058b9cae8a8a6705bdc0602b
45a99476a49cb3e0b273f03db250421a991299f9
4b26a8d36ddef0145641e003ff9d0bb3eff1903ba683ac8319a727f8d51f36e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?test_adblock=true
142.250.74.98200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?test_adblock=true
IP 142.250.74.98:0
File type ASCII text, with very long lines (3649)
Hash 761d6bccb445af7435555045dfedb247
e4ea55d72a3312a9d5ea423d637240c172392b9d
5e651a4485353d38740cd884e2cbb56e418fecefed517d9f6e4b258422c3e750
GET /pagead/js/adsbygoogle.js?test_adblock=true HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://birdurls.com/
Origin: https://birdurls.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 05 Feb 2023 22:19:09 GMT
expires: Sun, 05 Feb 2023 22:19:09 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 15963241861340544862
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49960
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s-img.mgid.com/g/14137446/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDkvMTAxOTI0LzM2NWU0MDlmZGE5ZTUzN2IyN2Y1ZTY5M2ZkMmU5N2E5LmpwZw.webp?v=1675635549-yO4O9XaWGioA4jAKNKpQvfaTjcez5uNi4WCszRmEyDI
104.19.132.78200 OK 9.4 kB URL HTTP/2 s-img.mgid.com/g/14137446/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDkvMTAxOTI0LzM2NWU0MDlmZGE5ZTUzN2IyN2Y1ZTY5M2ZkMmU5N2E5LmpwZw.webp?v=1675635549-yO4O9XaWGioA4jAKNKpQvfaTjcez5uNi4WCszRmEyDI
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9331d7393f99eb139d3469bfe502f4a1
5b512ce73852f8951a6b675416517c7c4c7fd60f
0777efb1ff2ab0a275599747c0aa0e9928370cdb4b93fc73d147887b1480b3c8
GET /g/14137446/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDkvMTAxOTI0LzM2NWU0MDlmZGE5ZTUzN2IyN2Y1ZTY5M2ZkMmU5N2E5LmpwZw.webp?v=1675635549-yO4O9XaWGioA4jAKNKpQvfaTjcez5uNi4WCszRmEyDI HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 9440
x-mg-request-uuid: 00b0e442-7f1f-4f6d-8b8b-601814be3944
access-control-allow-origin: *
last-modified: Thu, 22 Sep 2022 09:56:38 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8898150
accept-ranges: bytes
set-cookie: __cf_bm=jeY2yCmqOAiZ9c7.LJCWW7jaJKbGotCG02EgovgNw7c-1675635549-0-ATFPtUhvyq6aZxYU3fyycwpynAXkOV8wsXADaG4ti3sdbBWZzk+RJ+fEIxQ+wEfC6/l4hwJEfC1ItiUJ3YR8oe0=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a87b4ab500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/13780614/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDcvMTAxOTI0LzBiMDg1ODg5OTQ4NzBhOWI3N2VjM2RmMDgzM2EwZTI5LmpwZw.webp?v=1675635549-11U1AWceZGFfZAx2obGDgaRDzmYGS8p69VeftV8gG14
104.19.132.78200 OK 9.8 kB URL HTTP/2 s-img.mgid.com/g/13780614/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDcvMTAxOTI0LzBiMDg1ODg5OTQ4NzBhOWI3N2VjM2RmMDgzM2EwZTI5LmpwZw.webp?v=1675635549-11U1AWceZGFfZAx2obGDgaRDzmYGS8p69VeftV8gG14
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 19dc7c4e4aefb14fd95cbb3cdd1ea171
b41ea13a37993997b1ac40017265e5f1ce710c49
e16d36d4e2ec6f71b67c96961b790365cdedd320b3553c83fe2cc1021658c37a
GET /g/13780614/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDcvMTAxOTI0LzBiMDg1ODg5OTQ4NzBhOWI3N2VjM2RmMDgzM2EwZTI5LmpwZw.webp?v=1675635549-11U1AWceZGFfZAx2obGDgaRDzmYGS8p69VeftV8gG14 HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 9820
x-mg-request-uuid: 3917138a-1599-45e2-9440-fb7d414cad82
access-control-allow-origin: *
last-modified: Thu, 11 Aug 2022 08:44:20 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8898554
accept-ranges: bytes
set-cookie: __cf_bm=h.JVBle_pVNam3n350iep4HPiIpDXQrgktU1iebaWQo-1675635549-0-AWYJbDDu8iTFpFGfrLIf5o9n5ZFThO9AvxR1UHo8pMVckDJDzwS+OQI9cnGOJ2nvBddMf9z98BFBRZlFPxZEHwY=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a89b68b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/8193515/328x328/96x8x684x684/aHR0cDovL2ltZ2hvc3RzLmNvbS90ZWFzZXIvMjAxOS0wMi0xOS8xMDE5MjQvZjAzZmVjNjI3Y2Y1YTQ5Yjc3YTQ4ODQzZjAxODU5M2MuanBlZw.webp?v=1675635549-kp6U4ffB1SCzcDMoolnTPRTNdBuyKI9NamYpaI-JRDU
104.19.132.78200 OK 11 kB URL HTTP/2 s-img.mgid.com/g/8193515/328x328/96x8x684x684/aHR0cDovL2ltZ2hvc3RzLmNvbS90ZWFzZXIvMjAxOS0wMi0xOS8xMDE5MjQvZjAzZmVjNjI3Y2Y1YTQ5Yjc3YTQ4ODQzZjAxODU5M2MuanBlZw.webp?v=1675635549-kp6U4ffB1SCzcDMoolnTPRTNdBuyKI9NamYpaI-JRDU
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4b0fe91dcb779e62119d1038c59f8de3
4a874d3de82e23353dbd5e65d8eeec07f532cc40
ebfd914ea56ee88d5b370883b8930b9a16009da2d49c04a14c42d65b71c288c5
GET /g/8193515/328x328/96x8x684x684/aHR0cDovL2ltZ2hvc3RzLmNvbS90ZWFzZXIvMjAxOS0wMi0xOS8xMDE5MjQvZjAzZmVjNjI3Y2Y1YTQ5Yjc3YTQ4ODQzZjAxODU5M2MuanBlZw.webp?v=1675635549-kp6U4ffB1SCzcDMoolnTPRTNdBuyKI9NamYpaI-JRDU HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 10792
x-mg-request-uuid: 7359a169-8689-437b-87c4-a4b6bdd3843a
access-control-allow-origin: *
last-modified: Wed, 10 Aug 2022 19:15:07 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8899373
accept-ranges: bytes
set-cookie: __cf_bm=OXuC.3Go3XyAXzT6jObkCKvFWJY4xk1NAfS6BI2U6.M-1675635549-0-ATKvJ9ZK04kJqim8+GIaIIuCnPQNXy139ySe+xRYg+0XBVvtXm29LeomGv58qIE2aMYzGOIMsxhPuGiUVKJ8sZw=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a8bb8ab500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/13268972/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDYvMTAxOTI0LzIzZmJmZTQ3ZmM2YjIxNjQ5NjAyNzFkYmQ5OWYyZGYxLnBuZw.webp?v=1675635549-ozWIHrkNBntMjWs6HkK5DQ7aSsZGeE4RtgYejakDndM
104.19.132.78200 OK 9.2 kB URL HTTP/2 s-img.mgid.com/g/13268972/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDYvMTAxOTI0LzIzZmJmZTQ3ZmM2YjIxNjQ5NjAyNzFkYmQ5OWYyZGYxLnBuZw.webp?v=1675635549-ozWIHrkNBntMjWs6HkK5DQ7aSsZGeE4RtgYejakDndM
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f33c8dbd0240a6b9cdef6287fa694710
fa9b1dab331508fdad22ad983453d58d58fe8dbd
cee8ea5556fcf6768c6fab546f286f76a96f6f1a2fe38fe89c72e16384a86769
GET /g/13268972/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDYvMTAxOTI0LzIzZmJmZTQ3ZmM2YjIxNjQ5NjAyNzFkYmQ5OWYyZGYxLnBuZw.webp?v=1675635549-ozWIHrkNBntMjWs6HkK5DQ7aSsZGeE4RtgYejakDndM HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 9168
x-mg-request-uuid: 667cc2c1-34ad-4bc7-a782-9d6326215555
access-control-allow-origin: *
last-modified: Thu, 16 Jun 2022 11:46:50 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8899749
accept-ranges: bytes
set-cookie: __cf_bm=PkZxHO5IXysQTfCm.eh4gsiUp6_PKnduaRb6jAWexNA-1675635549-0-AXRTdsVUz6IHxNzJtuI/qdIaNeGF5PMf+RHlCfdetDAMDkLYLCtQNDXvAvVPIIJPY/o6Km1PftZMLsaOSM+af7I=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a8bb8db500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/14649867/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDkvMTAxOTI0LzUxYTA3MjczODc3MWVkYjU4ZjY5NjMwYjc3MTg5MGYzLmpwZWc.webp?v=1675635549-9DMwRZFEdW9XuAhIUxoszzAAMHnY3-pkcN6EoZysIto
104.19.132.78200 OK 9.1 kB URL HTTP/2 s-img.mgid.com/g/14649867/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDkvMTAxOTI0LzUxYTA3MjczODc3MWVkYjU4ZjY5NjMwYjc3MTg5MGYzLmpwZWc.webp?v=1675635549-9DMwRZFEdW9XuAhIUxoszzAAMHnY3-pkcN6EoZysIto
