Overview

URLsuscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4/2
IP 18.192.108.151 (Germany)
ASN#16509 AMAZON-02
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-09 09:26:11 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (34)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
tr.outbrain.com (2) 2017 2017-04-12 07:58:35 UTC 2022-12-08 17:03:18 UTC 70.42.32.31
trc-events.taboola.com (2) 1779 2020-06-09 13:52:57 UTC 2022-12-08 17:20:01 UTC 141.226.228.48
amplify.outbrain.com (1) 2255 2017-04-12 07:58:35 UTC 2022-12-08 17:59:22 UTC 2.18.173.74
www.google.no (1) 25607 2012-06-26 23:22:08 UTC 2022-12-08 17:14:59 UTC 142.250.74.131
alb.reddit.com (1) 1521 2017-06-15 05:33:56 UTC 2022-12-08 17:22:49 UTC 151.101.193.140
mc.yandex.ru (9) 2672 2012-05-21 09:38:30 UTC 2022-12-08 17:21:11 UTC 77.88.21.119
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-12-08 15:50:00 UTC 34.120.237.76
trc.taboola.com (1) 602 2012-12-27 11:54:42 UTC 2022-12-08 17:14:59 UTC 151.101.1.44
xoomber.com (1) 0 2016-01-05 14:05:54 UTC 2022-12-09 08:55:07 UTC 104.200.16.65 Unknown ranking
www.googletagmanager.com (2) 75 2012-10-04 01:07:32 UTC 2022-12-08 17:14:43 UTC 142.250.74.168
status.thawte.com (1) 5123 2017-11-27 12:33:51 UTC 2022-12-08 17:15:52 UTC 93.184.220.29
ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-12-08 17:15:03 UTC 104.18.20.226
suscoop-comithers.icu (1) 543653 2019-11-19 13:18:08 UTC 2022-12-09 04:46:52 UTC 18.192.108.151
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-12-08 17:21:04 UTC 34.160.144.191
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-12-08 17:14:01 UTC 34.117.237.239
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-12-08 17:20:00 UTC 54.70.239.215
www.redditstatic.com (1) 1440 2012-06-30 12:33:28 UTC 2022-12-08 17:17:06 UTC 151.101.65.140
connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-12-08 17:12:05 UTC 31.13.72.12
q.quora.com (1) 3239 2017-05-08 19:06:57 UTC 2022-12-08 17:43:28 UTC 52.72.186.224
analytics.twitter.com (1) 526 2013-04-10 19:53:18 UTC 2022-12-08 17:13:40 UTC 104.244.42.131
r3.o.lencr.org (11) 344 2020-12-02 08:52:13 UTC 2022-12-08 17:12:06 UTC 95.101.11.115
ocsp.digicert.com (5) 86 2012-05-21 07:02:23 UTC 2022-12-08 17:15:52 UTC 93.184.220.29
ocsp.pki.goog (9) 175 2017-06-14 07:23:31 UTC 2022-12-08 17:12:01 UTC 142.250.74.131
testedforyou.net (15) 428320 2020-04-24 12:22:18 UTC 2022-12-08 06:09:57 UTC 45.79.172.174
www.google-analytics.com (1) 40 2012-05-21 09:41:50 UTC 2022-12-08 17:20:06 UTC 142.250.74.14
pixel.mathtag.com (3) 1199 2012-05-22 05:36:42 UTC 2022-12-08 17:15:25 UTC 2.18.172.207
firefox.settings.services.mozilla.com (2) 867 2020-05-25 20:06:39 UTC 2022-12-08 17:12:32 UTC 35.241.9.150
www.facebook.com (2) 99 No data No data 31.13.72.36
static.ads-twitter.com (1) 614 2017-01-30 05:00:15 UTC 2022-12-08 17:13:39 UTC 151.101.244.157
cdn.taboola.com (1) 1040 2013-07-19 23:48:03 UTC 2022-12-08 17:12:48 UTC 151.101.1.44
region1.analytics.google.com (1) 0 2022-03-17 11:26:33 UTC 2022-12-08 17:14:59 UTC 216.239.32.36 Domain (google.com) ranked at: 1
stats.g.doubleclick.net (1) 96 2012-07-01 17:13:23 UTC 2022-12-08 17:14:59 UTC 64.233.165.155
t.co (1) 569 2012-07-25 19:09:44 UTC 2022-12-08 17:12:14 UTC 104.244.42.69
www.google.com (2) 7 2012-11-08 00:08:21 UTC 2022-12-08 17:22:52 UTC 216.58.207.228

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-12-09 2 suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4/2 Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 18.192.108.151
Date UQ / IDS / BL URL IP
2023-01-31 02:53:59 +0000 0 - 0 - 1 track.supercosmo.xyz/c09a71f2-b4aa-4669-94f8- (...) 18.192.108.151
2023-01-31 02:34:13 +0000 0 - 1 - 0 a.vfgtc.com/d88e86d7-9ecc-4c29-a870-c27a15811 (...) 18.192.108.151
2023-01-31 00:12:49 +0000 0 - 1 - 1 suscoop-comithers.icu/03e0dbb5-0a01-4fd6-8a78 (...) 18.192.108.151
2023-01-30 22:21:47 +0000 0 - 1 - 0 a.vfgtc.com/cb5cb9a8-26a4-42ae-946b-aae4b3e52 (...) 18.192.108.151
2023-01-30 22:21:40 +0000 0 - 1 - 0 a.vfgtc.com/cb5cb9a8-26a4-42ae-946b-aae4b3e52 (...) 18.192.108.151


Last 5 reports on ASN: AMAZON-02
Date UQ / IDS / BL URL IP
2023-01-31 04:08:05 +0000 1 - 0 - 7 y4a7e.bemobtrk.com/go/7f3e6593-e4e9-42bf-8380 (...) 3.70.16.242
2023-01-31 04:07:51 +0000 4 - 0 - 19 courses.serenitybirthstudio.com/wp-content/th (...) 100.21.95.251
2023-01-31 04:06:13 +0000 0 - 0 - 4 uniterm.ro/ 199.59.243.222
2023-01-31 04:00:09 +0000 0 - 4 - 4 heuristic-knuth-588d37.netlify.app/ 18.192.231.252
2023-01-31 03:59:02 +0000 0 - 0 - 1 ultigamer.com/wp-admin/includes/Download/PJVO (...) 18.119.154.66


Last 5 reports on domain: suscoop-comithers.icu
Date UQ / IDS / BL URL IP
2023-01-31 00:12:49 +0000 0 - 1 - 1 suscoop-comithers.icu/03e0dbb5-0a01-4fd6-8a78 (...) 18.192.108.151
2023-01-30 06:28:00 +0000 0 - 1 - 1 suscoop-comithers.icu/7e4d2590-8cc0-4f59-98fb (...) 18.192.108.151
2023-01-30 04:10:26 +0000 0 - 1 - 1 suscoop-comithers.icu/7e4d2590-8cc0-4f59-98fb (...) 18.192.108.151
2023-01-29 18:10:35 +0000 0 - 1 - 1 suscoop-comithers.icu/2b527f8c-9da8-48ee-8ac1 (...) 18.192.108.151
2023-01-29 09:37:26 +0000 0 - 1 - 1 suscoop-comithers.icu/2b527f8c-9da8-48ee-8ac1 (...) 18.192.108.151


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-25 03:58:51 +0000 0 - 0 - 1 suscoop-comithers.icu/2c248bc7-db3a-477f-894e (...) 18.192.108.151
2023-01-08 22:38:45 +0000 0 - 1 - 1 suscoop-comithers.icu/7a75e63d-1ea4-4b2e-9792 (...) 18.192.108.151
2022-12-20 23:58:17 +0000 0 - 1 - 0 suscoop-comithers.icu/2c248bc7-db3a-477f-894e (...) 18.192.108.151
2022-12-20 02:57:56 +0000 0 - 1 - 0 suscoop-comithers.icu/2c248bc7-db3a-477f-894e (...) 18.192.108.151
2022-12-20 02:57:55 +0000 0 - 1 - 0 suscoop-comithers.icu/2c248bc7-db3a-477f-894e (...) 18.192.108.151

JavaScript

Executed Scripts (28)

