click.foodjoint.org/?t=c&ids=Mjc4ODE0NTY3__NzkxMw==__MTYzODk3ODQ=__NDk0__278&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGeThwaw==
170.187.185.18301 Moved Permanently 349 B URL HTTP/1.1 click.foodjoint.org/?t=c&ids=Mjc4ODE0NTY3__NzkxMw==__MTYzODk3ODQ=__NDk0__278&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGeThwaw==
IP 170.187.185.18:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dcec6e9b7279fcc5fa44227e3ac95842
f8f1699fa861a087a9ac927bf38a3ac95d03273e
63b4e64e1a3208810714e55d46eb9f12ab577b3b9599033696c8be55e61ea6d3
GET /?t=c&ids=Mjc4ODE0NTY3__NzkxMw==__MTYzODk3ODQ=__NDk0__278&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGeThwaw== HTTP/1.1
Host: click.foodjoint.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 26 Nov 2022 15:40:27 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 349
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Security-Policy: upgrade-insecure-requests
Location: https://click.foodjoint.org/?t=c&ids=Mjc4ODE0NTY3__NzkxMw==__MTYzODk3ODQ=__NDk0__278&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGeThwaw==
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5219
Expires: Sat, 26 Nov 2022 17:07:26 GMT
Date: Sat, 26 Nov 2022 15:40:27 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5621
Cache-Control: max-age=159862
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 15:40:27 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 12:04:49 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 15:19:13 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1274
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15184
Expires: Sat, 26 Nov 2022 19:53:31 GMT
Date: Sat, 26 Nov 2022 15:40:27 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sLzUljm6WfUa18y0fYMVw7M5nlSUFPWU87oiPwNOsR0M20Gr7OLV8ms9pmk1z2CaLH1VzfURR++03uWs9b4DuQ==
x-amz-request-id: T51DQW5GJ66MPP27
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 14:44:16 GMT
age: 3371
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 15:40:27 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7511d914295a4eac506f1ed3dd8c7aff
52dfe8adfac03ee94aeb59d76bf7b6dd5edb6409
b72006c5898bb26c5510b5488beb3585ca9bbcfbdbbfbe0e6ee37225932d2a38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B72006C5898BB26C5510B5488BEB3585CA9BBCFBDBBFBE0E6EE37225932D2A38"
Last-Modified: Thu, 24 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21575
Expires: Sat, 26 Nov 2022 21:40:03 GMT
Date: Sat, 26 Nov 2022 15:40:28 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 15:11:12 GMT
cache-control: public,max-age=3600
age: 1756
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 7b2ec684e28386df60769fecb3f90bd5
0da65928980164a90aa487ad7777fc3e64058cb1
4dcd81e9a16e34b4f537f6b20260608edf5ccbe22cbe01cd71f5ab66ac3be5ee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=121805
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 15:40:28 GMT
Etag: "63816c39-118"
Expires: Mon, 28 Nov 2022 01:30:33 GMT
Last-Modified: Sat, 26 Nov 2022 01:30:33 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1541
Cache-Control: max-age=150724
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 15:40:28 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 09:32:32 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 7b2ec684e28386df60769fecb3f90bd5
0da65928980164a90aa487ad7777fc3e64058cb1
4dcd81e9a16e34b4f537f6b20260608edf5ccbe22cbe01cd71f5ab66ac3be5ee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=121805
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 15:40:28 GMT
Etag: "63816c39-118"
Expires: Mon, 28 Nov 2022 01:30:33 GMT
Last-Modified: Sat, 26 Nov 2022 01:30:33 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cb0834275935180cb9995727ba2fd4cf
6fda52703bad0a16d154b9de211c82772b53415c
c3e0068b977f5abce8ec3249bcbaf8b999b8572e48d49a5b71926b8ab1da18b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C3E0068B977F5ABCE8EC3249BCBAF8B999B8572E48D49A5B71926B8AB1DA18B1"
Last-Modified: Fri, 25 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17370
Expires: Sat, 26 Nov 2022 20:29:58 GMT
Date: Sat, 26 Nov 2022 15:40:28 GMT
Connection: keep-alive
push.services.mozilla.com/
52.37.79.227101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.37.79.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3Yx4iY4YXDBRQWW+6GsBYw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gFjMYPCSmDPUNFpi9jWTfX3i2E0=
trytheyavue.com/bg/images/s1-col-img2.jpg
69.172.200.220200 OK 14 kB URL HTTP/2 trytheyavue.com/bg/images/s1-col-img2.jpg
IP 69.172.200.220:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 268x271, components 3\012- data
Hash fa3d5485ee98ed67c760c8b42d4be4f1
64775a10bcc204005b6a7b103ef72b38738e6cea
dec2a633fadd0a91a6c9345eefb89864d3dc5fe9554f765f0b4092a2b66ada3e
GET /bg/images/s1-col-img2.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/jpeg
content-length: 14485
last-modified: Wed, 16 Feb 2022 19:09:10 GMT
etag: "620d4bd6-3895"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: ee4ef8acd6bef9909b9e01f1f8d106e4
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 15:40:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
trytheyavue.com/bg/images/s1-col-img2b.jpg
69.172.200.220200 OK 16 kB URL HTTP/2 trytheyavue.com/bg/images/s1-col-img2b.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 268x271, components 3\012- data
Hash aed164682f195cacd44c1f9c5ef5e697
274579eacc10050959aaae06c28378472518d506
4a00574a6f54e4a5d95492b671a3d00b1393f28eb72035f23431ac30ed2cd0f1
GET /bg/images/s1-col-img2b.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/jpeg
content-length: 16304
last-modified: Thu, 24 Feb 2022 00:07:02 GMT
etag: "6216cc26-3fb0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 98093b2b833d92ac87b1b7beb32f11ae
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
emdlvr.com/y8pk
104.21.51.219200 OK 12 kB IP 104.21.51.219:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fa06846765f9d5fe4200caf3a6a80a6f
6c135c5e7f1845bd61f42a0d7e78c3480a330252
051683a72e26da4a7afa1ef86eeb981412d0cb1b648445f3f1eff58ae16ebddc
Analyzer Verdict Alert fortinet Phishing
GET /y8pk HTTP/1.1
Host: emdlvr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:28 GMT
content-type: text/html;charset=UTF-8
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Mon, 07 Jul 1777 07:07:07 GMT
x-redirect-powered-by: Pretty Link Executive 3.2.6 http://prettylink.com
set-cookie: prli_click_90=y8pk; expires=Mon, 26-Dec-2022 15:40:28 GMT; Max-Age=2592000; path=/
prli_visitor=6382336c98ba1; expires=Sun, 26-Nov-2023 15:40:28 GMT; Max-Age=31536000; path=/
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: MISS
x-server-powered-by: Engintron
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CaHwqyWqwTVxZtJPABC8%2BbKgG9PmqAVro4Oj8vYb1wvvKU4xrXqvilrqqqNh%2FMIxISfBkUoSrO4xpzH6OKNcIl5K8AJucMAXo780Gz%2BG3Az9wIn2KxtYm726IWIf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7703b905eb0d1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/s1-col-img4c.jpg
69.172.200.220200 OK 17 kB URL HTTP/2 trytheyavue.com/bg/images/s1-col-img4c.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 268x271, components 3\012- data
Hash 4745c3faa1c89ff513e2affbe68fad26
558b4451510a205fa2edcadbe4bdc3c4f0469f8f
c9bb0604530ce2d042d1ce4aef288b110c36c4267da33162915474382dec370c
GET /bg/images/s1-col-img4c.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/jpeg
content-length: 17030