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash abe167e10167d996a8132a2ae568c143
7c69abebef9ec8bd2ecdc02debecfede4ef14042
261ad9f2661d6fe3f2f6e34975021045eb92e196b072bbcf2e5d1803f222f3f2
GET /g/14649867/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDkvMTAxOTI0LzUxYTA3MjczODc3MWVkYjU4ZjY5NjMwYjc3MTg5MGYzLmpwZWc.webp?v=1675635549-9DMwRZFEdW9XuAhIUxoszzAAMHnY3-pkcN6EoZysIto HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 9134
x-mg-request-uuid: 4d4c5c35-1d32-4144-af6c-d0577c3c6c1e
access-control-allow-origin: *
last-modified: Wed, 16 Nov 2022 15:42:11 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 1528125
accept-ranges: bytes
set-cookie: __cf_bm=poq0P00rbZR4rcJ9bSajO4ZKWQZ.4EJ6zu8sjub3Rr8-1675635549-0-AetzSCVhJASG1+N1o7crqixCa/2gK+1aW71XnGaVt+E01aLyfLXF9vtg7qntPD5/rAdHpxYg9uxubaYodqa/uFo=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a8bb8bb500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/4021004/328x328/82x0x357x357/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMTktMDgvMTAxOTI0LzE1MTA5NWJkOGNiNWVmMzhhNzg2OTEwYTdlZWM3MTcwLmpwZWc.webp?v=1675635549-feh_DZeayVqn04ZN2w4-Kr-rz84cpn8GmijKVDGyIHA
104.19.132.78200 OK 23 kB URL HTTP/2 s-img.mgid.com/g/4021004/328x328/82x0x357x357/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMTktMDgvMTAxOTI0LzE1MTA5NWJkOGNiNWVmMzhhNzg2OTEwYTdlZWM3MTcwLmpwZWc.webp?v=1675635549-feh_DZeayVqn04ZN2w4-Kr-rz84cpn8GmijKVDGyIHA
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c6c7e4f6a51b52fdcdf68758eeb91fa5
7ea6cff2c266c138546f4ba3b9c61f37743d68ac
21307b643dbc0a0c0a5bd0fb14c95c14dba5fdcd9233d52dc50f86674a3c0cad
GET /g/4021004/328x328/82x0x357x357/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMTktMDgvMTAxOTI0LzE1MTA5NWJkOGNiNWVmMzhhNzg2OTEwYTdlZWM3MTcwLmpwZWc.webp?v=1675635549-feh_DZeayVqn04ZN2w4-Kr-rz84cpn8GmijKVDGyIHA HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 23352
x-mg-request-uuid: 879fdbef-67af-4600-afca-bc6bc6b4d39d
access-control-allow-origin: *
last-modified: Mon, 08 Aug 2022 18:51:25 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8898837
accept-ranges: bytes
set-cookie: __cf_bm=gm3CZOfVVDqjRE0Hfk8cuFkxZBCpMli_.as.eLVtd8I-1675635549-0-AfxglOUyOZ3fi1pw8vXt03PNCmjEh60MnTZYw4N9CJuFCiukavOmyZVE9sYm3mS4l6ChjKcXGOfKzlPDRldAm80=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a8bb8cb500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/8164884/328x328/81x0x667x667/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjAtMDUvMTAxOTI0LzA2ZWM0NWZkMzdjZmYxNTI4MzVjNjEzMDMxMmE5NjYxLmpwZWc.webp?v=1675635549-k9L9758ZZ3ZlSc6uDb6rDGVq1rP037C22rO7qYTO7mA
104.19.132.78200 OK 17 kB URL HTTP/2 s-img.mgid.com/g/8164884/328x328/81x0x667x667/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjAtMDUvMTAxOTI0LzA2ZWM0NWZkMzdjZmYxNTI4MzVjNjEzMDMxMmE5NjYxLmpwZWc.webp?v=1675635549-k9L9758ZZ3ZlSc6uDb6rDGVq1rP037C22rO7qYTO7mA
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d9d3cb966def630a59aa74951386009f
19a93d567f20e120257b127f736aa230a11520f2
9262ec8da7c91427909add4e22dcac67a18bac756e209d1b81f8e9ac6dc908cb
GET /g/8164884/328x328/81x0x667x667/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjAtMDUvMTAxOTI0LzA2ZWM0NWZkMzdjZmYxNTI4MzVjNjEzMDMxMmE5NjYxLmpwZWc.webp?v=1675635549-k9L9758ZZ3ZlSc6uDb6rDGVq1rP037C22rO7qYTO7mA HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 17430
x-mg-request-uuid: 326db818-d0a3-4941-a8b9-e9c4c50cf465
access-control-allow-origin: *
last-modified: Wed, 10 Aug 2022 13:43:13 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8899373
accept-ranges: bytes
set-cookie: __cf_bm=7waDKksUk2PN.tsSNJ8t6VdAzaQGLk17CGnVwevAos4-1675635549-0-ATba3XwZpfLyx2BSv5aUryf5XlZ2pJSNljhLjIvd+aYaGRoilQgouDebc6Fj3oJySefCEm7r28JI4538CPmnUbk=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a8bb8eb500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/12578222/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDEvMTAxOTI0LzMyZjE1ZDJiYjgzOTNiNzQ1NTdjOWY0NGM1ODI0YjYxLmpwZWc.webp?v=1675635549-nWYZ0v15vRxx3D1hKfgTDe4LyA4GsoP36A-dpszfMok
104.19.132.78200 OK 7.3 kB URL HTTP/2 s-img.mgid.com/g/12578222/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDEvMTAxOTI0LzMyZjE1ZDJiYjgzOTNiNzQ1NTdjOWY0NGM1ODI0YjYxLmpwZWc.webp?v=1675635549-nWYZ0v15vRxx3D1hKfgTDe4LyA4GsoP36A-dpszfMok
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b9e67aa5613ef7e24e798dedb666e2b1
0d67d627c3dd9a2e1c0efc0b49c01f651b42f67a
8d22927888f92fdab7c425dbcf12e0c22ae5149d880fb22c804b62b422c85fdd
GET /g/12578222/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDEvMTAxOTI0LzMyZjE1ZDJiYjgzOTNiNzQ1NTdjOWY0NGM1ODI0YjYxLmpwZWc.webp?v=1675635549-nWYZ0v15vRxx3D1hKfgTDe4LyA4GsoP36A-dpszfMok HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 7310
x-mg-request-uuid: 452c68c7-99c0-4c2d-9eda-2764965415e7
access-control-allow-origin: *
last-modified: Tue, 29 Mar 2022 06:53:58 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8899760
accept-ranges: bytes
set-cookie: __cf_bm=FSwO1N_3.nxSDRiAGgaKsT0SCJWwH1Moz0wzZjczK8U-1675635549-0-AWahQVZwDIAdBKPXJrDL6XNIeI5N3JEASs0e3E49RRuYj8Xybve8g88AP9YB02o5hgB5LyDZVKyOwzaQa88VHgM=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a8cbb9b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 18373882323cf7ec057fa26d62949fa6
b4f6592b4c32dfe5fbbaa13f9288132aa4dd6e00
905b3eac10686876b3aeb4b030c9302e2092075780bf3a0911fb038c916b558b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5638
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:09 GMT
Last-Modified: Sun, 05 Feb 2023 20:45:11 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
s-img.mgid.com/g/8193519/328x328/105x0x421x421/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDEvMTAxOTI0Lzk2ZDhiNjBmNGJlYWExYWE4YWJmNjU5M2EwNWUzMWIyLmpwZWc.webp?v=1675635549-2IA8a6q5jLIINBXSDsqW16TVpBAD-uupomoeOVVZPzY
104.19.132.78200 OK 17 kB URL HTTP/2 s-img.mgid.com/g/8193519/328x328/105x0x421x421/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDEvMTAxOTI0Lzk2ZDhiNjBmNGJlYWExYWE4YWJmNjU5M2EwNWUzMWIyLmpwZWc.webp?v=1675635549-2IA8a6q5jLIINBXSDsqW16TVpBAD-uupomoeOVVZPzY
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash edecaf052bbdb8b7c248dda04f3b7817
c364bc3fafb650082446e77efd5451f7fc3fb29a
cc7ae6d2adda002373af6727cef758e644804161d28124a89a5d725aa09fe9c1
GET /g/8193519/328x328/105x0x421x421/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDEvMTAxOTI0Lzk2ZDhiNjBmNGJlYWExYWE4YWJmNjU5M2EwNWUzMWIyLmpwZWc.webp?v=1675635549-2IA8a6q5jLIINBXSDsqW16TVpBAD-uupomoeOVVZPzY HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 17246
x-mg-request-uuid: a8afd8fd-88b2-427e-8754-fb3bc7e6df8c
access-control-allow-origin: *
last-modified: Wed, 10 Aug 2022 15:29:12 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 171323
accept-ranges: bytes
