Report - 928637544d.yee122b.tisu8.com/kehuduan11e8fe/sendWS2

Report Overview

Visited public
2023-10-17 20:30:34
Tags
URL
928637544d.yee122b.tisu8.com/kehuduan11e8fe/sendWS2_32.DLLwsock32.dll
Finishing URL
www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
IP / ASN
74.206.228.78
#27257 WEBAIR-INTERNET
Title
Sign Up - Private Equity Investing | Linqto Private Investing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.redditstatic.com	1440	2011-11-09	2012-06-30 14:33:28	2023-10-17 18:12:52	408 B	8.4 kB	151.101.1.140
928637544d.yee122b.tisu8.com	unknown	2023-10-09	2023-10-17 17:43:42	2023-10-17 17:43:42	1.2 kB	1.1 kB	74.206.228.78
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-10-17 17:39:04	1.7 kB	3.5 kB	142.250.74.131
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-10-17 18:11:52	3.1 kB	933 kB	142.250.74.168
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2023-10-17 18:12:09	1.0 kB	1.2 kB	142.250.74.163
api.hubapi.com	4102	2008-05-24	2012-06-25 20:13:07	2023-10-17 18:15:49	494 B	1.6 kB	104.17.200.204
tisu8.com	unknown	2023-10-09	2014-07-20 14:55:30	2017-09-05 03:09:56	1.0 kB	968 B	173.239.5.6
vibiu-dau.com	unknown	2023-09-14	2023-09-20 16:26:28	2023-10-17 05:18:05	1.7 kB	4.2 kB	34.205.42.136
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-10-17 18:12:01	495 B	1.8 kB	142.250.74.106
js.hs-scripts.com	2571	2016-07-11	2016-08-09 12:18:36	2023-10-17 18:15:47	406 B	2.9 kB	104.16.190.89
ocsp.r2m01.amazontrust.com	unknown	2007-05-11	2022-10-12 22:43:53	2023-10-17 18:11:48	340 B	942 B	54.230.80.227
www.linqto.com	unknown	2005-11-01	2014-03-20 20:47:00	2023-10-16 17:03:31	20 kB	1.1 MB	44.228.95.233
js.hs-banner.com	2426	2020-03-09	2020-03-26 18:45:21	2023-10-17 18:15:49	415 B	69 kB	172.64.153.27
js.hsadspixel.net	3795	2017-04-21	2017-07-25 15:13:14	2023-10-17 18:15:49	400 B	7.6 kB	104.17.228.163
js.usemessages.com	5634	2015-12-07	2017-10-05 20:55:58	2023-10-17 17:31:44	416 B	24 kB	104.17.248.168
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2023-10-17 18:11:31	1.9 kB	872 B	216.239.32.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-10-17 20:30:17	medium	Client IP	173.239.5.6	ET ADWARE_PUP Win32/Zonebac Traffic Redirect

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (30)

	URL	From	Size	First Seen	Last Seen
	www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b	ScriptElement	298 B	2023-09-21	2024-08-21
Pretty URL www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b IP 44.228.95.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-21 22:46 Last Seen2024-08-21 06:08 Times Seen53 Hash 3650ef500454000c0c32c9dec0cba205 cb1c2d79f49db3cd20171cee3ae11a949e019c39 df455c3fdafa63c35775c7d26cc75eca29f79cfdb3990c0cd383c459caa5b11c Loading...

	www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b	ScriptElement	104 B	2023-03-07	2025-05-07
Pretty URL www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b IP 44.228.95.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-07 10:07 Times Seen2952 Hash 3217923b47c3b4f1720c42f8cc99b87f 951a09e9e5b98a7ac8d114e42a743e5d41cb5dfb 39aa079dbe6286ef5a74421f2ca2a4d1b8f13b1c1506e51f0635a2c434b1b286 Loading...

	www.redditstatic.com/ads/pixel.js	ScriptElement	24 kB	2023-06-15	2024-08-29
Pretty URL www.redditstatic.com/ads/pixel.js IP 151.101.1.140 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-15 23:22 Last Seen2024-08-29 17:49 Times Seen4079 Hash 78b6c68984a6ce5b3fcac1c6a9cad00c 02e1d366a17506cea8adfe5a15949aca89719a02 e803e774c7b59fe74f71ed93acaa875cf9a99947ff8ed7615cd0c93c1667250f Loading...

	www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b	ScriptElement	440 B	2023-09-21	2024-08-21
Pretty URL www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b IP 44.228.95.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-21 22:46 Last Seen2024-08-21 06:08 Times Seen53 Hash 19e9feb36ec7f49094f753993b5d3626 5dd33dbaedf0ea392fa2d060ac023d96ecd1af03 297b8af7ef17f10149bd256e7e5cb1f41e4e4943f253cc6b20cb0d7147125630 Loading...

	www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b	ScriptElement	2.0 kB	2023-09-21	2024-08-21
Pretty URL www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b IP 44.228.95.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-21 22:46 Last Seen2024-08-21 06:08 Times Seen53 Hash a1e7c1e0ba002410de15254a78e0b24d 618f6f99db8bda46259df5518809a2c37bd7e298 0b4cca81315d07d12d7703375efbe78bdc965b296e62b4428ad5f8dc1e6aed3c Loading...

	www.googletagmanager.com/gtag/js?id=AW-1057610699&l=dataLayer&cx=c	ScriptElement	246 kB	2023-10-17	2023-10-17
Pretty URL www.googletagmanager.com/gtag/js?id=AW-1057610699&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-17 22:30 Last Seen2023-10-17 22:30 Times Seen1 Hash 820381c007194c15ef08c9b285300957 c54fdaf2e2953201d4ed91e7081829322176c4a1 bb19ca47a577d69d42f0f99f6391ace2d007878e48359bdda1487f51c251f0a5 Loading...

	www.googletagmanager.com/gtag/js?id=UA-24571397-1	ScriptElement	133 kB	2023-10-17	2023-10-17
Pretty URL www.googletagmanager.com/gtag/js?id=UA-24571397-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-17 22:30 Last Seen2023-10-17 22:30 Times Seen1 Hash 77962b6f1e0a2e552a792f81c75fa3c9 484c1ac0c0aede03d679e431758a4360e2fad184 a124066802623608ca21b6cc91e34cb2b8a49fa8a45412f69af595e4caa5964f Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5HGLBZS	ScriptElement	264 kB	2023-10-17	2023-10-17
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5HGLBZS IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-17 22:30 Last Seen2023-10-17 22:30 Times Seen1 Hash 68e4216783a2a0fc03e8e9c1a7123449 d8e641ad02da4b4372b0410acf1a5062069acf57 a77088fe181c42331b2a4e294349f404070afe5544d0ecbdc67f0ff1accbdc48 Loading...

	www.linqto.com/wp-content/plugins/add-to-calendar-button/lib/atcb.js?ver=1.4.3	ScriptElement	293 kB	2023-10-11	2024-08-21
Pretty URL www.linqto.com/wp-content/plugins/add-to-calendar-button/lib/atcb.js?ver=1.4.3 IP 44.228.95.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-11 15:54 Last Seen2024-08-21 05:00 Times Seen43 Hash 510bae10a1ab75eb64d4b27ac7f9e8d2 5f6594ae68d1803554601c82111e6a7c40cbd2a2 7e0c00928095fc972a487d22e4975452409f2b0aa4a569e5450e665336fd3511 Loading...

	www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b	ScriptElement	618 B	2023-09-21	2024-08-21
Pretty URL www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b IP 44.228.95.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-21 22:46 Last Seen2024-08-21 06:08 Times Seen53 Hash 1d9d7f120742f696a1e97133c6d93086 c88c85d2467fd126442e0976b40fa167a0767d3e b9ddda26657eb454d1d85bd7bdbd5a1b190a72fe8ad9b5fd4ca0de467bbba631 Loading...

	unknown	ScriptElement	423 B	2023-08-24	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-24 15:52 Last Seen2024-08-21 08:12 Times Seen491 Hash 6bb3fb9437598e1eb397d4843180cde3 9ceef2103d3182aff543f2de834a37b718e6107f e6bc8d59959c1b69237ffc86dd72a6ba71ab667796a87a631fe7f3ca3b14a139 Loading...

	www.googletagmanager.com/gtag/js?id=AW-1057610699	ScriptElement	247 kB	2023-10-17	2023-10-17
Pretty URL www.googletagmanager.com/gtag/js?id=AW-1057610699 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-17 22:30 Last Seen2023-10-17 22:30 Times Seen1 Hash af30c5ab870a6ef8ca6fed5a99a890cc 4e95ef209348f4f4fd3b932a2f2b052137ccd6e1 eabda05d87d6a397c62b150fc35df16d0bd2766dc85273cccbfb2333b50820f2 Loading...

	www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b	ScriptElement	5.8 kB	2023-10-13	2024-08-21
Pretty URL www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b IP 44.228.95.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-13 02:02 Last Seen2024-08-21 04:56 Times Seen38 Hash 8e146d3563ca33dc47325656ac925c10 d7cf4fe6a4ac93ee15ea1d9dedd5b2653f1b6d9d c180e4b4061fd4dc2919f6e574988897ee7455a48f8f74bb993390f72384bbed Loading...

	www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b	ScriptElement	128 B	2023-09-21	2024-08-21
Pretty URL www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b IP 44.228.95.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-21 22:46 Last Seen2024-08-21 06:08 Times Seen51 Hash 03b7689ff197cdde9e9e09422bb26ebf bff8a7c01e4256bdb25a318fc8c5146ad83b178a 147b7d4f4534989d625c33f296a6c44a82bf02f583cc023a77c5014acdb97943 Loading...

