Report - www.zintium.com/

Report Overview

Submitted URL
www.zintium.com/
IP
207.148.248.145
ASN
#29873 BIZLAND-SD
Submitted
2022-10-09 21:24:21
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	473 B	17 kB	216.58.207.195
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	441 B	160 kB	142.250.74.163
cdn.cookielaw.org	502	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.0 kB	142 kB	104.16.149.64
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	3.7 kB	93.184.220.29
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	360 B	1.2 kB	142.250.74.164
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	374 B	67 kB	142.250.74.168
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	2.7 kB	31.13.72.12
s1731649222.t.eloqua.com	364435	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	1.9 kB	142.0.173.27
geolocation.onetrust.com	802	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	434 B	394 B	172.64.146.158
www.zintium.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	335 B	418 B	207.148.248.145
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	389 B	63 kB	172.217.21.170
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.80.175.197
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	602 B	716 B	173.194.73.154
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	407 B	4.1 kB	104.17.25.14
apis.google.com	105	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	361 B	6.5 kB	142.250.74.174
accounts.google.com	81	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	477 B	90 kB	216.58.207.237
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	507 B	694 B	142.250.74.3
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	54.230.111.35
www.directdomains.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	30 kB	679 kB	207.148.248.138
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.0 kB	13 kB	142.250.74.3
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	656 B	1.9 kB	104.18.32.68
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	403 B	746 B	142.250.74.10
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	57 kB	34.120.237.76
api.buydomains.com	379682	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	450 B	2.1 kB	207.148.248.128

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-09	medium	zintium.com	Sinkholed

JavaScript (32)

	URL	Size	First Seen	Last Seen
	www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.IdpIFrameHttp.en_US.3d6Ua1eG8JQ.es5.O/d=1/rs=AOaEmlGxIcXbKFN2VWQFoTDbmOXA3_0qlw/m=base	101 kB	2023-03-08	2023-03-10
Pretty URL www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.IdpIFrameHttp.en_US.3d6Ua1eG8JQ.es5.O/d=1/rs=AOaEmlGxIcXbKFN2VWQFoTDbmOXA3_0qlw/m=base IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:02:40 Last Seen2023-03-10 08:54:21 Times Seen1 Hash 8e76e02ebbcc8d9af7af33bbfcfb03aa 172c0d0247fd90cb4376013def0ed61ad62536ea 0a2a9dec4081d5577fb34931cfbe6e2578fafddd437d92ce4a5f6aa0f7e64ba3 Loading...

	www.directdomains.com//browser/js/vendor/headroom.min.js?version=2022-08-25-2	13 kB	2023-03-08	2023-03-08
Pretty URL www.directdomains.com//browser/js/vendor/headroom.min.js?version=2022-08-25-2 IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash 753a58de81cecac49e67fe0ed5337807 e9f19007ebfa22a2dd2a3e01fe598e36e81b0660 5c151f4823fa095b8ed7da64316d208790b87724ac486a1a1aeca7cd28692a75 Loading...

	www.directdomains.com//browser/js/vendor/angular-recaptcha.min.js?version=2022-08-25-2	10 kB	2023-03-08	2023-03-08
Pretty URL www.directdomains.com//browser/js/vendor/angular-recaptcha.min.js?version=2022-08-25-2 IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash 2cdd6fa7133b96815ebdca2e6aa6b207 0c16555f8e25ab7954c5249fbdd70c649c1799b5 8e1b96b172a6b3de9b85592cb6f327544cfe816bf43142c3623af518e9d41a92 Loading...

	www.google.com/recaptcha/api.js	850 B	2023-03-08	2023-03-11
Pretty URL www.google.com/recaptcha/api.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:40:09 Last Seen2023-03-11 13:30:42 Times Seen1 Hash 671d51c8f7b6f6920c23e7092f2e07f4 f9c0ccad26b1524c2f0438657c0ce4b82960cdd3 91b729f00e7b893e0b8158d9d786315ed01b763e6b1053d72e2d6abbb906f70e Loading...

	www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect	23 B	2023-03-07	2024-04-23
Pretty URL www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:37:53 Last Seen2024-04-23 11:48:04 Times Seen196 Hash ff3dd897e61e0f42ae57c565f7d86034 be0d83af8b36cda1c21be1b94b39c75cb14cb428 3e0830fd22515bfd90b1394553b6fb0368f9b541b5b917a4c4deb4f0a91a872d Loading...

	www.googletagmanager.com/gtm.js?id=GTM-NCNG5K	188 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-NCNG5K IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash f57bfffc15899f00924b545444478822 4083d7a00c285143bf2ca3d306d9fb69ad734f2b 6befc147950f826c2975197ed500f1c0dfaa9760f93f135645aa2cf30ba749d2 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs	317 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:08 Last Seen2023-03-17 12:45:16 Times Seen1 Hash 6c1b0ef6a4a1f2add2734a6324f02146 c89313e4a3e7af27f19946fa1a417293679421f6 c11cece74407206c4977517c1fcf6787a91accde8cc75607c499b6f259c6e0cb Loading...

	www.directdomains.com/browser/js/vendor/wow.min.js	20 kB	2023-03-08	2023-03-08
Pretty URL www.directdomains.com/browser/js/vendor/wow.min.js IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash fb1aa67a0fee0f68a3130bc55a36f198 239727d2fc5efdebf4e496e932ef244b25211381 19bdd603acc5459440771f3330bb1487512020c5ee9c7b70fb36b8b926e6808d Loading...

	www.directdomains.com//browser/js/vendor/angular.headroom.min.js?version=2022-08-25-2	1.8 kB	2023-03-08	2023-03-08
Pretty URL www.directdomains.com//browser/js/vendor/angular.headroom.min.js?version=2022-08-25-2 IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash 448bbade87668f05f1f6348f9b1c35be 28dbdc39fb3ffbf741d87a7c19551fbcd8976102 e18c87cdecffb40f17eb928f0907b9dfe339ce671cdf3e4aa82f10173952ad64 Loading...

	www.directdomains.com//google_analytics.js?version=2022-08-25-2	2.0 kB	2023-03-08	2023-03-08
Pretty URL www.directdomains.com//google_analytics.js?version=2022-08-25-2 IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash a21b6fd72c14ca03c3bdc04dabaab72e fef0f9a777950dee5c036bb746b3a07991f5e2a7 3112dd5e7d91db1afa5b0cb79a128de8d714f1321fc2a204cfbc08b540846649 Loading...

	www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect	466 B	2023-03-08	2023-03-08
Pretty URL www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash c41343eca9a3155a1a45fe288ea71e00 9c37f0c6abb40491594b4d076a356b4dff6126ef 3319696fcd302f557136a12ce665b424726552abbf66c05d8c5fc34e18e57361 Loading...

	accounts.google.com/o/oauth2/iframe#origin=https%3A%2F%2Fwww.directdomains.com&rpcToken=291390768.43023527&clearCache=1	31 B	2023-03-07	2024-04-24
Pretty URL accounts.google.com/o/oauth2/iframe#origin=https%3A%2F%2Fwww.directdomains.com&rpcToken=291390768.43023527&clearCache=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-24 19:12:54 Times Seen2601 Hash 671ffb739b15d1f76fe0bfda3211d6a4 cdd0e50d2d0ab5e871821f1e5b1245343edf17bf 1efcb4c5cb4522989514356d42b18a77598da23e50a212d4f74d084ff80b8c33 Loading...

	connect.facebook.net/en_US/sdk.js?hash=96b0d0138bd6655c357c80f201ac08f3	313 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/en_US/sdk.js?hash=96b0d0138bd6655c357c80f201ac08f3 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash beff816e75fb29b67c88317893975f8c 1f2ef9efd8d517bb4ea60c9bec0fff7d2ec75232 ab02a4843183b3a5f831dd2a1e63f4fe088abf6893cdbb247bb83186133238dc Loading...

	apis.google.com/js/api:client.js	14 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/js/api:client.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:41 Last Seen2023-03-17 12:43:37 Times Seen1 Hash 285a584503865b0fc09518b2467f83eb 72001c99428be499ba1e567d8488259898c4e2c8 cd5ad086f32a7e52b8d793d1b3516c3ccd1951758e54a5ca637fea5e67703e06 Loading...

	www.directdomains.com/browser/js/profile/profile.min.js	133 kB	2023-03-08	2023-03-08
Pretty URL www.directdomains.com/browser/js/profile/profile.min.js IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash 5710a09e2a3510bd768f26d3151bd44c 932e9b94431ec5029dc0f89869e269269c782aa7 60e209709b7381d3d58a172c92efd0d0114e6ca1108ee9aa53d7399fe87064b9 Loading...

	www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect	159 B	2023-03-08	2023-03-08
Pretty URL www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash a8396d01218e3e68931b052df6693660 37131a3956b814c3ff8332829247288f1048b4de 256f36714124bbed0763bbcfe37f665a228f67b0b9bddc2da6a0d3cbacbbae26 Loading...

	connect.facebook.net/en_US/sdk.js	3.1 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/en_US/sdk.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash 9537aab5a8865e669fff435e060142e4 21b9859c8bd4e31aef6ce9c6c4433c4ad6fead62 03cbfff4a27a4ee8b3af6afcb7c1cf40a4a008452dec171c46ba63d45fd3b09e Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 12:35:03 Times Seen37091462 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect	28 B	2023-03-07	2024-04-26
Pretty URL www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-04-26 06:18:29 Times Seen4203 Hash 5b367dd02e41abc8dbc0190dcb35ff61 5e24ba41be5efe4af6dd970e101bc24acea46a7c 22031038e39e75078c3c197b952ade3153e626f53ad9b73a97c1dcb065e76d67 Loading...

	www.directdomains.com//browser/js/worker/workerJS-main.min.js?version=2022-08-25-2	2.9 kB	2023-03-08	2023-03-08
Pretty URL www.directdomains.com//browser/js/worker/workerJS-main.min.js?version=2022-08-25-2 IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash 5e38322769ff4a5252a793eb5a6b8759 887aea958f80f357f717edfbdcaba228b54ccdd1 a75d44cba6aea6489919091e48765f23bd8397d99be74b04f5339f11512a56ac Loading...