set-cookie: __cf_bm=OY.iNBGQU.ERwQhxlHAoZi976_HTJvwJiZ0bRclR3tE-1675635549-0-AXXGfGmINw9vqY5/5JOaiwHt/Tt1EisZTIFiDCgMrdZA7AEhFx549QQhcknFmoXYdm/GqG2k8GLf8Hu9VPmrSdg=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a8ebd4b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/12578205/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDMvMTAxOTI0L2IwODJiOTYzNWUxMjZlM2U1NjhhOTAyMmY4ZTYwZTBiLmpwZWc.webp?v=1675635549-RzzprV3Y0vH14QjGlTAkeG4P3ZVp3fPkNeyw48U1hto
104.19.132.78200 OK 8.0 kB URL HTTP/2 s-img.mgid.com/g/12578205/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDMvMTAxOTI0L2IwODJiOTYzNWUxMjZlM2U1NjhhOTAyMmY4ZTYwZTBiLmpwZWc.webp?v=1675635549-RzzprV3Y0vH14QjGlTAkeG4P3ZVp3fPkNeyw48U1hto
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 328x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 58a628dfbb414a464cf42808288ff0b2
94ad96f5c879dbd8fbb8039b7ae4962a8a2b11cb
80c5a1882d5a40f139da9144853aba7b59656883efb52ea1f91a2cfb963ac310
GET /g/12578205/328x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd185NjAvaHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjItMDMvMTAxOTI0L2IwODJiOTYzNWUxMjZlM2U1NjhhOTAyMmY4ZTYwZTBiLmpwZWc.webp?v=1675635549-RzzprV3Y0vH14QjGlTAkeG4P3ZVp3fPkNeyw48U1hto HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/webp
content-length: 8046
x-mg-request-uuid: 506d5f72-267b-4724-bb8d-0323c78252aa
access-control-allow-origin: *
last-modified: Tue, 29 Mar 2022 06:56:09 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8897758
accept-ranges: bytes
set-cookie: __cf_bm=SRBmRN7_elHSeaFVrftu2EYQ7Aiv2imdr_voJ1TOIBo-1675635549-0-AeVPv7uco4kgfKruPyP0uQOabC+orOMh3SV54i1L5fln6jpuaPwAWGrUKteINYtI+feHyen8PKmf6CcvLu9Q8IY=; path=/; expires=Sun, 05-Feb-23 22:49:09 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06a8ebd6b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.themoneytizer.com/moneybile.js
185.76.9.16200 OK 47 kB URL HTTP/2 ads.themoneytizer.com/moneybile.js
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
Hash e5b880d8d847ffc604af8befb185b0b1
85353fed08b623aa5854ef0680267445ea30f06b
1dea52409baed65b33a6a958c6e013629dfdb1c8fd4824d38681fccec7d2d44b
GET /moneybile.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 17:07:19 GMT
expires: Sat, 04 Feb 2023 18:08:14 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675706896
server: CDN77-Turbo
x-77-nzt: AblMCQ23mSH/zDoAAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be06382da2f2d
x-cache: HIT
x-age: 15052
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
142.250.74.3200 OK 2.5 kB URL HTTP/2 www.recaptcha.net/recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit
IP 142.250.74.3:0
Hash 0d3a180cca4082eb12f32ff6c96d314b
fdfa381a746f6ab62d7d25bf7ae08da11e148318
55f548de9854eb2067490c38cb6dc9dc2928b4defbf607db4a3ae3a726c3c819
GET /recaptcha/api.js?onload=onloadRecaptchaCallback&render=explicit HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 05 Feb 2023 22:19:09 GMT
date: Sun, 05 Feb 2023 22:19:09 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cl.imghosts.com/imgh/video/upload/ar_1:1,c_fill,w_680/videos/t/2022-10/101924/f98f11cda4ceb41ec2d6e946c078a78e.mp4?v=1675635549-12wzODKz-rr5SpS8A9XDJPL0q3Vxg90plWbYyTdlDRE
172.64.144.64206 Partial Content 84 kB URL HTTP/2 cl.imghosts.com/imgh/video/upload/ar_1:1,c_fill,w_680/videos/t/2022-10/101924/f98f11cda4ceb41ec2d6e946c078a78e.mp4?v=1675635549-12wzODKz-rr5SpS8A9XDJPL0q3Vxg90plWbYyTdlDRE
IP 172.64.144.64:0
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash 8e95fcc133607e59c1f7c927320c543a
c2e7fa1d1f4c13dcd41e0e7f1c72a0a9c93cc539
e271ea6a45a9cd03d6258cb1cdc421d5ea398dcc92279a1de71359e224e18180
GET /imgh/video/upload/ar_1:1,c_fill,w_680/videos/t/2022-10/101924/f98f11cda4ceb41ec2d6e946c078a78e.mp4?v=1675635549-12wzODKz-rr5SpS8A9XDJPL0q3Vxg90plWbYyTdlDRE HTTP/1.1
Host: cl.imghosts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: video/mp4;codecs=avc1
content-length: 84363
etag: "8e95fcc133607e59c1f7c927320c543a"
last-modified: Thu, 20 Oct 2022 14:53:51 GMT
strict-transport-security: max-age=604800
cache-control: public, max-age=31536000
server-timing: fastly;dur=2;cpu=1;start=2022-12-07T19:33:23.608Z;desc=hit,rtt;dur=0
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
cf-cache-status: HIT
age: 5193535
expires: Mon, 05 Feb 2024 22:19:09 GMT
content-range: bytes 0-84362/84363
server: cloudflare
cf-ray: 794f06a9082e1c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 36363a5a058b9cae8a8a6705bdc0602b
45a99476a49cb3e0b273f03db250421a991299f9
4b26a8d36ddef0145641e003ff9d0bb3eff1903ba683ac8319a727f8d51f36e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 18373882323cf7ec057fa26d62949fa6
b4f6592b4c32dfe5fbbaa13f9288132aa4dd6e00
905b3eac10686876b3aeb4b030c9302e2092075780bf3a0911fb038c916b558b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5638
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:09 GMT
Last-Modified: Sun, 05 Feb 2023 20:45:11 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
static.a-ads.com/a-ads-banners/407260/728x90?region=eu-central-1
136.243.11.250200 OK 659 kB URL HTTP/2 static.a-ads.com/a-ads-banners/407260/728x90?region=eu-central-1
IP 136.243.11.250:0
ASN #24940 Hetzner Online GmbH
Size 659 kB (659264 bytes)
Hash 92fd21d983fbe2fe079835d1156d94d4
b31634e022daf6eda2a3da813f88d907fd8818a1
1ca947e304051a8dfe77decbe503c89c31fc8e367d93651ad5e8f396c7d2ace5
GET /a-ads-banners/407260/728x90?region=eu-central-1 HTTP/1.1
Host: static.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.a-ads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: image/gif
content-length: 658334
x-amz-id-2: 1m+4q3NWRxPkju06EtGfTHJ/F4hczVuUN3ZNwQ5V+z3GLD73/AfTU315hByd6vjKWXb2P6zuLf0=
x-amz-request-id: STD9ZPZMBQN5CACW
x-amz-replication-status: COMPLETED
last-modified: Fri, 05 Aug 2022 10:27:24 GMT
etag: "96e1a1f6a465ffb1996646a4932ba18b"
cache-control: max-age=315360000
x-amz-version-id: dygfyYD4qg8mP8_PyDI2yk4JSkWdwyEV
expires: Thu, 31 Dec 2037 23:55:55 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
142.250.74.35200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (633)
Size 164 kB (163841 bytes)
Hash fe98364486b3206867b17008f995646f
35a5e9aa210970f7abd718d99e629c6982a3cc02
1fd703cb16e3f6f3f7192109d19c69d6e5ac1cfa0feb5b105a86564b7970d28a
GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 08:53:11 GMT
expires: Wed, 31 Jan 2024 08:53:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 02:51:47 GMT
content-type: text/javascript
age: 480358
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3dbf798e25fa2069cc9e4b277a758a9c
de2d8f5d3f26ac0fdc1c87e5070b2e4dd6cb74fb
52c6c0ba0959823f17ae604f97b4b939a30e8e6f0e94e83e36f018195ec44e21
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3500
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:09 GMT
Last-Modified: Sun, 05 Feb 2023 21:20:49 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3dbf798e25fa2069cc9e4b277a758a9c
de2d8f5d3f26ac0fdc1c87e5070b2e4dd6cb74fb
52c6c0ba0959823f17ae604f97b4b939a30e8e6f0e94e83e36f018195ec44e21
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2749