	www.linqto.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.1	ScriptElement	13 kB	2023-03-29	2025-05-08
Pretty URL www.linqto.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.1 IP 44.228.95.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:17 Last Seen2025-05-08 21:42 Times Seen12483 Hash 5bc2b1fa970f9cecb3c30c0c92c98271 7c6bb87aaa24714b7b3b3c86dd932736a80270a9 1060091178cbd6c843b802f516f230f1a3a1e85f1afbd6ef84d80e5430ba457e Loading...

	www.linqto.com/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.14.2	ScriptElement	7.9 kB	2023-03-07	2025-05-07
Pretty URL www.linqto.com/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.14.2 IP 44.228.95.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35 Last Seen2025-05-07 10:07 Times Seen2062 Hash 75b90c4351b6e079459237e66836ef4e 723590ed08677aad34239e4b03a5edd64acd208e f65784e5e7332dc1e4bbeacbec70fdeef4a1bea84f16ce2ee144999719d195ce Loading...

	js.hsadspixel.net/fb.js	ScriptElement	6.1 kB	2023-10-16	2024-08-21
Pretty URL js.hsadspixel.net/fb.js IP 104.17.228.163 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-16 19:51 Last Seen2024-08-21 04:30 Times Seen336 Hash 7e8c6b3c97842ae7b4b13d1465637fd9 6677bf80af8bffcee2d1db067035bb0568bc79f2 413237d22e25097e3cee2595c2cedccc0d680158bd638a421aecaa1a7237321f Loading...

	www.linqto.com/wp-content/plugins/honeypot/includes/js/wpa.js?ver=2.1.5	ScriptElement	3.6 kB	2023-05-19	2025-05-05
Pretty URL www.linqto.com/wp-content/plugins/honeypot/includes/js/wpa.js?ver=2.1.5 IP 44.228.95.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-19 06:55 Last Seen2025-05-05 14:18 Times Seen173 Hash fe0f7363c46ad6da040a3ac6f81b8602 166dd3e2022dd52803ded3ce5b8637a44cbdfb11 772fcf708ed6601d029125cbe66606b5167227fb1457e8bfb2d56fdd4c00c506 Loading...

	www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b	ScriptElement	95 B	2024-08-21	2024-08-21
Pretty URL www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b IP 44.228.95.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 04:19 Last Seen2024-08-21 04:19 Times Seen1 Hash 745857b96ac62e0d83136889efec0f97 51de0c9ff5b0d6373c0a4e973f492e90a97611cb 5916e01d25ada13c4810bb656f611f888b02008b3d00f19d02d3538b28c98717 Loading...

	www.googletagmanager.com/gtag/js?id=G-8L19RNV27K&l=dataLayer&cx=c	ScriptElement	258 kB	2023-10-17	2023-10-17
Pretty URL www.googletagmanager.com/gtag/js?id=G-8L19RNV27K&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-17 22:30 Last Seen2023-10-17 22:30 Times Seen1 Hash f32ffac866fb502ba5d284a95512c7f6 49f73f88614e14dc4b09a4f5122df5f7a3ea5001 36f994ab45c94281d8bd70e499562585d5030066e5c5122334e38527c8dc7436 Loading...

	www.googletagmanager.com/gtag/js?id=G-H6LSW2SFD9&l=dataLayer&cx=c	ScriptElement	222 kB	2023-10-17	2023-10-17
Pretty URL www.googletagmanager.com/gtag/js?id=G-H6LSW2SFD9&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-17 22:30 Last Seen2023-10-17 22:30 Times Seen1 Hash 5a36db3339c7503638e3b0b9be7f8da3 f8e6da9cf8c7eaed5d7b04e1baf4a1c64a687a80 3619a0e480d5f951dbbfb190049ff3e86d16fef4b2f41109c5c2fe1987a1b216 Loading...

	js.hs-banner.com/v2/20548088/banner.js	ScriptElement	67 kB	2023-09-27	2023-10-18
Pretty URL js.hs-banner.com/v2/20548088/banner.js IP 172.64.153.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-27 09:51 Last Seen2023-10-18 15:44 Times Seen81 Hash 095181f7b3e4fe7e49a82a529ffd41dd 1b0ce4ea4394b02e16505aa1657f417b2099814c 8abe5116019b360e247b2ea42ad0b95c1313368fed26524bedece7b1f801e059 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-09
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 11:51 Times Seen340623 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	js.hs-scripts.com/20548088.js	ScriptElement	1.8 kB	2024-08-21	2024-08-21
Pretty URL js.hs-scripts.com/20548088.js IP 104.16.190.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 04:19 Last Seen2024-08-21 04:19 Times Seen1 Hash 32d28964847575ddbd778fb53fe6b16c a9a1a7f446fdff285831ee263d5e805b1e399cb7 6a065faec0f978be22688337fdcb8a50f0b0067c6e75644e514e3b0804b4e647 Loading...

	www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b	ScriptElement	468 B	2023-09-21	2024-08-21
Pretty URL www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b IP 44.228.95.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-21 22:46 Last Seen2024-08-21 06:08 Times Seen51 Hash bf83e879e97ed79082e59b7cd2afcf6f e805346b20e48e1747a781ef8b3165ada4d6b523 9c367dd0428ac7c365e8ca9b1dde3768d0af112da605f986979ead46e148cd4b Loading...

	www.linqto.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.1	ScriptElement	11 kB	2023-08-06	2025-05-07
Pretty URL www.linqto.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.1 IP 44.228.95.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-06 14:15 Last Seen2025-05-07 10:06 Times Seen7001 Hash 6ce86c3105139cb3c80913e6a3696a96 c55c7be10b31a773c7c9f6f393f382b89c318db4 5fe46d2da01452067736578431f6c6e8116a24e616f58c72d9d81fdb2c7c9569 Loading...

	www.googletagmanager.com/gtag/js?id=G-3RQ2QB03RK&l=dataLayer&cx=c	ScriptElement	280 kB	2023-10-17	2023-10-17
Pretty URL www.googletagmanager.com/gtag/js?id=G-3RQ2QB03RK&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-17 22:30 Last Seen2023-10-17 22:30 Times Seen1 Hash dd5743d00b6757fb3497c1ef97fd3ebf f83b4a021f56eb8cff1d413f056ce632698a3706 78ec8415f989198e8c98a6545035362ab3ebc4c95011e4346951a691da12bffe Loading...

	www.linqto.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0	ScriptElement	88 kB	2023-06-13	2025-05-07
Pretty URL www.linqto.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0 IP 44.228.95.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-13 23:41 Last Seen2025-05-07 14:22 Times Seen26125 Hash ff04dd1ef5c67998d8652330c0441689 5e6ff5bd5240181a8bdea983837f39ac231dac4d 5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164 Loading...

	www.linqto.com/sign-up/sandbox%20eval%20code		147 B	2023-04-11	2025-05-09
Pretty URL www.linqto.com/sign-up/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 11:51 Times Seen341424 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	js.usemessages.com/conversations-embed.js	ScriptElement	78 kB	2023-10-10	2023-10-19
Pretty URL js.usemessages.com/conversations-embed.js IP 104.17.248.168 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-10 18:39 Last Seen2023-10-19 20:27 Times Seen135 Hash 8150bb6bff68cbcd9e5f8f6c23b586ae 0a140aa002e6bbd2e46f9139f3949b0ebef0b335 10e7b81bac41ad0da1d3f4a3498669f984e84db9d54eedf10e8e7d5b059c5d08 Loading...

HTTP Transactions (58)

URL IP Response Size

928637544d.yee122b.tisu8.com/kehuduan11e8fe/sendWS2_32.DLLwsock32.dll

74.206.228.78

145 B

URL
928637544d.yee122b.tisu8.com/kehuduan11e8fe/sendWS2_32.DLLwsock32.dll
IP
74.206.228.78:0
ASN
#27257 WEBAIR-INTERNET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
145 B (145 bytes)
Hash
bfe2c1d1b36c62666ce9ba537d324bd4
4d52a7c6d2909a506a4e81559eb24e8af077c741
5216ad883da8fe250db6892c9abca11bae07572d49a4c48a3c42276ffe6a9fb8

HTTP Headers

GET /kehuduan11e8fe/sendWS2_32.DLLwsock32.dll HTTP/1.1
Host: 928637544d.yee122b.tisu8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.18.0
Date: Tue, 17 Oct 2023 20:30:14 GMT
Content-Type: text/html
Content-Length: 145
Connection: keep-alive
Location: http://928637544d.yee122b.tisu8.com/

928637544d.yee122b.tisu8.com/

74.206.228.78

244 B

URL
928637544d.yee122b.tisu8.com/
IP
74.206.228.78:0
ASN
#27257 WEBAIR-INTERNET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
244 B (244 bytes)
Hash
cbed9b0a1de289635ceb861ed84c78d3
fde32ccc86f45675a82963a6d0f7cfd0af0158f9
a92bb603cf28bf77abcc29aabecea331386fd5dc22f4d6812292af2534b4c621

HTTP Headers

GET / HTTP/1.1
Host: 928637544d.yee122b.tisu8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 17 Oct 2023 20:30:15 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip

928637544d.yee122b.tisu8.com/favicon.ico

74.206.228.78

114 B

URL
928637544d.yee122b.tisu8.com/favicon.ico
IP
74.206.228.78:0
ASN
#27257 WEBAIR-INTERNET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
114 B (114 bytes)
Hash
706a98254456810d3e849c3957af9d01
e461d072a6ba8f0082d6f187eba7f053343529c6
8351c0267c2cd7866ff04c04261f06cd75af9a7130aac848ca43fd047404e229