last-modified: Thu, 24 Feb 2022 00:06:49 GMT
etag: "6216cc19-4286"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 6dc2d265b5749cabe1968d97bad24ff9
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/pkg6.jpg
69.172.200.220200 OK 24 kB URL HTTP/2 trytheyavue.com/bg/images/pkg6.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 285x192, components 3\012- data
Hash f6e15c389e3e4c15dacd562a43408545
af7cce8f46330c94bc71d6a86b7fade558d2f654
7f6046f1abe44779cbcf8abb23e19b298cc1739d9af7130ecc0bdc9612f8b469
GET /bg/images/pkg6.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/jpeg
content-length: 24261
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-5ec5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: d02217aa6d79a16f66c31f1ea03e24c0
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/card-pic-pp.png
69.172.200.220200 OK 8.0 kB URL HTTP/2 trytheyavue.com/bg/images/card-pic-pp.png
IP 69.172.200.220:0
File type PNG image data, 196 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 6bc215c25b5c65355c4561e82bfb1fc0
1991a108fa7e722e963a2000b98b58d31568c5f6
340414a48c2dc2b20350cef81958a3f13b04de13f61d27fca52394262f24f617
GET /bg/images/card-pic-pp.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/png
content-length: 7985
last-modified: Thu, 24 Mar 2022 18:31:40 GMT
etag: "623cb90c-1f31"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: fa561405befc29f409a8b55541276f55
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/pkg3.jpg
69.172.200.220200 OK 19 kB URL HTTP/2 trytheyavue.com/bg/images/pkg3.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 285x192, components 3\012- data
Hash 96a8e68f5eb10e65159fc20c27ae2a75
db5886f6307b103394bc4653b0734919be15a968
ae3726a3af3b1e9a4de1dc88796ca279528b182cf7bf7a895a61c833effcfe1d
GET /bg/images/pkg3.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/jpeg
content-length: 19188
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-4af4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 9c25dccad6bd9939cf24a587072e59b3
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/pkg1.jpg
69.172.200.220200 OK 10 kB URL HTTP/2 trytheyavue.com/bg/images/pkg1.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 285x192, components 3\012- data
Hash 2acacc333232d9fbd3d7545dcebb9712
ade5e719159b28fbc6fb117df66e36a02650f456
8ccd15e0d0af48eb272a7e02facc1d139b82a0df66e99b8144c54add557646f9
GET /bg/images/pkg1.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/jpeg
content-length: 10482
last-modified: Wed, 16 Feb 2022 19:09:10 GMT
etag: "620d4bd6-28f2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: aa699368b31f0ca2b6950d5a37c0fb4b
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/s3-col-img1.jpg
69.172.200.220200 OK 1.9 kB URL HTTP/2 trytheyavue.com/bg/images/s3-col-img1.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 68x68, components 3\012- data
Hash 80dcafd94be0303eea64e9764ca25bc7
a6da2819f44d11b11c9c9917ac6b199f75340410
a6f36d331b434088df5f245d00a3747f1a923f834f9bb88a3ff7498560e580f5
GET /bg/images/s3-col-img1.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/jpeg
content-length: 1939
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-793"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 4abbf1ee316a06a4418f06bbd64dd618
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/star.png
69.172.200.220200 OK 3.7 kB URL HTTP/2 trytheyavue.com/bg/images/star.png
IP 69.172.200.220:0
File type PNG image data, 85 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5c219ef6b9add123ad8d48a0c545d560
09a2af5918877af29cfe43c4c4499d503cfb5441
c8710386f0df5c6e6a1f48a6fa4707075db509def2326fa655fc846e3990d8ff
GET /bg/images/star.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/png
content-length: 3651
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-e43"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: d9023159c561d2a549295c56cbcba070
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/s3-col-img2b.jpg
69.172.200.220200 OK 2.0 kB URL HTTP/2 trytheyavue.com/bg/images/s3-col-img2b.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 68x68, components 3\012- data
Hash df74548e87cd6e00b1fd67c4efe68359
373786851f09c9d78ab33c541a5d8187712800c0
e17dc4d356526377f43a73418b764b359068e181bbba811e51d32725a62e1ca6
GET /bg/images/s3-col-img2b.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/jpeg
content-length: 1959
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-7a7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: bed8d0ab7b4064a7fc1628f412127992
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/s3-col-img3.jpg
69.172.200.220200 OK 1.8 kB URL HTTP/2 trytheyavue.com/bg/images/s3-col-img3.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 68x68, components 3\012- data
Hash 18673c5ee860b496e580b119d725652c
3a682c32b131cae11c050eb24a41ef5b7fa076e8
363f15f412e7c1b5eaa73c890fc8931106b2cb5c3f83d47c2ba6cd6d5b51a0e5
GET /bg/images/s3-col-img3.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/jpeg
content-length: 1802
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-70a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 4b0faa4e0e30bcc29d380255e614a4c0
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,500;0,700;1,400;1,700&display=swap
142.250.74.10200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,500;0,700;1,400;1,700&display=swap
IP 142.250.74.10:0
Hash eda6dce77022e0afd466504cff5962b3
8b8f8aa5de990c1a0a6d2a6551a55152ec37fab0
62c94e0e349fe8a89fe54bc6c24210534f2d12ea3e2558a7055de85e99b094d3
GET /css2?family=Roboto:ital,wght@0,400;0,500;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 15:40:29 GMT
date: Sat, 26 Nov 2022 15:40:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/s3-star1.png
69.172.200.220200 OK 1.6 kB URL HTTP/2 trytheyavue.com/bg/images/s3-star1.png
IP 69.172.200.220:0
File type PNG image data, 101 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 8e07c3f9d7e98fd7e21fdcddbbaf74ea
ccb8e6cfbb004594a2dacbbfda31150f581599d6
114604435e223b7e5f78bb01421ecb79c4225525f1a57b6888a9d657c83e68b6
GET /bg/images/s3-star1.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/png
content-length: 1646
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-66e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 5a33debcc60aeeeff294fd28b7ffd374
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/s3-line.png
69.172.200.220200 OK 1.0 kB URL HTTP/2 trytheyavue.com/bg/images/s3-line.png
IP 69.172.200.220:0
File type PNG image data, 424 x 11, 8-bit/color RGBA, non-interlaced\012- data
Hash 6f88d8d434269091886c8e55fd26a56a
d9a01ba493284d5335ef94bdcc91cc2c0a3b1ddc
cd057683e9b46be7e211b5f7964f9f379a1fb6f8de51d313bfa3b1a77a92198c
GET /bg/images/s3-line.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/png
content-length: 1015
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-3f7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: c482063c095e21cf2f7d340746747a6c
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/bgftr.png
69.172.200.220200 OK 6.4 kB URL HTTP/2 trytheyavue.com/bg/images/bgftr.png
IP 69.172.200.220:0
File type PNG image data, 317 x 83, 8-bit/color RGBA, non-interlaced\012- data
Hash 844f725c887276f8e7a2fc0c25bb041d
9a1f9e453fe909431833a43b680baf33e7103a5f
3c42bfe42cf1d124f7c1b3ff8cb12c62894540a22cf7c20e3522114abb3c1318
GET /bg/images/bgftr.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/png
content-length: 6403