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:09 GMT
Last-Modified: Sun, 05 Feb 2023 21:33:20 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
ads.themoneytizer.com/lib_fs_close.js
185.76.9.16200 OK 1.4 kB URL HTTP/2 ads.themoneytizer.com/lib_fs_close.js
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (2673), with CRLF, LF line terminators
Hash a45f025aad412c735c9b4c8f69fdc6b5
a02c6cd2e0010bc15a22bc8e5ec16297d421d521
98f81ad142c7fb50f1a4c6e95efce6af4e1f53a663408442f71f520bbba9c966
GET /lib_fs_close.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 15:05:03 GMT
expires: Sat, 04 Feb 2023 18:08:13 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675706895
server: CDN77-Turbo
x-77-nzt: AblMCQ0CBg7/zToAAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be063138efd36
x-cache: HIT
x-age: 15053
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 901bb3c4ac9fc3d76b87d6f93100b868
fdcf65b447c4a84369832f9c0fda52279f901c37
4931529e5822a9fdf9390095936aa58856247adff1a50b874bd2981403c1c7d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3502
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:09 GMT
Last-Modified: Sun, 05 Feb 2023 21:20:47 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
54.230.111.33200 OK 31 kB URL HTTP/2 rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
IP 54.230.111.33:0
File type ASCII text, with very long lines (32034)
Hash 180768a94eb5001cec6e2e329c2a4a51
86dba42d9c5dde13c216466e3724dccc6f8175bd
1f5a3f15b341685f10774de389e7d77d56272dc85728d371541e9509b5dbf28b
GET /rules-p-6Fv0cGNfc_bw8.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 13 Oct 2022 22:35:53 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Sun, 05 Feb 2023 21:41:12 GMT
cache-control: max-age=3600
etag: W/"1f431dc94c1f033d6666f0fe637e2d7b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AcxN4jz7VfLFvGKLgJehtKLGm66E-rDKGNtWR9yZidEKDqj2ce-NBw==
age: 2278
X-Firefox-Spdy: h2
test.cmp.quantcast.com/GVL-v2/cmp-list.json
108.157.214.55200 OK 3.4 kB URL HTTP/2 test.cmp.quantcast.com/GVL-v2/cmp-list.json
IP 108.157.214.55:0
Hash a7d096b3d151ce174af4dfc9f358cc27
2e5864888424ffc4edff1a838e05b13ca47a4d35
a405969b802c3bd992f9b40fcd899ca8a66a5bfda93126c1adebccbac9afec56
GET /GVL-v2/cmp-list.json HTTP/1.1
Host: test.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 86400
cache-control: max-age=172800
date: Sun, 05 Feb 2023 03:00:39 GMT
last-modified: Sun, 29 Jan 2023 19:52:29 GMT
etag: W/"104d73e097947079d97b7ce656d124ce"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4AIQAJ98xxQb5Z9H_UdCs9PW1_AVpdm2
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 419f3eb3d74bedebbef6fc91b3f54a36.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: Q_9G495Fc4PLJ7tGCxWkGPBHzFF6oRbgV7aGDHF5JoVP9KsTiRKW7Q==
age: 69511
X-Firefox-Spdy: h2
6.adsco.re/
104.17.166.186200 OK 0 B IP 104.17.166.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:10 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://birdurls.com
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06acddf3b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 96f7904b22bd10653bc0d4f67215f960
8cd6822ecd4e595745a92156ce72c81dafef9c07
b66e9f9073e01f210a393ee3d55ac5f381d3cc19b16728d797612ffb1bb77273
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B66E9F9073E01F210A393EE3D55AC5F381D3CC19B16728D797612FFB1BB77273"
Last-Modified: Fri, 03 Feb 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2359
Expires: Sun, 05 Feb 2023 22:58:29 GMT
Date: Sun, 05 Feb 2023 22:19:10 GMT
Connection: keep-alive
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash adde5febc7b5b6c2c759ec735cce83a0
77ec17be8a9970ff04663294d41c590d0d24fde4
ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 22:19:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://birdurls.com
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
zzi5ihoaiepv.l4.adsco.re/
185.200.118.90200 OK 0 B URL HTTP/1.1 zzi5ihoaiepv.l4.adsco.re/
IP 185.200.118.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: zzi5ihoaiepv.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 22:19:10 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Tue, 31 Jul 2018 22:16:15 GMT
Connection: close
ETag: "5b60dfaf-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c2c21e92eb02f73e22fedb97e669acbd
b8c4c47940973a603190ebd6a113f86ae05edb4d
bad0e25ee40e8fb6527e429f721acfa3ea793883b1343f94a1374e8582b7440f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BAD0E25EE40E8FB6527E429F721ACFA3EA793883B1343F94A1374E8582B7440F"
Last-Modified: Fri, 03 Feb 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8588
Expires: Mon, 06 Feb 2023 00:42:18 GMT
Date: Sun, 05 Feb 2023 22:19:10 GMT
Connection: keep-alive
s-img.adskeeper.com/g/4074796/492x328/56x0x929x619/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMTktMDgvMTAxOTI0L2U2MTY3ODlkYjk2OGMwZWU5ZjNhZDdiOGI2NGU4MTk5LmpwZWc.webp?v=1675635550-Ba5l91RN2UQlqT3vm6eQEhVqGSK4Pa4aYxCMv361pZU
172.64.151.192200 OK 43 kB URL HTTP/2 s-img.adskeeper.com/g/4074796/492x328/56x0x929x619/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMTktMDgvMTAxOTI0L2U2MTY3ODlkYjk2OGMwZWU5ZjNhZDdiOGI2NGU4MTk5LmpwZWc.webp?v=1675635550-Ba5l91RN2UQlqT3vm6eQEhVqGSK4Pa4aYxCMv361pZU
IP 172.64.151.192:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 47905f5257ec86a60fafd526719f9e69
b62b49ad3e3ce0f0b2336b4e904a08caf3bcc487
590598810dfafbfcc71bf037efef0c01b8a04bdf8d57d2f53eb2cf94b2ad39bf
GET /g/4074796/492x328/56x0x929x619/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMTktMDgvMTAxOTI0L2U2MTY3ODlkYjk2OGMwZWU5ZjNhZDdiOGI2NGU4MTk5LmpwZWc.webp?v=1675635550-Ba5l91RN2UQlqT3vm6eQEhVqGSK4Pa4aYxCMv361pZU HTTP/1.1
Host: s-img.adskeeper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:10 GMT
content-type: image/webp
content-length: 43122
x-mg-request-uuid: 4e02c8f9-dfbd-4fd8-bb2b-62320bb54b88
access-control-allow-origin: *
last-modified: Wed, 10 Aug 2022 12:44:17 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 1529899
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06af3d70fabc-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
at.teads.tv/fpc?analytics_tag_id=PUB_11398&tfpvi=&gdpr_status=23&gdpr_reason=230&gdpr_consent=&ccpa_consent=1---&shared_ids=&sv=8480ba3&
23.195.255.234200 OK 0 B URL HTTP/1.1 at.teads.tv/fpc?analytics_tag_id=PUB_11398&tfpvi=&gdpr_status=23&gdpr_reason=230&gdpr_consent=&ccpa_consent=1---&shared_ids=&sv=8480ba3&
IP 23.195.255.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fpc?analytics_tag_id=PUB_11398&tfpvi=&gdpr_status=23&gdpr_reason=230&gdpr_consent=&ccpa_consent=1---&shared_ids=&sv=8480ba3& HTTP/1.1
Host: at.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://birdurls.com
Expires: Sun, 05 Feb 2023 22:19:10 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 05 Feb 2023 22:19:10 GMT
Connection: keep-alive
zzi5ihoaiepv.n4.adsco.re/
38.132.109.186200 OK 0 B URL HTTP/1.1 zzi5ihoaiepv.n4.adsco.re/