Executed Evals (8)
#1 JavaScript::Eval (size: 713) - SHA256: bc3a343c8c55811e879d4a57b5de0d127b893cd23465fcb58c1d1d6d3ee9eb4c
(function() {
    function d(a) {
        return (a = document.cookie.match(new RegExp("(?:^| )" + a.replace(/([.$?*+\\\/{}|()\[\]^])/g, "\\$1") + "\x3d(.*?)(?:;|$)"))) ? a[1] : ""
    }

    function e(a) {
        var b = window.location.href;
        a = a.replace(/[\[\]]/g, "\\$\x26");
        a = new RegExp("[?\x26]" + a + "(\x3d([^\x26#]*)|\x26|#|$)");
        return (b = a.exec(b)) && b[2] ? decodeURIComponent(b[2].replace(/\+/g, "\u00a0")) : ""
    }

    function f() {
        var a = d("_sidd");
        if (!a) return "";
        try {
            a = JSON.parse(atob(a))
        } catch (b) {
            return ""
        }
        return a && a.marker && a.marker.test ? a.marker.test.replace(/ab_\d{10}_/g,
            "ab_") : ""
    }
    var c = e("m").replace(/ab_\d{10}_/g, "ab_") + "-" + d("source").replace(/ab_\d{10}_/g, "ab_") + "-" + f();
    c = c.split("-");
    for (i = 0; i < c.length; i++)
        if (0 <= c[i].search(/^ab/)) return c[i];
    return ""
})();
#2 JavaScript::Eval (size: 731) - SHA256: 968af3a17139ce074afbd647eaf6aedb2b1d42560acef2cbdaf10a79c80945ea
(function() {
    var a = document.querySelectorAll('a[href*\x3d"/download/"]');
    if (a[0] && a[0].href && a[0].href.indexOf("download")) return 0 <= a[0].href.indexOf("driver-updater") ? "Driver Updater" : 0 <= a[0].href.indexOf("du") ? "Driver Updater" : 0 <= a[0].href.indexOf("pc-repair") ? "PC Repair" : 0 <= a[0].href.indexOf("pcr") ? "PC Repair" : 0 <= a[0].href.indexOf("avarmor") ? "AVarmor" : 0 <= a[0].href.indexOf("anti-malware") ? "Anti-Malware" : 0 <= a[0].href.indexOf("antivirus") ? "Antivirus" : 0 <= a[0].href.indexOf("ivpn") ? "iVPN" : 0 <= a[0].href.indexOf("outbyte-vpn") ?
        "VPN" : 0 <= a[0].href.indexOf("mac-repair") ? "MacRepair" : 0 <= a[0].href.indexOf("mcr") ? "MacRepair" : 0 <= a[0].href.indexOf("macaries") ? "macAries" : 0 <= a[0].href.indexOf("file-recovery") ? "File Recovery" : "other"
})();
#3 JavaScript::Eval (size: 823) - SHA256: 263b8517a468db4d68244cc32497d698a1f2134e48da14b653730ad9eb5e8b9e
(function() {
    var a = window.location.toString();
    return 0 <= a.indexOf("driver-updater") ? "Driver Updater" : 0 <= a.indexOf("du") ? "Driver Updater" : 0 <= a.indexOf("pc-repair") ? "PC Repair" : 0 <= a.indexOf("pcr") ? "PC Repair" : 0 <= a.indexOf("pc-repair-kit") ? "PC Repair Kit" : 0 <= a.indexOf("pcrk") ? "PC Repair Kit" : 0 <= a.indexOf("fix-my-pc") ? "Fix My PC" : 0 <= a.indexOf("pc-speed-up") ? "PC Speed Up" : 0 <= a.indexOf("internet-optimizer") ? "Internet Optimizer" : 0 <= a.indexOf("anti-malware") ? "Anti-Malware" : 0 <= a.indexOf("antivirus") ? "Antivirus" :
        0 <= a.indexOf("avarmor") ? "AVarmor" : 0 <= a.indexOf("vpn") ? "VPN" : 0 <= a.indexOf("ivpn") ? "iVPN" : 0 <= a.indexOf("mac-repair") ? "MacRepair" : 0 <= a.indexOf("mr") ? "MacRepair" : 0 <= a.indexOf("mcr") ? "MacRepair" : 0 <= a.indexOf("macaries") ? "macAries" : 0 <= a.indexOf("mac") ? "macAries" : 0 <= a.indexOf("file-recovery") ? "File Recovery" : "other"
})();
#4 JavaScript::Eval (size: 83) - SHA256: ab3187de66558ccc057ca177ceb858d83970394993f2ca180e04ceeeec1db0dc
(function() {
    var b = 4;
    return function(a) {
        a.set("dimension" + b, a.get("clientId"))
    }
})();
#5 JavaScript::Eval (size: 419) - SHA256: 5056fe8ebe4adddcfa058eb5e15e7b03eec00291d8d4e2a1db170e393162f390
(function() {
    var a = window.location.toString();
    return 0 <= a.indexOf("driver-updater") ? "driver-updater" : 0 <= a.indexOf("du") ? "driver-updater" : 0 <= a.indexOf("pc-repair") ? "pc-repair" : 0 <= a.indexOf("pcr") ? "pc-repair" : 0 <= a.indexOf("avarmor") ? "avarmor" : 0 <= a.indexOf("vpn") ? "vpn" : 0 <= a.indexOf("ivpn") ? "ivpn" : 0 <= a.indexOf("macaries") ? "macaries" : 0 <= a.indexOf("mac") ? "macaries" : 0 <= a.indexOf("file-recovery") ? "file-recovery" : "other"
})();
#6 JavaScript::Eval (size: 704) - SHA256: 3632180ed11ab306a3292f979f71d72cd82739b7bc724a7a7d01f996a4f4f8bf
(function() {
    function d(a) {
        return (a = document.cookie.match(new RegExp("(?:^| )" + a.replace(/([.$?*+\\\/{}|()\[\]^])/g, "\\$1") + "\x3d(.*?)(?:;|$)"))) ? a[1] : ""
    }

    function e(a) {
        var b = window.location.href;
        a = a.replace(/[\[\]]/g, "\\$\x26");
        a = new RegExp("[?\x26]" + a + "(\x3d([^\x26#]*)|\x26|#|$)");
        return (b = a.exec(b)) && b[2] ? decodeURIComponent(b[2].replace(/\+/g, "\u00a0")) : ""
    }

    function f() {
        var a = d("_sidd");
        if (!a) return "";
        try {
            a = JSON.parse(atob(a))
        } catch (b) {
            return ""
        }
        return a && a.marker && a.marker.src ? a.marker.src.replace(/\d{10}_/g,
            "") : ""
    }
    var c = e("m").replace(/\d{10}_/g, "") + "-" + f() + "-" + d("source").replace(/\d{10}_/g, "");
    c = c.split("-");
    for (i = 0; i < c.length; i++)
        if (0 <= c[i].search(/^src|^aff|^ppc/)) return c[i];
    return ""
})();
#7 JavaScript::Eval (size: 923) - SHA256: 7949d40a240d20bbc2b7688b881a07833201149200a17dc3bee8a390fe0ad679
(function() {
    var a = window.location.toString();
    return 0 <= a.indexOf("driver-updater") ? "Driver Updater" : 0 <= a.indexOf("du") ? "Driver Updater" : 0 <= a.indexOf("wera") ? "Driver Updater" : 0 <= a.indexOf("pc-repair") ? "PC Repair" : 0 <= a.indexOf("pcr") ? "PC Repair" : 0 <= a.indexOf("software-reviews.com/uninstaller/") ? "PC Repair" : 0 <= a.indexOf("pc-repair-kit") ? "PC Repair Kit" : 0 <= a.indexOf("pcrk") ? "PC Repair Kit" : 0 <= a.indexOf("fix-my-pc") ? "Fix My PC" : 0 <= a.indexOf("pc-speed-up") ? "PC Speed Up" : 0 <= a.indexOf("internet-optimizer") ?
        "Internet Optimizer" : 0 <= a.indexOf("anti-malware") ? "Anti-Malware" : 0 <= a.indexOf("antivirus") ? "Antivirus" : 0 <= a.indexOf("avarmor") ? "AVarmor" : 0 <= a.indexOf("vpn") ? "VPN" : 0 <= a.indexOf("ivpn") ? "iVPN" : 0 <= a.indexOf("mac-repair") ? "MacRepair" : 0 <= a.indexOf("mr") ? "MacRepair" : 0 <= a.indexOf("mcr") ? "MacRepair" : 0 <= a.indexOf("macaries") ? "macAries" : 0 <= a.indexOf("mac") ? "macAries" : 0 <= a.indexOf("file-recovery") ? "File Recovery" : "other"
})();
#8 JavaScript::Eval (size: 699) - SHA256: 203827c8ccdf81c8c134d8109a023515afebf623b720b07c79c6147797803cbc
(function() {
    function d(a) {
        return (a = document.cookie.match(new RegExp("(?:^| )" + a.replace(/([.$?*+\\\/{}|()\[\]^])/g, "\\$1") + "\x3d(.*?)(?:;|$)"))) ? a[1] : ""
    }

