Report - offers.krakenbaker.com/d6van4/dfzk8/

Report Overview

Submitted URL
offers.krakenbaker.com/d6van4/dfzk8/
IP
80.240.19.207
ASN
#20473 AS-CHOOPA
Submitted
2023-02-06 05:41:05
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
7
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.7 kB	5.6 kB	142.250.74.131
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	793 B	1.1 kB	142.250.74.110
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	341 B	900 B	93.184.220.29
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	700 B	1.9 kB	54.230.245.39
m.trend-tech.net	303339	2018-06-24T06:20:24Z	2023-03-11T16:06:37Z	5.0 kB	199 kB	176.53.48.26
img.dcbprotect.com	unknown	2022-09-22T09:55:48Z	2023-03-11T13:26:35Z	933 B	1.0 kB	54.155.29.255
notify.dcbprotect.com	112896	2018-06-07T00:28:10Z	2023-03-13T00:03:49Z	510 B	300 B	54.155.29.255
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.0 kB	8.0 kB	23.36.76.226
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	64 kB	34.120.237.76
offers.krakenbaker.com	unknown	2022-08-25T01:20:33Z	2023-03-13T09:58:34Z	367 B	322 B	80.240.19.207
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-13T08:02:41Z	532 B	1.0 kB	173.194.220.157
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	488 B	730 B	216.58.207.228
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-13T06:26:15Z	514 B	578 B	142.250.74.131
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.188.8.97

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-06 05:41:39	high	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-02-06 05:41:40	high	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-02-06 05:41:40	high	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-02-06 05:41:40	high	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-02-06 05:41:41	high	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-02-06 05:41:43	high	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-02-06 05:41:46	high	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	m.trend-tech.net/landings/fun/av16/view/js/landing-logo.js	0 B	2023-03-07	2024-04-24
Pretty URL m.trend-tech.net/landings/fun/av16/view/js/landing-logo.js IP 176.53.48.26 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 12:21:55 Times Seen37038477 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	m.trend-tech.net/landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi	6.1 kB	2023-03-11	2023-04-05
Pretty URL m.trend-tech.net/landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi IP 176.53.48.26 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:51:35 Last Seen2023-04-05 01:43:11 Times Seen8 Hash 25c901d794b849884436645416fe6a06 ae4ff98c55075918ba3112ffc9f6c44fbd57d255 511924c159ef2033fa43d53e63dc05ce1b2e7eb6b28dd2721db0a0703e05a440 Loading...

	m.trend-tech.net/landings/view/js/footer.js?time=1675662055	3.0 kB	2023-03-11	2024-01-04
Pretty URL m.trend-tech.net/landings/view/js/footer.js?time=1675662055 IP 176.53.48.26 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:51:35 Last Seen2024-01-04 22:54:38 Times Seen37 Hash 04f149225d6f19d4ee2f37cf6fd45448 25f4d7ff1ab74e4cb79eceadbf8ecf67f3f72df0 3f1cccf42e747ba4455174ee3ce5012c645051bc22287d79c19658954fcdaa68 Loading...

	m.trend-tech.net/landings/view/js/analytics.js	35 kB	2023-03-11	2023-07-24
Pretty URL m.trend-tech.net/landings/view/js/analytics.js IP 176.53.48.26 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:51:35 Last Seen2023-07-24 12:39:16 Times Seen23 Hash 6985a7f294e1bb15ce3d4f7b183cf50d f3bceb1668cf77541e4f8f1a3a20688c3c7b8c72 ed2c810d4ee01fe084c1f02d7a3466bf6fcdd4eff80159dffd53234d58f1db67 Loading...

	m.trend-tech.net/landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi	93 kB	2023-03-13	2023-03-13
Pretty URL m.trend-tech.net/landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi IP 176.53.48.26 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:13:03 Last Seen2023-03-13 18:13:03 Times Seen1 Hash 3516b803b690335477071e147f8d3ab7 de0879e48a29a153acbf95c4461143d311cb7b86 b422c67798d2422906cb54154934d8a9bf9157b104a217989d21ca74104b4bc2 Loading...

	m.trend-tech.net/landings/view/js/landing.js	99 kB	2023-03-11	2024-01-04
Pretty URL m.trend-tech.net/landings/view/js/landing.js IP 176.53.48.26 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:51:35 Last Seen2024-01-04 22:54:38 Times Seen37 Hash c0724bf47bca748ff9f6e732d608f354 97b98981fc694edd8ba01e570b50a5609d20b610 36818f0949c295471bade2ea61a5f41192ac6ecd50d52444cef486623186fb03 Loading...

HTTP Transactions (49)

	URL	IP	Response	Size
	offers.krakenbaker.com/d6van4/dfzk8/	80.240.19.207	302 Found	0 B
URL HTTP/1.1 offers.krakenbaker.com/d6van4/dfzk8/ IP 80.240.19.207:0 ASN #20473 AS-CHOOPA File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /d6van4/dfzk8/ HTTP/1.1 Host: offers.krakenbaker.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 302 Found Server: nginx Date: Mon, 06 Feb 2023 05:40:54 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 0 Connection: keep-alive Location: https://m.trend-tech.net/landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi X-Powered-By: PHP/7.4.33, PleskLin`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 507011ccb9124dcd57e84a90a0965cc4 1a6575d0ac979c7184490cc9836ac4812ad2afd1 01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE" Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2267 Expires: Mon, 06 Feb 2023 06:18:41 GMT Date: Mon, 06 Feb 2023 05:40:54 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c21ba65e44ac95470c314e068e49a9eb 17a13b13738993d889d4afa3d848dc63bf6eba64 9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66" Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5468 Expires: Mon, 06 Feb 2023 07:12:02 GMT Date: Mon, 06 Feb 2023 05:40:54 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Mon, 06 Feb 2023 05:36:27 GMT content-type: application/json age: 267 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash fb7b6b46e708ad73eaaa3c21e74569ae 950663c025acad81556af5aa3022ecc9d55097fe 763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64" Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13108 Expires: Mon, 06 Feb 2023 09:19:22 GMT Date: Mon, 06 Feb 2023 05:40:54 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: N4xkuD+A/hxsNTSCsAusEsD71Rh2md+pGShTzlllSLKsKAkFVkDw3K3kXpRNEeVH2Nkg8uF9sKRyiz/uxbOZ1A== x-amz-request-id: RMTWNCDZ9G8BYSP5 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Mon, 06 Feb 2023 05:24:49 GMT age: 965 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Mon, 06 Feb 2023 05:40:55 GMT content-type: application/json content-length: 12 vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	727 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 727 B (727 bytes) Hash 0d718b4083e20dd1e453b7998a62a0b7 9f49cef6b3c7157396fda180a2939370d61296f6 b90d10c1b22f5fe90463cc572b782bc930dd2bdc790df7834d204ebf4faf81dd HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 05:40:55 GMT Server: ECS (amb/6B8C) Content-Length: 727`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Mon, 06 Feb 2023 04:51:19 GMT age: 2976 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash dedf9c519ac38c4bece9c5bc895787d7 4911175c3f8a435978c5301c33c7a99a5e00a1d5 bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698" Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2963 Expires: Mon, 06 Feb 2023 06:30:18 GMT Date: Mon, 06 Feb 2023 05:40:55 GMT Connection: keep-alive`

	push.services.mozilla.com/	54.188.8.97	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.188.8.97:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: jWH5cHtSV30XK4GgqYU30A== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: I1nvg34qPgAJagt54VfY+UfEEMo=`

	m.trend-tech.net/landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi	176.53.48.26	200 OK	42 kB
URL HTTP/1.1 m.trend-tech.net/landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65260) Size 42 kB (41585 bytes) Hash b55427ec2a586fe4acbffc28971ba73b c572c47cc59fbbe2ffc95b61ccd35075627b4f96 ff83b188f1f7ee7d39560bee3c09a83c55e5ee93ad513af18fae7475356c0fd2 HTTP Headers GET /landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/1.1 200 OK Date: Mon, 06 Feb 2023 05:40:55 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Set-Cookie: PHPSESSID=o6v2ci5pbaspldrbtt56lm9kd0; expires=Mon, 06-Feb-2023 06:20:55 GMT; Max-Age=2400; path=/landings/fun/av16; HttpOnly Expires: 0 Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Vary: Accept-Encoding Content-Encoding: gzip X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Content-Length: 41585 Connection: close Content-Type: text/html; charset=UTF-8

	m.trend-tech.net/landings/view/css/landing.css?v=24	176.53.48.26	200 OK	2.2 kB
URL HTTP/1.1 m.trend-tech.net/landings/view/css/landing.css?v=24 IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type ASCII text, with very long lines (575) Size 2.2 kB (2183 bytes) Hash 1f8ee17351a2be76132c1d81730f3ce7 913f9d255fe3875d6453fee092a418453d357b78 3f4c711e87e0d19c43cd75903178875654da1177b23f3b08ae5c8b2b1e6ecf67 HTTP Headers `GET /landings/view/css/landing.css?v=24 HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Date: Mon, 06 Feb 2023 05:40:56 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Last-Modified: Wed, 23 Nov 2022 08:40:04 GMT ETag: "181f-5ee1f3c24e100-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 Content-Length: 2183 Connection: close Content-Type: text/css

	m.trend-tech.net/landings/fun/av16/view/js/landing-logo.js	176.53.48.26	200 OK	0 B
URL HTTP/1.1 m.trend-tech.net/landings/fun/av16/view/js/landing-logo.js IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /landings/fun/av16/view/js/landing-logo.js HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi Cookie: PHPSESSID=o6v2ci5pbaspldrbtt56lm9kd0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Date: Mon, 06 Feb 2023 05:40:56 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Expires: 0 Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Content-Length: 0 Connection: close Content-Type: application/javascript

	m.trend-tech.net/landings/view/js/footer.js?time=1675662055	176.53.48.26	200 OK	958 B
URL HTTP/1.1 m.trend-tech.net/landings/view/js/footer.js?time=1675662055 IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type ASCII text, with very long lines (3016), with no line terminators Size 958 B (958 bytes) Hash e4f81c77698d3463e9621b4431a7c425 b4b51ef387aa2b60373c2a73e3830c84cfb66346 b6c95f68076c7aedf04cf5331d5321ef765bd014a25a0f0e3084657ef0931a1d HTTP Headers `GET /landings/view/js/footer.js?time=1675662055 HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Date: Mon, 06 Feb 2023 05:40:56 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Last-Modified: Wed, 23 Nov 2022 08:40:04 GMT ETag: "bc8-5ee1f3c24e100-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 Content-Length: 958 Connection: close Content-Type: text/javascript

	m.trend-tech.net/landings/view/js/landing.js	176.53.48.26	200 OK	34 kB
URL HTTP/1.1 m.trend-tech.net/landings/view/js/landing.js IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type ASCII text, with very long lines (32062) Size 34 kB (34289 bytes) Hash 6f62c594944348973ee44e86202536a3 53f15a77e6402723aed2f8046c09167dcc6a1765 79af229b03e57efa17301d41415bb90344b33181906713c1c7966e7a683eae90 HTTP Headers `GET /landings/view/js/landing.js HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Date: Mon, 06 Feb 2023 05:40:56 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Last-Modified: Wed, 23 Nov 2022 08:40:04 GMT ETag: "18477-5ee1f3c24e100-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 Content-Length: 34289 Connection: close Content-Type: text/javascript

	m.trend-tech.net/landings/view/img/double-arrow.gif	176.53.48.26	200 OK	1.5 kB
URL HTTP/1.1 m.trend-tech.net/landings/view/img/double-arrow.gif IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type GIF image data, version 89a, 50 x 50\012- data Size 1.5 kB (1460 bytes) Hash 908d662d2e20e5b8ffda3baacace5b81 527a7dd315ec53ac00ee4bd62928c97ee0c61448 6619e55ea4aae166f32ec8c188f0704570a6fc7e60e58aa59966d99014bba25b HTTP Headers `GET /landings/view/img/double-arrow.gif HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Date: Mon, 06 Feb 2023 05:40:56 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Last-Modified: Wed, 23 Nov 2022 08:40:04 GMT ETag: "5b4-5ee1f3c24e100" Accept-Ranges: bytes Content-Length: 1460 X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 Connection: close Content-Type: image/gif

	m.trend-tech.net/landings/view/img/error.png	176.53.48.26	200 OK	1.8 kB
URL HTTP/1.1 m.trend-tech.net/landings/view/img/error.png IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type PNG image data, 31 x 29, 8-bit/color RGB, non-interlaced\012- data Size 1.8 kB (1836 bytes) Hash b3401f67af618a6580676f64ec53c93c f29ff7f3e0c98cff047703f35c075a3e7cc2929f 75e4cf7c486ac22dff7da9aa47234cf6e91f23f77118bd771391200b42e48d92 HTTP Headers `GET /landings/view/img/error.png HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/view/css/landing.css?v=24 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Date: Mon, 06 Feb 2023 05:40:56 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Accept-Ranges: bytes Content-Length: 1836 X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Expires: Thu, 1 Jan 1970 00:00:00 GMT Pragma: no-cache Cache-Control: max-age=0, no-cache, no-store, must-revalidate Connection: close Content-Type: image/png

	m.trend-tech.net/landings/view/img/branches/avs16_20210622020131.gif	176.53.48.26	200 OK	95 kB
URL HTTP/1.1 m.trend-tech.net/landings/view/img/branches/avs16_20210622020131.gif IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type GIF image data, version 89a, 980 x 700\012- data Size 95 kB (94934 bytes) Hash fef59f6f6cd7731ee619d8d43dd43c35 278136cd1736ff413f8b982410c23278e869b22d de55ad609a4148653269bb5aa6431a9e112708fc1f5b417122c2d802290d999a HTTP Headers GET /landings/view/img/branches/avs16_20210622020131.gif HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Date: Mon, 06 Feb 2023 05:40:56 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Last-Modified: Mon, 21 Jun 2021 23:01:31 GMT ETag: "172d6-5c54ea772e8c0" Accept-Ranges: bytes Content-Length: 94934 X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Connection: close Content-Type: image/gif

	m.trend-tech.net/landings/view/js/analytics.js	176.53.48.26	200 OK	14 kB
URL HTTP/1.1 m.trend-tech.net/landings/view/js/analytics.js IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type ASCII text, with very long lines (1626) Size 14 kB (14125 bytes) Hash 9862b24873766ee42eeb258453894f82 dee93320afc062c6bcd18ef1568214e758306bac e529b4304bae33d3ec308887bce3412d663e2012a979d1d3fc412490cf6c54ea HTTP Headers `GET /landings/view/js/analytics.js HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Date: Mon, 06 Feb 2023 05:40:56 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Last-Modified: Wed, 23 Nov 2022 08:40:04 GMT ETag: "89cf-5ee1f3c24e100-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 Content-Length: 14125 Connection: close Content-Type: text/javascript

	ocsp.sca1b.amazontrust.com/	54.230.245.39	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.39:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash a02e72e0e8665bca4767207ec3cc3bf3 acbbdbd009c40e6b75d67a605e270cfeaebfcd62 c08ba6793b83d01858523360f0a7c008a8ca5924ef7fbb45d7a376cbcfd00610 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=89724 Date: Mon, 06 Feb 2023 05:40:56 GMT Etag: "63df461b-1d7" Expires: Tue, 07 Feb 2023 06:36:20 GMT Last-Modified: Sun, 05 Feb 2023 06:00:59 GMT Server: ECS (nyb/1D05) X-Cache: Miss from cloudfront Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 81pE_5Na6XuaqRnKpNbzoqAO9E2Ax9qL9eTPjw6TXBBNhYVqOd_grA== Age: 2121

	ocsp.sca1b.amazontrust.com/	54.230.245.39	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.39:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash a02e72e0e8665bca4767207ec3cc3bf3 acbbdbd009c40e6b75d67a605e270cfeaebfcd62 c08ba6793b83d01858523360f0a7c008a8ca5924ef7fbb45d7a376cbcfd00610 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Mon, 06 Feb 2023 05:40:56 GMT Last-Modified: Mon, 06 Feb 2023 04:29:41 GMT Server: ECS (bsa/EB1F) X-Cache: Miss from cloudfront Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 3UkFF6aQScsUuSprh2a6u5XoJSjZMrlxjAr5mdsloY4pRWSlrdS6TA== Age: 4275`

	img.dcbprotect.com/pixel.ico	54.155.29.255	200 OK	189 B
URL HTTP/1.1 img.dcbprotect.com/pixel.ico IP 54.155.29.255:0 ASN #16509 AMAZON-02 File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with no line terminators Size 189 B (189 bytes) Hash 350f3f42fe4bac928be53d4d54014f95 f77c6c8bc575e0652111475d769019c2f9976e5f 6188dd65f314b66f9a73b8aa9844191fc5e433cf3cc52d10452989d90b84c5c8 HTTP Headers `GET /pixel.ico HTTP/1.1 Host: img.dcbprotect.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Language: A523944892393504666262284020460044628226628662248 Origin: https://m.trend-tech.net Connection: keep-alive Referer: https://m.trend-tech.net/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Date: Mon, 06 Feb 2023 05:40:56 GMT Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept,Content-Language ETag: 342413b92207368a76364233163397795f397118abfcaa7745085d6cb60ddcb48a23cacd097682201a5324be56fea659e3c51b554c3a61b0d8ad749909a201e0`

	img.dcbprotect.com/A523944892393504666262284020460044628226628662248/eyJ0aW1lIjoyMjUsInNpZ25hdHVyZSI6IjE2OTMifQ==	54.155.29.255	200 OK	189 B
URL HTTP/1.1 img.dcbprotect.com/A523944892393504666262284020460044628226628662248/eyJ0aW1lIjoyMjUsInNpZ25hdHVyZSI6IjE2OTMifQ== IP 54.155.29.255:0 ASN #16509 AMAZON-02 File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with no line terminators Size 189 B (189 bytes) Hash 350f3f42fe4bac928be53d4d54014f95 f77c6c8bc575e0652111475d769019c2f9976e5f 6188dd65f314b66f9a73b8aa9844191fc5e433cf3cc52d10452989d90b84c5c8 HTTP Headers `GET /A523944892393504666262284020460044628226628662248/eyJ0aW1lIjoyMjUsInNpZ25hdHVyZSI6IjE2OTMifQ== HTTP/1.1 Host: img.dcbprotect.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Date: Mon, 06 Feb 2023 05:40:56 GMT Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7333 Expires: Mon, 06 Feb 2023 07:43:09 GMT Date: Mon, 06 Feb 2023 05:40:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7333 Expires: Mon, 06 Feb 2023 07:43:09 GMT Date: Mon, 06 Feb 2023 05:40:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7333 Expires: Mon, 06 Feb 2023 07:43:09 GMT Date: Mon, 06 Feb 2023 05:40:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7333 Expires: Mon, 06 Feb 2023 07:43:09 GMT Date: Mon, 06 Feb 2023 05:40:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7333 Expires: Mon, 06 Feb 2023 07:43:09 GMT Date: Mon, 06 Feb 2023 05:40:56 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3482c5eb-0e83-4722-a14e-ee2eefae5e03.jpeg	34.120.237.76	200 OK	6.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3482c5eb-0e83-4722-a14e-ee2eefae5e03.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.8 kB (6779 bytes) Hash 5eb98d203ce09cf8d1964decb2e44058 004d35f6af8f06b453a4c047e202fddbd410aaf4 80232fe0b4ce7393653076fc39d2d315274e8c17f76a4f754576f4a8a1b3baef HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3482c5eb-0e83-4722-a14e-ee2eefae5e03.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6779 x-amzn-requestid: e2a59d9f-577d-4071-8d40-80e54051fc18 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fzVx6FjwoAMFyNw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63de033f-1fcd55e1413543440d46307c;Sampled=0 x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:27 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: Q7yMHmaEpwLuUNkDG-InGzSE6Lsl-4BJAfAliwalUwb57vEF9Vtixg== via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 07:11:11 GMT age: 80986 etag: "004d35f6af8f06b453a4c047e202fddbd410aaf4" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (13230 bytes) Hash a24cf7b2db6d65c3fe5daf78b3309ced a3653a9a7baea412808dd91572ff21e1a505c26f f55ee98bab5ce53d6acc1cac7f54f089b42d5f2ffbe750d869c4f4a7bc26f715 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 13230 x-amzn-requestid: 8171829a-cf6d-4c33-99a1-f3cef7cd4475 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f4oiTH8GoAMFYLA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e02141-1597a0f06ef3db2534a101aa;Sampled=0 x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: Nvfp0sEYw5bxnFHisq80WCXh6T-LdFlPqs95tyX2epjMfhM_hjUj0A== via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 21:50:03 GMT age: 28254 etag: "a3653a9a7baea412808dd91572ff21e1a505c26f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg	34.120.237.76	200 OK	9.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.0 kB (8981 bytes) Hash 714723c38877e0d1655c7118a88ec064 809a42ce7c76cea0ce16af8172d852723c3a5f02 6bad7253694d155de31a8f5a3c635545a39aac340ca49d1bc10efb6739d4a356 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8981 x-amzn-requestid: 0054e925-c381-4737-bd92-32b2af3a604e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f4oiQHRFoAMFw6w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e02141-45ea5ee33d07326c593d21d3;Sampled=0 x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: ixAMZh_xOYWVESJ0jOEPOXZ4GQBDUZZsh26yEDYfl8APcBF2x2sZYg== via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 21:50:03 GMT age: 28254 etag: "809a42ce7c76cea0ce16af8172d852723c3a5f02" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4c26323-ca84-49c2-9f28-1ea4944d5cd9.jpeg	34.120.237.76	200 OK	8.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4c26323-ca84-49c2-9f28-1ea4944d5cd9.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.5 kB (8481 bytes) Hash 929818fabd5a6ee5200499ca445d121e 3951cfa614e0a8674b730c4850f6483e35f73f6a 9f56ead2f8c136f6d6906fbb8a0ee5e0fd879e8ed104512ed4edf3ba3ece6917 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4c26323-ca84-49c2-9f28-1ea4944d5cd9.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8481 x-amzn-requestid: 77c27205-9d32-42d4-b2c4-e5c3941bbe72 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f4pcuG8VoAMFTaQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e022b7-76fae5a943c7a1d242f7a758;Sampled=0 x-amzn-remapped-date: Sun, 05 Feb 2023 21:42:15 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: Et74Co732_uh0XdLXtBoER9YtKrPXnac-OGNxyuLmjIHsvgi1XwtYA== via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 22:13:26 GMT age: 26851 etag: "3951cfa614e0a8674b730c4850f6483e35f73f6a" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F028c7ce9-e4c6-4453-bc20-0c0fefbadfec.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F028c7ce9-e4c6-4453-bc20-0c0fefbadfec.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11630 bytes) Hash b08a4dc42d2e08b2b18c9545ce9a2fdb b688557ebba4b3c987275761e9a1f5993ad3d8a5 641402fb9282208b33877e4812cb9392b035dba85fcb3a344a2a1072d5a69f28 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F028c7ce9-e4c6-4453-bc20-0c0fefbadfec.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11630 x-amzn-requestid: 3912e3f9-44a5-405c-9edb-d8409faa0b04 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f4pkUHUoIAMFzcg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e022e8-03e547e96b085d9e29a1852b;Sampled=0 x-amzn-remapped-date: Sun, 05 Feb 2023 21:43:04 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: Vrf1axqufJTrf057F6nY_97NtiM_Wt0tZXpTGN42rvAOV7a4CPe1ig== via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 22:12:02 GMT age: 26935 etag: "b688557ebba4b3c987275761e9a1f5993ad3d8a5" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe482817c-a09c-4952-a819-3ff2f99810ae.jpeg	34.120.237.76	200 OK	8.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe482817c-a09c-4952-a819-3ff2f99810ae.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.0 kB (8039 bytes) Hash 336b665bfad04ec8ed14b01bbf17566d 92102d4c75d2c7efd8197be88e3cb467d2682190 1e21687a242c058a3b442909b168c5e706175b1e93e51cfce691c6f033f795d7 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe482817c-a09c-4952-a819-3ff2f99810ae.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8039 x-amzn-requestid: b36a6062-0676-4abc-820c-959bc02810f5 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f4pkoECwIAMF4hQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e022ea-52faddc079b7107004e8cfea;Sampled=0 x-amzn-remapped-date: Sun, 05 Feb 2023 21:43:06 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: MOgI0aopvRaUSJ-YFH6QFNpGxhUNlpnLk7VeCeOsmcrGTUYIESN2Hg== via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 22:04:24 GMT age: 27393 etag: "92102d4c75d2c7efd8197be88e3cb467d2682190" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9206c3ba6d5a17d62244c438fd03496e 069e8257aebe618953434b1299d065540125a512 937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 05:40:57 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google-analytics.com/r/collect?v=1&_v=j63&a=1352013100&t=pageview&_s=1&dl=https%3A%2F%2Fm.trend-tech.net%2Flandings%2Ffun%2Fav16%3Fhash%3D2337693cfc748049e45d87b8c7d8b9aacd%26kID%3D63e092e6ae4ab167566205437c5wxvmi&ul=en-us&de=UTF-8&dt=Portfun.mobi%20-%20Yeni&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABI~&jid=1414654169&gjid=716330214&cid=1285100632.1675662100&tid=UA-123913825-1&_gid=1031681371.1675662100&_r=1&z=1509157537	142.250.74.110	302 Found	420 B
URL HTTP/2 www.google-analytics.com/r/collect?v=1&_v=j63&a=1352013100&t=pageview&_s=1&dl=https%3A%2F%2Fm.trend-tech.net%2Flandings%2Ffun%2Fav16%3Fhash%3D2337693cfc748049e45d87b8c7d8b9aacd%26kID%3D63e092e6ae4ab167566205437c5wxvmi&ul=en-us&de=UTF-8&dt=Portfun.mobi%20-%20Yeni&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABI~&jid=1414654169&gjid=716330214&cid=1285100632.1675662100&tid=UA-123913825-1&_gid=1031681371.1675662100&_r=1&z=1509157537 IP 142.250.74.110:0 ASN #15169 GOOGLE File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators Size 420 B (420 bytes) Hash f4f54b52dd80026fbf3d5b141e0c15f6 c8fc965c65d43c4960e141601f2147fd794116f9 2ecc33837a393aa9d53ed38813f816ef721fffb6dd6b2b3db50ff5218e748299 HTTP Headers GET /r/collect?v=1&_v=j63&a=1352013100&t=pageview&_s=1&dl=https%3A%2F%2Fm.trend-tech.net%2Flandings%2Ffun%2Fav16%3Fhash%3D2337693cfc748049e45d87b8c7d8b9aacd%26kID%3D63e092e6ae4ab167566205437c5wxvmi&ul=en-us&de=UTF-8&dt=Portfun.mobi%20-%20Yeni&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABI~&jid=1414654169&gjid=716330214&cid=1285100632.1675662100&tid=UA-123913825-1&_gid=1031681371.1675662100&_r=1&z=1509157537 HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 302 Found location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-123913825-1&cid=1285100632.1675662100&jid=1414654169&_gid=1031681371.1675662100&gjid=716330214&_v=j63&z=1509157537 access-control-allow-origin: * date: Mon, 06 Feb 2023 05:40:57 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT cross-origin-resource-policy: cross-origin content-type: text/html; charset=UTF-8 server: Golfe2 content-length: 420 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9206c3ba6d5a17d62244c438fd03496e 069e8257aebe618953434b1299d065540125a512 937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 05:40:57 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	m.trend-tech.net/favicon.ico	176.53.48.26	200 OK	1.2 kB
URL HTTP/1.1 m.trend-tech.net/favicon.ico IP 176.53.48.26:0 ASN #42926 Radore Veri Merkezi Hizmetleri A.S. File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data Size 1.2 kB (1150 bytes) Hash 3c3314d92687c336c220df9c16d1f73c f155b2d2beac788571e5ee9f813df4c9e8e6d0bf 7cc3b38331320c61d9a163ab58bb0fb19bd0c80dc3162d352b1194353e9b220c HTTP Headers GET /favicon.ico HTTP/1.1 Host: m.trend-tech.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://m.trend-tech.net/landings/fun/av16?hash=2337693cfc748049e45d87b8c7d8b9aacd&kID=63e092e6ae4ab167566205437c5wxvmi Cookie: _ga=GA1.2.1285100632.1675662100; _gid=GA1.2.1031681371.1675662100; _gat=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Date: Mon, 06 Feb 2023 05:40:57 GMT Server: Apache/2.4.52 (Ubuntu) X-Frame-Options: SAMEORIGIN Last-Modified: Wed, 23 Nov 2022 08:40:04 GMT ETag: "47e-5ee1f3c24e100" Accept-Ranges: bytes Content-Length: 1150 X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 Connection: close Content-Type: image/vnd.microsoft.icon

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 7afb8eb5dcbd727fb69c14bfabe20e72 d4b1cc1973e4200a371f0aa8c5ec8232d780a77b ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 05:40:57 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-123913825-1&cid=1285100632.1675662100&jid=1414654169&_gid=1031681371.1675662100&gjid=716330214&_v=j63&z=1509157537	173.194.220.157	302 Found	368 B
URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-123913825-1&cid=1285100632.1675662100&jid=1414654169&_gid=1031681371.1675662100&gjid=716330214&_v=j63&z=1509157537 IP 173.194.220.157:0 ASN #15169 GOOGLE File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators Size 368 B (368 bytes) Hash ce2760d77d1e980c8e39e9f6aec6fee6 66770b6643d2c18669fb7d8e49371b737fb4903a fc0fe21c296292bf281e4ad90a1865e6db544111e19de8d8804b9617e2304dd2 HTTP Headers GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-123913825-1&cid=1285100632.1675662100&jid=1414654169&_gid=1031681371.1675662100&gjid=716330214&_v=j63&z=1509157537 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.trend-tech.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 302 Found location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1285100632.1675662100&jid=1414654169&_v=j63&z=1509157537 access-control-allow-origin: * strict-transport-security: max-age=10886400; includeSubDomains; preload date: Mon, 06 Feb 2023 05:40:57 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT cross-origin-resource-policy: cross-origin content-type: text/html; charset=UTF-8 server: Golfe2 content-length: 368 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 040d512b73ad828b2dd7409c0c9dab49 a7b7256940377241abd22db537a864ec6348bf90 6e7f979d255eba736072b159be75a5865fd307781806c412ea66bb0f80e38aa6 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 05:40:57 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 7afb8eb5dcbd727fb69c14bfabe20e72 d4b1cc1973e4200a371f0aa8c5ec8232d780a77b ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 05:40:57 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1285100632.1675662100&jid=1414654169&_v=j63&z=1509157537	216.58.207.228	302 Found	0 B
URL HTTP/2 www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1285100632.1675662100&jid=1414654169&_v=j63&z=1509157537 IP 216.58.207.228:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1285100632.1675662100&jid=1414654169&_v=j63&z=1509157537 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.trend-tech.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 302 Found p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Mon, 06 Feb 2023 05:40:57 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1285100632.1675662100&jid=1414654169&_v=j63&z=1509157537&slf_rd=1&random=3984223820 content-type: text/html; charset=UTF-8 x-content-type-options: nosniff server: cafe content-length: 0 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 2183fdf183ed33f2cd4342abd7bcadbe 007fe0bb01b7d77fbaaff5346fd7582041c978c8 8f0381d12ab5a76be5137b365e811e75db681eb0f6ad04d7ce28ad73101c33d5 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 05:40:57 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 9d7d54937b70d60ca299d07980bc1e1e 42ee245e31b6c480419253d420a75159e107cc65 fd8c0e9b7ce1332347da031c471053f5acaab963f5aafd0e29bb94b90bcf9293 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 05:40:57 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1285100632.1675662100&jid=1414654169&_v=j63&z=1509157537&slf_rd=1&random=3984223820	142.250.74.131	200 OK	42 B
URL HTTP/2 www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1285100632.1675662100&jid=1414654169&_v=j63&z=1509157537&slf_rd=1&random=3984223820 IP 142.250.74.131:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-123913825-1&cid=1285100632.1675662100&jid=1414654169&_v=j63&z=1509157537&slf_rd=1&random=3984223820 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.trend-tech.net/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Mon, 06 Feb 2023 05:40:57 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	notify.dcbprotect.com/A523944892393504666262284020460044628226628662248	54.155.29.255	200 OK	20 B
URL HTTP/1.1 notify.dcbprotect.com/A523944892393504666262284020460044628226628662248 IP 54.155.29.255:0 ASN #16509 AMAZON-02 File type data Size 20 B (20 bytes) Hash 7029066c27ac6f5ef18d660d5741979a 46c6643f07aa7f6bfe7118de926b86defc5087c4 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2 HTTP Headers `POST /A523944892393504666262284020460044628226628662248 HTTP/1.1 Host: notify.dcbprotect.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 25144 Origin: https://m.trend-tech.net Connection: keep-alive Referer: https://m.trend-tech.net/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Date: Mon, 06 Feb 2023 05:40:57 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept Content-Encoding: gzip`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 9d7d54937b70d60ca299d07980bc1e1e 42ee245e31b6c480419253d420a75159e107cc65 fd8c0e9b7ce1332347da031c471053f5acaab963f5aafd0e29bb94b90bcf9293 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 05:40:57 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (49)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type