	www.google.com/recaptcha/api.js?onload=vcRecaptchaApiLoaded&render=explicit	915 B	2023-03-08	2023-03-08
Pretty URL www.google.com/recaptcha/api.js?onload=vcRecaptchaApiLoaded&render=explicit IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:53:34 Last Seen2023-03-08 11:57:04 Times Seen1 Hash 9aeefaad096c7868bdd2d89f461d23d2 7c6fdf95f9ae4a4e9a2adf9c59bc098c363bdf51 59e44e076e30e7b6070ebbf781d5956077908d546f9bd488cf4a42de51aface4 Loading...

	www.directdomains.com//browser/js/vendor/elqCfg.min.js?version=2022-08-25-2	11 kB	2023-03-07	2023-11-30
Pretty URL www.directdomains.com//browser/js/vendor/elqCfg.min.js?version=2022-08-25-2 IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:20 Last Seen2023-11-30 16:06:38 Times Seen16 Hash e480f7ac5c8ea367d4f41f863baace8c bda77b5fd26b0fee575806434f75e5d19ea9dd87 bb35db9a8e843666963e51b36c5c5707eeba6c18c54dd5a0edce70efabb0dafc Loading...

	www.directdomains.com//eloqua.js?version=2022-08-25-2	1.1 kB	2023-03-08	2023-03-08
Pretty URL www.directdomains.com//eloqua.js?version=2022-08-25-2 IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash 1deaa782d0ba31648f39060652075f6e e587df09c4ee3ba1d833a2e8c88cd22fd959df8c 16d195d8d9881f8c33b8c19705e3d1c4e45914f5462db0d5b70dd7b9791ef6de Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=auth2/exm=client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs	62 B	2023-03-07	2024-04-24
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=auth2/exm=client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:41 Last Seen2024-04-24 17:35:31 Times Seen3113 Hash 9837d62b4d9d445a9518b5dcfccc6486 34f2b6624b39dc150b894e885f224fe6e109d950 27095d13a9c6e755cb20dc225c60d419aaea91a9ec240b842527daea5c98a3ba Loading...

	cdn.cookielaw.org/scripttemplates/otSDKStub.js	22 kB	2023-03-07	2024-03-05
Pretty URL cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.16.149.64 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:58:52 Last Seen2024-03-05 19:00:25 Times Seen96 Hash a750a84d2cd5eb69aa0b8b1b94db6da8 56fd3e55c49aa5f3e48e525ae794da9b070cfa6c bbc4456bca95006683a8f081d0d2ed645eef5b14c62eca12c70f7e1cec26c1a0 Loading...

	www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js	399 kB	2023-03-08	2023-03-11
Pretty URL www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:40:09 Last Seen2023-03-11 13:30:42 Times Seen1 Hash f35658481ed15bc5f9e381e5babb040b 6ac7505ec9c522b239aeefed9ff6c1ff4d7c98e5 bec7e5a49219ef10544321dbd44f27849644f20623c16f05baeeeaa73e3b9332 Loading...

	ajax.googleapis.com/ajax/libs/angularjs/1.8.2/angular.min.js	177 kB	2023-03-07	2024-03-17
Pretty URL ajax.googleapis.com/ajax/libs/angularjs/1.8.2/angular.min.js IP 172.217.21.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:37 Last Seen2024-03-17 14:22:23 Times Seen227 Hash a8b55518d979465737523088a9007e74 32e24fc5f40120fe30ca097235d6c5988f84c927 24103af48b9ee0409c9178cd92eba5dc3cdf0c76827b7c265c4f6f681b4dc176 Loading...

	www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect	1.0 kB	2023-03-08	2023-03-08
Pretty URL www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash 2ea3fd2d9c7299f43836bd8e9cdd515c 775d6b893daa822badbf5a2cf72d9384d4bd1fa9 1d347b42c8511677283cbb51cbe1018c19d0d36e746e20f1775a498555ac8f1d Loading...

	www.directdomains.com//browser/js/vendor/angular-parallax.js?version=2022-08-25-2	4.4 kB	2023-03-08	2023-03-08
Pretty URL www.directdomains.com//browser/js/vendor/angular-parallax.js?version=2022-08-25-2 IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash 4164fbe08fd5b558ef13e567b75f11e9 9acaef1454aa05f920f9622deb52dcd2a80c0a1f 3cde98a50b9040c6ca7d799dde2e5f7cc0b24bf6d9a38292254f14eaeb20ea06 Loading...

	www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect	1.1 kB	2023-03-08	2023-03-08
Pretty URL www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect IP 207.148.248.138 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:57:04 Last Seen2023-03-08 11:57:04 Times Seen1 Hash 29e2676efb78870f27dfa1ebe55b4816 99008be85cbca6f8a720f670774df247dd3dd30e e5c09d05f1187dcb678e66960a4eed887dcd200e059a90e7ccfcec5506fca4cb Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-26
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-26 05:50:27 Times Seen1534 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 54bc28f539f4174448db0e7afa748b1e	68 B	2023-03-07	2024-02-12
Pretty Observations First Seen2023-03-07 12:02:20 Last Seen2024-02-12 22:32:04 Times Seen92 Hash 54bc28f539f4174448db0e7afa748b1e 7e100a8464c8a53065896b65801ba29db4e59d40 00fcd9be00cac0731ff4fbcabc773fbdccb3e986237d92ad8d0087c20513fc2a Loading...

HTTP Transactions (93)

URL IP Response Size

www.zintium.com/

207.148.248.145

301 Moved Permanently

0 B

URL HTTP/1.1
www.zintium.com/
IP
207.148.248.145:0
ASN
#29873 BIZLAND-SD

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.zintium.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sun, 09 Oct 2022 21:24:10 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
X-Powered-By: PHP/5.6.8
Location: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Content-Length: 0
Content-Type: text/html; charset=UTF-8

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cf768e41672570b0a4a9fe86045915fc
2249064a86b2ba11e28208b9fba1c9f1db4f3e9e
a049499f78078df12f4d1c5180f1f36715a5c99db4f31c18ee06bcf0b6382b30

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A049499F78078DF12F4D1C5180F1F36715A5C99DB4F31C18EE06BCF0B6382B30"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9028
Expires: Sun, 09 Oct 2022 23:54:38 GMT
Date: Sun, 09 Oct 2022 21:24:10 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

54.230.111.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
54.230.111.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
3f17af4e8a1739eda4a518039f4892f9
c3feba08ae7e8f57e0fe9bcd2ebedea6bda67cbb
c485b09cad08b5233fe8753682faf59219fe0d18fcc34d90dc88fb0971295f5f

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 09 Oct 2022 20:48:06 GMT
Expires: Sun, 09 Oct 2022 21:25:57 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2RRVArgZE7VWue7Wnv-zDar30hkFgiu2jsr-gvPUPQXlh_aZ9jQAhQ==
Age: 2164

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7cba6aada5c0a04c1c0644769c09f64e
ed02f174a9b718951911343af8ec181c6d205b1d
ba863e734d5d38ed160758ab0b09d1b0f44fc795dcbcee4199329b011fcd1bd1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BA863E734D5D38ED160758AB0B09D1B0F44FC795DCBCEE4199329B011FCD1BD1"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6367
Expires: Sun, 09 Oct 2022 23:10:17 GMT
Date: Sun, 09 Oct 2022 21:24:10 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 0RQNmkbp1UxrQbxPtoRVDYI+8pFItM3201PYITjqdfBXiCK539WdquF6HYFS/J0KX2UOKzP7jOk=
x-amz-request-id: 647SJ4427RDAFG1J
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 09 Oct 2022 21:00:10 GMT
age: 1440
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 09 Oct 2022 21:24:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

54.230.111.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
54.230.111.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sun, 09 Oct 2022 20:29:41 GMT
Cache-Control: max-age=3600
Expires: Sun, 09 Oct 2022 21:26:43 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zmx8ZRFJ0cO7KaJ8iaqfhZ1ygmDX9Oc_MOGRzu6r2bAhjElPS6VuUA==
Age: 3270

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
b99da442cee3e0b4e38b58afcf4c1fb7
dbe15fb190557df7c2515b973f567b96dff8608a
6a15a3a21c0dd821bde0d7ecff438087bca16a2acc69939b393b9789cbdc71ea

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:11 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 09 Oct 2022 20:35:17 GMT
Expires: Sun, 16 Oct 2022 20:35:16 GMT
Etag: "dbe15fb190557df7c2515b973f567b96dff8608a"
Cache-Control: max-age=601264,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 757a2e80b861b50f-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0e2d9e91637474eeaf391312eed441bd
5d29603c731b75308f7d1f584b3ac4c263c96a9e
7da864345088083e1a6fec2d95e07186ef8dbcef8505570e547844c556dfe3be

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4541
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:11 GMT
Last-Modified: Sun, 09 Oct 2022 20:08:30 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.80.175.197

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.80.175.197:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 71f9WHQvhm4EQsOkbEIWJA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +LtzJ0Z/3rniTonTg4ys6RMSHzc=

www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect

207.148.248.138

200 OK

33 kB

URL HTTP/1.1
www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (372)
Size
33 kB (33095 bytes)
Hash
97e40f09226860c464afc7a4181c8c1a
a4cb9b664097d34366ad54f7b2c06473328c2b80
53875fed3d506880577df1eda1cd35965398dd0f13606cad7b10765988717e6c