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 928637544d.yee122b.tisu8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://928637544d.yee122b.tisu8.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Tue, 17 Oct 2023 20:30:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip

tisu8.com/

173.239.5.6

246 B

URL
tisu8.com/
IP
173.239.5.6:0
ASN
#27257 WEBAIR-INTERNET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
246 B (246 bytes)
Hash
c0d33a0cabf53dfae8258591c78ba9b7
17b4b6e073dcee70c8dad3eaf9f98d9ebd8564ad
817db78801ec3c596ab7a30164e9e31835dd0244e4019f3f4ff597581741b0dc

Detections

NIDS	Severity	Alert
suricata	medium	ET ADWARE_PUP Win32/Zonebac Traffic Redirect

HTTP Headers

POST / HTTP/1.1
Host: tisu8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 12
Origin: http://928637544d.yee122b.tisu8.com
DNT: 1
Connection: keep-alive
Referer: http://928637544d.yee122b.tisu8.com/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 17 Oct 2023 20:30:16 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-IFID: 64
Set-Cookie: ipc=eyJ2ZXJzaW9uIjoxLCJzdWJJZCI6MywiZm9sZGVySWQiOjEsImZlZWRJZCI6NjQsInRzIjoxNjk3NTc0NjE2LCJoYXNoIjoiZWIwZDJlZmUifQ==;Expires=Tue, 17-Oct-2023 21:30:16 GMT;Max-Age=3600
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Encoding: gzip

tisu8.com/favicon.ico

173.239.5.6

114 B

URL
tisu8.com/favicon.ico
IP
173.239.5.6:0
ASN
#27257 WEBAIR-INTERNET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
114 B (114 bytes)
Hash
932da5a430ff6db1bc48425b567d56fa
e7e88023dbbc6346d354ffe9fb7db957888c2299
10174434dbe479c08b32ce3b42b70e7c6336647d29e4393483158d590d35c325

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: tisu8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://tisu8.com/
DNT: 1
Connection: keep-alive
Cookie: ipc=eyJ2ZXJzaW9uIjoxLCJzdWJJZCI6MywiZm9sZGVySWQiOjEsImZlZWRJZCI6NjQsInRzIjoxNjk3NTc0NjE2LCJoYXNoIjoiZWIwZDJlZmUifQ==
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.20.1
Date: Tue, 17 Oct 2023 20:30:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip

ocsp.r2m01.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
2554933295e48623784eabbb049ef841
dc2b582d0c196ee411815cf6c80c05f61033ad91
0b5c5686f2f987380bb8563e892425ac0934789cfa162e30cdb690422c3c531b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 17 Oct 2023 20:30:16 GMT
Last-Modified: Tue, 17 Oct 2023 18:42:16 GMT
Server: ECAcc (amb/6B04)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: aZugEEcfn6TEgZ9AmYMqxo-6myyxgWZHaZFIhxPkWm9yoVPh-M10Rw==
Age: 6480

vibiu-dau.com/zclkvisitor/fb3ca127-6d2b-11ee-a573-0a6b9e17fecf/13946a70-a5da-11ec-9226-0a76dcc61f13?campaignid=97fee840-61ee-11ee-a50f-123f4a2b6bb7

34.205.42.136

1.1 kB

URL
vibiu-dau.com/zclkvisitor/fb3ca127-6d2b-11ee-a573-0a6b9e17fecf/13946a70-a5da-11ec-9226-0a76dcc61f13?campaignid=97fee840-61ee-11ee-a50f-123f4a2b6bb7
IP
34.205.42.136:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.1 kB (1102 bytes)
Hash
e9a3f59b41da52da8c1f54b2479687d7
80aa2b1cbfc5de07a92777c98ca83d3b67c0dd35
c0071b738364067f0dd43d93177b043fc74bf6bfc1dc407b6c72157c8cd2a334

HTTP Headers

GET /zclkvisitor/fb3ca127-6d2b-11ee-a573-0a6b9e17fecf/13946a70-a5da-11ec-9226-0a76dcc61f13?campaignid=97fee840-61ee-11ee-a50f-123f4a2b6bb7 HTTP/1.1
Host: vibiu-dau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://tisu8.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Date: Tue, 17 Oct 2023 20:30:17 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: fvfqNuFT

vibiu-dau.com/zclkredirect?visitid=fb3ca127-6d2b-11ee-a573-0a6b9e17fecf&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false

34.205.42.136

640 B

URL
vibiu-dau.com/zclkredirect?visitid=fb3ca127-6d2b-11ee-a573-0a6b9e17fecf&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false
IP
34.205.42.136:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
640 B (640 bytes)
Hash
f29b6122aaac2fca93992dafb5895721
3d6d764942088175e5186b74cb4589f869d802d3
c19bc2b4ea21ba1be01d017d6d05ac81ae5eac15f4f0ba2bf0b84ee4586c0452

HTTP Headers

GET /zclkredirect?visitid=fb3ca127-6d2b-11ee-a573-0a6b9e17fecf&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: vibiu-dau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vibiu-dau.com/zclkvisitor/fb3ca127-6d2b-11ee-a573-0a6b9e17fecf/13946a70-a5da-11ec-9226-0a76dcc61f13?campaignid=97fee840-61ee-11ee-a50f-123f4a2b6bb7
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Date: Tue, 17 Oct 2023 20:30:17 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: OdsTmRwY

vibiu-dau.com/favicon.ico

34.205.42.136

653 B

URL
vibiu-dau.com/favicon.ico
IP
34.205.42.136:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Size
653 B (653 bytes)
Hash
ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: vibiu-dau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://vibiu-dau.com/zclkredirect?visitid=fb3ca127-6d2b-11ee-a573-0a6b9e17fecf&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 
Date: Tue, 17 Oct 2023 20:30:18 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: rGxgTgfD

www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b

44.228.95.233

200 OK

8.4 kB

URL User Request GET HTTP/2
www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1752)
Size
8.4 kB (8375 bytes)
Hash
4206b9004bcfacc11b5da7b183ad76e4
b22ccffa63f4f8cbd42ce9174ff2323bcc898cb3
2f43159d4c48deac0de15e1d8f8d07b237f483a46f818cb7c02102103edd55b6

HTTP Headers

GET /sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://vibiu-dau.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:18 GMT
content-type: text/html; charset=UTF-8
content-length: 8375
link: <https://www.linqto.com/wp-json/>; rel="https://api.w.org/", <https://www.linqto.com/wp-json/wp/v2/pages/11225>; rel="alternate"; type="application/json", <https://www.linqto.com/?p=11225>; rel=shortlink
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
content-encoding: gzip
age: 0
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f057e7c2876f8d7a66dd7ae5665cfae6
e15404d3eb7ffb069c08309d7985ce648aa0aa6f
9019fedb4e1d2375d256463b8a04655899aff7c91aa147e5cee808df795e5d82

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Oct 2023 20:30:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
779882817f8804aebd79fcce0967e23b
436652deaf877d1391da5cd61e53d1966ef9e2b0
236468f865699350e2f2ab76b1a226c1b24b8099527dcf661eccbdca3375ef82

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Oct 2023 20:30:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-24571397-1

142.250.74.168

200 OK

51 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-24571397-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint54:FD:04:1B:2E:C7:46:95:DD:15:A3:A0:3F:CE:7F:03:02:53:36:8F
ValidityMon, 18 Sep 2023 08:19:25 GMT - Mon, 11 Dec 2023 08:19:24 GMT

File type
ASCII text, with very long lines (2213)
Size
51 kB (50819 bytes)
Hash
77962b6f1e0a2e552a792f81c75fa3c9
484c1ac0c0aede03d679e431758a4360e2fad184
a124066802623608ca21b6cc91e34cb2b8a49fa8a45412f69af595e4caa5964f

HTTP Headers

GET /gtag/js?id=UA-24571397-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 17 Oct 2023 20:30:19 GMT
expires: Tue, 17 Oct 2023 20:30:19 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 50819
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Sofia+Sans+Condensed:wght@400&family=Source+Serif+4:wght@600&display=swap

142.250.74.106

200 OK

1.2 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Sofia+Sans+Condensed:wght@400&family=Source+Serif+4:wght@600&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint73:C0:B4:AB:41:0A:6A:68:D4:AE:EE:E2:11:A4:38:23:EF:D2:86:B7
ValidityMon, 18 Sep 2023 08:25:07 GMT - Mon, 11 Dec 2023 08:25:06 GMT

File type
gzip compressed data, max compression\012- data
Size
1.2 kB (1198 bytes)
Hash
192e1a35f7c400b84f7a0b72757c75fc
3af4cdfbbcbf725e1a0143e265821421534aacf6
f689f9bcfd3e4a30f44d3e7c1b52e760f07d456c4c8e7c7cec46c4dfe5e5a7e0

HTTP Headers

GET /css2?family=Sofia+Sans+Condensed:wght@400&family=Source+Serif+4:wght@600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 17 Oct 2023 20:30:19 GMT
date: Tue, 17 Oct 2023 20:30:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.linqto.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.1

44.228.95.233

200 OK

1.5 kB

URL GET HTTP/2
www.linqto.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.1
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
gzip compressed data, from Unix\012- data
Size
1.5 kB (1475 bytes)
Hash
2a1adbe548d70771866fee4c54bfaecd
0212c6406bae675b9e0cf656218002dfbca76fcd
621c01aea649d1a503d229cab71e6b07ca9ef94a5cec761ed9eacfb55bfcabbc

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.1 HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: text/css
last-modified: Thu, 28 Sep 2023 10:33:11 GMT
vary: Accept-Encoding
etag: W/"65155667-b2b"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.linqto.com/wp-content/plugins/honeypot/includes/css/wpa.css?ver=2.1.5

44.228.95.233

200 OK

89 kB

URL GET HTTP/2
www.linqto.com/wp-content/plugins/honeypot/includes/css/wpa.css?ver=2.1.5
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
gzip compressed data, from Unix\012- data
Size
89 kB (88976 bytes)
Hash
24d7c5dc87a1eb0abd173a6d60fda066
e24aad9c9c7803838356b2f9727f22554105dc8a
a42a1e0770c8a31df2cd50434c2f7ad3f0b4e72eac8b33f884bf533727166512

HTTP Headers

GET /wp-content/plugins/honeypot/includes/css/wpa.css?ver=2.1.5 HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: text/css
last-modified: Fri, 28 Jul 2023 10:33:16 GMT
vary: Accept-Encoding
etag: W/"64c3996c-22c"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-8L19RNV27K&l=dataLayer&cx=c

142.250.74.168

200 OK

88 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-8L19RNV27K&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint54:FD:04:1B:2E:C7:46:95:DD:15:A3:A0:3F:CE:7F:03:02:53:36:8F
ValidityMon, 18 Sep 2023 08:19:25 GMT - Mon, 11 Dec 2023 08:19:24 GMT

File type
ASCII text, with very long lines (7711)
Size
88 kB (87649 bytes)
Hash
f32ffac866fb502ba5d284a95512c7f6
49f73f88614e14dc4b09a4f5122df5f7a3ea5001
36f994ab45c94281d8bd70e499562585d5030066e5c5122334e38527c8dc7436

HTTP Headers

GET /gtag/js?id=G-8L19RNV27K&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 17 Oct 2023 20:30:19 GMT
expires: Tue, 17 Oct 2023 20:30:19 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 87649
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-H6LSW2SFD9&l=dataLayer&cx=c

142.250.74.168

200 OK

78 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-H6LSW2SFD9&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint54:FD:04:1B:2E:C7:46:95:DD:15:A3:A0:3F:CE:7F:03:02:53:36:8F
ValidityMon, 18 Sep 2023 08:19:25 GMT - Mon, 11 Dec 2023 08:19:24 GMT

File type
ASCII text, with very long lines (5788)
Size
78 kB (78432 bytes)
Hash
5a36db3339c7503638e3b0b9be7f8da3
f8e6da9cf8c7eaed5d7b04e1baf4a1c64a687a80
3619a0e480d5f951dbbfb190049ff3e86d16fef4b2f41109c5c2fe1987a1b216

HTTP Headers

GET /gtag/js?id=G-H6LSW2SFD9&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 17 Oct 2023 20:30:19 GMT
expires: Tue, 17 Oct 2023 20:30:19 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78432
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.linqto.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0

44.228.95.233

200 OK

128 kB

URL GET HTTP/2
www.linqto.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
gzip compressed data, from Unix\012- data
Size
128 kB (128436 bytes)
Hash
bc4bf58af7bca3971365df06e015f3c7
9a84802b21d3ddcd22fd54ecced9895172a513dd
e15737a4e4f90562be76ef85c4ed9066084a86be2a1aea891f60a07c5307f066

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.0 HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: application/javascript
last-modified: Tue, 08 Aug 2023 22:33:18 GMT
vary: Accept-Encoding
etag: W/"64d2c2ae-155ba"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.linqto.com/wp-content/themes/linqto2.0/fonts/SourceSansPro-Regular.woff2

44.228.95.233

200 OK

38 kB

URL GET HTTP/2
www.linqto.com/wp-content/themes/linqto2.0/fonts/SourceSansPro-Regular.woff2
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
Web Open Font Format (Version 2), TrueType, length 37764, version 1.0\012- data
Size
38 kB (37764 bytes)
Hash
e7fdee95482d77a0f486ed555880631d
8b7b983d21def8d297cba01d6e0ec6d646e763a4
80d810584b00c69b3fa1b293d202fb4be4ec644d5dbef6b254296389f6eb310a

HTTP Headers

GET /wp-content/themes/linqto2.0/fonts/SourceSansPro-Regular.woff2 HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/wp-content/themes/linqto2.0/style.css?ver=4e57d6e24c791ce9423190b6a945bd34
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: application/font-woff2
content-length: 37764
last-modified: Tue, 18 Jul 2023 01:27:19 GMT
etag: "64b5ea77-9384"
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.linqto.com/wp-content/themes/linqto2.0/fonts/SourceSansPro-Semibold.woff2

44.228.95.233

200 OK

38 kB

URL GET HTTP/2
www.linqto.com/wp-content/themes/linqto2.0/fonts/SourceSansPro-Semibold.woff2
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
Web Open Font Format (Version 2), TrueType, length 37752, version 1.0\012- data
Size
38 kB (37752 bytes)
Hash
d1cf526de88a21979fedc9b4ba9f8341
8380efac15dc81a2fd8bfc5155bb23ba423d1af9
40e148ce7d22d15b9eadb04df4aa1a96cbfa0042c15b2ff6d119af459cfebe89

HTTP Headers

GET /wp-content/themes/linqto2.0/fonts/SourceSansPro-Semibold.woff2 HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/wp-content/themes/linqto2.0/style.css?ver=4e57d6e24c791ce9423190b6a945bd34
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: application/font-woff2
content-length: 37752
last-modified: Tue, 18 Jul 2023 01:27:19 GMT
etag: "64b5ea77-9378"
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.linqto.com/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.14.2

44.228.95.233

200 OK

115 kB

URL GET HTTP/2
www.linqto.com/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.14.2
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
gzip compressed data, from Unix\012- data
Size
115 kB (114951 bytes)
Hash
f2f5675383a4018f958fa547e300eed2
59e575db26ba6b3bbf51eba64fd4f85e2b0eed73
c5f55e69fb56664ab17ec925354d41a963d003c8a0ede22b8bef26c1763461c9

HTTP Headers

GET /wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.14.2 HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: application/javascript
last-modified: Wed, 23 Aug 2023 22:33:14 GMT
vary: Accept-Encoding
etag: W/"64e6892a-1ef2"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.linqto.com/wp-content/themes/linqto2.0/fonts/Codec-Cold-Extrabold.woff2

44.228.95.233

200 OK

97 kB

URL GET HTTP/2
www.linqto.com/wp-content/themes/linqto2.0/fonts/Codec-Cold-Extrabold.woff2
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
Web Open Font Format (Version 2), TrueType, length 97404, version 3.0\012- data
Size
97 kB (97404 bytes)
Hash
9c03ffab219cd9cb78de5482e040f9fa
febdf70957857b7ec46cd820f048aca46d9221c9
d165f3273864d34ff56a517ca24ef4adeacb9a2d6d0e9b08fc3663eec9e06efa

HTTP Headers

GET /wp-content/themes/linqto2.0/fonts/Codec-Cold-Extrabold.woff2 HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/wp-content/themes/linqto2.0/style.css?ver=4e57d6e24c791ce9423190b6a945bd34
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: application/font-woff2
content-length: 97404
last-modified: Tue, 18 Jul 2023 01:27:19 GMT
etag: "64b5ea77-17c7c"
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.linqto.com/wp-content/themes/linqto2.0/fonts/Codec-Cold-Regular.woff2

44.228.95.233

200 OK

93 kB

URL GET HTTP/2
www.linqto.com/wp-content/themes/linqto2.0/fonts/Codec-Cold-Regular.woff2
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
Web Open Font Format (Version 2), TrueType, length 92800, version 3.0\012- data
Size
93 kB (92800 bytes)
Hash
2730ee1cfc4343205d70f36de318dd27
095dbc2737f9eb4af1add91273e30ddd1f77e184
0284d04e29c631c3922a91e6e67daeba8bdcff30784dc9095813801054751903

HTTP Headers

GET /wp-content/themes/linqto2.0/fonts/Codec-Cold-Regular.woff2 HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/wp-content/themes/linqto2.0/style.css?ver=4e57d6e24c791ce9423190b6a945bd34
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: application/font-woff2
content-length: 92800
last-modified: Tue, 18 Jul 2023 01:27:19 GMT
etag: "64b5ea77-16a80"
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.redditstatic.com/ads/pixel.js

151.101.1.140

200 OK

7.4 kB

URL GET HTTP/2
www.redditstatic.com/ads/pixel.js
IP
151.101.1.140:443
ASN
#54113 FASTLY

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerDigiCert Inc
Subjectwww.redditstatic.com
Fingerprint5B:10:93:15:D0:06:B8:27:DD:C8:15:7C:8A:49:4B:AD:06:D3:8E:15
ValidityFri, 25 Aug 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (23776)
Size
7.4 kB (7409 bytes)
Hash
78b6c68984a6ce5b3fcac1c6a9cad00c
02e1d366a17506cea8adfe5a15949aca89719a02
e803e774c7b59fe74f71ed93acaa875cf9a99947ff8ed7615cd0c93c1667250f

HTTP Headers

GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 15 Jun 2023 20:49:59 GMT
etag: "4a205643a240cb95fa82289d62b5af7e"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 17 Oct 2023 20:30:19 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true,  "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}, {"group": "w3-reporting-csp", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-csp.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7409
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
67b43384673fc96151b4a4dc9418f6b5
e236786cd2d630195cf2f27459d2ac8238fde9bf
914f341e2a78062c490c502336a2991b337136fed970f4515e1fd3950a550b3d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Oct 2023 20:30:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
67b43384673fc96151b4a4dc9418f6b5
e236786cd2d630195cf2f27459d2ac8238fde9bf
914f341e2a78062c490c502336a2991b337136fed970f4515e1fd3950a550b3d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Oct 2023 20:30:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-H6LSW2SFD9&cid=106544595.1697574620&gtm=45je3ag0h2&aip=1&z=441460130