IP 38.132.109.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: zzi5ihoaiepv.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 22:19:10 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
6.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:10 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: *
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06affe9e0b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 46c85fe6372e2b84e585ef8cd7a1d76b
522d347db0f1276b8072cc13d23d63f2500e23f4
8b187f37a661c2fd7371c8ef1262628e37718b9df0d27ebe0cb84c6525f0da2a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171707
Date: Sun, 05 Feb 2023 22:19:10 GMT
Etag: "63e010af-1d7"
Expires: Tue, 07 Feb 2023 22:00:57 GMT
Last-Modified: Sun, 05 Feb 2023 20:25:19 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wKhhDNdplv_VlohggLI0UJGOyLGR-t1jDEDAoIDiKUMPJRdeMY8p-w==
Age: 5738
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash adde5febc7b5b6c2c759ec735cce83a0
77ec17be8a9970ff04663294d41c590d0d24fde4
ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 22:19:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
adtrack.adleadevent.com/notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7
54.154.10.160200 OK 20 B URL HTTP/1.1 adtrack.adleadevent.com/notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7
IP 54.154.10.160:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7 HTTP/1.1
Host: adtrack.adleadevent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://birdurls.com
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Sun, 05 Feb 2023 22:19:10 GMT
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Last-Modified: Sun, 05 Feb 2023 22:19:10 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 62fee7d67016395e394bb6198ed16f20
4930912f30f06b318246f88ab2d4b0ef8310fcf6
500be9dcad6eb9ad87713914ba24532e52327cbef07393ea38cb6648ed335dc8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 22:19:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 05 Feb 2023 12:04:33 GMT
Expires: Sun, 12 Feb 2023 12:04:32 GMT
Etag: "4930912f30f06b318246f88ab2d4b0ef8310fcf6"
Cache-Control: max-age=567321,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794f06ad1800b4fa-OSL
adsco.re/p
162.252.214.5200 OK 410 B IP 162.252.214.5:0
File type ASCII text, with very long lines (487), with no line terminators
Hash 8e5235f46359374913c739a7b0feee91
dc9899d7dbb11fe038a738cba4775fbc821c65f6
618f9e1db2337a6432e47b759e28ff1dbd2af7d2a57b95a609da3429624068ea
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2122
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 22:19:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Access-Control-Allow-Origin: https://birdurls.com
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
cmp.quantcast.com/tcfv2/42/cmp2ui-en.js
108.157.229.85200 OK 61 kB URL HTTP/2 cmp.quantcast.com/tcfv2/42/cmp2ui-en.js
IP 108.157.229.85:0
Hash 8fffd78a8a04da67821f51018bfbdbf0
b1459001e4e7e239bbc55292c6248ceb7049af4d
0f59f4bee7ed304df1f1a4bdababe04b0b5d6170655948dcc8f271a7c864e8b0
GET /tcfv2/42/cmp2ui-en.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 604800
last-modified: Tue, 05 Jul 2022 18:40:26 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Sun, 05 Feb 2023 08:26:54 GMT
cache-control: max-age=172800
etag: W/"24932b3e61742029985961c24d35dbb7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3130c9b603e4215bb05d32cd39e3843c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: wfjizOWI-ksjFJZcrkh4u4L8vnqRyOvdYMI1Aai2hfch9JIgriRc_g==
age: 49950
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 62fee7d67016395e394bb6198ed16f20
4930912f30f06b318246f88ab2d4b0ef8310fcf6
500be9dcad6eb9ad87713914ba24532e52327cbef07393ea38cb6648ed335dc8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 22:19:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 05 Feb 2023 12:04:33 GMT
Expires: Sun, 12 Feb 2023 12:04:32 GMT
Etag: "4930912f30f06b318246f88ab2d4b0ef8310fcf6"
Cache-Control: max-age=567321,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794f06ac49c4b4ed-OSL
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash f26d5481a18bcf64b0421f80f30c35ab
4962f67774adcba3a20cf9c4d26d4d45bcb0d2ea
d02eda5fdcd7f8918c3753054923061885b07155764140d32349b55acd998f94
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4000
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:10 GMT
Last-Modified: Sun, 05 Feb 2023 21:12:30 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 314
id5-sync.com/i/12/9.gif?gdpr=true&gdpr_consent=
162.19.138.82200 43 B URL HTTP/1.1 id5-sync.com/i/12/9.gif?gdpr=true&gdpr_consent=
IP 162.19.138.82:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /i/12/9.gif?gdpr=true&gdpr_consent= HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Sun, 05-Feb-2023 22:24:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Sun, 05-Feb-2023 22:24:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Sun, 05-Feb-2023 22:24:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Sun, 05-Feb-2023 22:24:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Sun, 05-Feb-2023 22:24:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Sun, 05-Feb-2023 22:24:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Sun, 05 Feb 2023 22:19:10 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7c28ed76a9d4ecdbe40c48de933e9859
87b1d8befe6e6a29152d9a123346c1e6ed0959d2
70d676af3a9037d091ca0145c3acb8311592ee5d5e00c94c42683d276d5d8298
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "70D676AF3A9037D091CA0145C3ACB8311592EE5D5E00C94C42683D276D5D8298"
Last-Modified: Fri, 03 Feb 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2498
Expires: Sun, 05 Feb 2023 23:00:48 GMT
Date: Sun, 05 Feb 2023 22:19:10 GMT
Connection: keep-alive
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:10 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:10 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
mwzeom.zeotap.com/mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=fb3234be-86f1-4bf4-648a-6e5bae8aede9&reqId=88be6070-37d2-4ed7-783e-55508398243c&zdid=1258&google_error=3
104.22.25.87200 OK 95 B URL HTTP/2 mwzeom.zeotap.com/mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=fb3234be-86f1-4bf4-648a-6e5bae8aede9&reqId=88be6070-37d2-4ed7-783e-55508398243c&zdid=1258&google_error=3
IP 104.22.25.87:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=fb3234be-86f1-4bf4-648a-6e5bae8aede9&reqId=88be6070-37d2-4ed7-783e-55508398243c&zdid=1258&google_error=3 HTTP/1.1
Host: mwzeom.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://birdurls.com/
Connection: keep-alive
Cookie: zc=fb3234be-86f1-4bf4-648a-6e5bae8aede9; zsc=%B1%C0%04%FF%E15%1A%27%F3N%2F%02%26o%0F%A4M%9C%FD%FE%04%DF%A1%3B%B9Dx%0E%D5%F2%84%D4m%7F%5C%3F%A8%DD%87%B0%B3%DE%D2%F1%13%E5%8B%A4%88%EC%0C%2B%FA%B4%23%7B%17%B5%D8Y%BAQEgr%F6%24%D7%27%B9%A5%28%D6%EC%9D%99%3F%F5%E8F%26%A3p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:11 GMT