last-modified: Wed, 16 Feb 2022 19:09:10 GMT
etag: "620d4bd6-1903"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: f11c23384d7fcb083ba88586a990bdaf
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/pop-img.jpg
69.172.200.220200 OK 27 kB URL HTTP/2 trytheyavue.com/bg/images/pop-img.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 286x286, components 3\012- data
Hash e31961d0bdeac489807e86ed53aeb75a
4af90ff98045dd5f15a6adf89be5391e585c86b2
fb896927a3647766d8b8458dae8dea1ed11f615b3954ac75ac74cf235cf6ad35
GET /bg/images/pop-img.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/jpeg
content-length: 26623
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-67ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 81edd395ccf088ce53131361dd8b0b9e
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/grnt-seal1.png
69.172.200.220200 OK 64 kB URL HTTP/2 trytheyavue.com/bg/images/grnt-seal1.png
IP 69.172.200.220:0
File type PNG image data, 268 x 203, 8-bit/color RGBA, non-interlaced\012- data
Hash 13df17443aaad4a09d0b0d6b9f267ffd
7660b28ee5e24cfcc563b69273fb77e44843a25a
2ebeb88f38577f8c6dfd3308ca9588ac89049535bb6b2ac9e55b6de48dfa95ee
GET /bg/images/grnt-seal1.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/png
content-length: 64059
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-fa3b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: eecc0a3935ac14a1ddbfa3b154ec6aed
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 15:40:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
trytheyavue.com/bg/images/tv-panel2.jpg
69.172.200.220200 OK 84 kB URL HTTP/2 trytheyavue.com/bg/images/tv-panel2.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 446x541, components 3\012- data
Hash 9d2156d3abe4a97bd5dfcae23e21bfea
6a0f2be72eec3eaba148227c7d8710a5f5847ba2
c824c8c1525ef96657da4902c863e9ea8a6c20ad4a0c798368bd490003a035b9
GET /bg/images/tv-panel2.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: image/jpeg
content-length: 83582
last-modified: Wed, 18 May 2022 02:48:05 GMT
etag: "62845e65-1467e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: e7c00fb51faf02eed2a4874bc0666cc0
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-MHJ3M9T
142.250.74.168200 OK 40 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MHJ3M9T
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 30660d9e27d18e813eb77b4b2883b881
0ed5f1db6af85ea74205c40070debcf9a04d7252
3bee2abadc087fb825be6db042aa460deb24cf3f1d6c6a9daefb455b5319b431
GET /gtm.js?id=GTM-MHJ3M9T HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 15:40:29 GMT
expires: Sat, 26 Nov 2022 15:40:29 GMT
cache-control: private, max-age=900
last-modified: Sat, 26 Nov 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 39544
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 15:40:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9cc75dedbc45e2e2215f62df1fd3fb63
001433d8700641b9eb2e5ea11ff9d7965bc05cf6
92390defbffb25260046c80b7639cd4d666ca9d56dc9b0a8b040595c9c0d6892
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3576
Cache-Control: max-age=130051
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 15:40:30 GMT
Etag: "63817e79-117"
Expires: Mon, 28 Nov 2022 03:48:01 GMT
Last-Modified: Sat, 26 Nov 2022 02:48:25 GMT
Server: ECS (amb/6B89)
X-Cache: HIT
Content-Length: 279
trytheyavue.com/bg/images/banner-bgr.jpg
69.172.200.220200 OK 14 kB URL HTTP/2 trytheyavue.com/bg/images/banner-bgr.jpg
IP 69.172.200.220:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x427, components 3\012- data
Hash 6810f595b3e18c233af848d3d3206c22
2051820fefe98faf056f31799c13b4240ee73f8a
056c43d10cf3190e39c974b968944af2b84cd3ef437c93b1cb888b240e75d046
GET /bg/images/banner-bgr.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/css/style-tv-2.css
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0; _ga_TVB374KJRK=GS1.1.1669477229.1.0.1669477229.60.0.0; _ga=GA1.1.37664950.1669477230
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:30 GMT
content-type: image/jpeg
content-length: 13969
last-modified: Wed, 16 Feb 2022 19:09:10 GMT
etag: "620d4bd6-3691"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 27b4c0e3a41f8900deaa047c929c656a
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8094
Expires: Sat, 26 Nov 2022 17:55:24 GMT
Date: Sat, 26 Nov 2022 15:40:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8094
Expires: Sat, 26 Nov 2022 17:55:24 GMT
Date: Sat, 26 Nov 2022 15:40:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8094
Expires: Sat, 26 Nov 2022 17:55:24 GMT
Date: Sat, 26 Nov 2022 15:40:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8094
Expires: Sat, 26 Nov 2022 17:55:24 GMT
Date: Sat, 26 Nov 2022 15:40:30 GMT
Connection: keep-alive
trytheyavue.com/bg/js/jquery.accordion.js
69.172.200.220200 OK 18 kB URL HTTP/2 trytheyavue.com/bg/js/jquery.accordion.js
IP 69.172.200.220:0
Hash d8f9db87fbb84a291eb857fcb5ba499e
1bbba1c55cbe6a859ef5a3b4d50c0a43a337a07a
b5397c3bdb4198c4d471c27ccf4893442f4778c30dbb9caaded91150a3049712
GET /bg/js/jquery.accordion.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 19:05:00 GMT
etag: W/"620d4adc-2007"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 903ae3de6d67eb0625ee1358e10e2c23
server: DOSarrest
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 07:13:26 GMT
age: 30424
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc537c2d0-d011-4ed0-a5d4-5f5d2190c49b.webp
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc537c2d0-d011-4ed0-a5d4-5f5d2190c49b.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash abd79421a3c44a8df11ad2cc50083309
8665e5f3026f2c2b9505eb139c478f4d359851c3
3a66b00498fa1322730705b1c4502614b5a520ac3f884f494d65e27a5bb62c3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc537c2d0-d011-4ed0-a5d4-5f5d2190c49b.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4366
x-amzn-requestid: ce25f5ab-0c92-431e-ae4e-618829594a74
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVNZFjHoAMFXLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813588-6a3a8dff70e717011e3a0606;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 75AMMfa7oq0Y51YPEC_FEDOoNVc9cgfjg9bOSOXwikONPdhW7OG3uQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:48:10 GMT
age: 64340
etag: "8665e5f3026f2c2b9505eb139c478f4d359851c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8dc4b8a7e9f7f4f84f0da568b43392b
3d32bff85cb7ec118c4496d0c3802829fdc9af3b
4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OJZkZ18TlSgdBWsmSroQPIcYIvBFvz5-7hu9_GravTcz6zqxKXHZrg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:43:36 GMT
age: 64614
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ezHvyK3va4SioabOjSittTiLQRs_Q8k4TPxkiGp_svtZ8omDPTUN-A==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 05:04:28 GMT
age: 38162
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
trytheyavue.com/bg/js/page.js
69.172.200.220200 OK 11 kB URL HTTP/2 trytheyavue.com/bg/js/page.js
IP 69.172.200.220:0
Hash 86c24544ed9b4cd386bb4b2d40a25ce1
cf376584eb9a379b4be94dcf558cc2c6fb89e797
9ed6b899b2e3418d2a5192daefd18f7b717ac63bdcf4ca0756415b6851aaac03
GET /bg/js/page.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 19:05:00 GMT
etag: W/"620d4adc-101a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 707ab1c3cc0d5c816080d804d105b176
server: DOSarrest
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/prev.png
69.172.200.220200 OK 1.7 kB URL HTTP/2 trytheyavue.com/bg/images/prev.png
IP 69.172.200.220:0
File type PNG image data, 21 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 01e990575227f45e90211872aed15306
15603911601bffcb0c5a1d68e5dd764a95ba77e3
028b3c3d81174a4729c0cdd0f2423b66bc9e640e60228f8976d18ad111eddedf
GET /bg/images/prev.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/css/slick.css
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0; _ga_TVB374KJRK=GS1.1.1669477229.1.0.1669477229.60.0.0; _ga=GA1.1.37664950.1669477230
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:30 GMT
content-type: image/png
content-length: 1665
last-modified: Wed, 16 Feb 2022 19:09:10 GMT
etag: "620d4bd6-681"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 132e04aa62048feb138800c0a7c40ce5
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/next.png
69.172.200.220200 OK 1.5 kB URL HTTP/2 trytheyavue.com/bg/images/next.png
IP 69.172.200.220:0
File type PNG image data, 21 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 67b37a3d660f4ae7a9693b1c68594f18
bd40bb43412a67011f72b4460bd95a02a27dd7b2
8d8f82d6f5a7788e94f3919bf440a9b3ced9d95e5d67927ee79b9529b8ad6f4f
GET /bg/images/next.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/css/slick.css
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0; _ga_TVB374KJRK=GS1.1.1669477229.1.0.1669477229.60.0.0; _ga=GA1.1.37664950.1669477230
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:30 GMT
content-type: image/png
content-length: 1546
last-modified: Wed, 16 Feb 2022 19:09:10 GMT
etag: "620d4bd6-60a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 991e515cf6e583ce5c8d206178883df7
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-TVB374KJRK>m=2oeb90&_p=780827582&_gaz=1&cid=37664950.1669477230&ul=en-us&sr=1280x1024&_s=1&sid=1669477229&sct=1&seg=0&dl=https%3A%2F%2Ftrytheyavue.com%2Fbg%2Fresearch%3Faff_id%3D470%26subid%3Dmwn3agiop1126theyavue&dr=https%3A%2F%2Femdlvr.com%2F&dt=(1)%20Rapid%20Finger%20Trick%20Sharpens%20Blurry%20Eyesight&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-TVB374KJRK>m=2oeb90&_p=780827582&_gaz=1&cid=37664950.1669477230&ul=en-us&sr=1280x1024&_s=1&sid=1669477229&sct=1&seg=0&dl=https%3A%2F%2Ftrytheyavue.com%2Fbg%2Fresearch%3Faff_id%3D470%26subid%3Dmwn3agiop1126theyavue&dr=https%3A%2F%2Femdlvr.com%2F&dt=(1)%20Rapid%20Finger%20Trick%20Sharpens%20Blurry%20Eyesight&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-TVB374KJRK>m=2oeb90&_p=780827582&_gaz=1&cid=37664950.1669477230&ul=en-us&sr=1280x1024&_s=1&sid=1669477229&sct=1&seg=0&dl=https%3A%2F%2Ftrytheyavue.com%2Fbg%2Fresearch%3Faff_id%3D470%26subid%3Dmwn3agiop1126theyavue&dr=https%3A%2F%2Femdlvr.com%2F&dt=(1)%20Rapid%20Finger%20Trick%20Sharpens%20Blurry%20Eyesight&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://trytheyavue.com
date: Sat, 26 Nov 2022 15:40:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 15:40:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-TVB374KJRK&cid=37664950.1669477230>m=2oeb90&aip=1
142.251.1.156204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-TVB374KJRK&cid=37664950.1669477230>m=2oeb90&aip=1
IP 142.251.1.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-TVB374KJRK&cid=37664950.1669477230>m=2oeb90&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://trytheyavue.com
date: Sat, 26 Nov 2022 15:40:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 15:40:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
trytheyavue.com/bg/css/Graphik-Regular.woff2
69.172.200.220200 OK 38 kB URL HTTP/2 trytheyavue.com/bg/css/Graphik-Regular.woff2
IP 69.172.200.220:0
File type Web Open Font Format (Version 2), TrueType, length 37504, version 1.0\012- data
Hash 5af81e7957df5df26b14c20f56c84940
b9e0ab52f86502e16f398e4345963d423cafdf5b
eaad9914c7a2627d8d8088f7296387ad68c6400bafe9341b439f9831d1968624
GET /bg/css/Graphik-Regular.woff2 HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://trytheyavue.com/bg/css/style-tv-2.css
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0; _ga_TVB374KJRK=GS1.1.1669477229.1.0.1669477229.60.0.0; _ga=GA1.1.37664950.1669477230
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:30 GMT
content-type: font/woff2
content-length: 37504
last-modified: Wed, 16 Feb 2022 18:55:50 GMT
etag: "620d48b6-9280"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: f132110bbe6a3bfd4dfe8e9bd4ce6048
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/js/bounceback.min.js
69.172.200.220200 OK 42 kB URL HTTP/2 trytheyavue.com/bg/js/bounceback.min.js
IP 69.172.200.220:0
Hash 31ea08135dbc929feceec2b7a9b0b8cb
bf4a236c804c1ae2325e8430c650cba19435e79a
0be3e088c1c73a9d8b6bfd9ffa3a3c75fbd9d94175bdfc31429e7db2d6f34d15
GET /bg/js/bounceback.min.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 19:05:00 GMT
etag: W/"620d4adc-cd0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 1e8f400e046e3038be03acd15d673678
server: DOSarrest
X-Firefox-Spdy: h2
trytheyavue.com/bg/js/fixed-tvv2.js
69.172.200.220200 OK 42 kB URL HTTP/2 trytheyavue.com/bg/js/fixed-tvv2.js
IP 69.172.200.220:0
Hash fd4eb3e0745fb9c6510a8ce7694bcb62
1c323562b2585284aa4435ffd2b0acf5c6c835b1
1e51f89b7bf80906b8e2f56671b55b45c2154c82011c61dab4c6e992e8fae54f
GET /bg/js/fixed-tvv2.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: application/javascript
last-modified: Thu, 24 Feb 2022 18:02:28 GMT
etag: W/"6217c834-158b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 2d47a729aa5f8cff8347b11c443e4c3b
server: DOSarrest
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9cc75dedbc45e2e2215f62df1fd3fb63
001433d8700641b9eb2e5ea11ff9d7965bc05cf6
92390defbffb25260046c80b7639cd4d666ca9d56dc9b0a8b040595c9c0d6892
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3576
Cache-Control: max-age=130051
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 15:40:30 GMT
Etag: "63817e79-117"
Expires: Mon, 28 Nov 2022 03:48:01 GMT
Last-Modified: Sat, 26 Nov 2022 02:48:25 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
trytheyavue.com/bg/css/Graphik-Medium.woff2
69.172.200.220200 OK 40 kB URL HTTP/2 trytheyavue.com/bg/css/Graphik-Medium.woff2
IP 69.172.200.220:0
File type Web Open Font Format (Version 2), TrueType, length 40120, version 1.0\012- data
Hash 865393f6402fb887b3ede269ae203d08
ed16c3083a7e97757321ca3d920ddefb3892f5f1
e19425e397dfe156ac383a546b0c36442e4f55e7cf6d715c799df52cff7453fe
GET /bg/css/Graphik-Medium.woff2 HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://trytheyavue.com/bg/css/style-tv-2.css
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0; _ga_TVB374KJRK=GS1.1.1669477229.1.0.1669477229.60.0.0; _ga=GA1.1.37664950.1669477230
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:30 GMT
content-type: font/woff2
content-length: 40120
last-modified: Wed, 16 Feb 2022 18:55:50 GMT
etag: "620d48b6-9cb8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 262e21fc5644250b8eac00cc7702faa8
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 15:40:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-TVB374KJRK&cid=37664950.1669477230>m=2oeb90&aip=1&z=1307798181
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-TVB374KJRK&cid=37664950.1669477230>m=2oeb90&aip=1&z=1307798181
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-TVB374KJRK&cid=37664950.1669477230>m=2oeb90&aip=1&z=1307798181 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 15:40:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
trytheyavue.com/api/visits?page_id=27&page_version=&request_id=4621FD81%3A89A2_D197C0D8%3A01BB_6382336D_AF973%3A223426&querystring=aff_id%3D470%26subid%3Dmwn3agiop1126theyavue&fbclid=&fbp=&fbc=&referrer=https%3A%2F%2Femdlvr.com%2F
69.172.200.220200 OK 765 B URL HTTP/2 trytheyavue.com/api/visits?page_id=27&page_version=&request_id=4621FD81%3A89A2_D197C0D8%3A01BB_6382336D_AF973%3A223426&querystring=aff_id%3D470%26subid%3Dmwn3agiop1126theyavue&fbclid=&fbp=&fbc=&referrer=https%3A%2F%2Femdlvr.com%2F
IP 69.172.200.220:0
Hash 8657e6174d9b5ab4f15713e3edc0b795
36cda61268060c8eb26c4f91e6351638436120d3
e87d2471824f483e1a370fe4455d193dc3a67688965e3265eb2aab76875d366f
GET /api/visits?page_id=27&page_version=&request_id=4621FD81%3A89A2_D197C0D8%3A01BB_6382336D_AF973%3A223426&querystring=aff_id%3D470%26subid%3Dmwn3agiop1126theyavue&fbclid=&fbp=&fbc=&referrer=https%3A%2F%2Femdlvr.com%2F HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0; _ga_TVB374KJRK=GS1.1.1669477229.1.0.1669477229.60.0.0; _ga=GA1.1.37664950.1669477230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:30 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' cbsplit.com;
content-encoding: gzip
x-dis-request-id: dd40f89134cabcd6cc82ed3d081c5689
server: DOSarrest
X-Firefox-Spdy: h2
www.clarity.ms/eus2/s/0.6.43/clarity.js
13.107.227.53200 OK 55 kB URL HTTP/2 www.clarity.ms/eus2/s/0.6.43/clarity.js
IP 13.107.227.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (55029)
Hash 441723b72633b1ac9757ad7c63168005
806166ca9ebb5839dd90a5e5c9335e3e0b18c169
cc8a16ce849d72f106bd67187e4b60c20da3093375202bf0b53f23e8f40a8b11
GET /eus2/s/0.6.43/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-length: 55116
content-type: application/javascript;charset=utf-8
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8fceb15c2864c"
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-cache: CONFIG_NOCACHE
x-azure-ref: 0bzOCYwAAAACtFM/T/RbySZgznuuJv+7rT1NMMjMxMDUwMjA1MDQ3ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Sat, 26 Nov 2022 15:40:30 GMT
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/favicon/favicon-16x16-1a.png
69.172.200.220200 OK 750 B URL HTTP/2 trytheyavue.com/bg/images/favicon/favicon-16x16-1a.png
IP 69.172.200.220:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 626e067f2222e36bdc638e4865d1e407
daa9f6c4c56bbbcabad959863c27831ecd9bd297
abc95b26bc2e8ef442d9c71beb59a6f3996ca5a1a26274c147eeceb28d0b99c4
GET /bg/images/favicon/favicon-16x16-1a.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0; _ga_TVB374KJRK=GS1.1.1669477229.1.0.1669477229.60.0.0; _ga=GA1.1.37664950.1669477230
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:31 GMT
content-type: image/png
content-length: 750
last-modified: Wed, 16 Feb 2022 19:08:17 GMT
etag: "620d4ba1-2ee"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: cf08a75033cae73d2f62a70818411938
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/favicon/apple-touch-icon-1a.png
69.172.200.220200 OK 14 kB URL HTTP/2 trytheyavue.com/bg/images/favicon/apple-touch-icon-1a.png
IP 69.172.200.220:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 6634ebe4d4870a04d121b6a44178e690
1cd896a9c9f7dbd73081b25d3a32079bc41d9158
2e467a2818d993dd8658b7ab70e5531a6d61d39e5d8f7989a96fe5f88e0e4453
GET /bg/images/favicon/apple-touch-icon-1a.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0; _ga_TVB374KJRK=GS1.1.1669477229.1.0.1669477229.60.0.0; _ga=GA1.1.37664950.1669477230
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:31 GMT
content-type: image/png
content-length: 13664
last-modified: Wed, 16 Feb 2022 19:08:17 GMT
etag: "620d4ba1-3560"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 6f3aee7b8b3540aa9bb85153bb2818f7
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=FA5DEDD8AF3242219E82C3A1D6A9BF8A&RedC=c.clarity.ms&MXFR=3C34A8F530356E6713A3BA9D343560FE
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=3C34A8F530356E6713A3BA9D343560FE; domain=.clarity.ms; expires=Thu, 21-Dec-2023 15:40:31 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Sat, 26 Nov 2022 15:40:30 GMT
content-length: 0
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=FA5DEDD8AF3242219E82C3A1D6A9BF8A&RedC=c.clarity.ms&MXFR=3C34A8F530356E6713A3BA9D343560FE
13.107.21.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=FA5DEDD8AF3242219E82C3A1D6A9BF8A&RedC=c.clarity.ms&MXFR=3C34A8F530356E6713A3BA9D343560FE
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=FA5DEDD8AF3242219E82C3A1D6A9BF8A&RedC=c.clarity.ms&MXFR=3C34A8F530356E6713A3BA9D343560FE HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trytheyavue.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=FA5DEDD8AF3242219E82C3A1D6A9BF8A&MUID=3B71626231FA667B059D700A300F676C
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=3B71626231FA667B059D700A300F676C; domain=c.bing.com; expires=Thu, 21-Dec-2023 15:40:31 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: DAFBEC2F32F34B329F6D44E37E4F017F Ref B: OSL30EDGE0218 Ref C: 2022-11-26T15:40:31Z
date: Sat, 26 Nov 2022 15:40:31 GMT
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=FA5DEDD8AF3242219E82C3A1D6A9BF8A&MUID=3B71626231FA667B059D700A300F676C
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=FA5DEDD8AF3242219E82C3A1D6A9BF8A&MUID=3B71626231FA667B059D700A300F676C
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=FA5DEDD8AF3242219E82C3A1D6A9BF8A&MUID=3B71626231FA667B059D700A300F676C HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trytheyavue.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Thu, 13 Oct 2022 20:07:05 GMT
accept-ranges: bytes
etag: "40db785d3fdfd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Sat, 26-Nov-2022 15:50:31 GMT; path=/; SameSite=None; Secure;
date: Sat, 26 Nov 2022 15:40:31 GMT
content-length: 42
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 945
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://trytheyavue.com
access-control-allow-credentials: true
date: Sat, 26 Nov 2022 15:40:30 GMT
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/stream.mpd
151.139.128.10200 OK 4.7 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/stream.mpd
IP 151.139.128.10:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash a669b996f506eeff926d747067cd0d39
03dcae10d87f05f6c9006579eefccda45fab4114
440673b569ae9df31dd5ddc6a5f0dda2cba85113db3d94dd54706672b14c017a
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/stream.mpd HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:32 GMT
content-length: 4688
content-type: application/dash+xml
last-modified: Wed, 23 Feb 2022 21:21:22 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvzswz-tnuGPgtEYJaFGGrjq4J5NxUyS2hdEHLMnKiJU8vOyE5ytCz2qcK50PK0OjOHzpf05Rq3odym2lHm7kuS6Q
cache-control: public, max-age=31104000
etag: "a669b996f506eeff926d747067cd0d39"
x-goog-generation: 1645651282208676
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 4688
x-goog-hash: crc32c=nHdB/g==, md5=pmm5lvUG7v+SbXRwZ80NOQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669477232.cds009.sk1.hn,1669477232.cds256.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 150213
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://trytheyavue.com
access-control-allow-credentials: true
date: Sat, 26 Nov 2022 15:40:31 GMT
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 06932bf119331cbef0dfc2bf6ed702fb
c2e5a966bf0828551e3fe2a85893cf7193851f07
230877a43a8caad697d6c753f16fa4535c44606eecc0a34a8fa52651bca8158d
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 26 Nov 2022 15:40:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 25 Nov 2022 20:08:04 GMT
Expires: Sat, 26 Nov 2022 20:08:04 GMT
ETag: "c2e5a966bf0828551e3fe2a85893cf7193851f07"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
analytics-ingress-global.bitmovin.com/licensing
35.190.27.197200 OK 117 B URL HTTP/2 analytics-ingress-global.bitmovin.com/licensing
IP 35.190.27.197:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f90d2c53623621471228392bf3047e2a
b9f0bb5e8fd5fd97cb47a25edb9b6950ad51627e
5c22e577292cc557786ad7c531cb0d73bfefd43e006865f2945bca9c04d2b700
POST /licensing HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 102
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: v1.54.0
date: Sat, 26 Nov 2022 15:40:32 GMT
content-type: application/json
content-length: 117
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 06932bf119331cbef0dfc2bf6ed702fb
c2e5a966bf0828551e3fe2a85893cf7193851f07
230877a43a8caad697d6c753f16fa4535c44606eecc0a34a8fa52651bca8158d
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 26 Nov 2022 15:40:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 25 Nov 2022 20:08:04 GMT
Expires: Sat, 26 Nov 2022 20:08:04 GMT
ETag: "c2e5a966bf0828551e3fe2a85893cf7193851f07"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/640x360_vp9_280624/init.mp4
151.139.128.10200 OK 459 B URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/640x360_vp9_280624/init.mp4
IP 151.139.128.10:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 4f3d84d2d528408dfe561eb3d1dd7e1e
ee2797b545300bda74178a1d9b23f4644010fa23
9d19d8e0f9ef924887894759458dbbf61baa018fb750e9d5d1b1159cc472df07
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/640x360_vp9_280624/init.mp4 HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:32 GMT
content-length: 459
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:16:48 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycduCeFzv8Ei-rm2FdV2CXAs1CxEBT8rJ1SeNK-irBaM-dJvJVmg_V_SDqollRDcp9HyxqFk41NaeLuYh7jBqwV5gMg
cache-control: public, max-age=31104000
etag: "4f3d84d2d528408dfe561eb3d1dd7e1e"
x-goog-generation: 1645651008142144
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 459
x-goog-hash: crc32c=bNOOUA==, md5=Tz2E0tUoQI3+Vh6z0d1+Hg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669477232.cds009.sk1.hn,1669477232.cds215.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1256
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Sat, 26 Nov 2022 15:40:31 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fast.vidalytics.com/embeds/Ipm9Y6ab/vsB8k7Qjvpaw6QuI/player-dash-mse.min.js?hash=oqstrnniv
151.139.128.10200 OK 585 kB URL HTTP/2 fast.vidalytics.com/embeds/Ipm9Y6ab/vsB8k7Qjvpaw6QuI/player-dash-mse.min.js?hash=oqstrnniv
IP 151.139.128.10:0
Size 585 kB (584627 bytes)
Hash a4ca6e9102f344fadf7d8e0b36d40dc2
a3dc3becd0361cb80c38163651c55211ed1134a6
24c5f25d6d34ee032b435085da62a2c566915d19738605214d0eeea2890dcfec
GET /embeds/Ipm9Y6ab/vsB8k7Qjvpaw6QuI/player-dash-mse.min.js?hash=oqstrnniv HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:31 GMT
accept-ranges: bytes
content-type: application/javascript
x-cdn: 4
x-guploader-uploadid: ADPycdvPugQWKdlzfoFlAOSJ5RYXix8LIhKSSMXV9NAKvJYyZws2g07G4Sa75qMzgiuPcBA85QkvHHyRmZsU-NsfnFozsw
cache-control: public, max-age=300, s-maxage=2592000
etag: "8824dbb025c7fd370b12f4adafba609f"
x-goog-generation: 1665141971673273
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 502506
x-goog-hash: crc32c=qTkxaA==, md5=iCTbsCXH/TcLEvStr7pgnw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server, x-cdn, x-cdn-info
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
last-modified: Fri, 07 Oct 2022 11:26:11 GMT
content-encoding: gzip
x-hw: 1669477230.cds009.sk1.hn,1669477230.cds009.sk1.hc,1669477230.cds023.sk1.s,1669477230.dop059.la3.r,1669477230.cds224.la3.c,1669477230.cds023.sk1.s,1669477230.dop059.la3.r,1669477230.cds224.la3.c,1669477230.cds023.sk1.p,1669477231.cds009.sk1.sl
X-Firefox-Spdy: h2
stats.vidalytics.com/awesome-log?cid=Ipm9Y6ab
107.178.211.97200 OK 43 B URL HTTP/2 stats.vidalytics.com/awesome-log?cid=Ipm9Y6ab
IP 107.178.211.97:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /awesome-log?cid=Ipm9Y6ab HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Accept, Content-Type, Origin, Range, X-Requested-With
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-expose-headers: Access-Control-Allow-Origin, Cache-Control, ETag, etag
cache-control: no-cache, public, max-age=2592000
content-length: 43
content-type: image/gif
etag: "Ipm9Y6ab/2li5yXyV_00hy0dW"
date: Sat, 26 Nov 2022 15:40:32 GMT
x-envoy-upstream-service-time: 11
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 06932bf119331cbef0dfc2bf6ed702fb
c2e5a966bf0828551e3fe2a85893cf7193851f07
230877a43a8caad697d6c753f16fa4535c44606eecc0a34a8fa52651bca8158d
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 26 Nov 2022 15:40:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 25 Nov 2022 20:08:04 GMT
Expires: Sat, 26 Nov 2022 20:08:04 GMT
ETag: "c2e5a966bf0828551e3fe2a85893cf7193851f07"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 407
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Sat, 26 Nov 2022 15:40:32 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/640x360_vp9_280624/s_0.webm
151.139.128.10200 OK 132 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/640x360_vp9_280624/s_0.webm
IP 151.139.128.10:0
Size 132 kB (131780 bytes)
Hash 30a5d579ab4d9dd9aef208a058fd4178
13aaaf37c9b65caa449d0463e5da1335e0731011
45d81bfe8dc8d74f0713882787a484f4258db7dbcc2ab5df3bfae8c1b5b254a0
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/640x360_vp9_280624/s_0.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:32 GMT
content-length: 131780
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:16:48 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycduwc_PMxvXM3fkKIItPLrlo43iki_cHtcbcWnojX59O_jxrOXu8BzKb6rrNKDfs4EGB4t1Vh5k9KfCXvqpjwlfxBw
cache-control: public, max-age=31104000
etag: "30a5d579ab4d9dd9aef208a058fd4178"
x-goog-generation: 1645651008408218
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 131780
x-goog-hash: crc32c=6fEA3g==, md5=MKXVeatNndmu8gigWP1BeA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669477232.cds009.sk1.hn,1669477232.cds023.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/init.mp4
151.139.128.10200 OK 459 B URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/init.mp4
IP 151.139.128.10:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 9ca7c465fe1875363d003a015e82fa15
f1fd497dad3d1a5816a4abd6fe57464c9c7619a4
0032a01ab3dc07cd657d0a62d16094bcc6503af97a0958941bb9f7af8b43d6e1
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/init.mp4 HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:32 GMT
content-length: 459
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:16:57 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycduFa5O5uo5O3AFWDoge8tGSQvs9za-p6OStk4KwxeW5K6SXImZyoxrJ0kUhpJClK96YCANteck78PBhrEQapswaC-M-ytqt
cache-control: public, max-age=31104000
etag: "9ca7c465fe1875363d003a015e82fa15"
x-goog-generation: 1645651016924350
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 459
x-goog-hash: crc32c=u8l+QA==, md5=nKfEZf4YdTY9ADoBXoL6FQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669477232.cds009.sk1.hn,1669477232.cds002.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
licensing.bitmovin.com/impression
35.227.229.24204 No Content 0 B URL HTTP/2 licensing.bitmovin.com/impression
IP 35.227.229.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /impression HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 111
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Sat, 26 Nov 2022 15:40:32 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 540
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Sat, 26 Nov 2022 15:40:32 GMT
content-length: 16
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 255
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Sat, 26 Nov 2022 15:40:33 GMT
content-length: 16
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_1.webm
151.139.128.10200 OK 367 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_1.webm
IP 151.139.128.10:0
Size 367 kB (366903 bytes)
Hash d3b4c2bd0afab353a97629da8f51e84f
74b25aa450e4c5634d694befcfbe03282080e7df
ca9da5ca3cef5068666afb915b4e9b5ec0ce8dada0c301f8d4d5de27c3b4232c
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_1.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:33 GMT
content-length: 366903
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:17:00 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdu6rC7Na-grC7P32H554Pa4kkJ0OFeraX-DTlCHh13W6lxkaaBbHbEBH6VatE3GRs1Ot1GyetemAeXqqEkkoxKSnwPWtzGs
cache-control: public, max-age=31104000
etag: "d3b4c2bd0afab353a97629da8f51e84f"
x-goog-generation: 1645651020846164
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 366903
x-goog-hash: crc32c=YeJ3GQ==, md5=07TCvQr6s1Opdinaj1HoTw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669477233.cds009.sk1.hn,1669477233.cds248.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1841
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Sat, 26 Nov 2022 15:40:33 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1815
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Sat, 26 Nov 2022 15:40:32 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1807
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Sat, 26 Nov 2022 15:40:32 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_2.webm
151.139.128.10200 OK 478 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_2.webm
IP 151.139.128.10:0
Size 478 kB (477817 bytes)
Hash 9381100175ab943a883f1473d7940f01
0b4740ea58e09aa8e31711799910bc122e6bd645
596bcb97afa5a342fe2d3aca85f8e6c41b020ac0a50b95c74c39fd7a4864db04
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_2.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:33 GMT
accept-ranges: bytes
content-length: 477817
content-type: video/mp4
x-hw: 1669477233.cds009.sk1.hn,1669477233.cds258.sk1.s,1669477233.dop008.la3.r,1669477233.cds033.la3.c,1669477233.cds258.sk1.p
x-cdn: 4
x-guploader-uploadid: ADPycduFcFOPWITWV8fx1WSIcucAJXoZADIos6caCYlhkLrqQV426kQXITIn0ZPuD1ZkpBjhdyxbXVQHHgTkHrYSpzmrYg
cache-control: public, max-age=31104000
etag: "9381100175ab943a883f1473d7940f01"
x-goog-generation: 1645651002732804
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 477817
x-goog-hash: crc32c=Obre3g==, md5=k4EQAXWrlDqIPxRz15QPAQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
last-modified: Wed, 23 Feb 2022 21:16:42 GMT
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 113322
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://trytheyavue.com
access-control-allow-credentials: true
date: Sat, 26 Nov 2022 15:40:34 GMT
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_3.webm
151.139.128.10200 OK 409 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_3.webm
IP 151.139.128.10:0
Size 409 kB (409204 bytes)
Hash efd7c5c16c34600248c6ae303c89cb85
0bc9657809198b955d645ce131314cb8ec014470
f7673c5386c728ae7e97ad5352ac95f0392d898ec222900837d7c7700df39c2b
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_3.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:35 GMT
accept-ranges: bytes
content-length: 409204
content-type: video/mp4
x-hw: 1669477234.cds009.sk1.hn,1669477234.cds068.sk1.s,1669477235.dop207.la3.r,1669477235.cds212.la3.c,1669477235.cds068.sk1.p
x-cdn: 4
x-guploader-uploadid: ADPycds5xbV2i5ZaJsXK_DEPpxXoEsu7Hq4MkLJe1AbST_8wz38rE-6tk_XZnIDyRsw7C90V7ePnYSUtUp39ULt2zF3-
x-goog-generation: 1645650982349199
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 409204
x-goog-hash: crc32c=FvBrnw==, md5=79fFwWw0YAJIxq4wPInLhQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=31104000
etag: "efd7c5c16c34600248c6ae303c89cb85"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
last-modified: Wed, 23 Feb 2022 21:16:22 GMT
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_4.webm
151.139.128.10200 OK 439 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_4.webm
IP 151.139.128.10:0
Size 439 kB (439419 bytes)
Hash 6edaf82276f1595844266e4754f39e0f
d5ba2a58bcf1c51cb2980c08bac121944aaec969
5e7c51e55895a3dea0ca05818b982502261f533a46c9105eba0661f3eb9ef567
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_4.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:36 GMT
content-length: 439419
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:16:33 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdtu-_OsMaZz6lCr5UFHS4Nlh0X6M6Q-kdliKzRChwFe3Cyd6x4bzBGIpNjLd4Cre5dHQyhkBxiD85iOnFDl-yl5qw
cache-control: public, max-age=31104000
etag: "6edaf82276f1595844266e4754f39e0f"
x-goog-generation: 1645650993563645
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 439419
x-goog-hash: crc32c=tP9sLw==, md5=btr4InbxWVhEJm5HVPOeDw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669477236.cds009.sk1.hn,1669477236.cds243.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1862
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Sat, 26 Nov 2022 15:40:35 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_5.webm
151.139.128.10200 OK 500 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_5.webm
IP 151.139.128.10:0
Size 500 kB (500235 bytes)
Hash e2bd4001b47b3e8b12112064ffdfd1ee
03b4373da7af5e09e806f974b79ae7a96c0bd46f
e3aa4857ca7e50309cd9344852db319c2833b8ad506b600fb0a024d468a11ef6
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_5.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:36 GMT
content-length: 500235
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:16:30 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdv8yWaaKkSHBl4VAeFjKEbRWfCrga3ctV7V-HEZM1fpjEIknsNVIhWeSQntSZ-2XGMXMfoFdhkBY0LTEJy_PcbSfQ
cache-control: public, max-age=31104000
etag: "e2bd4001b47b3e8b12112064ffdfd1ee"
x-goog-generation: 1645650990818787
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 500235
x-goog-hash: crc32c=5Rr/tw==, md5=4r1AAbR7PosSESBk/9/R7g==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669477236.cds009.sk1.hn,1669477236.cds245.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1822
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Sat, 26 Nov 2022 15:40:36 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fast.vidalytics.com/embeds/Ipm9Y6ab/vsB8k7Qjvpaw6QuI/loader.min.js
151.139.128.10200 OK 0 B URL HTTP/2 fast.vidalytics.com/embeds/Ipm9Y6ab/vsB8k7Qjvpaw6QuI/loader.min.js
IP 151.139.128.10:0
GET /embeds/Ipm9Y6ab/vsB8k7Qjvpaw6QuI/loader.min.js HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:30 GMT
cache-control: no-store, private, max-age=0, s-max-age=0
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 11:26:11 GMT
x-guploader-uploadid: ADPycdsRIsMgADdIbgxb9xQI4MLmHrM6AQDHu4oD85gMlFs69kJ6NOPGSV19H9QXkVisvwCqFdnlbM7lUxq6UCcZBE9o1gNf-csX
expires: Sat, 26 Nov 2022 15:40:30 GMT
etag: "0580fb7919a8433488c4f831ed3c2cad"
x-goog-generation: 1665141971289404
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10160
x-goog-hash: crc32c=Scdktw==, md5=BYD7eRmoQzSIxPgx7TwsrQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server, x-cdn, x-cdn-info
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-cdn-info: loader
x-cdn: 4
content-encoding: gzip
x-hw: 1669477230.cds009.sk1.hn,1669477230.cds009.sk1.hc,1669477230.cds247.sk1.sc,1669477230.cds247.sk1.p,1669477230.cds009.sk1.sl
X-Firefox-Spdy: h2
fast.vidalytics.com/embeds/Ipm9Y6ab/uuOPiUEZKLRO0WHH/loader.min.js
151.139.128.10200 OK 0 B URL HTTP/2 fast.vidalytics.com/embeds/Ipm9Y6ab/uuOPiUEZKLRO0WHH/loader.min.js
IP 151.139.128.10:0
GET /embeds/Ipm9Y6ab/uuOPiUEZKLRO0WHH/loader.min.js HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:30 GMT
cache-control: no-store, private, max-age=0, s-max-age=0
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 11:26:21 GMT
x-guploader-uploadid: ADPycdsGawIgEVgZ9Z9bmhbo-fRyEk2IC-TURDRnPz1AO_mAiNYbdBcOq7SjNc6mDPHrBj5rA-jvqhERJ9Sgf7IbtbFiWg
expires: Sat, 26 Nov 2022 15:40:30 GMT
etag: "3f0bc350bcb8af98bc82e5210b8cceed"
x-goog-generation: 1665141981853962
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10160
x-goog-hash: crc32c=/8oNPg==, md5=PwvDULy4r5i8guUhC4zO7Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server, x-cdn, x-cdn-info
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-cdn-info: loader
x-cdn: 4
content-encoding: gzip
x-hw: 1669477230.cds009.sk1.hn,1669477230.cds009.sk1.hc,1669477230.cds201.sk1.sc,1669477230.cds201.sk1.p,1669477230.cds009.sk1.sl
X-Firefox-Spdy: h2
www.clarity.ms/tag/aoowmvh2bj?ref=gtm2
13.107.227.53200 OK 0 B URL HTTP/2 www.clarity.ms/tag/aoowmvh2bj?ref=gtm2
IP 13.107.227.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /tag/aoowmvh2bj?ref=gtm2 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=9cdf0cb5a51846f5a7859fd538208ba7.20221126.20231126; expires=Sun, 26 Nov 2023 15:40:30 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:bdfb7149-d2ee-45f0-9a22-f0b1c5035608
x-cache: CONFIG_NOCACHE
x-azure-ref: 0bjOCYwAAAAAGQDWstUDgRpJhmnbPkMhpT1NMMjMxMDUwMjA1MDQ3ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Sat, 26 Nov 2022 15:40:30 GMT
X-Firefox-Spdy: h2
trytheyavue.com/bg/js/jquery-1.12.4.min.js
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/bg/js/jquery-1.12.4.min.js
IP 69.172.200.220:0
GET /bg/js/jquery-1.12.4.min.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 19:05:01 GMT
etag: W/"620d4add-17b8b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 27724e472e7115ce43de42bcaacd363b
server: DOSarrest
X-Firefox-Spdy: h2
trytheyavue.com/bg/js/slick.js
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/bg/js/slick.js
IP 69.172.200.220:0
GET /bg/js/slick.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 19:05:01 GMT
etag: W/"620d4add-15f74"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: e69b09e1384413df31ab6f63c642cb1c
server: DOSarrest
X-Firefox-Spdy: h2
click.foodjoint.org/?t=c&ids=Mjc4ODE0NTY3__NzkxMw==__MTYzODk3ODQ=__NDk0__278&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGeThwaw==
170.187.185.18200 OK 0 B URL HTTP/2 click.foodjoint.org/?t=c&ids=Mjc4ODE0NTY3__NzkxMw==__MTYzODk3ODQ=__NDk0__278&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGeThwaw==
IP 170.187.185.18:0
GET /?t=c&ids=Mjc4ODE0NTY3__NzkxMw==__MTYzODk3ODQ=__NDk0__278&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGeThwaw== HTTP/1.1
Host: click.foodjoint.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 15:40:28 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
trytheyavue.com/bg/js/pop.js
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/bg/js/pop.js
IP 69.172.200.220:0
GET /bg/js/pop.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 19:05:00 GMT
etag: W/"620d4adc-1ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 4d838b42b097f2411b3e17551d34a933
server: DOSarrest
X-Firefox-Spdy: h2
fast.vidalytics.com/embeds/Ipm9Y6ab/uuOPiUEZKLRO0WHH/player-dash-mse.min.js?hash=anwtegeyp
151.139.128.10200 OK 0 B URL HTTP/2 fast.vidalytics.com/embeds/Ipm9Y6ab/uuOPiUEZKLRO0WHH/player-dash-mse.min.js?hash=anwtegeyp
IP 151.139.128.10:0
GET /embeds/Ipm9Y6ab/uuOPiUEZKLRO0WHH/player-dash-mse.min.js?hash=anwtegeyp HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:30 GMT
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 11:26:22 GMT
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server, x-cdn, x-cdn-info
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=300, s-maxage=2592000
etag: "e3f57482698e8b79415fb04ca22b57ff"
server: UploadServer
x-guploader-uploadid: ADPycdvPUMqcf9zVZOwcKlF4uKMj8MNkeydscde57bNAL_ezd26aNdMm8ltYrYKtsKXMGDW-uqisgaMPhuN4LM-d2cR2dA
x-goog-generation: 1665141982214232
x-goog-hash: crc32c=DhSzgQ==, md5=4/V0gmmOi3lBX7BMoitX/w==
x-goog-metageneration: 1
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 502500
x-cdn: 4
content-encoding: gzip
x-hw: 1669477230.cds009.sk1.hn,1669477230.cds009.sk1.hc,1669477230.cds202.sk1.c,1669477230.cds009.sk1.sl
X-Firefox-Spdy: h2
trytheyavue.com/bg/css/fixed.css
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/bg/css/fixed.css
IP 69.172.200.220:0
GET /bg/css/fixed.css HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: text/css
last-modified: Wed, 16 Feb 2022 18:55:49 GMT
etag: W/"620d48b5-402"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 82059a160b363c928b3481c0c76e4c65
server: DOSarrest
X-Firefox-Spdy: h2
trytheyavue.com/bg/js/bookmarkscroll.js
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/bg/js/bookmarkscroll.js
IP 69.172.200.220:0
GET /bg/js/bookmarkscroll.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 19:05:00 GMT
etag: W/"620d4adc-b17"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 05dbdaff3f7e5eb4950e0e1f69938002
server: DOSarrest
X-Firefox-Spdy: h2
trytheyavue.com/bg/css/style-tv-2.css
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/bg/css/style-tv-2.css
IP 69.172.200.220:0
GET /bg/css/style-tv-2.css HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; uid=wKhaAWOCM22TmQA7AxWnAg==; cnid=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: text/css
last-modified: Wed, 16 Feb 2022 18:55:50 GMT
etag: W/"620d48b6-5cd7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 59feaa3658b742d7fe49fd7bbe9f8588
server: DOSarrest
X-Firefox-Spdy: h2
trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
IP 69.172.200.220:0
GET /bg/research?aff_id=470&subid=mwn3agiop1126theyavue HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://emdlvr.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 15:40:29 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: user_id=ed890ceba09cd0d631bfd09324e417c6; path=/; expires=Fri, 26 Nov 2032 15:40:29 GMT; secure
user_id.sig=cEXAeJ_15liPlaal8NliUOfh5yk; path=/; expires=Fri, 26 Nov 2032 15:40:29 GMT; secure
persistedParams=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; secure; httponly
persistedParams.sig=qQIP2OdsTFa87s1ohgL1NB6ingI; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; secure; httponly
uid=wKhaAWOCM22TmQA7AxWnAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/
cnid=0; path=/
content-security-policy: frame-ancestors 'self' cbsplit.com;
content-encoding: gzip
cache-control: private
x-dis-request-id: a87abeae7a3ae2fcca4c3a50f578dffa
server: DOSarrest
X-Firefox-Spdy: h2