HTTP Headers

GET /profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:11 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
X-Powered-By: PHP/5.6.8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; path=/
USER_COUNTRY=%22Norway%22; path=/; samesite=Lax; domain=.directdomains.com; secure
USER_COUNTRY_CODE_DEFAULT=%22NO%22; path=/; samesite=Lax; domain=.directdomains.com; secure
TOLLFREE_PHONE=%22855-209-3495%22; path=/; samesite=Lax; domain=.directdomains.com; secure
WW_PHONE=%22781-373-6861%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_source=%22zintium.com%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_medium=%22click%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_campaign=%22directdomains_PRI%22; path=/; samesite=Lax; domain=.directdomains.com; secure
traffic_id=%22directdomains%22; path=/; samesite=Lax; domain=.directdomains.com; secure
traffic_type=%22directdomains%22; path=/; samesite=Lax; domain=.directdomains.com; secure
referrer_id=%224784%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_medium=%22direct-visit%22; path=/; samesite=Lax; domain=.directdomains.com; secure
trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; path=/; samesite=Lax; domain=.directdomains.com; secure
visitor=63433bfb6fb8b; path=/; samesite=Lax; domain=.directdomains.com; secure
visitorType=new; path=/; samesite=Lax; domain=.directdomains.com; secure
X-PHP-Backend: www-09.prod
X-Node: www-09.prod
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

cdnjs.cloudflare.com/ajax/libs/animate.css/3.2.5/animate.min.css

104.17.25.14

200 OK

3.1 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/animate.css/3.2.5/animate.min.css
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (53112)
Size
3.1 kB (3066 bytes)
Hash
c293b72752cf04c8592996b6c97f2470
f1fcc484b6c636d61f0aabd39578f838cf45fc79
196057dcad290bf2a3b0e7101f700de9e1a0ad497d46ff099bbfc827a5bec433

HTTP Headers

GET /ajax/libs/animate.css/3.2.5/animate.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 09 Oct 2022 21:24:12 GMT
content-type: text/css; charset=utf-8
content-length: 3066
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d2a-d019"
last-modified: Mon, 04 May 2020 16:04:58 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2458588
expires: Fri, 29 Sep 2023 21:24:12 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7yDdHS7K9ZEhDjzriLceqjJo2MnoNFIh8Z6uecszR%2BEp6M5RxciVF2He8vSVWH51PPCYEff7lIVjdyKporVxN%2BGhu5pURTvXPN6aMeyOsCBAaGp8%2FE9sB%2BDUAnhwEFl%2Bsl%2B5ouJU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 757a2e88ffe2b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b80398e65c98d84250756256d31eed2d
3cc23d1d91745ddd04ee676f51762f37c0bcdbd3
f2cb6fda3fdbd8f04d380e7841875d322353864124bb5b25ce36fb327a2bfded

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b80398e65c98d84250756256d31eed2d
3cc23d1d91745ddd04ee676f51762f37c0bcdbd3
f2cb6fda3fdbd8f04d380e7841875d322353864124bb5b25ce36fb327a2bfded

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
67f3b94a0e4e21dd8b7686af075d0554
a336c7de6fe89885028407be920c5abadb503b1f
0071bc03310db98470d40073c0ba293ed17034cee235e221bdf483c0d8cce424

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/angularjs/1.8.2/angular.min.js

172.217.21.170

200 OK

62 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/angularjs/1.8.2/angular.min.js
IP
172.217.21.170:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (647)
Size
62 kB (62297 bytes)
Hash
d437237ad5cfd95b315a69a86ac88b83
8053aa8fa10e6924420250d204d6753be8d262d0
a21e9847bca66cf5c7a347f1ee9a5874f52d41543d5a8e603fee6b617a8e1399

HTTP Headers

GET /ajax/libs/angularjs/1.8.2/angular.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 62297
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 10:07:34 GMT
expires: Tue, 03 Oct 2023 10:07:34 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 558998
last-modified: Tue, 27 Oct 2020 18:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.directdomains.com//browser/js/worker/workerJS-main.min.js?version=2022-08-25-2

207.148.248.138

200 OK

2.9 kB

URL HTTP/1.1
www.directdomains.com//browser/js/worker/workerJS-main.min.js?version=2022-08-25-2
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
ASCII text, with very long lines (2351)
Size
2.9 kB (2920 bytes)
Hash
5e38322769ff4a5252a793eb5a6b8759
887aea958f80f357f717edfbdcaba228b54ccdd1
a75d44cba6aea6489919091e48765f23bd8397d99be74b04f5339f11512a56ac

HTTP Headers

GET //browser/js/worker/workerJS-main.min.js?version=2022-08-25-2 HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:12 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Mon, 12 Sep 2022 12:12:11 GMT
ETag: "b68-5e879ce287cc0"
Accept-Ranges: bytes
Content-Length: 2920
X-Node: www-09.prod
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0d015699db6b27b4cabc90b7173ac307
3f7d5193a32b89a4bd249146d6b7d96abf5cb2aa
478181084afaf2aace0835373dc32ed46d053fa2b2788e1fe9a89e1d0d8d80b6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/api.js

142.250.74.164

200 OK

555 B

URL HTTP/2
www.google.com/recaptcha/api.js
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (850), with no line terminators
Size
555 B (555 bytes)
Hash
e75e7b4c9bf71c4a14d5e1d1946b161a
36148f31ea702a23a3f0dafd907a9069234021e7
e43b40968f165ec7b121020103aa40529d891aa2d03ead26ed47adefc4d6ab6d

HTTP Headers

GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Sun, 09 Oct 2022 21:24:12 GMT
date: Sun, 09 Oct 2022 21:24:12 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

apis.google.com/js/api:client.js

142.250.74.174

200 OK

5.6 kB

URL HTTP/2
apis.google.com/js/api:client.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2046)
Size
5.6 kB (5571 bytes)
Hash
317eaac95e560fcd85884c7a761571da
5b62a9a9fafa8993bb19479ec0fc42eb4b09d387
41df2b017ccddba4ebaf4ab4da7d811ca81fef441c81ee50e7765c8df8710b25

HTTP Headers

GET /js/api:client.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 5571
date: Sun, 09 Oct 2022 21:24:12 GMT
expires: Sun, 09 Oct 2022 21:24:12 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "26347e1d919d895c"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b80398e65c98d84250756256d31eed2d
3cc23d1d91745ddd04ee676f51762f37c0bcdbd3
f2cb6fda3fdbd8f04d380e7841875d322353864124bb5b25ce36fb327a2bfded

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b80398e65c98d84250756256d31eed2d
3cc23d1d91745ddd04ee676f51762f37c0bcdbd3
f2cb6fda3fdbd8f04d380e7841875d322353864124bb5b25ce36fb327a2bfded

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5855dca2f41651669a3211635c24ce5a
3f17ede289a3ac814e80a0acefbcd97246ab51de
ca400e5e49929039d4382b1ce2defadc76d86b5756fac8dbaa6d237d5ef1699c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5855dca2f41651669a3211635c24ce5a
3f17ede289a3ac814e80a0acefbcd97246ab51de
ca400e5e49929039d4382b1ce2defadc76d86b5756fac8dbaa6d237d5ef1699c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.directdomains.com//browser/js/vendor/angular.headroom.min.js?version=2022-08-25-2

207.148.248.138

200 OK

1.8 kB

URL HTTP/1.1
www.directdomains.com//browser/js/vendor/angular.headroom.min.js?version=2022-08-25-2
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
ASCII text, with very long lines (1155)
Size
1.8 kB (1807 bytes)
Hash
448bbade87668f05f1f6348f9b1c35be
28dbdc39fb3ffbf741d87a7c19551fbcd8976102
e18c87cdecffb40f17eb928f0907b9dfe339ce671cdf3e4aa82f10173952ad64

HTTP Headers

GET //browser/js/vendor/angular.headroom.min.js?version=2022-08-25-2 HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:12 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Mon, 03 Dec 2018 18:35:37 GMT
ETag: "70f-57c226a421040"
Accept-Ranges: bytes
Content-Length: 1807
X-Node: www-08.prod
Content-Type: application/javascript

www.directdomains.com//browser/js/vendor/angular-parallax.js?version=2022-08-25-2

207.148.248.138

200 OK

4.4 kB

URL HTTP/1.1
www.directdomains.com//browser/js/vendor/angular-parallax.js?version=2022-08-25-2
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
ASCII text, with very long lines (2683)
Size
4.4 kB (4447 bytes)
Hash
4164fbe08fd5b558ef13e567b75f11e9
9acaef1454aa05f920f9622deb52dcd2a80c0a1f
3cde98a50b9040c6ca7d799dde2e5f7cc0b24bf6d9a38292254f14eaeb20ea06

HTTP Headers

GET //browser/js/vendor/angular-parallax.js?version=2022-08-25-2 HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:12 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Mon, 03 Dec 2018 18:35:37 GMT
ETag: "115f-57c226a421040"
Accept-Ranges: bytes
Content-Length: 4447
X-Node: www-08.prod
Content-Type: application/javascript

www.directdomains.com//browser/js/vendor/headroom.min.js?version=2022-08-25-2

207.148.248.138

200 OK

13 kB

URL HTTP/1.1
www.directdomains.com//browser/js/vendor/headroom.min.js?version=2022-08-25-2
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
ASCII text, with very long lines (7455)
Size
13 kB (12826 bytes)
Hash
753a58de81cecac49e67fe0ed5337807
e9f19007ebfa22a2dd2a3e01fe598e36e81b0660
5c151f4823fa095b8ed7da64316d208790b87724ac486a1a1aeca7cd28692a75

HTTP Headers

GET //browser/js/vendor/headroom.min.js?version=2022-08-25-2 HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:12 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Mon, 03 Dec 2018 18:35:37 GMT
ETag: "321a-57c226a421040"
Accept-Ranges: bytes
Content-Length: 12826
X-Node: www-09.prod
Content-Type: application/javascript

www.directdomains.com//browser/js/vendor/angular-recaptcha.min.js?version=2022-08-25-2

207.148.248.138

200 OK

10 kB

URL HTTP/1.1
www.directdomains.com//browser/js/vendor/angular-recaptcha.min.js?version=2022-08-25-2
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
ASCII text, with very long lines (5919)
Size
10 kB (10031 bytes)
Hash
2cdd6fa7133b96815ebdca2e6aa6b207
0c16555f8e25ab7954c5249fbdd70c649c1799b5
8e1b96b172a6b3de9b85592cb6f327544cfe816bf43142c3623af518e9d41a92