content-type: image/png
content-length: 95
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://birdurls.com
set-cookie: zc=fb3234be-86f1-4bf4-648a-6e5bae8aede9; Path=/; Domain=.zeotap.com; Max-Age=31536000; SameSite=None; Secure
vary: Origin
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 794f06b21fcab505-OSL
X-Firefox-Spdy: h2
audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22birdurls.com%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1675635593095%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-axjihn3vaxcnkz8q0c6b%22%7D
3.126.19.221200 OK 2 B URL HTTP/2 audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22birdurls.com%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1675635593095%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-axjihn3vaxcnkz8q0c6b%22%7D
IP 3.126.19.221:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22birdurls.com%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1675635593095%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-axjihn3vaxcnkz8q0c6b%22%7D HTTP/1.1
Host: audit-tcfv2.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:11 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash a48ee3fd11f6592a67ceff25d45ddd62
ccdd4381978c6b3fbbdce58f598b61056ad69e15
548627990a54fda83a9b989b5851ef2f62c3c0079943771829f67a00649c2ae2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 22:19:11 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 21:23:14 GMT
Expires: Sat, 11 Feb 2023 21:23:13 GMT
Etag: "ccdd4381978c6b3fbbdce58f598b61056ad69e15"
Cache-Control: max-age=514441,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794f06b29dd9b4fa-OSL
intelligenceadx.com/Wnq.php?_=BQFiAAAAAAAACZUAAjIu_twWdwykNZIsBM1Ir6LVqqvr52y45IVP1y6dH7wHsvGOohDjtk05HZRpZtcJKGVSR6ssYwmSNZGHTX7vQbZ5IhEtoq2_kylxbOd_rKVlG8TzvqupzmD7Bp9DIVlAUqT9FK07VB0HXuMMeve33xLLgvxwoM2pIbSs71Smm4qSlDw96zZrhfeHDxMGbvyhgjcUF6-SS0_fGnGKVUfdbvDZXvjHfHQGZI2LAEdnGI2i_ExQTXx66IUq-yungK2kpXgJMavzUdSrrlZnhFXs66YQrNS8u7UyLiuQRdyJLi63a8S9seijXrYsD_TgKGbIumWM765pKaCGZjeOcSLKbjc0F1Kf6K4LGqO3z0Z3HFBAIXZCZqcPGpCwdK7s310BDf12oPLPFIxB2w46GrKyf4Ttcr7XwqMuP1btKsfc6PCJAXhhlpNqEcCLXCfg-36a8IX6t6QBc_akdJASNmlqXNE&v=4&oYQIfMHm=3424879&minBid=&BWgLziUJ=0:1,0&KeyXWLdt=&rAhfxVgb=https%3A%2F%2Fbirdurls.com%2FaZ11xM47%3F__cf_chl_tk%3Df65FVzibQFd6RljStS.CmTek8gwqF28bW3ByybRzYIs-1675635546-0-gaNycGzNCD0&s=1280,1024,1,1280,1024,0
208.95.114.100200 OK 797 B URL HTTP/2 intelligenceadx.com/Wnq.php?_=BQFiAAAAAAAACZUAAjIu_twWdwykNZIsBM1Ir6LVqqvr52y45IVP1y6dH7wHsvGOohDjtk05HZRpZtcJKGVSR6ssYwmSNZGHTX7vQbZ5IhEtoq2_kylxbOd_rKVlG8TzvqupzmD7Bp9DIVlAUqT9FK07VB0HXuMMeve33xLLgvxwoM2pIbSs71Smm4qSlDw96zZrhfeHDxMGbvyhgjcUF6-SS0_fGnGKVUfdbvDZXvjHfHQGZI2LAEdnGI2i_ExQTXx66IUq-yungK2kpXgJMavzUdSrrlZnhFXs66YQrNS8u7UyLiuQRdyJLi63a8S9seijXrYsD_TgKGbIumWM765pKaCGZjeOcSLKbjc0F1Kf6K4LGqO3z0Z3HFBAIXZCZqcPGpCwdK7s310BDf12oPLPFIxB2w46GrKyf4Ttcr7XwqMuP1btKsfc6PCJAXhhlpNqEcCLXCfg-36a8IX6t6QBc_akdJASNmlqXNE&v=4&oYQIfMHm=3424879&minBid=&BWgLziUJ=0:1,0&KeyXWLdt=&rAhfxVgb=https%3A%2F%2Fbirdurls.com%2FaZ11xM47%3F__cf_chl_tk%3Df65FVzibQFd6RljStS.CmTek8gwqF28bW3ByybRzYIs-1675635546-0-gaNycGzNCD0&s=1280,1024,1,1280,1024,0
IP 208.95.114.100:0
File type gzip compressed data, from Unix\012- data
Hash 06733a52662e31408e63873c3626aa33
926c1c34b764083a06133ed8531f11679caf602e
ae9314e7af8ebbdc0f28b40303c063c00783118ce0f255f3362759f61c37b1dc
GET /Wnq.php?_=BQFiAAAAAAAACZUAAjIu_twWdwykNZIsBM1Ir6LVqqvr52y45IVP1y6dH7wHsvGOohDjtk05HZRpZtcJKGVSR6ssYwmSNZGHTX7vQbZ5IhEtoq2_kylxbOd_rKVlG8TzvqupzmD7Bp9DIVlAUqT9FK07VB0HXuMMeve33xLLgvxwoM2pIbSs71Smm4qSlDw96zZrhfeHDxMGbvyhgjcUF6-SS0_fGnGKVUfdbvDZXvjHfHQGZI2LAEdnGI2i_ExQTXx66IUq-yungK2kpXgJMavzUdSrrlZnhFXs66YQrNS8u7UyLiuQRdyJLi63a8S9seijXrYsD_TgKGbIumWM765pKaCGZjeOcSLKbjc0F1Kf6K4LGqO3z0Z3HFBAIXZCZqcPGpCwdK7s310BDf12oPLPFIxB2w46GrKyf4Ttcr7XwqMuP1btKsfc6PCJAXhhlpNqEcCLXCfg-36a8IX6t6QBc_akdJASNmlqXNE&v=4&oYQIfMHm=3424879&minBid=&BWgLziUJ=0:1,0&KeyXWLdt=&rAhfxVgb=https%3A%2F%2Fbirdurls.com%2FaZ11xM47%3F__cf_chl_tk%3Df65FVzibQFd6RljStS.CmTek8gwqF28bW3ByybRzYIs-1675635546-0-gaNycGzNCD0&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: intelligenceadx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Sun, 05 Feb 2023 22:19:11 GMT
X-Firefox-Spdy: h2
zzi5ihoaiepv.s4.adsco.re/
185.200.116.90200 OK 0 B URL HTTP/1.1 zzi5ihoaiepv.s4.adsco.re/
IP 185.200.116.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: zzi5ihoaiepv.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 22:19:11 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.0.157:0
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 726288
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
surfe.pro/net/teaser?sid=223628&w=945&seed=10604449160673257&doc_ref=aHR0cHM6Ly9iaXJkdXJscy5jb20vYVoxMXhNNDc/X19jZl9jaGxfdGs9ZjY1RlZ6aWJRRmQ2UmxqU3RTLkNtVGVrOGd3cUYyOGJXM0J5eWJSellJcy0xNjc1NjM1NTQ2LTAtZ2FOeWNHek5DRDA=&href=aHR0cHM6Ly9iaXJkdXJscy5jb20vYVoxMXhNNDc=
195.201.242.31200 OK 0 B URL HTTP/2 surfe.pro/net/teaser?sid=223628&w=945&seed=10604449160673257&doc_ref=aHR0cHM6Ly9iaXJkdXJscy5jb20vYVoxMXhNNDc/X19jZl9jaGxfdGs9ZjY1RlZ6aWJRRmQ2UmxqU3RTLkNtVGVrOGd3cUYyOGJXM0J5eWJSellJcy0xNjc1NjM1NTQ2LTAtZ2FOeWNHek5DRDA=&href=aHR0cHM6Ly9iaXJkdXJscy5jb20vYVoxMXhNNDc=
IP 195.201.242.31:0
ASN #24940 Hetzner Online GmbH
POST /net/teaser?sid=223628&w=945&seed=10604449160673257&doc_ref=aHR0cHM6Ly9iaXJkdXJscy5jb20vYVoxMXhNNDc/X19jZl9jaGxfdGs9ZjY1RlZ6aWJRRmQ2UmxqU3RTLkNtVGVrOGd3cUYyOGJXM0J5eWJSellJcy0xNjc1NjM1NTQ2LTAtZ2FOeWNHek5DRDA=&href=aHR0cHM6Ly9iaXJkdXJscy5jb20vYVoxMXhNNDc= HTTP/1.1
Host: surfe.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 0
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
speed-02: preload - 0.0016088485717773
speed-03: site-inited-view - 0.0052428245544434
speed-04: tpl-wcnt 3 - 0.0052788257598877
speed-05: main-tid 4 - 0.0052850246429443
speed-06: b-found at 7 - 0.015365839004517
speed-07: PH-all 671 checked - 0.015673875808716
speed-08: main-t-old 1 - 0.015681982040405
access-control-allow-origin: https://birdurls.com
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
the-rule: surfe.pro
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=2
185.76.9.16200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=2
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=37837&formatId=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676067781
server: CDN77-Turbo
x-77-nzt: AblMCQ1pZlH/F6ICAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be0631859472b
x-cache: HIT
x-age: 172567
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.251200 OK 0 B URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.251:0
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "u+riIbpeWSVolXo4r+dT2g=="
expires: Sun, 12 Feb 2023 22:19:09 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.0.157:0
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://birdurls.com/