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-H6LSW2SFD9&cid=106544595.1697574620&gtm=45je3ag0h2&aip=1&z=441460130
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint48:45:BE:2F:7E:1C:5E:22:C9:20:2A:BC:C6:A6:CD:D1:C4:35:68:65
ValidityMon, 18 Sep 2023 08:27:03 GMT - Mon, 11 Dec 2023 08:27:02 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-H6LSW2SFD9&cid=106544595.1697574620&gtm=45je3ag0h2&aip=1&z=441460130 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 17 Oct 2023 20:30:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3RQ2QB03RK&cid=106544595.1697574620&gtm=45je3ab0&aip=1&z=1676874966

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3RQ2QB03RK&cid=106544595.1697574620&gtm=45je3ab0&aip=1&z=1676874966
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint48:45:BE:2F:7E:1C:5E:22:C9:20:2A:BC:C6:A6:CD:D1:C4:35:68:65
ValidityMon, 18 Sep 2023 08:27:03 GMT - Mon, 11 Dec 2023 08:27:02 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3RQ2QB03RK&cid=106544595.1697574620&gtm=45je3ab0&aip=1&z=1676874966 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 17 Oct 2023 20:30:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=AW-1057610699

142.250.74.168

200 OK

84 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=AW-1057610699
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint54:FD:04:1B:2E:C7:46:95:DD:15:A3:A0:3F:CE:7F:03:02:53:36:8F
ValidityMon, 18 Sep 2023 08:19:25 GMT - Mon, 11 Dec 2023 08:19:24 GMT

File type
ASCII text, with very long lines (4179)
Size
84 kB (84155 bytes)
Hash
af30c5ab870a6ef8ca6fed5a99a890cc
4e95ef209348f4f4fd3b932a2f2b052137ccd6e1
eabda05d87d6a397c62b150fc35df16d0bd2766dc85273cccbfb2333b50820f2

HTTP Headers

GET /gtag/js?id=AW-1057610699 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 17 Oct 2023 20:30:20 GMT
expires: Tue, 17 Oct 2023 20:30:20 GMT
cache-control: private, max-age=900
last-modified: Tue, 17 Oct 2023 19:34:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84155
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=AW-1057610699&l=dataLayer&cx=c

142.250.74.168

200 OK

84 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=AW-1057610699&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint54:FD:04:1B:2E:C7:46:95:DD:15:A3:A0:3F:CE:7F:03:02:53:36:8F
ValidityMon, 18 Sep 2023 08:19:25 GMT - Mon, 11 Dec 2023 08:19:24 GMT

File type
ASCII text, with very long lines (4179)
Size
84 kB (84010 bytes)
Hash
820381c007194c15ef08c9b285300957
c54fdaf2e2953201d4ed91e7081829322176c4a1
bb19ca47a577d69d42f0f99f6391ace2d007878e48359bdda1487f51c251f0a5

HTTP Headers

GET /gtag/js?id=AW-1057610699&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 17 Oct 2023 20:30:20 GMT
expires: Tue, 17 Oct 2023 20:30:20 GMT
cache-control: private, max-age=900
last-modified: Tue, 17 Oct 2023 19:34:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84010
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
67b43384673fc96151b4a4dc9418f6b5
e236786cd2d630195cf2f27459d2ac8238fde9bf
914f341e2a78062c490c502336a2991b337136fed970f4515e1fd3950a550b3d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Oct 2023 20:30:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

js.usemessages.com/conversations-embed.js

104.17.248.168

200 OK

23 kB

URL GET HTTP/2
js.usemessages.com/conversations-embed.js
IP
104.17.248.168:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint28:4A:40:A2:36:B6:3B:19:87:43:1A:24:AA:7F:5D:16:80:D3:27:B6
ValiditySat, 13 May 2023 00:00:00 GMT - Sun, 12 May 2024 23:59:59 GMT

File type
C source, ASCII text, with very long lines (65536), with no line terminators
Size
23 kB (22951 bytes)
Hash
8150bb6bff68cbcd9e5f8f6c23b586ae
0a140aa002e6bbd2e46f9139f3949b0ebef0b335
10e7b81bac41ad0da1d3f4a3498669f984e84db9d54eedf10e8e7d5b059c5d08

HTTP Headers

GET /conversations-embed.js HTTP/1.1
Host: js.usemessages.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Oct 2023 02:47:57 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: q7mMdyrgJRb2V1PNW0MT.lJmDYHWhi5r
etag: W/"8150bb6bff68cbcd9e5f8f6c23b586ae"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 64c95802ff188dd41dd32c313bef089c.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD61-P1
x-amz-cf-id: 2vnk5K44574m1M60_bTc-P-Z47sJHfMKeAliI7ZcUuI23ZGkyUPtFQ==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=conversations-embed/static-1.14392/bundles/project.js&cfRay=813fb82d5a84b4ed-ARN
cache-control: max-age=600
x-hs-target-asset: conversations-embed/static-1.14392/bundles/project.js
x-content-type-options: nosniff
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 6
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-7c89bb96b9-mlg6m
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 4bb53e43-47b2-4f08-bc08-9fe4083d97b6
x-request-id: 4bb53e43-47b2-4f08-bc08-9fe4083d97b6
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 81
server: cloudflare
cf-ray: 817b4c7d093a56bb-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.linqto.com/wp-content/uploads/2023/07/cropped-fav-32x32.png

44.228.95.233

200 OK

539 B

URL GET HTTP/2
www.linqto.com/wp-content/uploads/2023/07/cropped-fav-32x32.png
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size
539 B (539 bytes)
Hash
d1c9bbde489a5dd1cab09588a06c9f24
4d8fd19514357a1ccc6841057d28a73ab746580f
8dd57b733e20fb21f785eff51fa3a8d06b34f475bd995b49f3032ed42b5a1124

HTTP Headers

GET /wp-content/uploads/2023/07/cropped-fav-32x32.png HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Cookie: _ga_8L19RNV27K=GS1.1.1697574620.1.0.1697574620.0.0.0; _ga=GA1.1.106544595.1697574620; _ga_H6LSW2SFD9=GS1.1.1697574620.1.0.1697574620.60.0.0; _gcl_au=1.1.1647105098.1697574620; _ga_3RQ2QB03RK=GS1.1.1697574620.1.0.1697574620.60.0.0; _rdt_uuid=1697574620791.c2ddc892-d15d-43cd-9f25-8e49bc6ff36b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:20 GMT
content-type: image/png
content-length: 539
strict-transport-security: max-age=31536000; includeSubDomains; preload
last-modified: Tue, 18 Jul 2023 01:28:25 GMT
etag: "21b-600b8d4e024df"
age: 345
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-H6LSW2SFD9&gtm=45je3ag0h2&_p=551648741&_gaz=1&gdid=dZTNiMT&cid=106544595.1697574620&ul=en-us&sr=1280x1024&_s=1&sid=1697574620&sct=1&seg=0&dl=https%3A%2F%2Fwww.linqto.com%2Fsign-up%2F%3Futm_campaign%3DZeroPark_V3%26utm_term%3Dcramoisy-sardine_%26utm_source%3DZeroPark%26utm_medium%3Dbravo-kae-vm07eey6zq%26click_id%3Dzrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b&dr=http%3A%2F%2Fvibiu-dau.com%2F&dt=Sign%20Up%20-%20Private%20Equity%20Investing%20%7C%20Linqto%20Private%20Investing&en=page_view&_fv=1&_ss=1&_ee=1

216.239.32.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-H6LSW2SFD9&gtm=45je3ag0h2&_p=551648741&_gaz=1&gdid=dZTNiMT&cid=106544595.1697574620&ul=en-us&sr=1280x1024&_s=1&sid=1697574620&sct=1&seg=0&dl=https%3A%2F%2Fwww.linqto.com%2Fsign-up%2F%3Futm_campaign%3DZeroPark_V3%26utm_term%3Dcramoisy-sardine_%26utm_source%3DZeroPark%26utm_medium%3Dbravo-kae-vm07eey6zq%26click_id%3Dzrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b&dr=http%3A%2F%2Fvibiu-dau.com%2F&dt=Sign%20Up%20-%20Private%20Equity%20Investing%20%7C%20Linqto%20Private%20Investing&en=page_view&_fv=1&_ss=1&_ee=1
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint54:FD:04:1B:2E:C7:46:95:DD:15:A3:A0:3F:CE:7F:03:02:53:36:8F
ValidityMon, 18 Sep 2023 08:19:25 GMT - Mon, 11 Dec 2023 08:19:24 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-H6LSW2SFD9&gtm=45je3ag0h2&_p=551648741&_gaz=1&gdid=dZTNiMT&cid=106544595.1697574620&ul=en-us&sr=1280x1024&_s=1&sid=1697574620&sct=1&seg=0&dl=https%3A%2F%2Fwww.linqto.com%2Fsign-up%2F%3Futm_campaign%3DZeroPark_V3%26utm_term%3Dcramoisy-sardine_%26utm_source%3DZeroPark%26utm_medium%3Dbravo-kae-vm07eey6zq%26click_id%3Dzrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b&dr=http%3A%2F%2Fvibiu-dau.com%2F&dt=Sign%20Up%20-%20Private%20Equity%20Investing%20%7C%20Linqto%20Private%20Investing&en=page_view&_fv=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linqto.com
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.linqto.com
date: Tue, 17 Oct 2023 20:30:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.linqto.com/wp-content/themes/linqto2.0/imgs/f-fb.svg

44.228.95.233

200 OK

697 B

URL GET HTTP/2
www.linqto.com/wp-content/themes/linqto2.0/imgs/f-fb.svg
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (557)
Size
697 B (697 bytes)
Hash
bf5b401959b7efb736ef54ff8baea3f4
9233295b729e1e33a31aadc5fe409c1a4b91399c
9ed529438b69b765525910b2e7162231f2be774a0c930ec9b38e00592f418537

HTTP Headers

GET /wp-content/themes/linqto2.0/imgs/f-fb.svg HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Cookie: _ga_8L19RNV27K=GS1.1.1697574620.1.0.1697574620.0.0.0; _ga=GA1.1.106544595.1697574620; _ga_H6LSW2SFD9=GS1.1.1697574620.1.0.1697574620.60.0.0; _gcl_au=1.1.1647105098.1697574620; _ga_3RQ2QB03RK=GS1.1.1697574620.1.0.1697574620.60.0.0; _rdt_uuid=1697574620791.c2ddc892-d15d-43cd-9f25-8e49bc6ff36b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:20 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Jul 2023 01:27:19 GMT
vary: Accept-Encoding
etag: W/"64b5ea77-4bd"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-5HGLBZS

142.250.74.168

200 OK

264 kB

URL GET HTTP/3
www.googletagmanager.com/gtm.js?id=GTM-5HGLBZS
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint54:FD:04:1B:2E:C7:46:95:DD:15:A3:A0:3F:CE:7F:03:02:53:36:8F
ValidityMon, 18 Sep 2023 08:19:25 GMT - Mon, 11 Dec 2023 08:19:24 GMT

File type
ASCII text, with very long lines (10976)
Size
264 kB (263728 bytes)
Hash
68e4216783a2a0fc03e8e9c1a7123449
d8e641ad02da4b4372b0410acf1a5062069acf57
a77088fe181c42331b2a4e294349f404070afe5544d0ecbdc67f0ff1accbdc48

HTTP Headers

GET /gtm.js?id=GTM-5HGLBZS HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 17 Oct 2023 20:30:19 GMT
expires: Tue, 17 Oct 2023 20:30:19 GMT
cache-control: private, max-age=900
last-modified: Tue, 17 Oct 2023 19:34:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88721
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

js.hs-banner.com/v2/20548088/banner.js

172.64.153.27

200 OK

67 kB

URL GET HTTP/2
js.hs-banner.com/v2/20548088/banner.js
IP
172.64.153.27:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2C:9C:DC:70:87:29:18:51:70:06:6E:2F:4B:4D:E0:23:1F:30:84:18
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65000)
Size
67 kB (67039 bytes)
Hash
095181f7b3e4fe7e49a82a529ffd41dd
1b0ce4ea4394b02e16505aa1657f417b2099814c
8abe5116019b360e247b2ea42ad0b95c1313368fed26524bedece7b1f801e059

HTTP Headers

GET /v2/20548088/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: application/javascript; charset=utf-8
vary: origin, Accept-Encoding
access-control-allow-credentials: true
x-content-type-options: nosniff
x-envoy-upstream-service-time: 73
x-evy-trace-route-service-name: envoyset-translator, envoyset-translator
x-evy-trace-virtual-host: all, all
x-evy-trace-served-by-pod: iad02/private-hubapi-td/envoy-proxy-874b7f86f-4h8xh, iad02/analytics-js-proxy-td/envoy-proxy-85c95667b4-fc6l5
x-evy-trace-listener: listener_http, listener_https
x-evy-trace-route-configuration: listener_http/all, listener_https/all
access-control-allow-origin: https://app.linqto.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-max-age: 604800
timing-allow-origin: *
expires: Tue, 17 Oct 2023 20:31:09 GMT
cache-control: max-age=300,public
x-hubspot-correlation-id: 8976c951-5379-4b2d-bd93-7318dc5d895f
x-request-id: 8976c951-5379-4b2d-bd93-7318dc5d895f
last-modified: Mon, 16 Oct 2023 07:27:47 GMT
cf-cache-status: HIT
age: 62
server: cloudflare
cf-ray: 817b4c7d0dafb515-OSL
content-encoding: br
X-Firefox-Spdy: h2

js.hsadspixel.net/fb.js

104.17.228.163

200 OK

6.1 kB

URL GET HTTP/2
js.hsadspixel.net/fb.js
IP
104.17.228.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintFC:DB:B2:8A:EC:7E:99:5C:25:C2:01:C0:DB:44:A4:07:41:7E:4F:3A
ValidityWed, 17 May 2023 00:00:00 GMT - Thu, 16 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (6282), with no line terminators
Size
6.1 kB (6095 bytes)
Hash
52dee2d4180d905e2afc334976afd16b
37b7c60a0440288f2f583f94efdd6f417797ffa8
8b655fb36e29c25d2aa274ab9da322bef7fbe632599ed55da872f66ddfe5aa88

HTTP Headers

GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Mon, 16 Oct 2023 16:51:04 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: 6Rl00Bao8JSR9sjVJgKGfhCjk_eTdRhI
etag: W/"7e8c6b3c97842ae7b4b13d1465637fd9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16df6ade68382d048f8aad1f7e39da28.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: ERSitHqYQZ7PmjYc0qDtnX2gOulb3x2Iy-2OPytYFc-2BIQCILUVAA==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=adsscriptloaderstatic/static-1.490/bundles/pixels-release.js&cfRay=8171dcb99f6f5687-ARN
cache-control: max-age=600
x-hs-target-asset: adsscriptloaderstatic/static-1.490/bundles/pixels-release.js
x-content-type-options: nosniff
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-7c89bb96b9-mlg6m
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: bb591a98-e8fb-4c3e-bf76-36297c514262
x-request-id: bb591a98-e8fb-4c3e-bf76-36297c514262
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 359
server: cloudflare
cf-ray: 817b4c7d081db509-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.linqto.com/wp-content/uploads/2023/07/cropped-fav-192x192.png

44.228.95.233

200 OK

1.2 kB

URL GET HTTP/2
www.linqto.com/wp-content/uploads/2023/07/cropped-fav-192x192.png
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Size
1.2 kB (1232 bytes)
Hash
e920f2146b36e8e01427f004ff2717b8
ca436b1320e593e346cb3e5a7d8f607c917fb4bc
c92a92be50f0c748b7f46b9c7a1feed175d4bba2af0de45c207719d3fb6c2f6e

HTTP Headers

GET /wp-content/uploads/2023/07/cropped-fav-192x192.png HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Cookie: _ga_8L19RNV27K=GS1.1.1697574620.1.0.1697574620.0.0.0; _ga=GA1.1.106544595.1697574620; _ga_H6LSW2SFD9=GS1.1.1697574620.1.0.1697574620.60.0.0; _gcl_au=1.1.1647105098.1697574620; _ga_3RQ2QB03RK=GS1.1.1697574620.1.0.1697574620.60.0.0; _rdt_uuid=1697574620791.c2ddc892-d15d-43cd-9f25-8e49bc6ff36b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:20 GMT
content-type: image/png
content-length: 1232
strict-transport-security: max-age=31536000; includeSubDomains; preload
last-modified: Tue, 18 Jul 2023 01:28:25 GMT
etag: "4d0-600b8d4dff5ff"
age: 355
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.linqto.com/wp-content/themes/linqto2.0/imgs/f-tw.svg

44.228.95.233

200 OK

1.7 kB

URL GET HTTP/2
www.linqto.com/wp-content/themes/linqto2.0/imgs/f-tw.svg
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1810), with no line terminators
Size
1.7 kB (1736 bytes)
Hash
8d81c2dabc771dd68b39d69297e9be5f
e06c83d509e1a5a5a4f3f6725cecd24c4dc4bd7a
e540720282eb11fea807b11915edc5db4e0c69465c4ff5c02139914d02edc919

HTTP Headers

GET /wp-content/themes/linqto2.0/imgs/f-tw.svg HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Cookie: _ga_8L19RNV27K=GS1.1.1697574620.1.0.1697574620.0.0.0; _ga=GA1.1.106544595.1697574620; _ga_H6LSW2SFD9=GS1.1.1697574620.1.0.1697574620.60.0.0; _gcl_au=1.1.1647105098.1697574620; _ga_3RQ2QB03RK=GS1.1.1697574620.1.0.1697574620.60.0.0; _rdt_uuid=1697574620791.c2ddc892-d15d-43cd-9f25-8e49bc6ff36b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:20 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Jul 2023 01:27:19 GMT
vary: Accept-Encoding
etag: W/"64b5ea77-6c8"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.linqto.com/wp-content/plugins/honeypot/includes/js/wpa.js?ver=2.1.5

44.228.95.233

200 OK

3.6 kB

URL GET HTTP/2
www.linqto.com/wp-content/plugins/honeypot/includes/js/wpa.js?ver=2.1.5
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
ASCII text, with very long lines (3848), with no line terminators
Size
3.6 kB (3611 bytes)
Hash
8aacc39598601c4a740d176fbfc748a7
0cd189b91479ab1e3465069fc1fb90a1169148a6
d3cd215eb7c40a40d5dce178dddd3c47a72b8397bad20b27f97373ebb8d0ef3b

HTTP Headers

GET /wp-content/plugins/honeypot/includes/js/wpa.js?ver=2.1.5 HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: application/javascript
last-modified: Fri, 28 Jul 2023 10:33:16 GMT
vary: Accept-Encoding
etag: W/"64c3996c-e1b"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.linqto.com/wp-content/themes/linqto2.0/imgs/f-li.svg

44.228.95.233

200 OK

2.0 kB

URL GET HTTP/2
www.linqto.com/wp-content/themes/linqto2.0/imgs/f-li.svg
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2073), with no line terminators
Size
2.0 kB (1987 bytes)
Hash
811e24022ab07835f03d78dbd0fb17b5
1c88e6692adaeb8aa606c478eedd06aa2b05d997
bc81615017d8ff36c1659e83d1f9307c67e1b603b4d501a8bb63c7a851ed9d66

HTTP Headers

GET /wp-content/themes/linqto2.0/imgs/f-li.svg HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Cookie: _ga_8L19RNV27K=GS1.1.1697574620.1.0.1697574620.0.0.0; _ga=GA1.1.106544595.1697574620; _ga_H6LSW2SFD9=GS1.1.1697574620.1.0.1697574620.60.0.0; _gcl_au=1.1.1647105098.1697574620; _ga_3RQ2QB03RK=GS1.1.1697574620.1.0.1697574620.60.0.0; _rdt_uuid=1697574620791.c2ddc892-d15d-43cd-9f25-8e49bc6ff36b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:20 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Jul 2023 01:27:19 GMT
vary: Accept-Encoding
etag: W/"64b5ea77-7c3"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.linqto.com/wp-content/themes/linqto2.0/imgs/logo-dark.svg

44.228.95.233

200 OK

3.7 kB

URL GET HTTP/2
www.linqto.com/wp-content/themes/linqto2.0/imgs/logo-dark.svg
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3740), with no line terminators
Size
3.7 kB (3683 bytes)
Hash
d7e733adb6f095ad50f11939ae88f031
d15296e167808dfcd7dcad15dea2f95689f8aad1
ca80aa0daf7118093a6f7d68f97d355236d0114275c260a5f9952d61c6d49951

HTTP Headers

GET /wp-content/themes/linqto2.0/imgs/logo-dark.svg HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Jul 2023 01:27:19 GMT
vary: Accept-Encoding
etag: W/"64b5ea77-e63"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.linqto.com/wp-content/themes/linqto2.0/imgs/show-pass.svg

44.228.95.233

200 OK

2.2 kB

URL GET HTTP/2
www.linqto.com/wp-content/themes/linqto2.0/imgs/show-pass.svg
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2300), with no line terminators
Size
2.2 kB (2247 bytes)
Hash
31f1c67e036d5590de0dbfdc92b7d73c
d95f2237a8d245fad7598a1146fabf5e51d42b9c
97cbd0ad8b7b5d275439c5b0f7b59fec9f1fefd67b3abdbe4f904c65ebfb61c5

HTTP Headers

GET /wp-content/themes/linqto2.0/imgs/show-pass.svg HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: image/svg+xml
last-modified: Sat, 02 Sep 2023 19:50:32 GMT
vary: Accept-Encoding
etag: W/"64f39208-8c7"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=20548088

104.17.200.204

200 OK

255 B

URL GET HTTP/2
api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=20548088
IP
104.17.200.204:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerCloudflare, Inc.
Subjecthubapi.com
FingerprintB1:3C:6E:B5:33:D1:03:D3:5D:7E:38:F6:29:9B:E5:7B:60:B8:AB:C3
ValidityFri, 07 Apr 2023 00:00:00 GMT - Sat, 06 Apr 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
255 B (255 bytes)
Hash
9c41aafa2e2d314fd0068cea92cda57d
9b4889d19b373d1005183fc7e057fececb09f3fe
55b4b1eaee40497862febc5fde9c5fa1c3aa02e80fb16181a450b2a2bb7360a9

HTTP Headers

GET /hs-script-loader-public/v1/config/pixels-and-events/json?portalId=20548088 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linqto.com
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 17 Oct 2023 20:30:20 GMT
content-type: application/json;charset=utf-8
cf-ray: 817b4c7ef8f25693-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: https://www.linqto.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-content-type-options: nosniff
x-envoy-upstream-service-time: 3
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-5b5c96c966-rmgdk
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 856b4930-39ca-472e-9242-36b3c4a21bac
x-request-id: 856b4930-39ca-472e-9242-36b3c4a21bac
x-trace: 2BAF989549D35E36CD6A989CF3924024A77ED071CB000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hlWxDdlydpEzTzlRhkbi3z8djWX5hSXpawq4APMDGQQ5pwtkwnns39%2BEgUPOOA%2FJyrBx%2FUFTQEP%2B%2F78nr0BUreYshz%2BngTTArlPKyaALSV9r8R3oAC8q5jyGR7TUGrHZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

www.linqto.com/wp-content/themes/linqto2.0/imgs/close.svg

44.228.95.233

200 OK

336 B

URL GET HTTP/2
www.linqto.com/wp-content/themes/linqto2.0/imgs/close.svg
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (374), with no line terminators
Size
336 B (336 bytes)
Hash
90edb60914753e5df18d08fdb43207f9
e186db501e81f48b727bef4fb25ec1a6d3f9cc52
0c56b1764cc536b0e22068d9df6b6474313cf0c98b59e393d1278bab586c2d1d

HTTP Headers

GET /wp-content/themes/linqto2.0/imgs/close.svg HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Cookie: _ga_8L19RNV27K=GS1.1.1697574620.1.0.1697574620.0.0.0; _ga=GA1.1.106544595.1697574620; _ga_H6LSW2SFD9=GS1.1.1697574620.1.0.1697574620.60.0.0; _gcl_au=1.1.1647105098.1697574620; _ga_3RQ2QB03RK=GS1.1.1697574620.1.0.1697574620.60.0.0; _rdt_uuid=1697574620791.c2ddc892-d15d-43cd-9f25-8e49bc6ff36b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:21 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Jul 2023 01:27:19 GMT
vary: Accept-Encoding
etag: W/"64b5ea77-150"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.linqto.com/wp-content/themes/linqto2.0/fonts/Codec-Cold-Bold.woff2

44.228.95.233

200 OK

98 kB

URL GET HTTP/2
www.linqto.com/wp-content/themes/linqto2.0/fonts/Codec-Cold-Bold.woff2
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
Web Open Font Format (Version 2), TrueType, length 98044, version 3.0\012- data
Size
98 kB (98044 bytes)
Hash
6d3bdabb892ccf86aa2418816b0abc2a
2e5b822b740ae5f2f8bb0c462cc93d13dcecfa74
05672f40edf01da38ac65ffba97aeecf789e34f8dd594a8219402bf2203840cc

HTTP Headers

GET /wp-content/themes/linqto2.0/fonts/Codec-Cold-Bold.woff2 HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/wp-content/themes/linqto2.0/style.css?ver=4e57d6e24c791ce9423190b6a945bd34
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: application/font-woff2
content-length: 98044
last-modified: Tue, 18 Jul 2023 01:27:19 GMT
etag: "64b5ea77-17efc"
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.linqto.com/wp-content/themes/linqto2.0/imgs/f-yt.svg

44.228.95.233

200 OK

1.1 kB

URL GET HTTP/2
www.linqto.com/wp-content/themes/linqto2.0/imgs/f-yt.svg
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1149), with no line terminators
Size
1.1 kB (1085 bytes)
Hash
ebbed95902f396fc918766e7d2268980
c4eb46ec063a7a1ef5fdfa6d4c0ba0b5f244ca16
da2debd2b3fecf613674f12b8e9515f3b556816c4b4e2b0135bfbf11801fa7bb

HTTP Headers

GET /wp-content/themes/linqto2.0/imgs/f-yt.svg HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Cookie: _ga_8L19RNV27K=GS1.1.1697574620.1.0.1697574620.0.0.0; _ga=GA1.1.106544595.1697574620; _ga_H6LSW2SFD9=GS1.1.1697574620.1.0.1697574620.60.0.0; _gcl_au=1.1.1647105098.1697574620; _ga_3RQ2QB03RK=GS1.1.1697574620.1.0.1697574620.60.0.0; _rdt_uuid=1697574620791.c2ddc892-d15d-43cd-9f25-8e49bc6ff36b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:20 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Jul 2023 01:27:19 GMT
vary: Accept-Encoding
etag: W/"64b5ea77-43d"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.linqto.com/wp-content/plugins/add-to-calendar-button/lib/atcb.js?ver=1.4.3

44.228.95.233

200 OK

293 kB

URL GET HTTP/2
www.linqto.com/wp-content/plugins/add-to-calendar-button/lib/atcb.js?ver=1.4.3
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type

Size
293 kB (293421 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/plugins/add-to-calendar-button/lib/atcb.js?ver=1.4.3 HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: application/javascript
last-modified: Mon, 09 Oct 2023 22:33:12 GMT
vary: Accept-Encoding
etag: W/"65247fa8-47a2d"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

js.hs-scripts.com/20548088.js

104.16.190.89

200 OK

1.8 kB

URL GET HTTP/2
js.hs-scripts.com/20548088.js
IP
104.16.190.89:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5A:DE:00:16:F4:3C:EB:0D:2A:0C:6E:27:59:94:38:E3:D9:B1:20:3E
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1913), with no line terminators
Size
1.8 kB (1819 bytes)
Hash
6420765b90d4a6384e026aa81cccc40a
48fb9123f29ded7347a10c6d3e376a144ccb96c9
f86296233b3beffa80b720dce8901606bdab008c318c04955561e61bd6b0a6dd

HTTP Headers

GET /20548088.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://app.linqto.com
access-control-max-age: 3600
cache-control: public, max-age=60
cf-bgj: minify
cf-polished: origSize=1928
vary: origin, Accept-Encoding
x-content-type-options: nosniff
x-hubspot-correlation-id: 7334d723-5cd4-4489-b39f-7d089a916bdf
x-trace: 2B8F57E322D6AC526CC7A24B2DFD6FE148B70B72A6000000000000000000
x-envoy-upstream-service-time: 5
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-5b5c96c966-6tlpj
x-evy-trace-virtual-host: all
x-request-id: 7334d723-5cd4-4489-b39f-7d089a916bdf
last-modified: Tue, 17 Oct 2023 20:29:50 GMT
cf-cache-status: HIT
expires: Tue, 17 Oct 2023 20:31:19 GMT
server: cloudflare
cf-ray: 817b4c79292a568b-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-3RQ2QB03RK&l=dataLayer&cx=c