HTTP Headers

GET //browser/js/vendor/angular-recaptcha.min.js?version=2022-08-25-2 HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:12 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Tue, 12 Jul 2022 05:59:07 GMT
ETag: "272f-5e3955dce80c0"
Accept-Ranges: bytes
Content-Length: 10031
X-Node: www-08.prod
Content-Type: application/javascript

www.directdomains.com/browser/js/vendor/wow.min.js

207.148.248.138

200 OK

20 kB

URL HTTP/1.1
www.directdomains.com/browser/js/vendor/wow.min.js
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
ASCII text, with very long lines (11591)
Size
20 kB (20019 bytes)
Hash
fb1aa67a0fee0f68a3130bc55a36f198
239727d2fc5efdebf4e496e932ef244b25211381
19bdd603acc5459440771f3330bb1487512020c5ee9c7b70fb36b8b926e6808d

HTTP Headers

GET /browser/js/vendor/wow.min.js HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:12 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Mon, 03 Dec 2018 18:35:37 GMT
ETag: "4e33-57c226a421040"
Accept-Ranges: bytes
Content-Length: 20019
X-Node: www-09.prod
Content-Type: application/javascript

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7556
Expires: Sun, 09 Oct 2022 23:30:08 GMT
Date: Sun, 09 Oct 2022 21:24:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7556
Expires: Sun, 09 Oct 2022 23:30:08 GMT
Date: Sun, 09 Oct 2022 21:24:12 GMT
Connection: keep-alive

www.directdomains.com//eloqua.js?version=2022-08-25-2

207.148.248.138

200 OK

1.1 kB

URL HTTP/1.1
www.directdomains.com//eloqua.js?version=2022-08-25-2
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
ASCII text
Size
1.1 kB (1109 bytes)
Hash
1deaa782d0ba31648f39060652075f6e
e587df09c4ee3ba1d833a2e8c88cd22fd959df8c
16d195d8d9881f8c33b8c19705e3d1c4e45914f5462db0d5b70dd7b9791ef6de

HTTP Headers

GET //eloqua.js?version=2022-08-25-2 HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:12 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
X-Powered-By: PHP/5.6.8
Expires: Tue, 08 Nov 2022 21:24:12 GMT
Cache-Control: public, max-age=2592000
Pragma: cache
Set-Cookie: USER_COUNTRY=%22Norway%22; path=/; samesite=Lax; domain=.directdomains.com; secure
USER_COUNTRY_CODE_DEFAULT=%22NO%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_source=%22zintium.com%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_medium=%22direct-visit%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_campaign=%22directdomains_PRI%22; path=/; samesite=Lax; domain=.directdomains.com; secure
traffic_id=%22directdomains%22; path=/; samesite=Lax; domain=.directdomains.com; secure
traffic_type=%22directdomains%22; path=/; samesite=Lax; domain=.directdomains.com; secure
referrer_id=%224784%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_medium=%22direct-visit%22; path=/; samesite=Lax; domain=.directdomains.com; secure
trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; path=/; samesite=Lax; domain=.directdomains.com; secure
X-PHP-Backend: www-07.prod
Access-Control-Allow-Origin: *
X-Node: www-07.prod
Content-Length: 1109
Content-Type: text/javascript;charset=UTF-8

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7556
Expires: Sun, 09 Oct 2022 23:30:08 GMT
Date: Sun, 09 Oct 2022 21:24:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7556
Expires: Sun, 09 Oct 2022 23:30:08 GMT
Date: Sun, 09 Oct 2022 21:24:12 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12187 bytes)
Hash
2b15495e3e13c06fd0d67523870405ed
3cb8b43735e86c93733affa10818c47693c80fce
f65edddef18295076f79a48e9a6c95d07ed244a2ae618cb4229b6c1bd434cd57

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12187
x-amzn-requestid: 9768886f-0e17-4958-bdaf-e17385eb21d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjqJCHyNoAMFmDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e23d3-288e1d28057753a16893d6b5;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 00:39:47 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jm9hynO1KfuT2luShwOU_Ps2ZHxUAPwymP1Bi-V49MWWJ3ooQq7qVg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 22:26:18 GMT
age: 82674
etag: "3cb8b43735e86c93733affa10818c47693c80fce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc84c1e-fb86-480c-ae87-c8a7bc52cfb0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8295 bytes)
Hash
ee802dc4a72f3824dcab31ef95c48936
f987fdbbb21538b6f55f7dae713b59e234882456
0b6ce28ab1428c11ea6d215b3d21b44b85ca101b4885bf27f633153014ed1cf2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc84c1e-fb86-480c-ae87-c8a7bc52cfb0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8295
x-amzn-requestid: 0240dc68-f509-4a1f-a1c1-cd75e43d04d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZtHcHFuVoAMF-Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6341ec4d-74e538af2f56b9271f6370c1;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 21:31:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dR53uFDN1I7R9H7r2fmkEGIXuCY5FHGQd7LKz-H02trcasl3NoG2PA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:44:18 GMT
age: 85194
etag: "f987fdbbb21538b6f55f7dae713b59e234882456"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7674 bytes)
Hash
ff8cfe3904cca89e3bdfa8186ae382ba
0b9dce744f5facad9a0a136d81cf24e928211856
a6f0925a9666a43d018c05d717310f57b86316290fb4a7cdd309c35842e557a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7674
x-amzn-requestid: 126f9400-fa43-413b-b496-338908efb777
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZeqScHUVoAMFrRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633c240f-1b7cff3e3415299a4d17e19e;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 12:16:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BjBiRKpvs2LQznegxhvMFrczSZGWXGSMvk3bxR8UPpcthRUUA2eTBg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:56:13 GMT
age: 84479
etag: "0b9dce744f5facad9a0a136d81cf24e928211856"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11800 bytes)
Hash
6e9aa9808428e5fd81ac9d61d6f7c708
3a8d76badce50dd98938885082dcb6e30363ae88
d8f7c48a1cbe04af2f7e0455d1ef7af9b63506b9ae343ebf14ece8689bb06bf6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11800
x-amzn-requestid: 7bfb4e15-ea64-48b6-9e38-5d3e2d553863
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZQObZFveoAMFzpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63365de2-620d4fc015ad475203e906e9;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 03:09:22 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: btYc3mHTigZv3Bzl32D1z777hMKwf-pstyTS7Bp2eGmzbmGI4pIQXA==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:42:19 GMT
age: 85313
etag: "3a8d76badce50dd98938885082dcb6e30363ae88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe24091eb-e938-48e0-9fb8-79f02e0cab61.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5851 bytes)
Hash
ce49a7a41382dc582440d497afb9ca5e
37cdb545e4a8be57aa4d5d9545adc0f934545f74
c026d3f791cb5c186a916f60d9c01b36b46b7cab476e0a7260b1a7332cde0f53

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe24091eb-e938-48e0-9fb8-79f02e0cab61.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5851
x-amzn-requestid: af2c5f7e-b9b6-4bc4-bfdc-0f2043ce4478
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZnSMfG-DoAMFi1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f971c-355de3da1bfd68f768bb381e;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 03:03:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: R6wcyKrY8dT2yE_s-wYEj3mKcF9XB0l3Y0AzAUIK_cCDEqvfTJPXug==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 09 Oct 2022 03:41:13 GMT
age: 63779
etag: "37cdb545e4a8be57aa4d5d9545adc0f934545f74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe8b331e-bfda-41c1-ba28-37b8830016ea.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5282 bytes)
Hash
49e54a4a59a61533078f561c32f254e3
6396e8bf68251d60f0c9949cb99b6f3f46b61d34
3dc5081efa3b7456e91eb8b437789246f7cbd4176b2042e6801dcbd5a145e83c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe8b331e-bfda-41c1-ba28-37b8830016ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5282
x-amzn-requestid: 16029133-8119-4249-9447-f1d02ef00f76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zj7n_GNtIAMFUlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e3fcc-6b5982c06383d5182132d5c6;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 02:39:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dc3qlfhgiv1MpP5aox0rAd24KDkiTRkyTjxtrPL01MpbnaVfZ7cmAA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:49:29 GMT
age: 84883
etag: "6396e8bf68251d60f0c9949cb99b6f3f46b61d34"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.directdomains.com//google_analytics.js?version=2022-08-25-2

207.148.248.138

200 OK

2.0 kB

URL HTTP/1.1
www.directdomains.com//google_analytics.js?version=2022-08-25-2
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
ASCII text
Size
2.0 kB (1954 bytes)
Hash
a21b6fd72c14ca03c3bdc04dabaab72e
fef0f9a777950dee5c036bb746b3a07991f5e2a7
3112dd5e7d91db1afa5b0cb79a128de8d714f1321fc2a204cfbc08b540846649

HTTP Headers

GET //google_analytics.js?version=2022-08-25-2 HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:12 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
X-Powered-By: PHP/5.6.8
Expires: Tue, 08 Nov 2022 21:24:12 GMT
Cache-Control: public, max-age=2592000
Pragma: cache
Set-Cookie: USER_COUNTRY=%22Norway%22; path=/; samesite=Lax; domain=.directdomains.com; secure
USER_COUNTRY_CODE_DEFAULT=%22NO%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_source=%22zintium.com%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_medium=%22direct-visit%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_campaign=%22directdomains_PRI%22; path=/; samesite=Lax; domain=.directdomains.com; secure
traffic_id=%22directdomains%22; path=/; samesite=Lax; domain=.directdomains.com; secure
traffic_type=%22directdomains%22; path=/; samesite=Lax; domain=.directdomains.com; secure
referrer_id=%224784%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_medium=%22direct-visit%22; path=/; samesite=Lax; domain=.directdomains.com; secure
trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; path=/; samesite=Lax; domain=.directdomains.com; secure
X-PHP-Backend: www-07.prod
Access-Control-Allow-Origin: *
X-Node: www-07.prod
Content-Length: 1954
Content-Type: text/javascript;charset=UTF-8

www.directdomains.com/browser/js/profile/profile.min.js

207.148.248.138

200 OK

133 kB

URL HTTP/1.1
www.directdomains.com/browser/js/profile/profile.min.js
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
ASCII text, with very long lines (36214)
Size
133 kB (132862 bytes)
Hash
5710a09e2a3510bd768f26d3151bd44c
932e9b94431ec5029dc0f89869e269269c782aa7
60e209709b7381d3d58a172c92efd0d0114e6ca1108ee9aa53d7399fe87064b9