Origin: https://birdurls.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:10 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://birdurls.com
server-processing-duration-in-ticks: 606790
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=31
185.76.9.16200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=31
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=37837&formatId=31 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676067781
server: CDN77-Turbo
x-77-nzt: AblMCQ3xNr//F6ICAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be06314b23a2b
x-cache: HIT
x-age: 172567
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
104.22.25.87200 OK 0 B URL HTTP/2 spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
IP 104.22.25.87:0
GET /mapper.js?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://birdurls.com
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 794f06a57f62b505-OSL
content-encoding: br
X-Firefox-Spdy: h2
ads.themoneytizer.com/moneybid7_28/build/dist/prebid.js
185.76.9.16200 OK 0 B URL HTTP/2 ads.themoneytizer.com/moneybid7_28/build/dist/prebid.js
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /moneybid7_28/build/dist/prebid.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 21:13:00 GMT
expires: Sat, 04 Feb 2023 18:08:14 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675706897
server: CDN77-Turbo
x-77-nzt: AblMCQ0ksp7/yzoAAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be063a128af37
x-cache: HIT
x-age: 15051
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=31
185.76.9.16200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=31
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /s/gen.js?type=31 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676052494
server: CDN77-Turbo
x-77-nzt: AblMCQ3DJbT/zt0CAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be0631966342b
x-cache: HIT
x-age: 187854
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json
108.157.229.85200 OK 0 B URL HTTP/2 cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json
IP 108.157.229.85:0
GET /GVL-v2/vendor-list-trimmed-v1.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Sun, 05 Feb 2023 03:00:39 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Sun, 05 Feb 2023 03:00:32 GMT
etag: W/"932f140989a99db727a15dd9dbf5a7b7"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 3130c9b603e4215bb05d32cd39e3843c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: pUseFy3sK0kLR0MX0d4y3qoY07jv0FL-cre7AMVX6kAXgSwoRSUENQ==
age: 69512
X-Firefox-Spdy: h2
cdn.id5-sync.com/api/1.0/id5-api.js
172.67.38.106200 OK 0 B URL HTTP/2 cdn.id5-sync.com/api/1.0/id5-api.js
IP 172.67.38.106:0
GET /api/1.0/id5-api.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:09 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: CO+cPK9MlXQ+Pp7rzr8UBe9jXf3QVRyCEIXUUj0WHfDV3zQVrjcz3bOmEOU9iBqkaS9ucJx5v/0=
x-amz-request-id: H722FXZ7MH4EZWKX
last-modified: Wed, 18 Jan 2023 10:47:57 GMT
etag: W/"4d61440f9cbdbb9b0b5a43273c7c3caf"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 365
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 794f06a9d857b512-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=11
185.76.9.16200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=11
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /s/gen.js?type=11 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676052503
server: CDN77-Turbo
x-77-nzt: AblMCQ2BOuv/xd0CAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be0633071b52c
x-cache: HIT
x-age: 187845
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform3.js?siteId=37837&formatId=19
185.76.9.16200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform3.js?siteId=37837&formatId=19
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /s/requestform3.js?siteId=37837&formatId=19 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676070789
server: CDN77-Turbo
x-77-nzt: AblMCQ17j37/V5YCAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be063cd9c6a30
x-cache: HIT
x-age: 169559
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.adskeeper.co.uk/images/adskeeper_svg.svg
104.18.34.236200 OK 0 B URL HTTP/2 cdn.adskeeper.co.uk/images/adskeeper_svg.svg
IP 104.18.34.236:0
GET /images/adskeeper_svg.svg HTTP/1.1
Host: cdn.adskeeper.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:10 GMT
content-type: image/svg+xml
x-amz-id-2: 9+wK7//B9wiKymVhwJBS49yIWsknA1BYnHtl2rpiLd1F4bVgMRR1xL0U37+qHDuhswdKTk5XkFw=
x-amz-request-id: P23ZACW8NK08CPPP
last-modified: Tue, 08 Dec 2020 08:34:59 GMT
etag: W/"93f6d1136fb77e38a0a2c72108588f09"
x-amz-meta-s3cmd-attrs: atime:1607416491/ctime:1607416491/gid:0/gname:root/md5:93f6d1136fb77e38a0a2c72108588f09/mode:33206/mtime:1607416491/uid:0/uname:root
x-amz-version-id: null
cf-cache-status: HIT
age: 5166
expires: Mon, 06 Feb 2023 02:19:10 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06ae9a640afa-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/google-atp-list.json
108.157.229.85200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/google-atp-list.json
IP 108.157.229.85:0
GET /tcfv2/google-atp-list.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 86400
cache-control: max-age=172800
date: Sun, 05 Feb 2023 03:01:39 GMT
last-modified: Sun, 05 Feb 2023 03:01:36 GMT
etag: W/"1dbfd79d4ea7f69c0c42a2f6065532e7"
x-amz-server-side-encryption: AES256
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3130c9b603e4215bb05d32cd39e3843c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: AZtC_GzPvbR36dFICilZZ--H5lBd886uAmyGXJTuo1ddJIPSX2cvOg==
age: 69451
X-Firefox-Spdy: h2
static.surfe.pro/js/net.js
104.21.61.109200 OK 0 B URL HTTP/2 static.surfe.pro/js/net.js
IP 104.21.61.109:0
GET /js/net.js HTTP/1.1
Host: static.surfe.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 07:27:06 GMT
vary: Accept-Encoding
etag: W/"637f1cca-10ff"
cache-control: public, max-age=86400
cf-cache-status: HIT
age: 38809
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LXUlqfUlQ51SHXQwdkwKGqcjCxIXoq1BHUuujGQGTOMJFsQte7%2FooAR4xzY0WG2deDczFhGIrFIiOGapvGPHuIq59ItAFxNBuYiIUqe96F2thBbZzAv278EWqqTW2fPCy7v1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 794f06a2c88db4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=2
185.76.9.16200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=2
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /s/gen.js?type=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676052494
server: CDN77-Turbo
x-77-nzt: AblMCQ1F5rf/zt0CAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be063fcf1422b
x-cache: HIT
x-age: 187854
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/42/cmp2.js?referer=www.themoneytizer.com
108.157.229.85200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/42/cmp2.js?referer=www.themoneytizer.com
IP 108.157.229.85:0
GET /tcfv2/42/cmp2.js?referer=www.themoneytizer.com HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
last-modified: Tue, 05 Jul 2022 18:40:23 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-qc-ineu: True
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
date: Sun, 05 Feb 2023 08:39:38 GMT
cache-control: max-age=172800
etag: W/"9494b70738cd74c9137e65c29c0b1f3e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3130c9b603e4215bb05d32cd39e3843c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: 6zlucx-C0t1GwA9FA73-yrF_PHMnNpA14gpEdn0KOo7In4u2aO6wLA==
age: 49239
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform3.js?siteId=37837&formatId=28
185.76.9.16200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform3.js?siteId=37837&formatId=28
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /s/requestform3.js?siteId=37837&formatId=28 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676105413
server: CDN77-Turbo
x-77-nzt: AblMCQ1wqn//Fw8CAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be0631de0f42e
x-cache: HIT
x-age: 134935
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cmp.quantcast.com/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
108.157.229.85200 OK 0 B URL HTTP/2 cmp.quantcast.com/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
IP 108.157.229.85:0
GET /choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:53:56 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
date: Sun, 05 Feb 2023 22:18:27 GMT
cache-control: max-age=3600
etag: W/"c53bd785b1ee57b613221019d7d72626"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3130c9b603e4215bb05d32cd39e3843c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: NAyXPssqxI7xuYzL9ASPtpLpqj0kU1YFd8UsmMChzvwL6oIAyqsUog==
age: 43
X-Firefox-Spdy: h2
cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
104.18.19.132200 OK 0 B URL HTTP/2 cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
IP 104.18.19.132:0
GET /1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload HTTP/1.1
Host: cloudflare.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:06 GMT
content-type: application/javascript
cf-ray: 794f06956dec1bfe-OSL
access-control-allow-origin: *
age: 0
cache-control: max-age=120
etag: W/"777d334016fd859eff9671706a59e51c"
last-modified: Thu, 02 Feb 2023 17:18:41 GMT
strict-transport-security: max-age=0
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: 5sDIeAm01Jei3_iGPYVhgm17YO1La2Mr1xjz52uIIogkQx3QDAuZLg==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=19
185.76.9.16200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=19
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /s/gen.js?type=19 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676052495
server: CDN77-Turbo
x-77-nzt: AblMCQ2fAkD/zd0CAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be0639bf85a2b
x-cache: HIT
x-age: 187853
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=6
185.76.9.16200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=6
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /s/gen.js?type=6 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676052494
server: CDN77-Turbo
x-77-nzt: AblMCQ2ck7f/zt0CAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be06307764b2c
x-cache: HIT
x-age: 187854
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform3.js?siteId=37837&formatId=3
185.76.9.16200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform3.js?siteId=37837&formatId=3
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /s/requestform3.js?siteId=37837&formatId=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676070789
server: CDN77-Turbo
x-77-nzt: AblMCQ15DjP/V5YCAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be06359bb9230
x-cache: HIT
x-age: 169559
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2
142.250.74.35200 OK 0 B URL HTTP/2 fonts.gstatic.com/s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2
IP 142.250.74.35:0
GET /s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://birdurls.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 10:06:04 GMT
expires: Fri, 02 Feb 2024 10:06:04 GMT
cache-control: public, max-age=31536000
age: 303184
last-modified: Mon, 11 Jul 2022 20:43:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:10 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Wed, 08 Mar 2023 22:19:10 GMT
etag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
cf-cache-status: HIT
age: 1229
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06ac2b3e0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
birdurls.com/aZ11xM47
104.21.33.20403 Forbidden 0 B IP 104.21.33.20:0
GET /aZ11xM47 HTTP/1.1
Host: birdurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 403 Forbidden
date: Sun, 05 Feb 2023 22:19:06 GMT
content-type: text/html; charset=UTF-8
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fn%2FV5LFVMR8o02cFwhSNNIwyoU%2Fm6%2BIn7f72EXbtzxmg3Xy8xOv7T75R1vhF4JDrQ%2B69RwB8OKqj0UrWivdYlMpLt126A8iTbSFAbkd4O%2FKxhp6pxgJoKejJHBFTibo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06934c2bb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=28
185.76.9.16200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=28
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=37837&formatId=28 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676105413
server: CDN77-Turbo
x-77-nzt: AblMCQ1XCfL/Fw8CAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be0631a46272b
x-cache: HIT
x-age: 134935
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform3.js?siteId=37837&formatId=11
185.76.9.16200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform3.js?siteId=37837&formatId=11
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /s/requestform3.js?siteId=37837&formatId=11 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676070789
server: CDN77-Turbo
x-77-nzt: AblMCQ3H1DH/V5YCAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be0634fa8e42d
x-cache: HIT
x-age: 169559
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=19
185.76.9.16200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=37837&formatId=19
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=37837&formatId=19 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1676067781
server: CDN77-Turbo
x-77-nzt: AblMCQ1N5SD/F6ICAA
x-77-nzt-ray: c0a4cc28a50f2e6b5c2be06383e3842b
x-cache: HIT
x-age: 172567
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/pwt/161673/7165/pwt.js
2.18.172.200200 OK 0 B URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/161673/7165/pwt.js
IP 2.18.172.200:0
GET /AdServer/js/pwt/161673/7165/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://birdurls.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 23 Sep 2022 12:15:31 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: application/javascript
cache-control: max-age=54344
expires: Mon, 06 Feb 2023 13:24:53 GMT
date: Sun, 05 Feb 2023 22:19:09 GMT
content-length: 73257
vary: Accept-Encoding
X-Firefox-Spdy: h2