142.250.74.168

200 OK

280 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-3RQ2QB03RK&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint54:FD:04:1B:2E:C7:46:95:DD:15:A3:A0:3F:CE:7F:03:02:53:36:8F
ValidityMon, 18 Sep 2023 08:19:25 GMT - Mon, 11 Dec 2023 08:19:24 GMT

File type
ASCII text, with very long lines (7711)
Size
280 kB (279915 bytes)
Hash
dd5743d00b6757fb3497c1ef97fd3ebf
f83b4a021f56eb8cff1d413f056ce632698a3706
78ec8415f989198e8c98a6545035362ab3ebc4c95011e4346951a691da12bffe

HTTP Headers

GET /gtag/js?id=G-3RQ2QB03RK&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 17 Oct 2023 20:30:19 GMT
expires: Tue, 17 Oct 2023 20:30:19 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92657
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.linqto.com/wp-content/themes/linqto2.0/imgs/logo-icon.svg

44.228.95.233

200 OK

1.5 kB

URL GET HTTP/2
www.linqto.com/wp-content/themes/linqto2.0/imgs/logo-icon.svg
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1540), with no line terminators
Size
1.5 kB (1465 bytes)
Hash
d753a78d9ceacaf3dbaa4b61d0d33fb8
5d78ee27d3d59dd05e667b43ca26305ea2c9a45d
9d7a6938a6acbb1e102aec493e22aad941c360dc78b0c0634b14edb196dbb0a3

HTTP Headers

GET /wp-content/themes/linqto2.0/imgs/logo-icon.svg HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Cookie: _ga_8L19RNV27K=GS1.1.1697574620.1.0.1697574620.0.0.0; _ga=GA1.1.106544595.1697574620; _ga_H6LSW2SFD9=GS1.1.1697574620.1.0.1697574620.60.0.0; _gcl_au=1.1.1647105098.1697574620; _ga_3RQ2QB03RK=GS1.1.1697574620.1.0.1697574620.60.0.0; _rdt_uuid=1697574620791.c2ddc892-d15d-43cd-9f25-8e49bc6ff36b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:20 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Jul 2023 01:27:19 GMT
vary: Accept-Encoding
etag: W/"64b5ea77-5b9"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.linqto.com/wp-content/themes/linqto2.0/imgs/f-ig.svg

44.228.95.233

200 OK

2.0 kB

URL GET HTTP/2
www.linqto.com/wp-content/themes/linqto2.0/imgs/f-ig.svg
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2105), with no line terminators
Size
2.0 kB (2041 bytes)
Hash
4832bec748ade126a242032e6546f012
530d6d1ce97bb9cde9b22c1fef65dd4ca459c868
0e7b3bfd60731b1a423dcde91f08b58222ad4099589ada8b81ee1eeaa7843367

HTTP Headers

GET /wp-content/themes/linqto2.0/imgs/f-ig.svg HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Cookie: _ga_8L19RNV27K=GS1.1.1697574620.1.0.1697574620.0.0.0; _ga=GA1.1.106544595.1697574620; _ga_H6LSW2SFD9=GS1.1.1697574620.1.0.1697574620.60.0.0; _gcl_au=1.1.1647105098.1697574620; _ga_3RQ2QB03RK=GS1.1.1697574620.1.0.1697574620.60.0.0; _rdt_uuid=1697574620791.c2ddc892-d15d-43cd-9f25-8e49bc6ff36b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:20 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Jul 2023 01:27:19 GMT
vary: Accept-Encoding
etag: W/"64b5ea77-7f9"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.linqto.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.1

44.228.95.233

200 OK

11 kB

URL GET HTTP/2
www.linqto.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.1
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
ASCII text, with very long lines (10770), with no line terminators
Size
11 kB (10770 bytes)
Hash
6ce86c3105139cb3c80913e6a3696a96
c55c7be10b31a773c7c9f6f393f382b89c318db4
5fe46d2da01452067736578431f6c6e8116a24e616f58c72d9d81fdb2c7c9569

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.1 HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: application/javascript
last-modified: Thu, 28 Sep 2023 10:33:11 GMT
vary: Accept-Encoding
etag: W/"65155667-2a12"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.linqto.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.1

44.228.95.233

200 OK

13 kB

URL GET HTTP/2
www.linqto.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.1
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
HTML document, ASCII text, with very long lines (12943), with no line terminators
Size
13 kB (12943 bytes)
Hash
5bc2b1fa970f9cecb3c30c0c92c98271
7c6bb87aaa24714b7b3b3c86dd932736a80270a9
1060091178cbd6c843b802f516f230f1a3a1e85f1afbd6ef84d80e5430ba457e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.1 HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: application/javascript
last-modified: Thu, 28 Sep 2023 10:33:11 GMT
vary: Accept-Encoding
etag: W/"65155667-328f"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-3RQ2QB03RK&gtm=45je3ab0&_p=551648741&_gaz=1&cid=106544595.1697574620&ul=en-us&sr=1280x1024&_s=1&sid=1697574620&sct=1&seg=0&dl=https%3A%2F%2Fwww.linqto.com%2Fsign-up%2F%3Futm_campaign%3DZeroPark_V3%26utm_term%3Dcramoisy-sardine_%26utm_source%3DZeroPark%26utm_medium%3Dbravo-kae-vm07eey6zq%26click_id%3Dzrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b&dr=http%3A%2F%2Fvibiu-dau.com%2F&dt=Sign%20Up%20-%20Private%20Equity%20Investing%20%7C%20Linqto%20Private%20Investing&en=page_view&_fv=1&_ss=1

216.239.32.36

204 No Content

0 B

URL POST HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-3RQ2QB03RK&gtm=45je3ab0&_p=551648741&_gaz=1&cid=106544595.1697574620&ul=en-us&sr=1280x1024&_s=1&sid=1697574620&sct=1&seg=0&dl=https%3A%2F%2Fwww.linqto.com%2Fsign-up%2F%3Futm_campaign%3DZeroPark_V3%26utm_term%3Dcramoisy-sardine_%26utm_source%3DZeroPark%26utm_medium%3Dbravo-kae-vm07eey6zq%26click_id%3Dzrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b&dr=http%3A%2F%2Fvibiu-dau.com%2F&dt=Sign%20Up%20-%20Private%20Equity%20Investing%20%7C%20Linqto%20Private%20Investing&en=page_view&_fv=1&_ss=1
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint54:FD:04:1B:2E:C7:46:95:DD:15:A3:A0:3F:CE:7F:03:02:53:36:8F
ValidityMon, 18 Sep 2023 08:19:25 GMT - Mon, 11 Dec 2023 08:19:24 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-3RQ2QB03RK&gtm=45je3ab0&_p=551648741&_gaz=1&cid=106544595.1697574620&ul=en-us&sr=1280x1024&_s=1&sid=1697574620&sct=1&seg=0&dl=https%3A%2F%2Fwww.linqto.com%2Fsign-up%2F%3Futm_campaign%3DZeroPark_V3%26utm_term%3Dcramoisy-sardine_%26utm_source%3DZeroPark%26utm_medium%3Dbravo-kae-vm07eey6zq%26click_id%3Dzrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b&dr=http%3A%2F%2Fvibiu-dau.com%2F&dt=Sign%20Up%20-%20Private%20Equity%20Investing%20%7C%20Linqto%20Private%20Investing&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linqto.com
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/3 204 No Content
access-control-allow-origin: https://www.linqto.com
date: Tue, 17 Oct 2023 20:30:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.linqto.com/wp-content/themes/linqto2.0/style.css?ver=4e57d6e24c791ce9423190b6a945bd34

44.228.95.233

200 OK

76 kB

URL GET HTTP/2
www.linqto.com/wp-content/themes/linqto2.0/style.css?ver=4e57d6e24c791ce9423190b6a945bd34
IP
44.228.95.233:443
ASN
#16509 AMAZON-02

Requested by
https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Certificate
IssuerLet's Encrypt
Subjectwp.linqto.com
Fingerprint08:8E:97:9D:6D:72:C7:1F:A3:A0:87:C5:B9:B3:BE:60:0A:45:E4:E2
ValidityMon, 28 Aug 2023 17:25:12 GMT - Sun, 26 Nov 2023 17:25:11 GMT

File type
assembler source, ASCII text, with very long lines (3003)
Size
76 kB (76150 bytes)
Hash
d2f2f02ef3a30ad8a77d14924129550a
8da161297d9d24a4b3c06ecb40c6c32e4bfdd4b1
d513e63e87bb60f91595d4adb5a62ea7bf34d1340963f085616d9d3096f1bf0d

HTTP Headers

GET /wp-content/themes/linqto2.0/style.css?ver=4e57d6e24c791ce9423190b6a945bd34 HTTP/1.1
Host: www.linqto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linqto.com/sign-up/?utm_campaign=ZeroPark_V3&utm_term=cramoisy-sardine_&utm_source=ZeroPark&utm_medium=bravo-kae-vm07eey6zq&click_id=zrfb3ca1276d2b11eea5730a6b9e17fecf45c67855bac24302a67885531d474eb5077084e2aeb12ac92b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 17 Oct 2023 20:30:19 GMT
content-type: text/css
last-modified: Mon, 25 Sep 2023 19:50:48 GMT
vary: Accept-Encoding
etag: W/"6511e498-12976"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (30)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by