HTTP Headers

GET /browser/js/profile/profile.min.js HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:12 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Mon, 12 Sep 2022 12:12:11 GMT
ETag: "206fe-5e879ce287cc0"
Accept-Ranges: bytes
Content-Length: 132862
X-Node: www-09.prod
Content-Type: application/javascript

www.directdomains.com//browser/css/tdfs-temp.css?version=2022-08-25-2

207.148.248.138

200 OK

143 kB

URL HTTP/1.1
www.directdomains.com//browser/css/tdfs-temp.css?version=2022-08-25-2
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
Unicode text, UTF-8 text, with very long lines (34793)
Size
143 kB (142669 bytes)
Hash
fe3eda38b56647548bbbf0a7ac2ec58f
aec2d6552a115a98de6fbe981c1f11c984ff0470
38ee279e3e18d4a9a83a8a7b2ab74db0e39be823e45c5c06d07e35c8d4cc1c09

HTTP Headers

GET //browser/css/tdfs-temp.css?version=2022-08-25-2 HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:12 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Tue, 20 Sep 2022 15:02:54 GMT
ETag: "22d4d-5e91d1f6b4380"
Accept-Ranges: bytes
Content-Length: 142669
X-Node: www-08.prod
Content-Type: text/css

www.directdomains.com//browser/css/application.css?version=2022-08-25-2

207.148.248.138

200 OK

275 kB

URL HTTP/1.1
www.directdomains.com//browser/css/application.css?version=2022-08-25-2
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
Unicode text, UTF-8 text, with very long lines (65526), with no line terminators
Size
275 kB (274915 bytes)
Hash
3f496adf9b0d148f7ff4d1abb094bc72
5e3ba741e630b036ed6b40023c6a611c96d3da5c
6a37d45412e4bc9a24dc14c7a87f737d75ee8b2e4043f63a25df5fe294304e9e

HTTP Headers

GET //browser/css/application.css?version=2022-08-25-2 HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:12 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Tue, 20 Sep 2022 15:02:52 GMT
ETag: "431e3-5e91d1f4cbf00"
Accept-Ranges: bytes
Content-Length: 274915
X-Node: www-09.prod
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
43141c37657b2dc617dc65bfe97a865c
df200056afa06387a505aac1d8098c6675356ba9
e9e99ad50877b82025b812718da985f84e52654af4b62244ca3a162c2da17cc4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-NCNG5K

142.250.74.168

200 OK

67 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-NCNG5K
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (7811)
Size
67 kB (66637 bytes)
Hash
d451c7e02911f6fa277803f63b050f3a
628b0f7ba9b22d1643b3c800d03ce40e51bf0922
0eb71d9494aeb7b0ef2938b45edd31ca37674550cd6daddba3747112f6c779af

HTTP Headers

GET /gtm.js?id=GTM-NCNG5K HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 09 Oct 2022 21:24:13 GMT
expires: Sun, 09 Oct 2022 21:24:13 GMT
cache-control: private, max-age=900
last-modified: Sun, 09 Oct 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 66637
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.directdomains.com/browser/js/worker/workerJS.js

207.148.248.138

200 OK

3.5 kB

URL HTTP/1.1
www.directdomains.com/browser/js/worker/workerJS.js
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
ASCII text
Size
3.5 kB (3517 bytes)
Hash
b3ee5f459d4833c54810427a1095ad62
c298bd9e022e34077fb12d7f430564a3387cfa76
50164694a4739c4fe947e256d1e21035989d894cec07ff8a75c14e56ba6275dd

HTTP Headers

GET /browser/js/worker/workerJS.js HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:13 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Mon, 12 Sep 2022 12:12:11 GMT
ETag: "dbd-5e879ce287cc0"
Accept-Ranges: bytes
Content-Length: 3517
X-Node: www-07.prod
Content-Type: application/javascript

www.directdomains.com/browser/img/dd-logo-full.svg

207.148.248.138

200 OK

2.9 kB

URL HTTP/1.1
www.directdomains.com/browser/img/dd-logo-full.svg
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2853), with no line terminators
Size
2.9 kB (2853 bytes)
Hash
2936281f499bac93de46f854762d84ae
4c5c4a364ac564aaf31d1ac3d40813db19fd0284
3dead65a156ab7c8883fb84e9fae89cc10cff5f1da91521addc189fcd663e092

HTTP Headers

GET /browser/img/dd-logo-full.svg HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:13 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Mon, 03 Dec 2018 18:35:37 GMT
ETag: "b25-57c226a421040"
Accept-Ranges: bytes
Content-Length: 2853
X-Node: www-08.prod
Content-Type: image/svg+xml

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
43141c37657b2dc617dc65bfe97a865c
df200056afa06387a505aac1d8098c6675356ba9
e9e99ad50877b82025b812718da985f84e52654af4b62244ca3a162c2da17cc4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
762ca4ffa0093578ab11fcaf041e7879
303a3cee21c576a7f31b40834728ed08aaeeb01c
4eeb62da79393fd7ff0ead6a65825fa71a00461138d1828f12f8c696d591ab90

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6414
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:13 GMT
Last-Modified: Sun, 09 Oct 2022 19:37:20 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/en_US/sdk.js

31.13.72.12

200 OK

1.7 kB

URL HTTP/2
connect.facebook.net/en_US/sdk.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1961)
Size
1.7 kB (1687 bytes)
Hash
11b45740fec3eb346baa94d43a08629c
1021d4b51238ff73cbfe0fe1a757a454b74bb861
e4934a085eb7c99bd3c7fd61b0d9255ea0203e0426f9256a36a26e87ca700a5b

HTTP Headers

GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.directdomains.com
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 9537aab5a8865e669fff435e060142e4
etag: "aff5df58c5560561202dbe2949675e9c"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 09 Oct 2022 21:25:09 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: EbRXQP7D6zRrqpTUOghinA==
x-fb-debug: tXvWEFzZH1XJeTvMbDXDPOGG/OZc3RXIVnqVB3IQvgx4VM1MmBWjwgv+rtWVdgI8WlqM/TUe3aIclKDAlgel5A==
content-length: 1687
x-fb-trip-id: 1904183273
date: Sun, 09 Oct 2022 21:24:13 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
29a32d9388903ec730ac67b6b1f10269
6d54710f2bf0b284533005d8c783f3f15c9920af
cd03b8d5ae307fb1b3d976457c9762a743d5268ddd1f82c1fb5ae2fcd3e3d6d1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
29a32d9388903ec730ac67b6b1f10269
6d54710f2bf0b284533005d8c783f3f15c9920af
cd03b8d5ae307fb1b3d976457c9762a743d5268ddd1f82c1fb5ae2fcd3e3d6d1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
762ca4ffa0093578ab11fcaf041e7879
303a3cee21c576a7f31b40834728ed08aaeeb01c
4eeb62da79393fd7ff0ead6a65825fa71a00461138d1828f12f8c696d591ab90

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6414
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:13 GMT
Last-Modified: Sun, 09 Oct 2022 19:37:20 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.directdomains.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 352205
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.directdomains.com//browser/img/favicon.ico?version=2022-08-25-2

207.148.248.138

200 OK

1.2 kB

URL HTTP/1.1
www.directdomains.com//browser/img/favicon.ico?version=2022-08-25-2
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
3f7236965618a6e523f41afd2b902330
7a44d84f65fccc6bb6c35af204b223415fb185a1
8a5e61c5d496ab9ecfb93bde10605bb10eef86d6a94d903311db4c7216b5d9de

HTTP Headers

GET //browser/img/favicon.ico?version=2022-08-25-2 HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:13 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Mon, 03 Dec 2018 18:35:37 GMT
ETag: "47e-57c226a421040"
Accept-Ranges: bytes
Content-Length: 1150
X-Node: www-09.prod
Content-Type: image/vnd.microsoft.icon

www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js

142.250.74.163

200 OK

159 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (711)
Size
159 kB (158844 bytes)
Hash
b4ed95d4318e3b78b936c9c0f1ffa96e
b53c9376b1459afb07fb4b5c2e8d8dad776d3a02
3c21880cb7be6bec40f9d40c23ad39c9758999cf950cec07b86c83b21fde175f

HTTP Headers

GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.directdomains.com
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:02:07 GMT
expires: Thu, 05 Oct 2023 21:02:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 346926
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.directdomains.com/browser/html/offendingChars.html

207.148.248.138

200 OK

136 B

URL HTTP/1.1
www.directdomains.com/browser/html/offendingChars.html
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
ASCII text
Size
136 B (136 bytes)
Hash
63d0da1b1d77e2b3817994a8e06eb584
3191b2bbdb1d3b8d2c703f190f8546f8958180a0
8aa921693d6b468d5afb856c1c5a8c6de688a65b09bf0a98bb488e8a57b704d3

HTTP Headers

GET /browser/html/offendingChars.html HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:13 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Wed, 07 Sep 2022 07:10:30 GMT
ETag: "88-5e811020c4580"
Accept-Ranges: bytes
Content-Length: 136
X-Node: www-07.prod
Content-Type: text/html; charset=UTF-8

www.directdomains.com/browser/img/arw-dot-gray.svg

207.148.248.138

200 OK

828 B

URL HTTP/1.1
www.directdomains.com/browser/img/arw-dot-gray.svg
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (569)
Size
828 B (828 bytes)
Hash
bb1551fed6de5d10d5316705e42223d0
5b994822c3504f3be3984167e2f208470fd3670a
b868bfe6c6238d96c64427fdc378dcd28155aab8a533fc14f95f942fa1536a88