    function e(a) {
        var b = window.location.href;
        a = a.replace(/[\[\]]/g, "\\$\x26");
        a = new RegExp("[?\x26]" + a + "(\x3d([^\x26#]*)|\x26|#|$)");
        return (b = a.exec(b)) && b[2] ? decodeURIComponent(b[2].replace(/\+/g, "\u00a0")) : ""
    }

    function f() {
        var a = d("_sidd");
        if (!a) return "";
        try {
            a = JSON.parse(atob(a))
        } catch (b) {
            return ""
        }
        return a && a.marker && a.marker.email ? a.marker.all.replace(/\d{10}_/g,
            "") : ""
    }
    var c = e("m").replace(/\d{10}_/g, "") + "-" + d("source").replace(/\d{10}_/g, "") + "-" + f();
    c = c.split("-");
    for (i = 0; i < c.length; i++)
        if (0 <= c[i].search(/^email_/)) return c[i];
    return ""
})();

Executed Writes (0)


HTTP Transactions (91)


Request Response
                                        
                                            GET /2c248bc7-db3a-477f-894e-709f28c878b4/2 HTTP/1.1 
Host: suscoop-comithers.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         18.192.108.151
HTTP/1.1 302
                                        
Server: nginx
Date: Fri, 09 Dec 2022 09:26:00 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://xoomber.com/WJfYxY7T?sub_id_2=weo2uk3ipbpai12liaqdjqfm&sub_id_3=2c248bc7-db3a-477f-894e-709f28c878b4_
Pragma: no-cache
Set-Cookie: 2c248bc7-db3a-477f-894e-709f28c878b4-v4=1RxuQReZcgwjkRTqv30Y25CHx_jGCTd16RUaPMnnh5s; Max-Age=86400; Expires=Sat, 10-Dec-2022 09:26:00 GMT; Domain=suscoop-comithers.icu; Path=/; HttpOnly cc-v4=vpmOPix6W6brkSVJwF%2BYq4bHw1wkmECPfhIGJXeBle9NaAaxZ%2ByUTrBGqB7lbzvsrC1MSp43GpaFvh%2FCSTXnbrCa%2BeqZIyHA%2F%2FRIAjPyJlXkaXrGTxM5DnRRdV1PUpGRgyIfvMWHtnPJ0vTVlINs9g%3D%3D; Max-Age=31536000; Expires=Sat, 09-Dec-2023 09:26:00 GMT; Domain=suscoop-comithers.icu; Path=/; HttpOnly


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14069
Expires: Fri, 09 Dec 2022 13:20:29 GMT
Date: Fri, 09 Dec 2022 09:26:00 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4945
Expires: Fri, 09 Dec 2022 10:48:25 GMT
Date: Fri, 09 Dec 2022 09:26:00 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4382
Expires: Fri, 09 Dec 2022 10:39:02 GMT
Date: Fri, 09 Dec 2022 09:26:00 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.241.9.150
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 09:08:18 GMT
age: 1062
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: N1ZofQzo5KP98rGIjYwBjL8DH46V2n3GnogNwzh/dMmkeYOHQ7bUCie2xujqJ1VDuMTcSoWAcj5semcM+bSF3Q==
x-amz-request-id: PRT7N3F5FPN9YTKB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 08:48:16 GMT
age: 2264
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    53341dea33f4f3d9b4966f80589f429a
Sha1:   20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
Sha256: 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:00 GMT
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "3BBF9EFB40F7FC73689B5E19C8CF1AD8009F64A51B1E0938AAFA0D394723458D"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14241
Expires: Fri, 09 Dec 2022 13:23:21 GMT
Date: Fri, 09 Dec 2022 09:26:00 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.241.9.150
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 09:07:59 GMT
age: 1081
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /WJfYxY7T?sub_id_2=weo2uk3ipbpai12liaqdjqfm&sub_id_3=2c248bc7-db3a-477f-894e-709f28c878b4_ HTTP/1.1 
Host: xoomber.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         104.200.16.65
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 09 Dec 2022 09:26:01 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Location: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei3
Pragma: no-cache
Set-Cookie: _subid=s8hnpa316ei3;Expires=Monday, 09-Jan-2023 09:26:01 GMT;Max-Age=2678400;Path=/ 9f320=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjE3NjVcIjoxNjcwNTc3OTYxfSxcImNhbXBhaWduc1wiOntcIjU5OVwiOjE2NzA1Nzc5NjF9LFwidGltZVwiOjE2NzA1Nzc5NjF9In0.z_9B_94gqvWk1FW9i0t049jOydQa9jN0igUG38oZI_8;Expires=Sunday, 17-Nov-2075 18:52:02 GMT;Max-Age=1670664361;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3813
Cache-Control: max-age=89064
Date: Fri, 09 Dec 2022 09:26:01 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 10:10:25 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E01032FBC0A83DF2B562A78D45BF4EF7A0362914EFF99B65F5782084236AC37C"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 09 Dec 2022 15:26:01 GMT
Date: Fri, 09 Dec 2022 09:26:01 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2DHX7zbbLEJ2gs05z47ycQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.70.239.215
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Au7ZdRAS52W8EoqDenu74Y+k5/U=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Dec 2022 09:26:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Dec 2022 09:26:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtm.js?id=GTM-MXXFW64 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 09:26:01 GMT
expires: Fri, 09 Dec 2022 09:26:01 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 58561
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10590)
Size:   58561
Md5:    ab89654ee3e2c74b19dce5f6f4cf3b8d
Sha1:   1892f1f1dd54d35953cac63bbbc22ab099721ea6
Sha256: c4fb598d34fa3269cb8f01dcbd02c963a31830ebcb2e3c993064948d04bb238f
                                        
                                            GET /gtm.js?id=GTM-PM3XLW4 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 09:26:01 GMT
expires: Fri, 09 Dec 2022 09:26:01 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75596
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16509)
Size:   75596
Md5:    7ea50a54f3bd4802c96ca6b791b99220
Sha1:   894c0008788ca0f25dde11f8e338c2a081879586
Sha256: bb4b4a4fb10bc064bf35838d01f305051b644c5694e702d77102e427e6b2bd4a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Dec 2022 09:26:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /download-instructions/download-instructions.css HTTP/1.1 
Host: testedforyou.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei3
Cookie: advanced=n531tosgholkpncdbtaq4qsoh4; source=1209092601_src_ag_bockachbr_du_tfu_du_101-1209092601_cart_du_darktheme; _csrf=99f8401b98f5aeb3d9102636ac90fc38a780278c0eec0019ebdd4024ab436d07a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Tc0VyDLeRC7E7hTnQAvCD-62QlDoHCl%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         45.79.172.174
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:01 GMT
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: W/"63901dcc-5e08"
expires: Fri, 16 Dec 2022 09:26:01 GMT
cache-control: max-age=604800, max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   13746
Md5:    574ca31dd7f05fa05cc72c5ea8f5bdeb
Sha1:   76d29175c1ab359ceee44da6a59fbbbd48d37d1c
Sha256: 057d0eb6cac401e29589003f62c775f41215b581222427d55b9362cc5aacb36e
                                        
                                            GET /download-instructions/i/firefox-logo.png HTTP/1.1 
Host: testedforyou.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=n531tosgholkpncdbtaq4qsoh4; source=1209092601_src_ag_bockachbr_du_tfu_du_101-1209092601_cart_du_darktheme; _csrf=99f8401b98f5aeb3d9102636ac90fc38a780278c0eec0019ebdd4024ab436d07a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Tc0VyDLeRC7E7hTnQAvCD-62QlDoHCl%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         45.79.172.174
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:01 GMT
content-length: 3413
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-d55"
expires: Fri, 16 Dec 2022 09:26:01 GMT
cache-control: max-age=604800, max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 65 x 62, 8-bit colormap, non-interlaced\012- data
Size:   3413
Md5:    00f32dc87963ea21ce76e7adae907168
Sha1:   203c9f4776878e4e9ea52174470a3fe14655f9da
Sha256: 14931c32197c6c58d56252c12b5b89168bd2f5711e773d338d922cc2a641a1a5
                                        
                                            GET /download-instructions/driver-updater/i/firefox-screen.png HTTP/1.1 
Host: testedforyou.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=n531tosgholkpncdbtaq4qsoh4; source=1209092601_src_ag_bockachbr_du_tfu_du_101-1209092601_cart_du_darktheme; _csrf=99f8401b98f5aeb3d9102636ac90fc38a780278c0eec0019ebdd4024ab436d07a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Tc0VyDLeRC7E7hTnQAvCD-62QlDoHCl%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         45.79.172.174
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:01 GMT
content-length: 25154
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-6242"
expires: Fri, 16 Dec 2022 09:26:01 GMT
cache-control: max-age=604800, max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 800 x 175, 8-bit colormap, non-interlaced\012- data
Size:   25154
Md5:    15d3fdb92892b2dcbcaf0f1944f8c198
Sha1:   d17eb72157196c7eee1422b768f4b29453085749
Sha256: 13e038b19f340445d1dfdba04fcbe7543f9cb93b9d5ee78afb930188305db013
                                        
                                            GET /download-instructions/i/steps.png HTTP/1.1 
Host: testedforyou.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=n531tosgholkpncdbtaq4qsoh4; source=1209092601_src_ag_bockachbr_du_tfu_du_101-1209092601_cart_du_darktheme; _csrf=99f8401b98f5aeb3d9102636ac90fc38a780278c0eec0019ebdd4024ab436d07a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Tc0VyDLeRC7E7hTnQAvCD-62QlDoHCl%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         45.79.172.174
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:01 GMT
content-length: 1377
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-561"
expires: Fri, 16 Dec 2022 09:26:01 GMT
cache-control: max-age=604800, max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 180 x 60, 8-bit colormap, non-interlaced\012- data
Size:   1377
Md5:    54224278a486da9c98d0ce8f1016293f
Sha1:   eacbb28164100b95ffe54db614f5901ea06854e4
Sha256: 6156205b893bc350ea9ea0bea3cda0073746982ea9feef9776c6472181282ac7
                                        
                                            GET /download-instructions/i/firefox-download-icon.png HTTP/1.1 
Host: testedforyou.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=n531tosgholkpncdbtaq4qsoh4; source=1209092601_src_ag_bockachbr_du_tfu_du_101-1209092601_cart_du_darktheme; _csrf=99f8401b98f5aeb3d9102636ac90fc38a780278c0eec0019ebdd4024ab436d07a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Tc0VyDLeRC7E7hTnQAvCD-62QlDoHCl%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         45.79.172.174
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:01 GMT
content-length: 358
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-166"
expires: Fri, 16 Dec 2022 09:26:01 GMT
cache-control: max-age=604800, max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 24, 8-bit colormap, non-interlaced\012- data
Size:   358
Md5:    747cd64b62e9294e35e82c3811b59341
Sha1:   96001dcd8a8dcfde7ab0f16c35a99c693ba6ef65
Sha256: 6b377bc2324320c6521ab6b2bdb41a0d4b96d2683badc9943b03754370f0d3bd
                                        
                                            GET /download-instructions/i/close.png HTTP/1.1 
Host: testedforyou.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=n531tosgholkpncdbtaq4qsoh4; source=1209092601_src_ag_bockachbr_du_tfu_du_101-1209092601_cart_du_darktheme; _csrf=99f8401b98f5aeb3d9102636ac90fc38a780278c0eec0019ebdd4024ab436d07a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Tc0VyDLeRC7E7hTnQAvCD-62QlDoHCl%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         45.79.172.174
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:01 GMT
content-length: 657
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-291"
expires: Fri, 16 Dec 2022 09:26:01 GMT
cache-control: max-age=604800, max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 28 x 28, 8-bit colormap, non-interlaced\012- data
Size:   657
Md5:    21953dc66e942356724bb035a65a6979
Sha1:   a1db3edbc90a640e9bd89b521f5f5b410578722e
Sha256: 36e39164f94c90a54cf45f905a17a3916aba8b6b0831c6a194a6293c098704bf
                                        
                                            GET /tfu-du-101/jscss/fonts/open-sans-normal.woff HTTP/1.1 
Host: testedforyou.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://testedforyou.net/tfu-du-101/jscss/style.css
Cookie: advanced=n531tosgholkpncdbtaq4qsoh4; source=1209092601_src_ag_bockachbr_du_tfu_du_101-1209092601_cart_du_darktheme; _csrf=99f8401b98f5aeb3d9102636ac90fc38a780278c0eec0019ebdd4024ab436d07a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Tc0VyDLeRC7E7hTnQAvCD-62QlDoHCl%22%3B%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         45.79.172.174
HTTP/2 200 OK
content-type: application/font-woff
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:01 GMT
content-length: 34312
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-8608"
expires: Fri, 16 Dec 2022 09:26:01 GMT
cache-control: max-age=604800, max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 34312, version 1.1\012- data
Size:   34312
Md5:    aba4b4c53579deb54f3fd349a21abce3
Sha1:   a96386adaa480e3a61febd60afa422f8c6dbc7c6
Sha256: b9e0699272a5df7a51862b402ac6294d8d20993e67588001b8b44bfeb5438a6a
                                        
                                            GET /tfu-du-101/jscss/fonts/open-sans-bold.woff HTTP/1.1 
Host: testedforyou.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://testedforyou.net/tfu-du-101/jscss/style.css
Cookie: advanced=n531tosgholkpncdbtaq4qsoh4; source=1209092601_src_ag_bockachbr_du_tfu_du_101-1209092601_cart_du_darktheme; _csrf=99f8401b98f5aeb3d9102636ac90fc38a780278c0eec0019ebdd4024ab436d07a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Tc0VyDLeRC7E7hTnQAvCD-62QlDoHCl%22%3B%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         45.79.172.174
HTTP/2 200 OK
content-type: application/font-woff
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:01 GMT
content-length: 34996
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-88b4"
expires: Fri, 16 Dec 2022 09:26:01 GMT
cache-control: max-age=604800, max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 34996, version 1.1\012- data
Size:   34996
Md5:    d790d2580f8e2c9da6dc54f3b7085c40
Sha1:   1f0121abacf2d6877877a7f448bef3985fbfc4e6
Sha256: 748e14b7cf70561ab9d7acdddd1014bcc19d528b0947d4dbc5ec04f316aa8885
                                        
                                            GET /tfu-du-101/jscss/fonts/open-sans-italic.woff HTTP/1.1 
Host: testedforyou.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://testedforyou.net/tfu-du-101/jscss/style.css
Cookie: advanced=n531tosgholkpncdbtaq4qsoh4; source=1209092601_src_ag_bockachbr_du_tfu_du_101-1209092601_cart_du_darktheme; _csrf=99f8401b98f5aeb3d9102636ac90fc38a780278c0eec0019ebdd4024ab436d07a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Tc0VyDLeRC7E7hTnQAvCD-62QlDoHCl%22%3B%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         45.79.172.174
HTTP/2 200 OK
content-type: application/font-woff
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:01 GMT
content-length: 36504
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-8e98"
expires: Fri, 16 Dec 2022 09:26:01 GMT
cache-control: max-age=604800, max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 36504, version 1.1\012- data
Size:   36504
Md5:    f6e0dbd5a68b19e4129059bd95f8215e
Sha1:   a687d6fde61570c5884db570299a702edda1fdcd
Sha256: 489bb93c6ad737c927ec0189a08eef50b7418653d64951ffa18497435036400a
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.14
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 09 Dec 2022 08:46:55 GMT
expires: Fri, 09 Dec 2022 10:46:55 GMT
cache-control: public, max-age=7200
age: 2347
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20039
Md5:    47e6f374ca946fddd5b59871b325736c
Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4
Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1890
Cache-Control: max-age=113434
Date: Fri, 09 Dec 2022 09:26:02 GMT
Etag: "63920fe2-1d7"
Expires: Sat, 10 Dec 2022 16:56:36 GMT
Last-Modified: Thu, 08 Dec 2022 16:25:06 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /ads/pixel.js HTTP/1.1 
Host: www.redditstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.65.140
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 07 Nov 2022 16:45:46 GMT
etag: "3528fd00b652f61a266eb584d96f4fcc"
cache-control: public, max-age=60
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 09 Dec 2022 09:26:02 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25224)
Size:   7722
Md5:    3528fd00b652f61a266eb584d96f4fcc
Sha1:   d89e16aa1323c6c4f1ed3941122020684a599361
Sha256: 77efa9f2ddfdca7a45df37bbcd22fdaeb7b97161a2acd87e21eb78bdeaad1332
                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: e1FKl6hCg2aZM1wk8NNLskldRxaLZ07WG3/UdV++Jlzb6LFzIp5y83iQSDD89kkWKSYnmw979LcvCHwpq1az6Q==
content-length: 27340
x-fb-trip-id: 1904183273
date: Fri, 09 Dec 2022 09:26:02 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   27340
Md5:    44ecaa3c2a4929a40141edc4540aaf84
Sha1:   f29a573182333b2500d41bfc389d6c5232dfb348
Sha256: 6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: testedforyou.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei3
Cookie: advanced=n531tosgholkpncdbtaq4qsoh4; source=1209092601_src_ag_bockachbr_du_tfu_du_101-1209092601_cart_du_darktheme; _csrf=99f8401b98f5aeb3d9102636ac90fc38a780278c0eec0019ebdd4024ab436d07a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Tc0VyDLeRC7E7hTnQAvCD-62QlDoHCl%22%3B%7D; outbyte-sess=8tlfn6o66bkfngsh2gr55augb5; _sid=0BCsrICgdN; _sidd=eyJ1c2VyQWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgeDY0OyBydjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImJyb3dzZXIiOiJGaXJlZm94IiwiY2xraWQiOiJzOGhucGEzMTZlaTMiLCJtc2Nsa2lkIjoiIiwiZ2NsaWQiOiIiLCJmYmNsaWQiOiIiLCJmYnAiOiJmYi4xLjE2NzA1Nzc5NjE4OTAuOTAzNDYyOTkyMCIsImNsaWVudElkIjoiMjAwMjM5MTY4OC4xNjcwNTc3OTYxIiwiYXVpZCI6IiIsIkNhbXBhaWduSWQiOiIiLCJ1dG1faWQiOiIiLCJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6InRmdV9kdV8xMDEiLCJ1dG1fdGVybSI6IiIsInV0bV9jb250ZW50IjoiIiwiZG93bmxvYWRSZWZlcnJlciI6IiIsIm1hcmtlciI6eyJzcmMiOiIxMjA5MDkyNjAxX3NyY19hZ19ib2NrYWNoYnJfZHVfdGZ1X2R1XzEwMSIsImFsbCI6WyIxMjA5MDkyNjAxX2NhcnRfZHVfZGFya3RoZW1lIl19LCJzb2Z0d2FyZVZlcnNpb25zIjpbXSwiZCI6eyJrZXl3b3JkIjoiIiwiY29udGVudCI6IiJ9fQ==; _ga=GA1.2.2002391688.1670577961; _fbp=fb.1.1670577961890.9034629920; _gcl_au=1.1.128428520.1670577961
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         45.79.172.174
HTTP/2 200 OK
content-type: image/x-icon
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:02 GMT
content-length: 1150
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: "63901dcc-47e"
expires: Fri, 16 Dec 2022 09:26:02 GMT
cache-control: max-age=604800, max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   1150
Md5:    68cd66a66c961a0c6ad781c1ca84c6ee
Sha1:   f0ba1cafd867af68e1770e1e95798b6b99c987e6
Sha256: 7b526ade6f91f6990050ea71697bc782b47f119af917914b10939ae8a044490a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1890
Cache-Control: max-age=113434
Date: Fri, 09 Dec 2022 09:26:02 GMT
Etag: "63920fe2-1d7"
Expires: Sat, 10 Dec 2022 16:56:36 GMT
Last-Modified: Thu, 08 Dec 2022 16:25:06 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /event/js?mt_id=1564089&mt_adid=249026&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3= HTTP/1.1 
Host: pixel.mathtag.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         2.18.172.207
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Content-Length: 1493
Access-Control-Allow-Origin: *
Server: MT3 180 1fd3e2d master cdg-pixel-x28 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Fri, 09 Dec 2022 09:26:01 GMT
Date: Fri, 09 Dec 2022 09:26:02 GMT
Connection: keep-alive
Set-Cookie: uuid=612e6392-ff2a-4b00-b230-d872156b442d; domain=.mathtag.com; path=/; expires=Sat, 06-Jan-2024 09:26:02 GMT; SameSite=None; Secure


--- Additional Info ---
Magic:  ASCII text
Size:   1493
Md5:    722a2b3b493506fd931c2589413166ad
Sha1:   b04952b7f396c49e1e07d3018b93a264e8217901
Sha256: 718cd11637e6d8d3e41cdd32c32239d880c4470fbb42b000132995377159de2d
                                        
                                            GET /sync/iframe?mt_uuid=612e6392-ff2a-4b00-b230-d872156b442d&no_iframe=1&mt_adid=249026&source=mathtag HTTP/1.1 
Host: pixel.mathtag.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         2.18.172.207
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 713
Access-Control-Allow-Origin: *
Server: MT3 180 1fd3e2d master cdg-pixel-x31 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Fri, 09 Dec 2022 09:26:01 GMT
Date: Fri, 09 Dec 2022 09:26:02 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text
Size:   713
Md5:    f853f2ecf3f2d763c4057f4ff5c3e4e8
Sha1:   0f9ca6de16aa4261f1202443311462a81717dd85
Sha256: 8040be8c28a19b0f78481f2da17e7220e75adde27eb9713ff626652a066f92da
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2EDE401D78089D36537129BF22C90E39B306E9C40F83835BBCE82D2757BD3DA0"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14804
Expires: Fri, 09 Dec 2022 13:32:46 GMT
Date: Fri, 09 Dec 2022 09:26:02 GMT
Connection: keep-alive

                                        
                                            GET /cp/obtp.js HTTP/1.1 
Host: amplify.outbrain.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         2.18.173.74
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Accept-Ranges: bytes
ETag: "fe80c55f1e1387116ff9765261ed192c:1669645506.686439"
Last-Modified: Mon, 28 Nov 2022 14:22:05 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Fri, 09 Dec 2022 09:46:02 GMT
Date: Fri, 09 Dec 2022 09:26:02 GMT
Content-Length: 5269
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (16574), with no line terminators
Size:   5269
Md5:    5cdda5ed80a4ee13f700ae502f7cd4ec
Sha1:   0e6aa932abf3c56561a686aa3e8d069aaa3ca228
Sha256: d54fc3e1792330cc768902f861f0a79ecffbfd23b8db14f354e8fcefd1c831c1
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Dec 2022 09:26:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /uwt.js HTTP/1.1 
Host: static.ads-twitter.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.244.157
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Fri, 09 Dec 2022 09:26:02 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57596), with no line terminators
Size:   15375
Md5:    573e6a7f86f6f3063763360ef0672c01
Sha1:   b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
Sha256: 02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Dec 2022 09:26:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gseccovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Dec 2022 09:26:02 GMT
Content-Length: 938
Connection: keep-alive
Expires: Tue, 13 Dec 2022 06:34:33 GMT
ETag: "ebd73e5edd0086b7ed30e08c2c1eec5d065eeaa3"
Last-Modified: Fri, 09 Dec 2022 06:34:34 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3117
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776cb269ad6b1bfa-OSL

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-199245412-1&cid=2002391688.1670577961&jid=2084954113&gjid=2137282890&_gid=311316044.1670577961&_u=YCDAiUAjBAAAAEAEK~&z=10012509 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         64.233.165.155
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://testedforyou.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 09 Dec 2022 09:26:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-1EEJR9725E&cid=2002391688.1670577961&gtm=2oebu0&aip=1&z=665375155 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.131
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 09:26:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Dec 2022 09:26:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Dec 2022 09:26:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /_/ad/1c8bc6387cd04f7898e896bbe472e833/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3 HTTP/1.1 
Host: q.quora.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         52.72.186.224
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 09 Dec 2022 09:26:02 GMT
Server: nginx
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Q-Stat: ,249f1581e8bd1c27fda70a67b4c8539a,10.0.0.120,6702,91.90.42.154,,84448279194,1,1670577962.526,0.001,,.,0,0,0.000,0.004,-,0,0,197,210,105,10,35796,,,,,,-,
Content-Length: 43
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /libtrc/unip/1282895/tfa.js HTTP/1.1 
Host: cdn.taboola.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.1.44
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
x-amz-id-2: OpvsmASRjiErc3cy55TC7YlFZ5f3/90eRUeot1Lx+JmzwxzwAPwTFqJ6xABUL99hJQ7qHU8ayJ8=
x-amz-request-id: 9TT7SY4YZ1CC5V1Q
x-amz-replication-status: COMPLETED
last-modified: Tue, 06 Dec 2022 13:06:22 GMT
etag: "dea0be585e2e70ef8783b9584bdde038"
x-amz-version-id: gE9gAIUax06cka88_NxcaA934Hs3Gb33
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 09:26:02 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670577962.470179,VS0,VE104
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 17
content-length: 18130
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (58976)
Size:   18130
Md5:    359287c116c89cd3df815a2ae584dc0b
Sha1:   cc692481e299de1347563a75553654e595db7829
Sha256: 4864bde554f27f22b5dd703eb3b2ddb13ab7370a2aecb144384473ff065d7fcf
                                        
                                            GET /comp/img?mt_id=99&ns=xx&bcdv=0 HTTP/1.1 
Host: pixel.mathtag.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         2.18.172.207
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 0
Access-Control-Allow-Origin: *
Server: MT3 180 1fd3e2d master cdg-pixel-x16 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Fri, 09 Dec 2022 09:26:01 GMT
Date: Fri, 09 Dec 2022 09:26:02 GMT
Connection: keep-alive
Set-Cookie: uuid=db1f6392-ff2a-4e00-a59f-92ef1b41e1dc; domain=.mathtag.com; path=/; expires=Sat, 06-Jan-2024 09:26:02 GMT; SameSite=None; Secure

                                        
                                            GET /rp.gif?ts=1670577961378&id=t2_33l5nykp&event=ViewContent&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=78702683-de11-45ad-8ff5-ec5bbc91216d&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 HTTP/1.1 
Host: alb.reddit.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.193.140
HTTP/2 200 OK
content-type: image/gif
                                        
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Fri, 09 Dec 2022 09:26:02 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4640
Cache-Control: max-age=99972
Date: Fri, 09 Dec 2022 09:26:02 GMT
Etag: "6391d08e-139"
Expires: Sat, 10 Dec 2022 13:12:14 GMT
Last-Modified: Thu, 08 Dec 2022 11:54:54 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 313

                                        
                                            GET /metrika/tag.js HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         77.88.21.119
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 73711
date: Fri, 09 Dec 2022 09:26:02 GMT
access-control-allow-origin: *
etag: "6391b12a-11fef"
expires: Fri, 09 Dec 2022 10:26:02 GMT
last-modified: Thu, 08 Dec 2022 12:40:58 GMT
cache-control: max-age=3600
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (598)
Size:   73711
Md5:    fb08b4dcffe04b350ba8e7ab80a999a1
Sha1:   dae801d33784397b3ff8fec4b8e7682c4baecea9
Sha256: 62bc4d320a556ec3c63dca1ce47d9e55a2bc15c4eef472f15e5adfb5fd451ad6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8376
Expires: Fri, 09 Dec 2022 11:45:38 GMT
Date: Fri, 09 Dec 2022 09:26:02 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8376
Expires: Fri, 09 Dec 2022 11:45:38 GMT
Date: Fri, 09 Dec 2022 09:26:02 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8376
Expires: Fri, 09 Dec 2022 11:45:38 GMT
Date: Fri, 09 Dec 2022 09:26:02 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8376
Expires: Fri, 09 Dec 2022 11:45:38 GMT
Date: Fri, 09 Dec 2022 09:26:02 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8376
Expires: Fri, 09 Dec 2022 11:45:38 GMT
Date: Fri, 09 Dec 2022 09:26:02 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 13:49:59 GMT
age: 70563
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12748
Md5:    730ba1a8edb79ba6f83b46d1ba5aed7b
Sha1:   55a236fedf6f5f7ca2bb88ae13e20846a50fd36d
Sha256: f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7217
x-amzn-requestid: be9196fc-3d43-49db-8522-8781cbf5a247
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUEDEWpIAMFqUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66e6-04b24220213872ba378d3538;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4QlJZW4ZiPNVhOJbcRldanR8veym3l0sIBGa1Ym-4FOTT_utMQeZQg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 08:30:07 GMT
age: 3355
etag: "2506152cdd1056533116feb9350124356e570e54"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7217
Md5:    955c6ac69b89f6cbd497df53fcb2ae1b
Sha1:   2506152cdd1056533116feb9350124356e570e54
Sha256: fca1b303a554aa9cdd13c4769a1088e1905ef888ed703de17864fe76ff880abe
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: N-zFZ8yeL7RrOZ5xfqvfBaE3zcXWecvr6Jd-93nKiUZlCXp2n2_Bgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:41:46 GMT
age: 20656
etag: "7558222788f06623ddae6e883413e38e1146281e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7897
Md5:    8c3214044657f3b876d1f1848bca5684
Sha1:   7558222788f06623ddae6e883413e38e1146281e
Sha256: e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8ff35a0-24dc-4158-b67e-a5f03f5a9022.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 1584
x-amzn-requestid: 7743c8a6-118c-4c69-b833-a9e2f5561a54
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw5VEGV8IAMFcOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903c20-41fdf6d004b388f51fa70833;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:09:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: whmRQYshKD6d2Pz3Z0ZCCFr_MEPR1rEek7nVZqf5XeiWpt1LIcjvBQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:35:35 GMT
age: 6627
etag: "9ad22ea868f3b72832243fd11315c68117c7542b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   1584
Md5:    4f6cfc43170be4dd0264f2b0b6bcc329
Sha1:   9ad22ea868f3b72832243fd11315c68117c7542b
Sha256: f5cc67d46241c2f5aebc2515bf8828889f8ceda8112b78cdf925a260b82fd833
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7Dp35PIr_WYUI1bBa21AvmCMEPi0d3jnhuS8eEk3Q3CXRcGWAnkD8g==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 17:01:04 GMT
age: 59098
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5188
Md5:    fba9a3854df65740512f96efe7442e58
Sha1:   8fbff7725c842d70e047c635a725723a9dc9c55a
Sha256: 6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47563cf2-d887-4c1d-a3b9-0b5151226171.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8709
x-amzn-requestid: 8c5094d3-3286-44db-bd3f-9369cd8220eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c2LYGGm6oAMFn1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63925900-2ea563bc1b5aa87a0ebd6251;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 21:37:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oHNHICPfq1U2qYhNmrtf5_56-jtn-zOMPGvBdhXICE493RfJ1cFCvA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:59:55 GMT
age: 41167
etag: "cac4e03ae9857def8b094e005647c3e49c34d686"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8709
Md5:    0321199622f614202a646f925521ace7
Sha1:   cac4e03ae9857def8b094e005647c3e49c34d686
Sha256: 042494598add540a49650d5556d33bf53f647d77e64fbf13f3d881ebf251a525
                                        
                                            GET /i/adsct?bci=3&eci=2&event_id=5037da46-2740-4527-ba8a-aad951ef6f09&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce00a865-7daf-4d52-8cb9-58ea92747ee5&tw_document_href=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o71fv&type=javascript&version=2.3.29 HTTP/1.1 
Host: t.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.244.42.69
HTTP/2 200 OK
content-type: image/gif;charset=utf-8
                                        
date: Fri, 09 Dec 2022 09:26:01 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=794548af-3851-4594-b7f0-636828043709; Max-Age=63072000; Expires=Sun, 08 Dec 2024 09:26:02 GMT; Path=/; Domain=t.co; Secure; SameSite=None
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 20fa1333700a3096
strict-transport-security: max-age=0
x-response-time: 103
x-connection-hash: 90e5cb19f44444b2d1d3b400f42b14e5833dad735470949d9c954e546d3ad8fc
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    377d257f2d2e294916143c069141c1c5
Sha1:   b7cae69682cf31dd670b65088db8395acda6ed3e
Sha256: ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
                                        
                                            GET /tr/?id=191112919472843&ev=PageView&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&rl=&if=false&ts=1670577961642&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670577961890.9034629920&it=1670577961387&coo=false&tm=1&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         31.13.72.36
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 09 Dec 2022 09:26:02 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /tr/?id=191112919472843&ev=ViewContent&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&rl=&if=false&ts=1670577961645&cd[content_name]=driver-updater&cd[content_category]=outbyte&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1670577961890.9034629920&it=1670577961387&coo=false&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         31.13.72.36
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 09 Dec 2022 09:26:02 GMT
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Dec 2022 09:26:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 641
Cache-Control: max-age=136994
Date: Fri, 09 Dec 2022 09:26:02 GMT
Etag: "639270cb-138"
Expires: Sat, 10 Dec 2022 23:29:16 GMT
Last-Modified: Thu, 08 Dec 2022 23:18:35 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 312

                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-199245412-1&cid=2002391688.1670577961&jid=2084954113&_u=YCDAiUAjBAAAAEAEK~&z=1510622256 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.228
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 09:26:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Dec 2022 09:26:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /metrika/advert.gif HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         77.88.21.119
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
date: Fri, 09 Dec 2022 09:26:02 GMT
access-control-allow-origin: *
etag: "6391b12a-2b"
expires: Fri, 09 Dec 2022 10:26:02 GMT
accept-ranges: bytes
last-modified: Thu, 08 Dec 2022 12:40:58 GMT
cache-control: max-age=3600
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /watch/65533162/1?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afp%3A1652%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A941%3Acn%3A1%3Adp%3A0%3Als%3A289473424149%3Ahid%3A354835837%3Az%3A0%3Ai%3A20221209092601%3Aet%3A1670577962%3Ac%3A1%3Arn%3A1019320714%3Arqn%3A1%3Au%3A1670577962634773397%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A28%2C334%2C96%2C0%2C952%2C0%2C%2C316%2C7%2C%2C%2C%2C1729%3Aco%3A0%3Ans%3A1670577959367%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670577962%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://testedforyou.net
Referer: https://testedforyou.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         77.88.21.119
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
content-length: 419
date: Fri, 09 Dec 2022 09:26:02 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 09:26:02 GMT
last-modified: Fri, 09-Dec-2022 09:26:02 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Size:   419
Md5:    e8e6f7df32e14ce5fc993726c8fbbb65
Sha1:   7c13d1e3be4708e221e266c29d25e89753499bda
Sha256: 3f7f270f0354aff1f727c7b3a98518ca83fbb5f79c9daf7f428f547af102c344
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-164895039-1&cid=2002391688.1670577961&jid=141862478&_u=aCDACUAjBAAAAGAEK~&z=268477078 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.228
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 09:26:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /g/collect?v=2&tid=G-1EEJR9725E&gtm=2oebu0&_p=878843054&_gaz=1&cid=2002391688.1670577961&ul=en-us&sr=1280x1024&_s=1&sid=1670577961&sct=1&seg=0&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&dt=Atualizar%20drivers%20do%20Windows%2010%2F11&en=page_view&_fv=1&_ss=1&ep.allowLinker=true&ep.customTask=function(a)%7Ba.set(%22dimension%22%2Bb%2Ca.get(%22clientId%22))%7D&ep.marker_id=src_ag_bockachbr_du_tfu_du_101 HTTP/1.1 
Host: region1.analytics.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

search
                                         216.239.32.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://testedforyou.net
date: Fri, 09 Dec 2022 09:26:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /i/adsct?bci=3&eci=2&event_id=5037da46-2740-4527-ba8a-aad951ef6f09&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce00a865-7daf-4d52-8cb9-58ea92747ee5&tw_document_href=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o71fv&type=javascript&version=2.3.29 HTTP/1.1 
Host: analytics.twitter.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.244.42.131
HTTP/2 200 OK
content-type: image/gif;charset=utf-8
                                        
date: Fri, 09 Dec 2022 09:26:02 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_PSW3OTZOMNNwcw187fqp3g=="; Max-Age=63072000; Expires=Sun, 08 Dec 2024 09:26:02 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 1bbd26cba0c32a3c
strict-transport-security: max-age=631138519
x-response-time: 109
x-connection-hash: 2c4b991ea6017f0b788955222e4ed6ab04924cde3ea108e1a892c09845331b45
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    377d257f2d2e294916143c069141c1c5
Sha1:   b7cae69682cf31dd670b65088db8395acda6ed3e
Sha256: ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
                                        
                                            POST / HTTP/1.1 
Host: status.thawte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3808
Cache-Control: max-age=132635
Date: Fri, 09 Dec 2022 09:26:02 GMT
Etag: "63925365-1d7"
Expires: Sat, 10 Dec 2022 22:16:37 GMT
Last-Modified: Thu, 08 Dec 2022 21:13:09 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /1282895/trc/3/json?tim=1670577961722&data=%7B%22id%22%3A536%2C%22ii%22%3A%22%2Fbr%2Ftfu-du-101%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670577961716%2C%22cv%22%3A%2220221206-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dauslogic-outbytedriverupdater-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670577961721%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A61%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1 
Host: trc.taboola.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.1.44
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 09:26:02 GMT
via: 1.1 varnish
x-served-by: cache-bma1682-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1670577963.726434,VS0,VE113
vary: Accept-Encoding
x-vcl-time-ms: 113
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1894
Md5:    f8f1d8f08bd905c86a481243540b53f8
Sha1:   380f6f058a6b15de73a7573546964d210e4ca385
Sha256: 06ec0c04a4d7e0a1424651d6d3db7b2db86d4c9b4e56515db1632c23ab8f072f
                                        
                                            GET /cachedClickId?marketerId=00b8a9819ec160bbc052781fa80381bd28 HTTP/1.1 
Host: tr.outbrain.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         70.42.32.31
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Dec 2022 09:26:03 GMT
Content-Length: 56
X-TraceId: 7035ec15942c252c143259d1fab42e63
content-encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   56
Md5:    77fbe8ab311fa20557d95906363035ed
Sha1:   5806df80f09a37e070d5f37c49f19797c2763fd0
Sha256: 4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
                                        
                                            GET /unifiedPixel?marketerId=00b8a9819ec160bbc052781fa80381bd28&apiObjVersion=2.0-gtm&obtpVersion=2.0.5&name=Content-view&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&optOut=false&bust=01813620232768346&referrer= HTTP/1.1 
Host: tr.outbrain.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         70.42.32.31
HTTP/1.1 200 OK
Content-Type: image/gif;
                                        
Date: Fri, 09 Dec 2022 09:26:03 GMT
Content-Length: 60
Cache-Control: no-cache
X-TraceId: 570a1a3673f9f95362500f154eaaa53e
content-encoding: gzip


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   60
Md5:    fb0fc5c090282e372b8bf8ff13ae3ee2
Sha1:   2de3834253ece606ce4d2a6f10a59654b6fa378b
Sha256: 90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
                                        
                                            GET /1282895/log/3/unip?en=pre_d_eng_tb&tos=1751&scd=61&ssd=1&est=1670577961719&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670577963471&vi=1670577961716&ri=2277cc9df674bb53719649e06c77e2a7&ref=null&cv=20221206-9-RELEASE&item-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&ler=other HTTP/1.1 
Host: trc-events.taboola.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         141.226.228.48
HTTP/2 204 No Content
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:04 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2

                                        
                                            POST /webvisor/65533162?wmode=0&wv-part=1&wv-hit=354835837&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&rn=654743741&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670577965%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092604%3Au%3A1670577962634773397%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577965&t=gdpr(14)ti(2) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 26898
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         77.88.21.119
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
date: Fri, 09 Dec 2022 09:26:05 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 09:26:05 GMT
last-modified: Fri, 09-Dec-2022 09:26:05 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            POST /webvisor/65533162?wmode=0&wv-part=1&wv-hit=354835837&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&rn=506443845&wv-type=3&browser-info=we%3A1%3Aet%3A1670577965%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092605%3Au%3A1670577962634773397%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577965&t=gdpr(14)ti(2) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         77.88.21.119
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
date: Fri, 09 Dec 2022 09:26:06 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 09:26:06 GMT
last-modified: Fri, 09-Dec-2022 09:26:06 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /1282895/log/3/unip?en=pre_d_eng_tb&tos=4753&scd=61&ssd=1&est=1670577961719&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670577966473&vi=1670577961716&ri=2277cc9df674bb53719649e06c77e2a7&ref=null&cv=20221206-9-RELEASE&item-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&ler=other HTTP/1.1 
Host: trc-events.taboola.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         141.226.228.48
HTTP/2 204 No Content
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:07 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2

                                        
                                            POST /webvisor/65533162?wv-check=52955&wv-type=0&wmode=0&wv-part=1&wv-hit=354835837&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&rn=550693120&browser-info=we%3A1%3Aet%3A1670577969%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092608%3Au%3A1670577962634773397%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577969&t=gdpr(14)ti(2) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         77.88.21.119
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
date: Fri, 09 Dec 2022 09:26:09 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 09:26:09 GMT
last-modified: Fri, 09-Dec-2022 09:26:09 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            POST /webvisor/65533162?wmode=0&wv-part=2&wv-hit=354835837&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&rn=246997240&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670577969%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092608%3Au%3A1670577962634773397%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577969&t=gdpr(14)ti(2) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         77.88.21.119
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
date: Fri, 09 Dec 2022 09:26:09 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 09:26:09 GMT
last-modified: Fri, 09-Dec-2022 09:26:09 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            POST /webvisor/65533162?wmode=0&wv-part=2&wv-hit=354835837&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&rn=25830453&wv-type=3&browser-info=we%3A1%3Aet%3A1670577969%3Aw%3A1268x939%3Av%3A941%3Az%3A0%3Ai%3A20221209092608%3Au%3A1670577962634773397%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670577969&t=gdpr(14)ti(2) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         77.88.21.119
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
date: Fri, 09 Dec 2022 09:26:09 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 09:26:09 GMT
last-modified: Fri, 09-Dec-2022 09:26:09 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /watch/65533162?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afp%3A1652%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A941%3Acn%3A1%3Adp%3A0%3Als%3A289473424149%3Ahid%3A354835837%3Az%3A0%3Ai%3A20221209092601%3Aet%3A1670577962%3Ac%3A1%3Arn%3A1019320714%3Arqn%3A1%3Au%3A1670577962634773397%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A28%2C334%2C96%2C0%2C952%2C0%2C%2C316%2C7%2C%2C%2C%2C1729%3Aco%3A0%3Ans%3A1670577959367%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670577962%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         77.88.21.119
HTTP/2 302 Found
                                        
location: /watch/65533162/1?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa316ei3&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afp%3A1652%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A941%3Acn%3A1%3Adp%3A0%3Als%3A289473424149%3Ahid%3A354835837%3Az%3A0%3Ai%3A20221209092601%3Aet%3A1670577962%3Ac%3A1%3Arn%3A1019320714%3Arqn%3A1%3Au%3A1670577962634773397%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A28%2C334%2C96%2C0%2C952%2C0%2C%2C316%2C7%2C%2C%2C%2C1729%3Aco%3A0%3Ans%3A1670577959367%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670577962%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Fri, 09 Dec 2022 09:26:02 GMT
access-control-allow-origin: https://testedforyou.net
set-cookie: yabs-sid=153261431670577962; Path=/; SameSite=None; Secure i=l05Su6gt5dZSdmJ7gjNGav1tZDiW8Ue9UkN0oNGyvO7UjX/7ACWwimo6mUmQxZGD/Aw/33t9kSl/sNHBiGPP1s4Iyn8=; Expires=Mon, 06-Dec-2032 09:25:57 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None yandexuid=6211689991670577962; Expires=Sat, 09-Dec-2023 09:26:02 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure yuidss=6211689991670577962; Expires=Sat, 09-Dec-2023 09:26:02 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure ymex=1702113962.yc.1670577962#1702113962.yrts.1670577962#1702113962.yrtsi.1670577962; Expires=Sat, 09-Dec-2023 09:26:02 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 09:26:02 GMT
last-modified: Fri, 09-Dec-2022 09:26:02 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei3 HTTP/1.1 
Host: testedforyou.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         45.79.172.174
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:01 GMT
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: advanced=n531tosgholkpncdbtaq4qsoh4; path=/; HttpOnly source=1209092601_src_ag_bockachbr_du_tfu_du_101-1209092601_cart_du_darktheme; expires=Fri, 09-Dec-2022 09:27:01 GMT; Max-Age=60; path=/; domain=.testedforyou.net _csrf=99f8401b98f5aeb3d9102636ac90fc38a780278c0eec0019ebdd4024ab436d07a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Tc0VyDLeRC7E7hTnQAvCD-62QlDoHCl%22%3B%7D; path=/; HttpOnly; SameSite=Lax
accept-ch: Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/jquery/jquery-1.9.1.min.js HTTP/1.1 
Host: testedforyou.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei3
Cookie: advanced=n531tosgholkpncdbtaq4qsoh4; source=1209092601_src_ag_bockachbr_du_tfu_du_101-1209092601_cart_du_darktheme; _csrf=99f8401b98f5aeb3d9102636ac90fc38a780278c0eec0019ebdd4024ab436d07a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Tc0VyDLeRC7E7hTnQAvCD-62QlDoHCl%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         45.79.172.174
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:01 GMT
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: W/"63901dcc-169b2"
expires: Fri, 16 Dec 2022 09:26:01 GMT
cache-control: max-age=604800, max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /download-instructions/download-instructions.js HTTP/1.1 
Host: testedforyou.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei3
Cookie: advanced=n531tosgholkpncdbtaq4qsoh4; source=1209092601_src_ag_bockachbr_du_tfu_du_101-1209092601_cart_du_darktheme; _csrf=99f8401b98f5aeb3d9102636ac90fc38a780278c0eec0019ebdd4024ab436d07a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Tc0VyDLeRC7E7hTnQAvCD-62QlDoHCl%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         45.79.172.174
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:01 GMT
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: W/"63901dcc-2b8"
expires: Fri, 16 Dec 2022 09:26:01 GMT
cache-control: max-age=604800, max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/markedsettings.js HTTP/1.1 
Host: testedforyou.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei3
Cookie: advanced=n531tosgholkpncdbtaq4qsoh4; source=1209092601_src_ag_bockachbr_du_tfu_du_101-1209092601_cart_du_darktheme; _csrf=99f8401b98f5aeb3d9102636ac90fc38a780278c0eec0019ebdd4024ab436d07a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Tc0VyDLeRC7E7hTnQAvCD-62QlDoHCl%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         45.79.172.174
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:01 GMT
last-modified: Wed, 07 Dec 2022 04:59:56 GMT
etag: W/"63901dcc-44"
expires: Fri, 16 Dec 2022 09:26:01 GMT
cache-control: max-age=604800, max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzE2ZWkzIiwibWFya2VycyI6IjEyMDkwOTI2MDFfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTEyMDkwOTI2MDFfY2FydF9kdV9kYXJrdGhlbWUifQ== HTTP/1.1 
Host: testedforyou.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa316ei3
Cookie: advanced=n531tosgholkpncdbtaq4qsoh4; source=1209092601_src_ag_bockachbr_du_tfu_du_101-1209092601_cart_du_darktheme; _csrf=99f8401b98f5aeb3d9102636ac90fc38a780278c0eec0019ebdd4024ab436d07a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Tc0VyDLeRC7E7hTnQAvCD-62QlDoHCl%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         45.79.172.174
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
date: Fri, 09 Dec 2022 09:26:01 GMT
vary: Accept-Encoding
set-cookie: outbyte-sess=8tlfn6o66bkfngsh2gr55augb5; path=/; HttpOnly _sid=0BCsrICgdN; expires=Sat, 09-Dec-2023 09:26:01 GMT; Max-Age=31536000; path=/; domain=.testedforyou.net _sidd=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%3D%3D; expires=Sat, 09-Dec-2023 09:26:01 GMT; Max-Age=31536000; path=/; domain=.testedforyou.net _ga=GA1.2.2002391688.1670577961; expires=Sun, 08-Dec-2024 09:26:01 GMT; Max-Age=63072000; path=/; domain=.testedforyou.net _fbp=fb.1.1670577961890.9034629920; expires=Thu, 09-Mar-2023 09:26:01 GMT; Max-Age=7776000; path=/; domain=.testedforyou.net
access-control-allow-origin: testedforyou.net
access-control-allow-credentials: true
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
last-modified: Fri, 09 Dec 2022 09:26:01GMT
content-disposition: inline; filename="sid.js"
accept-ch: Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---