HTTP Headers

GET /browser/img/arw-dot-gray.svg HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com//browser/css/tdfs-temp.css?version=2022-08-25-2
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:13 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Mon, 03 Dec 2018 18:35:37 GMT
ETag: "33c-57c226a421040"
Accept-Ranges: bytes
Content-Length: 828
X-Node: www-08.prod
Content-Type: image/svg+xml

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
29a32d9388903ec730ac67b6b1f10269
6d54710f2bf0b284533005d8c783f3f15c9920af
cd03b8d5ae307fb1b3d976457c9762a743d5268ddd1f82c1fb5ae2fcd3e3d6d1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.directdomains.com/browser/img/fave-outline-gray.svg

207.148.248.138

200 OK

807 B

URL HTTP/1.1
www.directdomains.com/browser/img/fave-outline-gray.svg
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
807 B (807 bytes)
Hash
9c35099ef9cba0e7663e5f104b0d4e6e
61577e2e7c1b77190aa8677fbf7e8f91672f59aa
b3d948f9afdad6116a5a17df53152402d4d8cae300127ffe1e89fba57bbd6c3e

HTTP Headers

GET /browser/img/fave-outline-gray.svg HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com//browser/css/tdfs-temp.css?version=2022-08-25-2
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:13 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Wed, 06 Jul 2022 05:42:10 GMT
ETag: "327-5e31c6e241080"
Accept-Ranges: bytes
Content-Length: 807
X-Node: www-07.prod
Content-Type: image/svg+xml

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7501a5937c0d08f569480fd5dacfbbaf
f7f3b50ae49a7f0b3c15a62a39a27bafb4f90c59
b6b963b93b919485f2e3418cde4f9ab0956e11a21a874ce5f177d1001ca4bc1a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.directdomains.com/browser/img/cart.svg

207.148.248.138

200 OK

1.7 kB

URL HTTP/1.1
www.directdomains.com/browser/img/cart.svg
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.7 kB (1676 bytes)
Hash
0e2af5df9ea22953e8fa8c6c7a05a409
e7faaa4c4095e7ca3b8dc5650403afd1561dfa87
39243f0aefe71a95d191f082c60b7cf2d5129fc9cc75e2ad10e11e06a3fe16d8

HTTP Headers

GET /browser/img/cart.svg HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com//browser/css/tdfs-temp.css?version=2022-08-25-2
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:13 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Mon, 03 Dec 2018 18:35:37 GMT
ETag: "68c-57c226a421040"
Accept-Ranges: bytes
Content-Length: 1676
X-Node: www-09.prod
Content-Type: image/svg+xml

www.directdomains.com//browser/js/vendor/elqCfg.min.js?version=2022-08-25-2

207.148.248.138

200 OK

11 kB

URL HTTP/1.1
www.directdomains.com//browser/js/vendor/elqCfg.min.js?version=2022-08-25-2
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
ASCII text, with very long lines (6675)
Size
11 kB (11293 bytes)
Hash
e480f7ac5c8ea367d4f41f863baace8c
bda77b5fd26b0fee575806434f75e5d19ea9dd87
bb35db9a8e843666963e51b36c5c5707eeba6c18c54dd5a0edce70efabb0dafc

HTTP Headers

GET //browser/js/vendor/elqCfg.min.js?version=2022-08-25-2 HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:13 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Mon, 03 Dec 2018 18:35:37 GMT
ETag: "2c1d-57c226a421040"
Accept-Ranges: bytes
Content-Length: 11293
X-Node: www-08.prod
Content-Type: application/javascript

www.directdomains.com/browser/img/offer-chat-bubble.svg

207.148.248.138

200 OK

2.3 kB

URL HTTP/1.1
www.directdomains.com/browser/img/offer-chat-bubble.svg
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
2.3 kB (2268 bytes)
Hash
b02127d92497737943c24a44f654fe55
f99652938b30fab760cffdbc777b25ee6ba1d873
ef59952bcc8c997364f76862f91d976d8c95fbd87ce3a96aae450872f923e6f1

HTTP Headers

GET /browser/img/offer-chat-bubble.svg HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com//browser/css/tdfs-temp.css?version=2022-08-25-2
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:13 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Mon, 03 Dec 2018 18:35:37 GMT
ETag: "8dc-57c226a421040"
Accept-Ranges: bytes
Content-Length: 2268
X-Node: www-08.prod
Content-Type: image/svg+xml

cdn.cookielaw.org/scripttemplates/otSDKStub.js

104.16.149.64

200 OK

7.2 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
104.16.149.64:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (21747)
Size
7.2 kB (7151 bytes)
Hash
cef0e6a73f52f72e73d57867726399ff
2611e0920611a653446508e5f3de017900cc49f2
97cc12a095136523b16da09953e6f3e405b658978cb37cbc3d3ccb9f94faf0a6

HTTP Headers

GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 09 Oct 2022 21:24:13 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: zvDmpz9S9y5z1XhncmOZ/w==
last-modified: Thu, 06 Oct 2022 21:18:13 GMT
etag: 0x8DAA7E0473C6A75
x-ms-request-id: ce063e19-401e-00f0-7edd-d90888000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 13213
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 757a2e925903b529-OSL
X-Firefox-Spdy: h2

accounts.google.com/o/oauth2/iframe

216.58.207.237

200 OK

89 kB

URL HTTP/2
accounts.google.com/o/oauth2/iframe
IP
216.58.207.237:0
ASN
#15169 GOOGLE

File type
HTML document, ASCII text, with very long lines (18530)
Size
89 kB (88651 bytes)
Hash
0830c1aeec4c366980621bb4c6a79b7f
a70228ec52ae7051884d34702c25903948734c89
f3b8dbc92cc8923fc4aecc3ec2c2daaba65cc8a95f34e682d23473c282d8f76e

HTTP Headers

GET /o/oauth2/iframe HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 09 Oct 2022 21:24:13 GMT
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"IdpIFrameHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/IdpIFrameHttp/external"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin; report-to="IdpIFrameHttp"
cross-origin-embedder-policy: require-corp
content-security-policy: script-src 'nonce-wGb_ROfGW5D7ITucejCbPw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/IdpIFrameHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/IdpIFrameHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/IdpIFrameHttp/cspreport
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.directdomains.com/get-user-fields

207.148.248.138

200 OK

59 B

URL HTTP/1.1
www.directdomains.com/get-user-fields
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
JSON data\012- , ASCII text, with no line terminators
Size
59 B (59 bytes)
Hash
acb4ac382c196b0d08ef9ae2330316da
dbb6aa554745bf11254a91712a4a8de7d845ac76
2694162e941d6a7d49c572977dd239ac0dbd50966108f8dea08b1ad5c578cbd8

HTTP Headers

GET /get-user-fields HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:13 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
X-Powered-By: PHP/5.6.8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: USER_COUNTRY=%22Norway%22; path=/; samesite=Lax; domain=.directdomains.com; secure
USER_COUNTRY_CODE_DEFAULT=%22NO%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_source=%22zintium.com%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_medium=%22direct-visit%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_campaign=%22directdomains_PRI%22; path=/; samesite=Lax; domain=.directdomains.com; secure
traffic_id=%22directdomains%22; path=/; samesite=Lax; domain=.directdomains.com; secure
traffic_type=%22directdomains%22; path=/; samesite=Lax; domain=.directdomains.com; secure
referrer_id=%224784%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_medium=%22direct-visit%22; path=/; samesite=Lax; domain=.directdomains.com; secure
trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; path=/; samesite=Lax; domain=.directdomains.com; secure
X-PHP-Backend: www-09.prod
X-Node: www-09.prod
Content-Length: 59
Content-Type: text/html; charset=UTF-8

cdn.cookielaw.org/consent/229988f1-719d-476a-a96b-aad99ca8dbf6/229988f1-719d-476a-a96b-aad99ca8dbf6.json

104.16.149.64

200 OK

1.7 kB

URL HTTP/2
cdn.cookielaw.org/consent/229988f1-719d-476a-a96b-aad99ca8dbf6/229988f1-719d-476a-a96b-aad99ca8dbf6.json
IP
104.16.149.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (4133), with no line terminators
Size
1.7 kB (1721 bytes)
Hash
9366075122ecea66fa657a0d37b25397
91088be76474a7f0507452dd6604637a58a0c679
fbe0aa49fe7944a1fa0ef472c3c9d5fbc29eb5c64c6dd5fc9abad47d6cdba763

HTTP Headers

GET /consent/229988f1-719d-476a-a96b-aad99ca8dbf6/229988f1-719d-476a-a96b-aad99ca8dbf6.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.directdomains.com
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 09 Oct 2022 21:24:13 GMT
content-type: application/x-javascript
content-length: 1721
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: k2YHUSLs6mb6ZXoNN7JTlw==
last-modified: Mon, 12 Sep 2022 14:11:02 GMT
etag: 0x8DA94C89FEE8234
x-ms-request-id: e920c67a-001e-005d-7bcf-c628e2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 8934
expires: Mon, 10 Oct 2022 01:24:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 757a2e92b85d1bfe-OSL
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
ace320229328864624eb4067cd6be325
36c16c9a9bdb05b32bd943735fac2b2944cd0789
d7e3cabdf8700187324228635a41acd3d59bb083d022a7cd8247e2eb0a0fbb32

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 08 Oct 2022 07:46:47 GMT
Expires: Sat, 15 Oct 2022 07:46:46 GMT
Etag: "36c16c9a9bdb05b32bd943735fac2b2944cd0789"
Cache-Control: max-age=468752,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 757a2e92ace2b50f-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fb286d9365675f7b10e800199e2a1891
12df143524461748613b5c305fef89958f6c6498
da5fcfbbc71bbe8b485b0221552579e52316453d1863d3a1f3eeecd1f35a984f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4603
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:14 GMT
Last-Modified: Sun, 09 Oct 2022 20:07:31 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fb286d9365675f7b10e800199e2a1891
12df143524461748613b5c305fef89958f6c6498
da5fcfbbc71bbe8b485b0221552579e52316453d1863d3a1f3eeecd1f35a984f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4603
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:14 GMT
Last-Modified: Sun, 09 Oct 2022 20:07:31 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

api.buydomains.com/locale/detect?timestamp=1665350653445

207.148.248.128

200 OK

1.9 kB

URL HTTP/1.1
api.buydomains.com/locale/detect?timestamp=1665350653445
IP
207.148.248.128:0
ASN
#29873 BIZLAND-SD

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (1793), with no line terminators
Size
1.9 kB (1883 bytes)
Hash
b4810e21aa9924d4617232b3dd529478
f49f4acd8e3ac4b0c8a3e1dfe70e31ed447c82f1
15f4ea3c781134d8615c8eaf3760c309b0f5568d030f5daf5fc33a223abfba5e

HTTP Headers

GET /locale/detect?timestamp=1665350653445 HTTP/1.1
Host: api.buydomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.directdomains.com
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=604800
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Date: Sun, 09 Oct 2022 21:24:13 GMT

cdn.cookielaw.org/scripttemplates/202208.1.0/otBannerSdk.js

104.16.149.64

200 OK

91 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/202208.1.0/otBannerSdk.js
IP
104.16.149.64:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65451)
Size
91 kB (91152 bytes)
Hash
3e8524bab877193dc36c57aedd0730c8
1988cfdecc0b670f46074d84ec1afc10ac2704bd
ab4cf72ac9525ecfddf3290112055a1be889fd65221b2a64ae4e78886697b052

HTTP Headers

GET /scripttemplates/202208.1.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 09 Oct 2022 21:24:14 GMT
content-type: application/javascript
content-length: 91152
content-encoding: gzip
content-md5: PoUkurh3GT3DbFeu3QcwyA==
last-modified: Fri, 02 Sep 2022 06:26:19 GMT
etag: 0x8DA8CAC0C067309
x-ms-request-id: 915f4702-c01e-008c-1d9f-be95bd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 7375
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 757a2e942b07b529-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/229988f1-719d-476a-a96b-aad99ca8dbf6/de01f382-06e2-4626-8851-3bea6912b79a/en.json

104.16.149.64

200 OK

12 kB

URL HTTP/2
cdn.cookielaw.org/consent/229988f1-719d-476a-a96b-aad99ca8dbf6/de01f382-06e2-4626-8851-3bea6912b79a/en.json
IP
104.16.149.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (43348), with no line terminators
Size
12 kB (11774 bytes)
Hash
edea1494be2b28b3237c8006335ec79e
95247299af005dc111e59206de5e7bf1a6019b2e
eec1bc7d05b855f63e2f93385e682ca21023e185353cbf66959c2200fbc2d099

HTTP Headers

GET /consent/229988f1-719d-476a-a96b-aad99ca8dbf6/de01f382-06e2-4626-8851-3bea6912b79a/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.directdomains.com/
Origin: https://www.directdomains.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 09 Oct 2022 21:24:14 GMT
content-type: application/x-javascript
content-length: 11774
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: 7eoUlL4rKLMjfIAGM17Hng==
last-modified: Mon, 12 Sep 2022 14:11:08 GMT
etag: 0x8DA94C8A3917913
x-ms-request-id: 72d922c2-501e-0045-7cb7-c60577000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 8934
expires: Mon, 10 Oct 2022 01:24:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 757a2e94aa911bfe-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202208.1.0/assets/otCenterRounded.json

104.16.149.64

200 OK

2.6 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/202208.1.0/assets/otCenterRounded.json
IP
104.16.149.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (7679)
Size
2.6 kB (2612 bytes)
Hash
dbee8f32357aa40f523f6f37ac918ff5
dd0e635f13c5c242adf6302fee186f4ed899a07c
414fa90184665ca70b82f1c452b9b466a4f6817b2c34b4b9e66e54b22a11f62a

HTTP Headers

GET /scripttemplates/202208.1.0/assets/otCenterRounded.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.directdomains.com/
Origin: https://www.directdomains.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 09 Oct 2022 21:24:14 GMT
content-type: application/json
content-length: 2612
content-encoding: gzip
content-md5: 2+6PMjV6pA9SP283rJGP9Q==
last-modified: Fri, 02 Sep 2022 06:26:12 GMT
etag: 0x8DA8CAC07FAF9FF
x-ms-request-id: b0c49d09-101e-00a7-1d63-cce105000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 8934
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 757a2e94faf31bfe-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202208.1.0/assets/v2/otPcCenter.json

104.16.149.64

200 OK

13 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/202208.1.0/assets/v2/otPcCenter.json
IP
104.16.149.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (51786)
Size
13 kB (13334 bytes)
Hash
db570743a7ad324a23f253bb05c523dd
38e66cd22a9812e1c9c9ee6a847c17f70c0e6af0
61b52736adc82c5ed804e23861c62a6a216f30457e02d3a74418777e9f83958e

HTTP Headers

GET /scripttemplates/202208.1.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.directdomains.com/
Origin: https://www.directdomains.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 09 Oct 2022 21:24:14 GMT
content-type: application/json
content-length: 13334
content-encoding: gzip
content-md5: 21cHQ6etMkoj8lO7BcUj3Q==
last-modified: Fri, 02 Sep 2022 06:26:13 GMT
etag: 0x8DA8CAC08E9A378
x-ms-request-id: ff471c27-701e-0095-2dcf-c6b9d5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 8934
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 757a2e94faf61bfe-OSL
X-Firefox-Spdy: h2

s1731649222.t.eloqua.com/visitor/v200/svrGP?pps=70&siteid=1731649222&ref=&ms=779

142.0.173.27

302 Found

238 B

URL HTTP/1.1
s1731649222.t.eloqua.com/visitor/v200/svrGP?pps=70&siteid=1731649222&ref=&ms=779
IP
142.0.173.27:0
ASN
#7160 NETDYNAMICS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
238 B (238 bytes)
Hash
6eb7849473a5849cc74225c19236ad93
6f032233684b418719284bc35985859e33c6e823
13705d9da6546d7990ec1ea3f926b9d9ab9960917852d8dd3918add309fe4a44

HTTP Headers

GET /visitor/v200/svrGP?pps=70&siteid=1731649222&ref=&ms=779 HTTP/1.1
Host: s1731649222.t.eloqua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Cache-Control: no-store
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Location: https://s1731649222.t.eloqua.com/visitor/v200/svrGP.aspx?pps=70&siteid=1731649222&ref=&ms=779&elqCookie=1
X-Robots-Tag: noindex, nofollow
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Set-Cookie: ELOQUA=GUID=7F44DF4BB27A4D4BA96B3AB86EF744BA; domain=.eloqua.com; expires=Thu, 09-Nov-2023 22:24:14 GMT; path=/;SameSite=None; secure
ELQSTATUS=OK; domain=.eloqua.com; expires=Thu, 09-Nov-2023 22:24:14 GMT; path=/;SameSite=None; secure
P3P: CP="IDC DSP COR DEVa TAIa OUR BUS PHY ONL UNI COM NAV CNT STA",
X-Content-Type-Options: nosniff
Date: Sun, 09 Oct 2022 21:24:13 GMT
Content-Length: 238

s1731649222.t.eloqua.com/visitor/v200/svrGP?pps=3&siteid=1731649222&ref2=elqNone&tzo=0&ms=779&optin=disabled

142.0.173.27

200 OK

49 B

URL HTTP/1.1
s1731649222.t.eloqua.com/visitor/v200/svrGP?pps=3&siteid=1731649222&ref2=elqNone&tzo=0&ms=779&optin=disabled
IP
142.0.173.27:0
ASN
#7160 NETDYNAMICS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
49 B (49 bytes)
Hash
dbefe00673f01d8b0f2791f3e30565cc
6b3227ad1a39504f155cb0117293a44ab3cbec3a
f1ccea6b7204d9f7913ab45e1afa51d79f83bd4f0319de937b0132e6e02b1aab

HTTP Headers

GET /visitor/v200/svrGP?pps=3&siteid=1731649222&ref2=elqNone&tzo=0&ms=779&optin=disabled HTTP/1.1
Host: s1731649222.t.eloqua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: no-store
Pragma: no-cache
Content-Type: image/gif
Expires: -1
X-Robots-Tag: noindex, nofollow
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
P3P: CP="IDC DSP COR DEVa TAIa OUR BUS PHY ONL UNI COM NAV CNT STA",
X-Content-Type-Options: nosniff
Date: Sun, 09 Oct 2022 21:24:13 GMT
Content-Length: 49

cdn.cookielaw.org/logos/03213524-9e9e-4852-a3ab-334c10e24fe4/1cbd33c8-a3c1-488f-b58c-8a0a38faeda7/a64f68f9-7a52-48cb-9424-923690abcd3e/BlankImg.png

104.16.149.64

200 OK

5.9 kB

URL HTTP/2
cdn.cookielaw.org/logos/03213524-9e9e-4852-a3ab-334c10e24fe4/1cbd33c8-a3c1-488f-b58c-8a0a38faeda7/a64f68f9-7a52-48cb-9424-923690abcd3e/BlankImg.png
IP
104.16.149.64:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 1584 x 852, 8-bit/color RGB, non-interlaced\012- data
Size
5.9 kB (5882 bytes)
Hash
7749aaee1067641a080f23746971b883
506970c6b288fce7938f87f1b86f7713573f59cc
a0568c212589eee21854915e822a170263745d127b9775fb29fa109a1e73be15

HTTP Headers

GET /logos/03213524-9e9e-4852-a3ab-334c10e24fe4/1cbd33c8-a3c1-488f-b58c-8a0a38faeda7/a64f68f9-7a52-48cb-9424-923690abcd3e/BlankImg.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 09 Oct 2022 21:24:14 GMT
content-type: image/png
content-length: 5882
content-md5: d0mq7hBnZBoIDyN0aXG4gw==
last-modified: Thu, 28 Oct 2021 15:55:19 GMT
etag: 0x8D99A2B577FBFDA
x-ms-request-id: b4a63036-201e-0027-4118-ed42af000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 9979
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 757a2e955c12b529-OSL
X-Firefox-Spdy: h2

www.directdomains.com/locate?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect

207.148.248.138

200 OK

2.1 kB

URL HTTP/1.1
www.directdomains.com/locate?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
JSON data\012- , ASCII text, with very long lines (2089), with no line terminators
Size
2.1 kB (2089 bytes)
Hash
d40aa58c3af28e489f0a1203a3af6e7d
6331b0b9f36c0d943551d6535d873e65f3cce321
eaccdf33ca60eb3d42a61159e391f673d918c54c5ffc1a1c0b1f69b0154c59b9

HTTP Headers

POST /locate?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 3228
Origin: https://www.directdomains.com
Connection: keep-alive
Referer: https://www.directdomains.com/profile/zintium.com?domain=zintium.com&utm_source=zintium.com&utm_campaign=directdomains_PRI&traffic_id=directdomains&traffic_type=directdomains&utm_medium=click&redirect=dd-redirect
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new; G_ENABLED_IDPS=google
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:14 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
X-Powered-By: PHP/5.6.8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: USER_COUNTRY=%22Norway%22; path=/; samesite=Lax; domain=.directdomains.com; secure
USER_COUNTRY_CODE_DEFAULT=%22NO%22; path=/; samesite=Lax; domain=.directdomains.com; secure
TOLLFREE_PHONE=%22855-209-3495%22; path=/; samesite=Lax; domain=.directdomains.com; secure
WW_PHONE=%22781-373-6861%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_source=%22zintium.com%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_medium=%22click%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_campaign=%22directdomains_PRI%22; path=/; samesite=Lax; domain=.directdomains.com; secure
traffic_id=%22directdomains%22; path=/; samesite=Lax; domain=.directdomains.com; secure
traffic_type=%22directdomains%22; path=/; samesite=Lax; domain=.directdomains.com; secure
referrer_id=%224784%22; path=/; samesite=Lax; domain=.directdomains.com; secure
utm_medium=%22direct-visit%22; path=/; samesite=Lax; domain=.directdomains.com; secure
trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; path=/; samesite=Lax; domain=.directdomains.com; secure
X-PHP-Backend: www-09.prod
X-Node: www-09.prod
Content-Length: 2089
Content-Type: text/html; charset=UTF-8

s1731649222.t.eloqua.com/visitor/v200/svrGP.aspx?pps=70&siteid=1731649222&ref=&ms=779&elqCookie=1

142.0.173.27

200 OK

0 B

URL HTTP/1.1
s1731649222.t.eloqua.com/visitor/v200/svrGP.aspx?pps=70&siteid=1731649222&ref=&ms=779&elqCookie=1
IP
142.0.173.27:0
ASN
#7160 NETDYNAMICS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /visitor/v200/svrGP.aspx?pps=70&siteid=1731649222&ref=&ms=779&elqCookie=1 HTTP/1.1
Host: s1731649222.t.eloqua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.directdomains.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: no-store
Pragma: no-cache
Content-Type: application/javascript
Expires: -1
X-Robots-Tag: noindex, nofollow
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
P3P: CP="IDC DSP COR DEVa TAIa OUR BUS PHY ONL UNI COM NAV CNT STA",
X-Content-Type-Options: nosniff
Date: Sun, 09 Oct 2022 21:24:13 GMT
Content-Length: 0

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
29b850f78eff032c2e6d30896fa615c3
9be0f4fe829e9395573cfb0753bbe4853d9a4dc4
bdd66f2c7e5e0addf04ca580557703349bb24477dd39e7df9d213a6aca350ea3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-47761645-8&cid=1128177502.1665350654&jid=1598954207&gjid=320036046&_gid=1237928698.1665350654&_u=YEBAAAAAAAAAAC~&z=592526672

173.194.73.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-47761645-8&cid=1128177502.1665350654&jid=1598954207&gjid=320036046&_gid=1237928698.1665350654&_u=YEBAAAAAAAAAAC~&z=592526672
IP
173.194.73.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-47761645-8&cid=1128177502.1665350654&jid=1598954207&gjid=320036046&_gid=1237928698.1665350654&_u=YEBAAAAAAAAAAC~&z=592526672 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.directdomains.com
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.directdomains.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 09 Oct 2022 21:24:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
29b850f78eff032c2e6d30896fa615c3
9be0f4fe829e9395573cfb0753bbe4853d9a4dc4
bdd66f2c7e5e0addf04ca580557703349bb24477dd39e7df9d213a6aca350ea3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.directdomains.com/version.html

207.148.248.138

200 OK

90 B

URL HTTP/1.1
www.directdomains.com/version.html
IP
207.148.248.138:0
ASN
#29873 BIZLAND-SD

File type
ASCII text
Size
90 B (90 bytes)
Hash
b0fbaef26da6861d2ddc6462b49457df
dac4dda0e74df2d7a6f2964ff99ba745071ae370
3c1ced33ad8475293c3363c9a00c8df7cb68c0e3466b2a11a50cdd4681ea5a74

HTTP Headers

GET /version.html HTTP/1.1
Host: www.directdomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://www.directdomains.com/browser/js/worker/workerJS.js
Cookie: PHPSESSID=a5vkerh55d97l8t23gpc62apc5; USER_COUNTRY=%22Norway%22; USER_COUNTRY_CODE_DEFAULT=%22NO%22; TOLLFREE_PHONE=%22855-209-3495%22; WW_PHONE=%22781-373-6861%22; utm_source=%22zintium.com%22; utm_medium=%22direct-visit%22; utm_campaign=%22directdomains_PRI%22; traffic_id=%22directdomains%22; traffic_type=%22directdomains%22; referrer_id=%224784%22; trackingParams=%7B%22utm_source%22%3A%22zintium.com%22%2C%22utm_medium%22%3A%22direct-visit%22%2C%22utm_campaign%22%3A%22directdomains_PRI%22%2C%22utm_content%22%3Anull%2C%22traffic_id%22%3A%22directdomains%22%2C%22traffic_type%22%3A%22directdomains%22%2C%22referrer_id%22%3A%224784%22%7D; visitor=63433bfb6fb8b; visitorType=new; G_ENABLED_IDPS=google; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Oct+09+2022+21%3A24%3A14+GMT%2B0000+(Coordinated+Universal+Time)&version=202208.1.0&isIABGlobal=false&hosts=&consentId=71b0240e-5b3f-4d1d-97bb-36a4ce852d67&interactionCount=0&landingPath=https%3A%2F%2Fwww.directdomains.com%2Fprofile%2Fzintium.com%3Fdomain%3Dzintium.com%26utm_source%3Dzintium.com%26utm_campaign%3Ddirectdomains_PRI%26traffic_id%3Ddirectdomains%26traffic_type%3Ddirectdomains%26utm_medium%3Dclick%26redirect%3Ddd-redirect&groups=C0001%3A1%2CC0002%3A0%2CC0003%3A0%2CC0004%3A0; _ga=GA1.2.1128177502.1665350654; _gid=GA1.2.1237928698.1665350654; _gat_UA-47761645-8=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 21:24:14 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.8
Last-Modified: Tue, 20 Sep 2022 15:03:10 GMT
ETag: "5a-5e91d205f6780"
Accept-Ranges: bytes
Content-Length: 90
X-Node: www-07.prod
Content-Type: text/html; charset=UTF-8

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
dd948efc72c1cdc7fa4f691d9db79692
8dc8599f9b1ba1274b3f89e0ed5e331ba758b2b8
d04382223f7d4b784af062d0a88fb70e96fdeab51d1e21d23a59212c5c9853ed

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-47761645-8&cid=1128177502.1665350654&jid=1598954207&_u=YEBAAAAAAAAAAC~&z=1749628238

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-47761645-8&cid=1128177502.1665350654&jid=1598954207&_u=YEBAAAAAAAAAAC~&z=1749628238
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-47761645-8&cid=1128177502.1665350654&jid=1598954207&_u=YEBAAAAAAAAAAC~&z=1749628238 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 09 Oct 2022 21:24:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
dd948efc72c1cdc7fa4f691d9db79692
8dc8599f9b1ba1274b3f89e0ed5e331ba758b2b8
d04382223f7d4b784af062d0a88fb70e96fdeab51d1e21d23a59212c5c9853ed

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 21:24:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Roboto:wght@300&display=swap

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:wght@300&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:wght@300&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 09 Oct 2022 21:24:12 GMT
date: Sun, 09 Oct 2022 21:24:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

geolocation.onetrust.com/cookieconsentpub/v1/geo/location

172.64.146.158

200 OK

0 B

URL HTTP/2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP
172.64.146.158:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.directdomains.com
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 09 Oct 2022 21:24:14 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 757a2e9368d9b518-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202208.1.0/assets/otCommonStyles.css

104.16.149.64

200 OK

0 B

URL HTTP/2
cdn.cookielaw.org/scripttemplates/202208.1.0/assets/otCommonStyles.css
IP
104.16.149.64:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /scripttemplates/202208.1.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.directdomains.com/
Origin: https://www.directdomains.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 09 Oct 2022 21:24:14 GMT
content-type: text/css
content-md5: B55i3ZY9miZIaUrwjufy0w==
last-modified: Fri, 02 Sep 2022 06:26:26 GMT
x-ms-request-id: 2f2365d5-201e-0063-6bcf-c69ec3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 8934
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 757a2e94faf91bfe-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg

104.16.149.64

200 OK

0 B

URL HTTP/2
cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
IP
104.16.149.64:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /logos/static/poweredBy_ot_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.directdomains.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 09 Oct 2022 21:24:14 GMT
content-type: image/svg+xml
content-md5: LpuayL42jB78xRllx0vkOw==
last-modified: Thu, 06 Oct 2022 21:18:22 GMT
x-ms-request-id: 73f051a0-001e-00de-49d9-d9884f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 13213
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 757a2e956c13b529-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (32)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations