Report - direct-link.net/345616/mayu

Report Overview

Submitted URL
direct-link.net/345616/mayu
IP
172.67.217.63
ASN
#13335 CLOUDFLARENET
Submitted
2023-02-06 19:29:05
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	381 B	64 kB	142.250.74.168
in.hotjar.com	1746	2018-10-22T19:15:59Z	2023-03-13T05:12:52Z	484 B	287 B	54.77.39.192
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	990 B	141 kB	216.58.207.227
linkvertise.chargebeestaticv2.com	unknown	2022-07-28T19:58:24Z	2023-03-13T00:49:54Z	1.0 kB	2.1 kB	54.230.111.33
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-13T07:57:11Z	441 B	165 kB	142.250.74.35
static.hotjar.com	641	2014-11-01T06:14:27Z	2023-03-13T05:12:51Z	377 B	72 kB	54.230.111.66
stackpath.bootstrapcdn.com	2467	2018-06-15T22:36:43Z	2023-03-13T07:25:30Z	443 B	903 B	104.18.10.207
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	4.1 kB	7.1 kB	93.184.220.29
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.1 kB	4.2 kB	142.250.74.131
sand.ostrichesica.com	193385	2021-06-07T04:00:13Z	2023-03-13T00:49:54Z	389 B	32 kB	54.230.111.3
paper.ostrichesica.com	183841	2021-06-07T16:37:44Z	2023-03-13T00:50:34Z	12 kB	2.9 kB	50.16.211.97
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
publisher.linkvertise.com	230086	2020-08-12T09:42:03Z	2023-03-13T05:42:25Z	2.7 kB	46 kB	172.64.207.34
cdn.taboola.com	1040	2013-07-20T01:48:03Z	2023-03-13T05:18:23Z	786 B	238 kB	151.101.1.44
p.typekit.net	620	2012-05-23T16:28:57Z	2023-03-13T05:10:18Z	443 B	338 B	23.33.119.26
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	408 B	1.1 kB	142.250.74.132
maxst.icons8.com	39862	2015-05-27T12:17:54Z	2023-03-13T08:51:43Z	442 B	702 B	185.76.9.16
vars.hotjar.com	1014	2020-11-05T11:13:14Z	2023-03-12T19:56:22Z	505 B	1.7 kB	143.204.55.118
gum.criteo.com	381	2015-01-22T11:58:57Z	2023-03-13T07:21:44Z	1.9 kB	6.8 kB	178.250.2.146
dnacdn.net	3760	2019-09-02T17:07:45Z	2023-03-13T07:41:37Z	508 B	707 B	178.250.0.157
direct-link.net	446959	2018-05-08T08:19:03Z	2023-03-13T08:30:37Z	358 B	748 B	104.21.61.249
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	4.1 kB	11 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-13T05:09:21Z	803 B	40 kB	104.17.24.14
contextual.media.net	513	2012-05-21T09:20:31Z	2023-03-13T05:53:10Z	382 B	372 B	2.18.172.23
js.chargebee.com	23733	2019-05-23T14:12:40Z	2023-03-13T08:38:04Z	2.2 kB	153 kB	143.204.55.121
www.thinksuggest.org	298123	2018-11-05T13:16:52Z	2023-03-13T00:50:34Z	386 B	52 kB	176.9.175.232
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:09:18Z	677 B	446 B	216.239.32.36
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	55 kB	34.120.237.76
gem.gbc.criteo.com	6039	2019-01-31T11:05:09Z	2023-03-13T05:34:09Z	387 B	492 B	185.235.84.49
linkvertise.com	57422	2015-12-18T22:49:10Z	2023-03-13T05:18:00Z	2.9 kB	26 kB	172.64.206.34
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350 B	1.0 kB	54.230.245.118
csm.nl.eu.criteo.net	6830	2017-01-30T05:55:08Z	2023-02-27T12:50:54Z	599 B	358 B	178.250.2.150
ag.gbc.criteo.com	5925	2018-12-17T14:17:41Z	2023-03-13T05:53:12Z	386 B	492 B	185.235.84.12

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-06 19:29:42	low	50.16.211.97	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (51)

	URL	Size	First Seen	Last Seen
	www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-	884 B	2023-03-13	2023-03-13
Pretty URL www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:51:52 Last Seen2023-03-13 20:48:46 Times Seen1 Hash de0eba5708e9ae4fa5f12fc9c654a45b 74a282bce0f8d759cde8be29b2a3408f7b32bbcc b6bb21b775cbd3387769eb79e2ff4070d55f6d30792345807ba98f43884fe290 Loading...

	js.chargebee.com/v2/148-3987f172361378a6883f.js	3.3 kB	2023-03-13	2023-03-13
Pretty URL js.chargebee.com/v2/148-3987f172361378a6883f.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:59:01 Last Seen2023-03-13 21:36:25 Times Seen1 Hash 6d813d6e32089bc8a6b827ee01e287ec 7235d94baeb20e621fbefbe82a09593415d875d6 ec37105f670d5a93df517d2b26f00b719a35baa91d4d9931f275559d07b75d9d Loading...

	paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F345616%2Fmayu%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675711781686&hl=1&op=0&ag=1317291471&rand=249812519052002007898220996056075091282187925287021621117021909228015290510&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=20GW5bAfN3&pto=1505&ver=50&gac=-&mei=&ap=&duid=1.1675711781.H5v6x24QTktFKatW&suid=1.1675711781.byReRohLkATVmciH&tuid=1.1675711781.wyngeJXBZXm6yVnz&fbc=-&gtm=W10%3D&it=57%2C1255%2C80&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0	2.7 kB	2023-03-13	2023-03-13
Pretty URL paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F345616%2Fmayu%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675711781686&hl=1&op=0&ag=1317291471&rand=249812519052002007898220996056075091282187925287021621117021909228015290510&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=20GW5bAfN3&pto=1505&ver=50&gac=-&mei=&ap=&duid=1.1675711781.H5v6x24QTktFKatW&suid=1.1675711781.byReRohLkATVmciH&tuid=1.1675711781.wyngeJXBZXm6yVnz&fbc=-&gtm=W10%3D&it=57%2C1255%2C80&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 IP 50.16.211.97 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:34:34 Last Seen2023-03-13 18:34:34 Times Seen1 Hash c339969a7eab933b46c5939113f67698 9d4023ee5ec89c7e6ffd171aafe07d98eaa6d04e 73e29413e7e91f2bcd21d2097a8d6ac1467a799775ea055b01feb69f5040fc09 Loading...

	static.hotjar.com/c/hotjar-3321028.js?sv=7	8.6 kB	2023-03-13	2023-03-13
Pretty URL static.hotjar.com/c/hotjar-3321028.js?sv=7 IP 54.230.111.66 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:34:34 Last Seen2023-03-13 18:34:34 Times Seen1 Hash 5e85c9dee8aa7be3a46a4c71847cc6be ef39b0081e61ef3e848f284fdebdb5b816f3a09b 7e0e65a58aeecfaa0cfc8f8ded6e607af41d895856fb630314c6635e38a1c480 Loading...

	paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F345616%2Fmayu%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675711782159&hl=1&op=0&ag=1317291471&rand=735121751677801161080965150200825622790157105017171181062718226079052958259&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=Ikig39t7c2&pto=1977&ver=50&gac=916818288.1675711782&mei=&ap=&duid=1.1675711781.H5v6x24QTktFKatW&suid=1.1675711781.byReRohLkATVmciH&tuid=1.1675711781.wyngeJXBZXm6yVnz&fbc=-&gtm=W10%3D&it=74%2C1255%2C80&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0	2.8 kB	2023-03-13	2023-03-13
Pretty URL paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F345616%2Fmayu%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675711782159&hl=1&op=0&ag=1317291471&rand=735121751677801161080965150200825622790157105017171181062718226079052958259&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=Ikig39t7c2&pto=1977&ver=50&gac=916818288.1675711782&mei=&ap=&duid=1.1675711781.H5v6x24QTktFKatW&suid=1.1675711781.byReRohLkATVmciH&tuid=1.1675711781.wyngeJXBZXm6yVnz&fbc=-&gtm=W10%3D&it=74%2C1255%2C80&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 IP 50.16.211.97 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:34:34 Last Seen2023-03-13 18:34:34 Times Seen1 Hash 04ccc7cb51336e99ea2657cdb8bd4e4c f6115562e750c09190968e107e9b34fee775dc37 58c16f1f9e1381987e9caf1bf84378b8d3d0e33698ba3b775fbc2a496bcf9738 Loading...

	cdn.taboola.com/libtrc/impl.20230205-36-RELEASE.js	742 kB	2023-03-13	2023-03-13
Pretty URL cdn.taboola.com/libtrc/impl.20230205-36-RELEASE.js IP 151.101.1.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:57:16 Last Seen2023-03-13 18:56:59 Times Seen1 Hash b5425d60a7ee4ea3a380b89452140834 456df9a9ca6a8a6fb84556d9aa0df12dfda58993 c6954b2245c105f5ef0e89223599d95d933f590794727fc4282321528ed27524 Loading...

	www.google.com/recaptcha/api2/bframe?hl=en&v=gEr-ODersURoIfof1hiDm7R5&k=6LcEr_UUAAAAAHXt5wx-k9P_m8Z1JY-Ck9Mxrhxo	178 B	2023-03-07	2023-03-29
Pretty URL www.google.com/recaptcha/api2/bframe?hl=en&v=gEr-ODersURoIfof1hiDm7R5&k=6LcEr_UUAAAAAHXt5wx-k9P_m8Z1JY-Ck9Mxrhxo IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:35:33 Last Seen2023-03-29 20:54:12 Times Seen21 Hash e655e93e36ffddf33e63c881d346849e 6bccbd5ea080d649c4a4a1cdadbff2c6678da874 ac0460b22a3019f9d94190894405b816feb4c61498f3c20d43259bb3fda51e8f Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LcEr_UUAAAAAHXt5wx-k9P_m8Z1JY-Ck9Mxrhxo&co=aHR0cHM6Ly9saW5rdmVydGlzZS5jb206NDQz&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=normal&cb=91ovi4ib6lk9	40 kB	2023-03-13	2023-03-13
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LcEr_UUAAAAAHXt5wx-k9P_m8Z1JY-Ck9Mxrhxo&co=aHR0cHM6Ly9saW5rdmVydGlzZS5jb206NDQz&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=normal&cb=91ovi4ib6lk9 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:34:34 Last Seen2023-03-13 18:34:34 Times Seen1 Hash 7b6337db6ec80ce170b75cca7ac3aacc c2993e325577fa272398e742651988299197278a bf2dd6065eae50fcf3aea391111fb20623c1749e69bc1a6bd830d92a89d68a3c Loading...

	linkvertise.com/polyfills.377513cbf9a45f49.js	35 kB	2023-03-07	2023-03-17
Pretty URL linkvertise.com/polyfills.377513cbf9a45f49.js IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-03-17 11:40:51 Times Seen1 Hash 348049f569f022db75011767ada032a0 3d47926da62df830988d03c7c2337ecba8e94b41 0209ce0d9df82b08c36e22a0b907b1fa1cbea9d2a055023e0a979fd226679f68 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 05:23:58 Times Seen36952420 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	linkvertise.com/345616/mayu?o=sharing	61 B	2023-03-07	2024-02-21
Pretty URL linkvertise.com/345616/mayu?o=sharing IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5600 Hash 5f1530f7c9d5ec10db5f85900397c9ea 457927ecea448848df6ae8f7a6cbb21535f6db85 624b2f08c18a4c6bef49e112548529dcf6bae01c03549213482a0ec60335e63c Loading...

	linkvertise.com/345616/mayu?o=sharing	343 B	2023-03-07	2024-02-21
Pretty URL linkvertise.com/345616/mayu?o=sharing IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5593 Hash 5815651c777ca9749f394ca8f86f70a7 e5d105ec2b6bc5b6be141e82b7678954c1cb2fb0 8a57f0ee2b5df3cb5a3ff340cfe4e55611629b7c053a132ee686c5fd3736033f Loading...

	js.chargebee.com/v2/136-04294f7bee4da31abb6d.js	12 kB	2023-03-13	2023-03-13
Pretty URL js.chargebee.com/v2/136-04294f7bee4da31abb6d.js IP 143.204.55.121 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:59:00 Last Seen2023-03-13 21:36:25 Times Seen1 Hash 9aef1ba966da7d13bb8f9410eea89309 5443e13b0eb71e7ceb7d881a97119ff6f67b891a fb3454c6e1840224e205a587219e908b7e8cda49b3dff6378bcc4568660b3610 Loading...

	js.chargebee.com/v2/152-dba6a3a9f49f90e94d8d.js	2.8 kB	2023-03-13	2023-03-13
Pretty URL js.chargebee.com/v2/152-dba6a3a9f49f90e94d8d.js IP 143.204.55.121 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:59:01 Last Seen2023-03-13 21:36:25 Times Seen1 Hash 4238223b72262e874558e29d28e551b3 6af143a8d0990a2d276c5e3b55767c033575e9f6 621cc9ed96d918b7db38a11171b84fa1aac736f92eacbe4d60cf1f0d78557e4d Loading...

	contextual.media.net/dmedianet.js?cid=8CUG57U1V	142 kB	2023-03-13	2023-03-13
Pretty URL contextual.media.net/dmedianet.js?cid=8CUG57U1V IP 2.18.172.23 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:34:34 Last Seen2023-03-13 18:34:34 Times Seen1 Hash 65899291eff02c7c6c93dca9989aa90c 9b1a79a38796b18bf33c82b7a661588a948768fb 4052fe6813d7b9ae24dba48396a87af6f9a86171d5eabb8e7bd44db26215a734 Loading...

	linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js	9.1 kB	2023-03-07	2023-12-14
Pretty URL linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:44:21 Last Seen2023-12-14 06:55:00 Times Seen6681 Hash a260e7ad8d02f2ec2470e211d97871ec 6e7061c207a5356c4ae9d040af2aea5d82d07b67 4d5206ee58438a808f3f4a09910fbbe126a1019c04649343de9b7ad38a690f6e Loading...

	stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js	51 kB	2023-03-07	2024-04-19
Pretty URL stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-19 03:52:35 Times Seen241119 Hash 67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4 Loading...

	linkvertise.com/runtime.9028a2ff6641236d.js	3.6 kB	2023-03-07	2023-09-10
Pretty URL linkvertise.com/runtime.9028a2ff6641236d.js IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-09-10 18:25:21 Times Seen2415 Hash 0270ef93354cd4a2eb1df53f143e2537 4b895eee6513d5e1509992c528b6343418d8546a d8f17fc17786ac0acc2dd2d47f24827e89cce8c72f1ce83eb764e475decb9970 Loading...

	www.google.com/recaptcha/api.js?render=explicit&onload=ng2recaptchaloaded	913 B	2023-03-13	2023-03-13
Pretty URL www.google.com/recaptcha/api.js?render=explicit&onload=ng2recaptchaloaded IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:37:41 Last Seen2023-03-13 20:48:46 Times Seen1 Hash 0262111f9b376598d557e8c76735dfc2 74d2b5ada5055c3f57d9879cddf25e1405a85a96 0919e8ea0a80d6773a69137078a2f144b686844690dea621a5678c21587afe45 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LcEr_UUAAAAAHXt5wx-k9P_m8Z1JY-Ck9Mxrhxo&co=aHR0cHM6Ly9saW5rdmVydGlzZS5jb206NDQz&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=normal&cb=91ovi4ib6lk9	69 B	2023-03-07	2024-04-19
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LcEr_UUAAAAAHXt5wx-k9P_m8Z1JY-Ck9Mxrhxo&co=aHR0cHM6Ly9saW5rdmVydGlzZS5jb206NDQz&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=normal&cb=91ovi4ib6lk9 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-19 04:03:46 Times Seen99031 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.8696090236792624%22%7D	14 kB	2023-03-07	2023-05-06
Pretty URL gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.8696090236792624%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:51:36 Last Seen2023-05-06 00:14:31 Times Seen2035 Hash 49e65b540d43d40997ce3844d41b2dd0 b7331c5edc086ee2c7731b1b36e937e7c44450a7 f185c1b78d87a007d9492a85c6ce64c06cc851ef9f13ca3caf8aaafe243b0ac2 Loading...

	linkvertise.com/scripts.03e173ff37d2f1cf.js	223 kB	2023-03-09	2023-03-14
Pretty URL linkvertise.com/scripts.03e173ff37d2f1cf.js IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:20:20 Last Seen2023-03-14 15:10:38 Times Seen1 Hash 80ae57542a8477d83cf8896c94e945c4 efd99b00c29107d15cde48fc8cf1e56ac5234c54 e19cd5e5b81ca1ecc00697c9d5707ddd30714cb4ccb64d249b5910cad2227ca4 Loading...

	linkvertise.com/345616/mayu?o=sharing	357 B	2023-03-07	2024-02-21
Pretty URL linkvertise.com/345616/mayu?o=sharing IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5601 Hash 7cb6df65dfbbc68a028c262cea708528 797bfa66ea86998e5481c7e9431158030f2a798f f30ba21714ececd6939cfb1db7d6cd0cf9f0d885b58716e4a0f33f556feccf1b Loading...

	linkvertise.com/345616/mayu?o=sharing	384 B	2023-03-07	2023-09-10
Pretty URL linkvertise.com/345616/mayu?o=sharing IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-09-10 18:25:21 Times Seen384 Hash 1b542721063834c7497013710c32ae68 eae295b9d949477cbd14deb382507fad6b159650 982369c09d990814aa5e0b323a005064bbc77748027b30318afafc3c678a53ea Loading...

	linkvertise.com/assets/vendor/thinksuggest	237 B	2023-03-07	2023-04-05
Pretty URL linkvertise.com/assets/vendor/thinksuggest IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-04-05 01:40:49 Times Seen138 Hash c006251d7a981892bfb1c09758a35776 7b3062cd0324e31386b8cea52c2552277a8531cf 3973b0e8cfafd23c7285066509370038cd98c3820bd6bddf818328212d8eb562 Loading...

	js.chargebee.com/v2/master-28f23e4f7b94abf18b9f.js	241 kB	2023-03-13	2023-03-13
Pretty URL js.chargebee.com/v2/master-28f23e4f7b94abf18b9f.js IP 143.204.55.121 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:59:01 Last Seen2023-03-13 21:36:25 Times Seen1 Hash 948dc641ad9d6d9c0fff32585c0f3beb 7bf71cc3c2dfd4d9406f33916431ec9664c3aac5 39ed66e627a5431312f5dacbdc440b31703a22b800bb4805e9d1383d80765fbe Loading...

	linkvertise.com/assets/vendor/thinksuggest	2.4 kB	2023-03-07	2023-04-05
Pretty URL linkvertise.com/assets/vendor/thinksuggest IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-04-05 01:40:49 Times Seen138 Hash d4fc14d8e50c4da7f4cdbb209c346b20 5d525ba24f01f8342c3e64b44f519ce246283f0a 84d63fa8eee330eb27272ba4eae1f934923a5f5ff5d2d070d49dfab5dbb9f2dc Loading...

	vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html	2.3 kB	2023-03-13	2023-03-14
Pretty URL vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html IP 143.204.55.118 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:50:52 Last Seen2023-03-14 14:54:55 Times Seen1 Hash 9dfb5fc1a14b81a3b18b479f63bb8ab3 2720e78ed93ca88089984dacdaaeae0e95a321d1 f7be6f445f6d0ff732728c98ddf542577272191c10478c1edf9913612de40f3b Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	88 kB	2023-03-07	2024-04-19
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-04-19 01:40:33 Times Seen95003 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=invisible&cb=jt2tumac7k5q	35 kB	2023-03-13	2023-03-13
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=invisible&cb=jt2tumac7k5q IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:34:34 Last Seen2023-03-13 18:34:34 Times Seen1 Hash 01d4987160e8a418cc1e6930b2d5ccc9 c02ef9392bacf68d6e7d9711516b57f70e5af52b 5e5e4feceb7b4d8b6f31fc95437657df5ba07928c623e0a65e9c06478ba842de Loading...

	linkvertise.com/assets/ads.js	53 B	2023-03-07	2024-04-19
Pretty URL linkvertise.com/assets/ads.js IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:21 Last Seen2024-04-19 01:40:32 Times Seen7533 Hash 6505cd57ceee4ca43442ca3a639bc9fb fba759aae1fba98c65c0f7530e11dcf9db64f6bd b1af735cf017f07c82e88c4e7ae104eb140ebec0882691bdc68ad6c1a6e3449f Loading...

	www.googletagmanager.com/gtag/js?id=G-7DRMH8RP03&l=dataLayer&cx=c	220 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-7DRMH8RP03&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:34:34 Last Seen2023-03-13 18:34:34 Times Seen1 Hash 22485748886439db1ace501bd6c0e697 2c8eb413533b7648d4527ac718e7c52c480d45e7 83fd61b01acc558d4233868fae66ed543125ec28b9ac5f82448ab34acdd81fb8 Loading...

	linkvertise.com/assets/vendor/thinksuggest	1.7 kB	2023-03-07	2023-04-05
Pretty URL linkvertise.com/assets/vendor/thinksuggest IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-04-05 01:40:49 Times Seen138 Hash 8551296584a94f00128790678e219118 096f7341f14c5f474f6b8d5ed84694244843ab08 8a5a3c8d45b113fbe4e9e07bad27b404ed620c8a3735ee9ba9de9247b309303d Loading...

	gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS	30 kB	2023-03-07	2023-03-17
Pretty URL gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS IP 178.250.2.146 ASN #44788 Criteo SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:17:20 Last Seen2023-03-17 21:47:34 Times Seen1 Hash 49908b82b9e80d6ae18a2a5b3d383af9 b5fdbde84ebb8d44304a39a7eca9afc15fd0fc43 1294283dd1491c4767840ecaafa97659b0e3c560ef4048bd51907181c52af89e Loading...

	www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js	412 kB	2023-03-13	2023-03-14
Pretty URL www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:35:27 Last Seen2023-03-14 08:38:41 Times Seen1 Hash d2aff4cd4e40d9bfa2c1f818bcad7ce2 4cc960f771819bccd4783520506e3909e8ec0fcd d808130157ed1fca0469f5f40210d7d1b2dc2c41add64e658bb3222aea4d9eba Loading...

	linkvertise.com/main.0beaefffb6495d99.js	2.9 MB	2023-03-13	2023-03-14
Pretty URL linkvertise.com/main.0beaefffb6495d99.js IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:34:34 Last Seen2023-03-14 07:23:30 Times Seen1 Hash 28c11099d9c45af36ac786f0c89a4d70 55c50d18beaa1000a2dd4c21c06fc197f89ebe83 103e69ea02dade2893d4ea4310ce1ea44397588ffbf28989dfbddd5f4f554999 Loading...

	linkvertise.com/345616/mayu?o=sharing	5.2 kB	2023-03-07	2023-09-10
Pretty URL linkvertise.com/345616/mayu?o=sharing IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-09-10 18:25:21 Times Seen325 Hash e8bce5239d8470b5056d43aaef157627 d5d141c9dd3783c3615218b91872eef8814b2f1c 7fe578c7d294d467782839ab32ab7abef8e15434758214fc5bf0a3b050e48c18 Loading...

	www.thinksuggest.org/simple/suggest-min-unpacked.js	52 kB	2023-03-07	2024-04-19
Pretty URL www.thinksuggest.org/simple/suggest-min-unpacked.js IP 176.9.175.232 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-04-19 01:40:33 Times Seen11743 Hash cd2f3074326840d55a3c3ea1e99e83fe 3a2e1d1a93506526ae3ed2b44d584af7771ff8d0 9ec9f50ac6a5dfdf7ace0a047ab4e86a7f8ff297030f93f9b8b4e27c57fdaa51 Loading...

	gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.8696090236792624%22%7D	418 B	2023-03-07	2023-03-17
Pretty URL gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.8696090236792624%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:53:17 Last Seen2023-03-17 21:47:34 Times Seen1 Hash 72ad3a00c4af14e8c301e9eafbe741ea 63dc5435a78e8b86fb54fa8be021d2f54b1903b1 d05385301aef1a77fd22c1c56c08102835063c8221b753de58aff20a800c95eb Loading...

	linkvertise.com/345616/mayu?o=sharing	7.2 kB	2023-03-07	2024-02-21
Pretty URL linkvertise.com/345616/mayu?o=sharing IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5600 Hash f21cce266449773cd5d82853b5a4e84a 503db95d21644bbcff48373abd04dc1c31186853 fbd8cabfc3161779b15b164e3b5c6a50f7311851471046cb25bc82b957ae692b Loading...

		Size	First Seen	Last Seen
	#1 Eval - e5d8c139688b25ef77b263d88ea99150	7 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:20:41 Last Seen2024-04-19 01:40:33 Times Seen14130 Hash e5d8c139688b25ef77b263d88ea99150 7abc9c61c4966543f66d150c0155bfac575f86a7 53e5f34ac520035c7f124076d1e68c70a85c83cf68a339fa713b872b54126148 Loading...

	#2 Eval - dd4bb96675bce01287adb6330e6ffa39	15 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 18:34:34 Last Seen2023-03-13 18:34:34 Times Seen1 Hash dd4bb96675bce01287adb6330e6ffa39 0d833e1b21ec288f3b8552bb9969de22a75df000 eee9accd9354f75706d3953b4650ad0ab40fbe86298950c689f6010f725d5d29 Loading...

	#3 Eval - eab8313bda5bcf457e3960dd870ec986	64 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 21:10:41 Last Seen2023-03-13 21:02:57 Times Seen1 Hash eab8313bda5bcf457e3960dd870ec986 2040c44ca623657a7842ed109aa1ff376784968c 6ddb568813476781555dc007dbf68364ac4237de77158b4a2b8906396d564da3 Loading...

	#4 Eval - b326b5062b2f0e69046810717534cb09	4 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-19 05:23:57 Times Seen23196 Hash b326b5062b2f0e69046810717534cb09 5ffe533b830f08a0326348a9160afafc8ada44db b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b Loading...

	#5 Eval - 6559111e4eae643ce013ce0821e91a02	25 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:20:41 Last Seen2024-04-19 01:40:33 Times Seen13601 Hash 6559111e4eae643ce013ce0821e91a02 fa1086c9aa2cb2d14f5c13bceefe21511bcdae5a d72255f7e5ea4dfdf9821df800356367d0bc7df07ecd103bb660018cb1e4f400 Loading...

	#6 Eval - 889ca9e2c79a3ce7aaadbcdfd0ce4ef5	62 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:20:41 Last Seen2024-04-19 01:40:33 Times Seen14094 Hash 889ca9e2c79a3ce7aaadbcdfd0ce4ef5 b05c2c051bae71f80cb8c289e5a42d4f96d323fa 6477acf082d26199b6ce8346b93149b1b999233d9fe76b0340ebf43317cf98f8 Loading...

	#7 Eval - cdb8f5789b376b67f7efeda96ebbd0f8	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 21:10:41 Last Seen2023-03-13 21:02:57 Times Seen1 Hash cdb8f5789b376b67f7efeda96ebbd0f8 906bf65532f9e9f29bb1df8bfb222515be0cb5fc d896ad7d50d378b59b9d1be3c4950cbc057ad6cc83f9cdef522454929cc9f301 Loading...

	#8 Eval - 37cd3bd2adbd29e7fafaf20f77f4bf43	18 B	2023-03-07	2024-04-15
Pretty Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-15 12:57:44 Times Seen656 Hash 37cd3bd2adbd29e7fafaf20f77f4bf43 d4a665f4bf3dc9a6f3ea3a55c50c5a37c6bd05f5 0f3342bc14063d9ed7a669eb067b50ea17b2cb7dcb51968939b72fa9ac862d91 Loading...

	#9 Eval - f4bf22269e41be9e3a92808f5d0f2201	16 kB	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 21:10:41 Last Seen2023-03-13 21:02:57 Times Seen1 Hash f4bf22269e41be9e3a92808f5d0f2201 597b026bf76f9a647e1d16d8532d9ddd5f0de46b 276096740107abb4b5b058985713ac9e81f2fcb100010356b47be556e300d790 Loading...

	#10 Eval - af72b91f44a63027ce6a3360baee8a43	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 21:10:41 Last Seen2023-03-13 21:02:57 Times Seen1 Hash af72b91f44a63027ce6a3360baee8a43 030a8bdf4fc642af17e60f7942b4e7db0b395ef9 3767d5321b4ae282cd6bc77966b15645f99a332b0c28e8bdd6ffd6bfa9cb2104 Loading...

	#11 Eval - 97ee446dd8de327fae289db9f39d9271	23 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 18:34:34 Last Seen2023-03-13 18:34:34 Times Seen1 Hash 97ee446dd8de327fae289db9f39d9271 f0a5fbbaf27dee3f532a40db5b5440ec7f8c3fcd f1a2fd05a5fc7fb974d6f863da09449a012baab1383ea7696f8862340189b373 Loading...

HTTP Transactions (90)

	URL	IP	Response	Size
	direct-link.net/345616/mayu	104.21.61.249	302 Moved Temporarily	0 B
URL HTTP/1.1 direct-link.net/345616/mayu IP 104.21.61.249:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /345616/mayu HTTP/1.1 Host: direct-link.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 302 Moved Temporarily Date: Mon, 06 Feb 2023 19:28:53 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Location: https://linkvertise.com/345616/mayu?o=sharing Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g%2FjqD7iPER7rYIqdty2CCEzmFC8%2B8tfIHbdj7t12%2FBQV0btPU3Vpm%2BQhPcF7R0xlgRWI83%2FDpo0BMRrmezUn9sDBfgu31R30QIbnrvULYIBrzuppP%2FryUfY3HmerRyMHerQ%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 79564aa1382eb4eb-OSL alt-svc: h2=":443"; ma=60

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 507011ccb9124dcd57e84a90a0965cc4 1a6575d0ac979c7184490cc9836ac4812ad2afd1 01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE" Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5694 Expires: Mon, 06 Feb 2023 21:03:48 GMT Date: Mon, 06 Feb 2023 19:28:54 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c21ba65e44ac95470c314e068e49a9eb 17a13b13738993d889d4afa3d848dc63bf6eba64 9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66" Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7645 Expires: Mon, 06 Feb 2023 21:36:19 GMT Date: Mon, 06 Feb 2023 19:28:54 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash fb7b6b46e708ad73eaaa3c21e74569ae 950663c025acad81556af5aa3022ecc9d55097fe 763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64" Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2348 Expires: Mon, 06 Feb 2023 20:08:02 GMT Date: Mon, 06 Feb 2023 19:28:54 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 757a7104a889ab2e90e2a044565c56c1 ffa9ac5093b7ff58ff4cfde98c8de51de70a3197 5479d9fbabd6c69a0e702e3408f8b286476c6cae4891df5b7658d22f93c4b0f1 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "5479D9FBABD6C69A0E702E3408F8B286476C6CAE4891DF5B7658D22F93C4B0F1" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3874 Expires: Mon, 06 Feb 2023 20:33:28 GMT Date: Mon, 06 Feb 2023 19:28:54 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash ff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Mon, 06 Feb 2023 18:34:06 GMT content-type: application/json age: 3288 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e76071a28ee566dababb3834f46d68ed aebb4e68c1ba2de0f90025283e8ed8470944fde0 78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: aWiHKzmDOnzpBU7RqqkMRd+MgWvo1McrFERIuvUmxMu2fL7fIxNjxmBeAbYTmOdlNr/hxXmSXkA= x-amz-request-id: 7CGC93DJ7XKCNQG0 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Mon, 06 Feb 2023 18:45:16 GMT age: 2618 last-modified: Sun, 29 Jan 2023 18:44:47 GMT etag: "e76071a28ee566dababb3834f46d68ed" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Mon, 06 Feb 2023 19:28:54 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 757a7104a889ab2e90e2a044565c56c1 ffa9ac5093b7ff58ff4cfde98c8de51de70a3197 5479d9fbabd6c69a0e702e3408f8b286476c6cae4891df5b7658d22f93c4b0f1 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "5479D9FBABD6C69A0E702E3408F8B286476C6CAE4891DF5B7658D22F93C4B0F1" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3874 Expires: Mon, 06 Feb 2023 20:33:28 GMT Date: Mon, 06 Feb 2023 19:28:54 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 8e6c8a904a6275f4d478ff38411ca6b7 36f7ab0cfcd1da5101ce8d9e385e3a31061d029d a3147f1f023affaf8a81efa9c13663417dab8d8cad5a5b676484a9944c008410 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4218 Cache-Control: max-age=117029 Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:54 GMT Etag: "63e06aa1-118" Expires: Wed, 08 Feb 2023 03:59:23 GMT Last-Modified: Mon, 06 Feb 2023 02:49:05 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 280`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 8e6c8a904a6275f4d478ff38411ca6b7 36f7ab0cfcd1da5101ce8d9e385e3a31061d029d a3147f1f023affaf8a81efa9c13663417dab8d8cad5a5b676484a9944c008410 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4518 Cache-Control: max-age=117329 Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:54 GMT Etag: "63e06aa1-118" Expires: Wed, 08 Feb 2023 04:04:23 GMT Last-Modified: Mon, 06 Feb 2023 02:49:05 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 280`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 370e74ead61664d84985db7a9087c0e4 7c55daf6c9231e1586a0c9d48375766e7f02405f ddc18509904868cb8e31ad5cbbd27245fc163eaac44d40a7e95fb795c6e248db HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4222 Cache-Control: max-age=93994 Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:54 GMT Etag: "63e010a2-117" Expires: Tue, 07 Feb 2023 21:35:28 GMT Last-Modified: Sun, 05 Feb 2023 20:25:06 GMT Server: ECS (ska/F711) X-Cache: HIT Content-Length: 279`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 370e74ead61664d84985db7a9087c0e4 7c55daf6c9231e1586a0c9d48375766e7f02405f ddc18509904868cb8e31ad5cbbd27245fc163eaac44d40a7e95fb795c6e248db HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3998 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:54 GMT Last-Modified: Mon, 06 Feb 2023 18:22:16 GMT Server: ECS (ska/F713) X-Cache: HIT Content-Length: 279`

	cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css	104.17.24.14	200 OK	10 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css IP 104.17.24.14:0 ASN #13335 CLOUDFLARENET File type ASCII text Size 10 kB (10228 bytes) Hash 9f8ae150e614ee49febe1ac6088202e6 5f5d1a1a96289a0fa1d052d8dd59d5a236e5227e c931e5cbd1bbd7e7e6802ce040c35ce7c1d7425988b767c6a29bedbfa2eb496f HTTP Headers `GET /ajax/libs/font-awesome/5.10.2/css/all.css HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:54 GMT content-type: text/css; charset=utf-8 content-length: 10228 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03e60-111e5" last-modified: Mon, 04 May 2020 16:10:08 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 1614874 expires: Sat, 27 Jan 2024 19:28:54 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E2hAMmM9X1IFGW4QezjvJ1OnAba7GO811N2%2BqImCMbwrsGBhrVe%2FZ2HGqGHHYkRc%2FgnnI6QSdBm2a5%2FrB6TbfICTuncQWLgs%2Bp8o7acNCNyUPgf95QbnYVZna63zLSsctikLnRXB"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 79564aa4ad3eb511-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	104.17.24.14	200 OK	28 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 104.17.24.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65451) Size 28 kB (27748 bytes) Hash 638a4990025383a0f83ebf29bdb84a68 153e8818dc42f598e47fde8cf398f1447649a4d0 878e34b89800bb271d3588e526eb3598eb3822e263f3bdaf53645847d39d0ad6 HTTP Headers `GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:54 GMT content-type: application/javascript; charset=utf-8 content-length: 27748 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03ec4-15851" last-modified: Mon, 04 May 2020 16:11:48 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 1444318 expires: Sat, 27 Jan 2024 19:28:54 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zFYCRvwMNOI5Nhy21KnMx3cC7ye2LUYghMmAoeob6ShiSKGKVjNE0Q1P0pwsKw71IVk6oiRjf%2FOhwwM%2BCpmMYXAmfYfA9QRrdU8m2rUASYs1O2uay1VQpmCKw%2FG%2F54JB0gdLQihW"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 79564aa4bd63b511-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css	23.33.119.26	200 OK	5 B
URL HTTP/2 p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css IP 23.33.119.26:0 ASN #20940 Akamai International B.V. File type ASCII text Size 5 B (5 bytes) Hash 83d24d4b43cc7eef2b61e66c95f3d158 f0cafc285ee23bb6c28c5166f305493c4331c84d 1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb HTTP Headers `GET /p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css HTTP/1.1 Host: p.typekit.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx content-type: text/css content-length: 5 last-modified: Thu, 28 Jul 2022 22:24:50 GMT etag: "62e30cb2-5" cache-control: public, max-age=604800 access-control-allow-origin: * cross-origin-resource-policy: cross-origin accept-ranges: bytes date: Mon, 06 Feb 2023 19:28:54 GMT X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 370e74ead61664d84985db7a9087c0e4 7c55daf6c9231e1586a0c9d48375766e7f02405f ddc18509904868cb8e31ad5cbbd27245fc163eaac44d40a7e95fb795c6e248db HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4627 Cache-Control: max-age=94398 Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:54 GMT Etag: "63e010a2-117" Expires: Tue, 07 Feb 2023 21:42:12 GMT Last-Modified: Sun, 05 Feb 2023 20:25:06 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 279`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 8e6c8a904a6275f4d478ff38411ca6b7 36f7ab0cfcd1da5101ce8d9e385e3a31061d029d a3147f1f023affaf8a81efa9c13663417dab8d8cad5a5b676484a9944c008410 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4518 Cache-Control: max-age=117329 Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:54 GMT Etag: "63e06aa1-118" Expires: Wed, 08 Feb 2023 04:04:23 GMT Last-Modified: Mon, 06 Feb 2023 02:49:05 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 280`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Mon, 06 Feb 2023 19:07:20 GMT age: 1294 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 836bc62dbb011b6180fc7209d0061736 74e6f18561a7006a3afb6ab03559eec239ce4b36 90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:54 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9206c3ba6d5a17d62244c438fd03496e 069e8257aebe618953434b1299d065540125a512 937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:54 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2	216.58.207.227	200 OK	11 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data Size 11 kB (11028 bytes) Hash 1f6d3cf6d38f25d83d95f5a800b8cac3 279f300ca2cbbdf9f5036ef2f438607fbf377daa 796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f HTTP Headers `GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 11028 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 06 Feb 2023 00:48:21 GMT expires: Tue, 06 Feb 2024 00:48:21 GMT cache-control: public, max-age=31536000 age: 67233 last-modified: Wed, 11 May 2022 19:24:50 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG	142.250.74.168	200 OK	63 kB
URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG IP 142.250.74.168:0 ASN #15169 GOOGLE File type Unicode text, UTF-8 text, with very long lines (12213) Size 63 kB (63246 bytes) Hash 31d8545ce94530b0970920b8b9d0b89a 52e1992212de8820f408eb6505b8ce1194550d56 63e52762cf3e7377baeb6d5e110b3efa15901bef1d3981620cca553bf7c1c734 HTTP Headers `GET /gtm.js?id=GTM-TZ69NZG HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Mon, 06 Feb 2023 19:28:54 GMT expires: Mon, 06 Feb 2023 19:28:54 GMT cache-control: private, max-age=900 last-modified: Mon, 06 Feb 2023 19:05:02 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 63246 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 836bc62dbb011b6180fc7209d0061736 74e6f18561a7006a3afb6ab03559eec239ce4b36 90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:54 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9206c3ba6d5a17d62244c438fd03496e 069e8257aebe618953434b1299d065540125a512 937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:54 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9b88bae61bca33aba8aa99f6128db8d9 a07b61fb2458917699613fcae68710941b595416 54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA" Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4857 Expires: Mon, 06 Feb 2023 20:49:52 GMT Date: Mon, 06 Feb 2023 19:28:55 GMT Connection: keep-alive`

	linkvertise.com/polyfills.377513cbf9a45f49.js	172.64.206.34	200 OK	21 kB
URL HTTP/2 linkvertise.com/polyfills.377513cbf9a45f49.js IP 172.64.206.34:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (34605), with no line terminators Size 21 kB (20556 bytes) Hash 9680064893aca19fc3ee6c46d7926568 c67c1f92cbe1d74058992b6284d6fb731de69f79 6366b98ca20d41f5ee4ac500e699bb688b84754d1645883535e9ab5763bb3b51 HTTP Headers `GET /polyfills.377513cbf9a45f49.js HTTP/1.1 Host: linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/345616/mayu?o=sharing Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:54 GMT content-type: application/javascript access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"3f3f145029d39fbfb2042c5095feac69" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dWD%2Bz5VCvukCCEPnGboXQ58TZt%2FkY4g8XnxAW1HudsVkTwa6SpOECmgqDWeGqX0oy9%2BjkrrNCbljfs4dgM5CgtzvylmN7D0pfIPLbFKGDJG68SIEm%2BVq0THKPSMM7oWUk5E%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-cache-status: DYNAMIC x-frame-options: sameorigin server: cloudflare cf-ray: 79564aa40a5a71fe-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	sand.ostrichesica.com/clicktrue_invocation.js?id=14473	54.230.111.3	200 OK	32 kB
URL HTTP/2 sand.ostrichesica.com/clicktrue_invocation.js?id=14473 IP 54.230.111.3:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators Size 32 kB (31898 bytes) Hash df139a8c85ba89ca78358ff5e8c07512 2426fd2132a8e8b39d90f69a7a518ac5ae2e523a cc8f1ae8b47e5750157c5e6525f45a32b48b3e77f28ccdb6f3678377b053463e HTTP Headers `GET /clicktrue_invocation.js?id=14473 HTTP/1.1 Host: sand.ostrichesica.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: text/javascript; charset=utf-8 content-length: 31898 cache-control: max-age=43200 content-encoding: gzip date: Mon, 06 Feb 2023 13:37:50 GMT etag: "15753-O5Eri8Ib6yIvANrSS3ZHKZ8IDsg" expires: Tue, 07 Feb 2023 01:37:50 GMT server: Caddy x-cache: Hit from cloudfront via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: wns-AFscw0wmPLlRU8uTFyG22SGNIDjqlAlmTvMTHilgK-heqN_BKQ== age: 21065 X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash ef8583e68892ef29ad532a6283807e69 43ea0afb6e88f4efb02da58392b44ceaf4bc4519 ae53e9b2f0321947d5b5dfa3cd591d06fa9eedf712b70a8a60d39ec4e7a61f27 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2207 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:55 GMT Last-Modified: Mon, 06 Feb 2023 18:52:09 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 279`

	js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html	143.204.55.121	200 OK	203 B
URL HTTP/2 js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html IP 143.204.55.121:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 203 B (203 bytes) Hash f8b310373855a5c3f476ebe44fbb7c50 bb4305b1d788c605028cad28f1210d941486eddc e2335ee83781668ff411e81f2e5200f3a5759aa9f92d93b8e0c2738960444ed0 HTTP Headers GET /v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK content-type: text/html content-length: 203 last-modified: Thu, 02 Feb 2023 08:38:43 GMT x-amz-version-id: bXOn1NOPXbkLnpJrrJ4PlmrQN1lHLpgs accept-ranges: bytes server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload date: Mon, 06 Feb 2023 19:27:35 GMT cache-control: max-age=300,public etag: "f8b310373855a5c3f476ebe44fbb7c50" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: sGcCrrsjPUkFi7kpOjzjkKQrPj1FR-xLynz0-_ucmY-njNt8ZbJi8A== age: 90 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2	216.58.207.227	200 OK	128 kB
URL HTTP/2 fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 128360, version 1.0\012- data Size 128 kB (128360 bytes) Hash 393b5d8b3fd798486652801f3ee8c6ea 979383e09be691921a211f5fc4ef97fc4406e4dd 83be7b2f504af2c948c5106fa907dc4224380a7b75a993a7bff52cd71ec8c7d3 HTTP Headers `GET /s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 128360 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sun, 05 Feb 2023 00:56:02 GMT expires: Mon, 05 Feb 2024 00:56:02 GMT cache-control: public, max-age=31536000 age: 153173 last-modified: Thu, 25 Aug 2022 00:09:15 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/account	172.64.207.34	204 No Content	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/account IP 172.64.207.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /api/v1/account HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` HTTP/2 204 No Content date: Mon, 06 Feb 2023 19:28:55 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-headers: content-type access-control-max-age: 0 set-cookie: laravel_session=zySCTjK3lW0KQA0gmDl7qb7FzTa0uObBE6dh5AX8; expires=Tue, 06 Feb 2024 19:28:55 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PBRNLi004EiH84H%2B9hjreMYVxKLRb6rZTSZbo0hlr%2FJGFq14DO%2BnvuIAwHPTMQWutkURUsmDIal0GusTqN6PwFBr1s01rLIpfq2LpI4lXsKINbF9CZ3eN0ksxBGnU%2F1mrq0OzTYnaP3wC5TX"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 79564aa9af9176bf-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/redirect/link/static/345616/mayu?origin=	172.64.207.34	204 No Content	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/345616/mayu?origin= IP 172.64.207.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/v1/redirect/link/static/345616/mayu?origin= HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Mon, 06 Feb 2023 19:28:55 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-headers: content-type access-control-max-age: 0 set-cookie: laravel_session=wGpJqAU2Y60Dp1J7HtHUTX5OGFRKYhdxzwfvvyjs; expires=Tue, 06 Feb 2024 19:28:55 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CYGWWRM3Q9HipJJXnZ2X%2BdcikIj4WRU5lGL83m4BrHg8peC538IYOliyZNWjoQThaVZqKtTZXQLRQUVoEyRfxBQLfwvCO4ievQTA2A5Q9A1kyOSchDcMxZNWYfH%2FxNfX8Lojgncgt8M8ZyAE"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 79564aa9bf9f76bf-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash ef8583e68892ef29ad532a6283807e69 43ea0afb6e88f4efb02da58392b44ceaf4bc4519 ae53e9b2f0321947d5b5dfa3cd591d06fa9eedf712b70a8a60d39ec4e7a61f27 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4736 Cache-Control: max-age=150999 Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:55 GMT Etag: "63e0ed4e-117" Expires: Wed, 08 Feb 2023 13:25:34 GMT Last-Modified: Mon, 06 Feb 2023 12:06:38 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 279`

	js.chargebee.com/v2/master-28f23e4f7b94abf18b9f.js	143.204.55.121	200 OK	150 kB
URL HTTP/2 js.chargebee.com/v2/master-28f23e4f7b94abf18b9f.js IP 143.204.55.121:0 ASN #16509 AMAZON-02 File type data Size 150 kB (149689 bytes) Hash bc06bcd118725acf6c024d83701d67aa d2d6da5ef3a74b4326e8863bdc05e1af2d92db78 7a01901250f314d68b803e9947659e18c4a566758b7295f0fa84974beccb4993 HTTP Headers `GET /v2/master-28f23e4f7b94abf18b9f.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Thu, 02 Feb 2023 08:38:42 GMT x-amz-version-id: sBqFHnwLy79Wl0TJWpdafjWm.LCL_tH_ server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Mon, 06 Feb 2023 19:27:17 GMT cache-control: max-age=300,public etag: W/"948dc641ad9d6d9c0fff32585c0f3beb" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: b9OOf1A5YFpXoAtU1x7TWO6NqoR5KEUjGYtgbY4D8uZmWqvHdvrWjQ== age: 99 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/account	172.64.207.34	200 OK	970 B
URL HTTP/2 publisher.linkvertise.com/api/v1/account IP 172.64.207.34:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (932), with no line terminators Size 970 B (970 bytes) Hash b3b00a8274a8f9599f496b5911041db6 67960b100460722e3cab3dbebe3032987bbee9de 6c90619f3401247f3a2f63dff136d33d74c0e59589900928d1e5de92f9410ae9 HTTP Headers `GET /api/v1/account HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Content-Type: application/json Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:55 GMT content-type: application/json cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin access-control-allow-credentials: true set-cookie: laravel_session=f2xsf8WvI7XEH4ZOEzw322wgPZAZxvvHIWwMfBzv; expires=Tue, 06 Feb 2024 19:28:55 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LxotJyFZIGEgDeIr18pfvj9WS9m3qbJA0IVQCOk9tz0e6sZoI0YRZ14m%2FJ6aRkocXMMM5Y9aFXJeG0Ab%2Flh3XkkTYGFvh%2FWMJF2OnLAGrEpdQGE04aEDFbe1i6Ts8ncFwCjQWM%2FmXxADg5LO"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 79564aaa181d76bf-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.77.32	200 OK	1.2 kB
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 1.2 kB (1203 bytes) Hash a8216da4100d8966f3baea6bd439c7ba 84a7fdf10b130604b4b00cce23049dee7b161772 fea204d7a4209bf5902cd43c8bcd305f7ff6780b93c5318ddf3ef428bb5f27b1 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B377998D1B8E8E3B746B569DF019B4B5A7B484126FD47C169920CCA6517C7C69" Last-Modified: Sun, 05 Feb 2023 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=1775 Expires: Mon, 06 Feb 2023 19:58:30 GMT Date: Mon, 06 Feb 2023 19:28:55 GMT Connection: keep-alive`

	www.thinksuggest.org/simple/suggest-min-unpacked.js	176.9.175.232	200 OK	52 kB
URL HTTP/1.1 www.thinksuggest.org/simple/suggest-min-unpacked.js IP 176.9.175.232:0 ASN #24940 Hetzner Online GmbH File type Unicode text, UTF-8 text, with very long lines (51479), with no line terminators Size 52 kB (51487 bytes) Hash cd2f3074326840d55a3c3ea1e99e83fe 3a2e1d1a93506526ae3ed2b44d584af7771ff8d0 9ec9f50ac6a5dfdf7ace0a047ab4e86a7f8ff297030f93f9b8b4e27c57fdaa51 HTTP Headers `GET /simple/suggest-min-unpacked.js HTTP/1.1 Host: www.thinksuggest.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Server: nginx Date: Mon, 06 Feb 2023 19:28:55 GMT Content-Type: application/javascript Content-Length: 51487 Last-Modified: Fri, 05 Jun 2020 12:39:04 GMT Connection: keep-alive ETag: "5eda3ce8-c91f" Accept-Ranges: bytes`

	paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F345616%2Fmayu%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675711781686&hl=1&op=0&ag=1317291471&rand=249812519052002007898220996056075091282187925287021621117021909228015290510&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=20GW5bAfN3&pto=1505&ver=50&gac=-&mei=&ap=&duid=1.1675711781.H5v6x24QTktFKatW&suid=1.1675711781.byReRohLkATVmciH&tuid=1.1675711781.wyngeJXBZXm6yVnz&fbc=-&gtm=W10%3D&it=57%2C1255%2C80&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0	50.16.211.97	200 OK	964 B
URL HTTP/2 paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F345616%2Fmayu%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675711781686&hl=1&op=0&ag=1317291471&rand=249812519052002007898220996056075091282187925287021621117021909228015290510&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=20GW5bAfN3&pto=1505&ver=50&gac=-&mei=&ap=&duid=1.1675711781.H5v6x24QTktFKatW&suid=1.1675711781.byReRohLkATVmciH&tuid=1.1675711781.wyngeJXBZXm6yVnz&fbc=-&gtm=W10%3D&it=57%2C1255%2C80&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 IP 50.16.211.97:0 ASN #14618 AMAZON-AES File type ASCII text, with very long lines (2717), with no line terminators Size 964 B (964 bytes) Hash 8847449dcb94407c653e7a8b34cbf26e a06fbb37a8b1bcc3d6325aaff9f973d288993323 8c3e10ea3cf3c153ef1b22bdc8130726873e5c05a24b9ad9707b479de0e0b168 HTTP Headers GET /ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F345616%2Fmayu%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675711781686&hl=1&op=0&ag=1317291471&rand=249812519052002007898220996056075091282187925287021621117021909228015290510&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=20GW5bAfN3&pto=1505&ver=50&gac=-&mei=&ap=&duid=1.1675711781.H5v6x24QTktFKatW&suid=1.1675711781.byReRohLkATVmciH&tuid=1.1675711781.wyngeJXBZXm6yVnz&fbc=-&gtm=W10%3D&it=57%2C1255%2C80&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1 Host: paper.ostrichesica.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK cache-control: no-cache, no-store, must-revalidate content-encoding: gzip content-type: text/javascript date: Mon, 06 Feb 2023 19:28:55 GMT expires: Fri, 01 Jan 1990 00:00:00 GMT pragma: no-cache set-cookie: cg_uuid=2ef7e539bbff19b605777325e26a120b; Max-Age=29030400; Path=/; Expires=Mon, 08 Jan 2024 19:28:55 GMT; HttpOnly; Secure; SameSite=None content-length: 964 X-Firefox-Spdy: h2`

	cdn.taboola.com/libtrc/linkvertise-link-to/loader.js	151.101.1.44	200 OK	42 kB
URL HTTP/2 cdn.taboola.com/libtrc/linkvertise-link-to/loader.js IP 151.101.1.44:0 ASN #54113 FASTLY File type Unicode text, UTF-8 text, with very long lines (28388) Size 42 kB (41513 bytes) Hash 23deb1ddaa75602eeb4f36b5929d7432 3d2e5bda5b979b134b7230a013d2d4c1b2ea2470 e11519d84c14a33ab5672598b366bc7900746aa30a480054b7ab7b913a796d5e HTTP Headers `GET /libtrc/linkvertise-link-to/loader.js HTTP/1.1 Host: cdn.taboola.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: oNdABE+1KtmM4OnTQ4olhwmdzm/B6j/0unKjZV6/I1bA4R6AILwAzPHiiHuB7ep/Y0rlKjEsE4c= x-amz-request-id: FWFYSRPW32RT7Q19 x-amz-replication-status: PENDING last-modified: Mon, 06 Feb 2023 13:38:27 GMT etag: "7eab3eb839a645b949c06dd7ddf7bfe0" x-amz-version-id: Mvot3hx9kdwaaFbg.IKU9AEbA277NNvI content-type: application/javascript; charset=utf-8 server: AmazonS3 content-encoding: gzip accept-ranges: bytes date: Mon, 06 Feb 2023 19:28:55 GMT via: 1.1 varnish age: 20973 x-served-by: cache-bma1646-BMA x-cache: HIT x-cache-hits: 195 x-timer: S1675711736.892823,VS0,VE0 cache-control: private,max-age=14401 vary: Accept-Encoding abp: 38 content-length: 41513 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=n%2Blms0524Rdj1q%2BfXIcTIPZvt9WWPkqvpk2FlLFxPllXWEIJNk9F8S0nSKs51vMoTlbn&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd	172.64.207.34	204 No Content	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=n%2Blms0524Rdj1q%2BfXIcTIPZvt9WWPkqvpk2FlLFxPllXWEIJNk9F8S0nSKs51vMoTlbn&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd IP 172.64.207.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/v1/validate-traffic?cheq_response=n%2Blms0524Rdj1q%2BfXIcTIPZvt9WWPkqvpk2FlLFxPllXWEIJNk9F8S0nSKs51vMoTlbn&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Mon, 06 Feb 2023 19:28:55 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-headers: content-type access-control-max-age: 0 set-cookie: laravel_session=jLFHKcbG3kdSNr6pN0FTQKIJ2VGI5Di3FmIgcyfq; expires=Tue, 06 Feb 2024 19:28:55 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hiAHTKRf0zqKZHHl7vUgCx1nrZ5QYyIDJKkUNPcHiu9yQ%2BwKTevKLIcOWrQcTnBTWs3OiEDygxfCXmI8aeCU%2BUuiPQbzij9co%2FCn751fm8yia03sEs4nyBk5BvtYiFLeIda2AgeGd3WlCHQE"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 79564aad4d0d76bf-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/redirect/link/static/345616/mayu?origin=	172.64.207.34	200 OK	40 kB
URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/345616/mayu?origin= IP 172.64.207.34:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (34387), with no line terminators Size 40 kB (39531 bytes) Hash d7bceb25b12549d82918432f5bae37aa 475b0d0e9175ebe97bf03fc6382fb85abda06de6 a4601d2ab35ec0d4b99bc6398fd9619cc834cc9f3592aaf2abfc8d7150f97557 HTTP Headers `GET /api/v1/redirect/link/static/345616/mayu?origin= HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Content-Type: application/json Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:55 GMT content-type: application/json cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin access-control-allow-credentials: true set-cookie: laravel_session=VzqvN0jMDkPj6FyJxMivW8Wv4hVv1vbqpAzcc0NY; expires=Tue, 06 Feb 2024 19:28:55 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TttyfMMg9V0Krjj7ZD124YJK%2BFo5gFQrEaXGvU%2B%2F3nw8Nm0NdUr%2BYZCTV1lXVfR4VGpeIJdbSGNviq1z7HrI5XGsmj%2FV91tscelDXBO6JLbo2zxz0G4ywr5QsK2fd1ZgtyYs0pjBDHjz3uri"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 79564aaa486b76bf-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F345616%2Fmayu%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675711782159&hl=1&op=0&ag=1317291471&rand=735121751677801161080965150200825622790157105017171181062718226079052958259&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDY0NjhdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFsiY2IiLCIwLDAsMCwwLDIsMCwwLDAsMCwyLDEsMCwwLDAsMCwxLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDIsMCwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMiJdLFstMSwiTGludXggeDg2XzY0Il0sWy0yLCI1LElMSFlMQjlCTFRhMkpxUWczRm9lZWwyd1liRTJvZ0JJS0o2Y1IwMDBNSkhRd1lUREdZYWh2M3V0NzFWcFhSOU84K001clZTS3Mxa1BCZS8vOTlzblZKR3BVZFBmZHp6bjNPZmMiXSxbLTMsIltdIl0sWy00LCItIl0sWy01LCItIl0sWy02LCJ7XCJ3XCI6W1wiMFwiLFwiJFwiLFwialF1ZXJ5XCIsXCJib290c3RyYXBcIixcImpRdWVyeTM0MTAyODUwMzExNDA0MjU2MDM5NjFcIixcImRhdGFMYXllclwiLFwiZjcwNVwiLFwiY2JKc29uUFwiLFwiX19jb3JlLWpzX3NoYXJlZF9fXCIsXCJjYl93aW5kb3dfbG9nZ2VyXCIsXCJfX1NFTlRSWV9fXCIsXCJDaGFyZ2ViZWVcIixcImlzQWRCbG9ja0FjdGl2ZVwiLFwiX21OSGFuZGxlXCIsXCJtZWRpYW5ldF92ZXJzaW9uSWRcIixcIm1lZGlhbmV0X2Nobm1cIixcIm1lZGlhbmV0X2Nobm0yXCIsXCJtZWRpYW5ldF9jaG5tM1wiLFwibWVkaWFuZXRfbWlzY1wiLFwiTUQ1XCIsXCJDSEVRZ3VhcmRcIixcIndlYnBhY2tDaHVua2x2X3dlYlwiLFwiJGxvY2FsaXplXCIsXCJab25lXCIsXCJfX3pvbmVfc3ltYm9sX19Qcm9taXNlXCIsXCJfX3pvbmVfc3ltYm9sX19mZXRjaFwiLFwiX196b25lX3N5bWJvbF9fcXVldWVNaWNyb3Rhc2tcIixcIl9fem9uZV9zeW1ib2xfX3NldFRpbWVvdXRcIixcIl9fem9uZV9zeW1ib2xfX2NsZWFyVGltZW91dFwiLFwiX196b25lX3N5bWJvbF9fc2V0SW50ZXJ2YWxcIixcIl9fem9uZV9zeW1ib2xfX2NsZWFySW50ZXJ2YWxcIixcIl9fem9uZV9zeW1ib2xfX3JlcXVlc3RBbmltYXRpb25GcmFtZVwiLFwiX196b25lX3N5bWJvbF9fY2FuY2VsQW5pbWF0aW9uRnJhbWVcIixcIl9fem9uZV9zeW1ib2xfX2FsZXJ0XCIsXCJfX3pvbmVfc3ltYm9sX19wcm9tcHRcIixcIl9fem9uZV9zeW1ib2xfX2NvbmZpcm1cIixcIl9fem9uZV9zeW1ib2xfX011dGF0aW9uT2JzZXJ2ZXJcIixcIl9fem9uZV9zeW1ib2xfX0ludGVyc2VjdGlvbk9ic2VydmVyXCIsXCJfX3pvbmVfc3ltYm9sX19GaWxlUmVhZGVyXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uZGV2aWNlbW90aW9ucGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmRldmljZW9yaWVudGF0aW9ucGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmFic29sdXRlZGV2aWNlb3JpZW50YXRpb25wYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5Y29ubmVjdHBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXlkaXNjb25uZWN0cGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheWFjdGl2YXRlcGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheWRlYWN0aXZhdGVwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5cHJlc2VudGNoYW5nZXBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub25hYm9ydHBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub25ibHVycGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmZvY3VzcGF0Y2hlZFwiXSxcIm5cIjpbXSxcImRcIjpbXX0iXSxbLTcsIi0iXSxbLTgsIi0iXSxbLTksIisiXSxbLTEwLCItIl0sWy0xMSwie1widFwiOlwiXCIsXCJtXCI6W1wiRGVzY3JpcHRpb25cIl19Il0sWy0xMiwiXCJ1bnNwZWNpZmllZFwiIl0sWy0xMywiLSJdLFstMTQsIi0iXSxbLTE1LCItIl0sWy0xNiwiMCJdLFstMTcsIjE2Il0sWy0xOCwiWzEsMCwwLDBdIl0sWy0xOSwiWzAsMCwwLDAsMCwwLDEsMjQsMjQsXCItXCIsMTI4MCwxMDAyLDEyODAsMTAyNCwxMjgwLDEwMjQsMTI4MCw5MzksMCwwLDAsMCxcIi1cIixcIi1cIl0iXSxbLTIwLCI5MTY4MTgyODguMTY3NTcxMTc4MiJdLFstMjEsIi0iXSxbLTIyLCJbXCJuXCIsXCJuXCJdIl0sWy0yMywiKyJdLFstMjQsIltdIl0sWy0yNSwiLSJdLFstMjYsIi0iXSxbLTI3LCItIl0sWy0yOCwiZW4tVVMsZW4iXSxbLTI5LCItIl0sWy0zMCwiW1widlwiLDBdIl0sWy0zMSwiZmFsc2UiXSxbLTMyLCIwIl0sWy0zMywiLSJdLFstMzQsIi0iXSxbLTM1LCJbMTY3NTcxMTc4MjE0OCwwXSJdLFstMzYsIltcIjUvNFwiLFwiNS80XCJdIl0sWy0zNywiLSJdLFstMzgsImksLTEsLTEsMjI3LDAsMTAsMCw2LDc4LDg0LC0xLDAsLDEzNTgsMTk2NiwxOTY2Il0sWy0zOSwiW1wiMjAxMDAxMDFcIiwwLFwiR2Vja29cIixcIk5ldHNjYXBlXCIsXCJNb3ppbGxhXCIsXCIyMDE4MTAwMTAwMDAwMFwiLG51bGwsZmFsc2UsbnVsbCxmYWxzZSxudWxsLDBdIl0sWy00MCwiMzciXSxbLTQxLCItIl0sWy00MiwiMTc3MDA1MDA4MSJdLFstNDMsIjAwMDAwMDAxMDAwMDAwMDAwMTExMTAwMTAwIl0sWy00NCwiMCw1LDAsNSJdLFstNDUsIjAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCJdLFstNDYsIjAiXSxbLTQ3LCJVVEMsZW4tVVMsbGF0bixncmVnb3J5Il0sWy00OCwiMCwwIl0sWy00OSwiLSJdLFstNTAsImh0dHBzOi8vbGlua3ZlcnRpc2UuY29tLzM0NTYxNi9tYXl1P289c2hhcmluZyJdLFstNTEsIi0iXSxbLTUyLCItIl0sWy01MywiMDEwIl0sWy01NCwie1wiaFwiOltcIjQxMDQzMTYyM1wiLFwiMjYzOTIyMjQ2OFwiLFwiXzNcIixcIjI4NzI4OTkzMjBcIl0sXCJkXCI6W10sXCJiXCI6W1wiXzFcIixcIjEwNjQ4MjI2ODdcIixcIjQxMDQzMTYyM1wiLFwiMjYzOTIyMjQ2OFwiXSxcInNcIjoxfSJdLFstNTUsIjEiXSxbImRkYiIsIjAsNiwwLDEsMCwxLDAsMCwxLDAsMCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMywwLDAsMCwyLDAsMCwwLDAsMCwwLDAsMiwzLDAsMSwwLDEsMCwwLDAsMCwxLDAiXSxbImJuY2giLDM2XSxbImFibmNoIiwzN11d&dep=0&pre=0&sdd=%7B%7D&cri=Ikig39t7c2&pto=1977&ver=50&gac=916818288.1675711782&mei=&ap=&duid=1.1675711781.H5v6x24QTktFKatW&suid=1.1675711781.byReRohLkATVmciH&tuid=1.1675711781.wyngeJXBZXm6yVnz&fbc=-&gtm=W10%3D&it=74%2C1255%2C80&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0	50.16.211.97	200 OK	985 B
URL HTTP/2 paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F345616%2Fmayu%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675711782159&hl=1&op=0&ag=1317291471&rand=735121751677801161080965150200825622790157105017171181062718226079052958259&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDY0NjhdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFsiY2IiLCIwLDAsMCwwLDIsMCwwLDAsMCwyLDEsMCwwLDAsMCwxLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDIsMCwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMiJdLFstMSwiTGludXggeDg2XzY0Il0sWy0yLCI1LElMSFlMQjlCTFRhMkpxUWczRm9lZWwyd1liRTJvZ0JJS0o2Y1IwMDBNSkhRd1lUREdZYWh2M3V0NzFWcFhSOU84K001clZTS3Mxa1BCZS8vOTlzblZKR3BVZFBmZHp6bjNPZmMiXSxbLTMsIltdIl0sWy00LCItIl0sWy01LCItIl0sWy02LCJ7XCJ3XCI6W1wiMFwiLFwiJFwiLFwialF1ZXJ5XCIsXCJib290c3RyYXBcIixcImpRdWVyeTM0MTAyODUwMzExNDA0MjU2MDM5NjFcIixcImRhdGFMYXllclwiLFwiZjcwNVwiLFwiY2JKc29uUFwiLFwiX19jb3JlLWpzX3NoYXJlZF9fXCIsXCJjYl93aW5kb3dfbG9nZ2VyXCIsXCJfX1NFTlRSWV9fXCIsXCJDaGFyZ2ViZWVcIixcImlzQWRCbG9ja0FjdGl2ZVwiLFwiX21OSGFuZGxlXCIsXCJtZWRpYW5ldF92ZXJzaW9uSWRcIixcIm1lZGlhbmV0X2Nobm1cIixcIm1lZGlhbmV0X2Nobm0yXCIsXCJtZWRpYW5ldF9jaG5tM1wiLFwibWVkaWFuZXRfbWlzY1wiLFwiTUQ1XCIsXCJDSEVRZ3VhcmRcIixcIndlYnBhY2tDaHVua2x2X3dlYlwiLFwiJGxvY2FsaXplXCIsXCJab25lXCIsXCJfX3pvbmVfc3ltYm9sX19Qcm9taXNlXCIsXCJfX3pvbmVfc3ltYm9sX19mZXRjaFwiLFwiX196b25lX3N5bWJvbF9fcXVldWVNaWNyb3Rhc2tcIixcIl9fem9uZV9zeW1ib2xfX3NldFRpbWVvdXRcIixcIl9fem9uZV9zeW1ib2xfX2NsZWFyVGltZW91dFwiLFwiX196b25lX3N5bWJvbF9fc2V0SW50ZXJ2YWxcIixcIl9fem9uZV9zeW1ib2xfX2NsZWFySW50ZXJ2YWxcIixcIl9fem9uZV9zeW1ib2xfX3JlcXVlc3RBbmltYXRpb25GcmFtZVwiLFwiX196b25lX3N5bWJvbF9fY2FuY2VsQW5pbWF0aW9uRnJhbWVcIixcIl9fem9uZV9zeW1ib2xfX2FsZXJ0XCIsXCJfX3pvbmVfc3ltYm9sX19wcm9tcHRcIixcIl9fem9uZV9zeW1ib2xfX2NvbmZpcm1cIixcIl9fem9uZV9zeW1ib2xfX011dGF0aW9uT2JzZXJ2ZXJcIixcIl9fem9uZV9zeW1ib2xfX0ludGVyc2VjdGlvbk9ic2VydmVyXCIsXCJfX3pvbmVfc3ltYm9sX19GaWxlUmVhZGVyXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uZGV2aWNlbW90aW9ucGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmRldmljZW9yaWVudGF0aW9ucGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmFic29sdXRlZGV2aWNlb3JpZW50YXRpb25wYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5Y29ubmVjdHBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXlkaXNjb25uZWN0cGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheWFjdGl2YXRlcGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheWRlYWN0aXZhdGVwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5cHJlc2VudGNoYW5nZXBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub25hYm9ydHBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub25ibHVycGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmZvY3VzcGF0Y2hlZFwiXSxcIm5cIjpbXSxcImRcIjpbXX0iXSxbLTcsIi0iXSxbLTgsIi0iXSxbLTksIisiXSxbLTEwLCItIl0sWy0xMSwie1widFwiOlwiXCIsXCJtXCI6W1wiRGVzY3JpcHRpb25cIl19Il0sWy0xMiwiXCJ1bnNwZWNpZmllZFwiIl0sWy0xMywiLSJdLFstMTQsIi0iXSxbLTE1LCItIl0sWy0xNiwiMCJdLFstMTcsIjE2Il0sWy0xOCwiWzEsMCwwLDBdIl0sWy0xOSwiWzAsMCwwLDAsMCwwLDEsMjQsMjQsXCItXCIsMTI4MCwxMDAyLDEyODAsMTAyNCwxMjgwLDEwMjQsMTI4MCw5MzksMCwwLDAsMCxcIi1cIixcIi1cIl0iXSxbLTIwLCI5MTY4MTgyODguMTY3NTcxMTc4MiJdLFstMjEsIi0iXSxbLTIyLCJbXCJuXCIsXCJuXCJdIl0sWy0yMywiKyJdLFstMjQsIltdIl0sWy0yNSwiLSJdLFstMjYsIi0iXSxbLTI3LCItIl0sWy0yOCwiZW4tVVMsZW4iXSxbLTI5LCItIl0sWy0zMCwiW1widlwiLDBdIl0sWy0zMSwiZmFsc2UiXSxbLTMyLCIwIl0sWy0zMywiLSJdLFstMzQsIi0iXSxbLTM1LCJbMTY3NTcxMTc4MjE0OCwwXSJdLFstMzYsIltcIjUvNFwiLFwiNS80XCJdIl0sWy0zNywiLSJdLFstMzgsImksLTEsLTEsMjI3LDAsMTAsMCw2LDc4LDg0LC0xLDAsLDEzNTgsMTk2NiwxOTY2Il0sWy0zOSwiW1wiMjAxMDAxMDFcIiwwLFwiR2Vja29cIixcIk5ldHNjYXBlXCIsXCJNb3ppbGxhXCIsXCIyMDE4MTAwMTAwMDAwMFwiLG51bGwsZmFsc2UsbnVsbCxmYWxzZSxudWxsLDBdIl0sWy00MCwiMzciXSxbLTQxLCItIl0sWy00MiwiMTc3MDA1MDA4MSJdLFstNDMsIjAwMDAwMDAxMDAwMDAwMDAwMTExMTAwMTAwIl0sWy00NCwiMCw1LDAsNSJdLFstNDUsIjAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCJdLFstNDYsIjAiXSxbLTQ3LCJVVEMsZW4tVVMsbGF0bixncmVnb3J5Il0sWy00OCwiMCwwIl0sWy00OSwiLSJdLFstNTAsImh0dHBzOi8vbGlua3ZlcnRpc2UuY29tLzM0NTYxNi9tYXl1P289c2hhcmluZyJdLFstNTEsIi0iXSxbLTUyLCItIl0sWy01MywiMDEwIl0sWy01NCwie1wiaFwiOltcIjQxMDQzMTYyM1wiLFwiMjYzOTIyMjQ2OFwiLFwiXzNcIixcIjI4NzI4OTkzMjBcIl0sXCJkXCI6W10sXCJiXCI6W1wiXzFcIixcIjEwNjQ4MjI2ODdcIixcIjQxMDQzMTYyM1wiLFwiMjYzOTIyMjQ2OFwiXSxcInNcIjoxfSJdLFstNTUsIjEiXSxbImRkYiIsIjAsNiwwLDEsMCwxLDAsMCwxLDAsMCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMywwLDAsMCwyLDAsMCwwLDAsMCwwLDAsMiwzLDAsMSwwLDEsMCwwLDAsMCwxLDAiXSxbImJuY2giLDM2XSxbImFibmNoIiwzN11d&dep=0&pre=0&sdd=%7B%7D&cri=Ikig39t7c2&pto=1977&ver=50&gac=916818288.1675711782&mei=&ap=&duid=1.1675711781.H5v6x24QTktFKatW&suid=1.1675711781.byReRohLkATVmciH&tuid=1.1675711781.wyngeJXBZXm6yVnz&fbc=-&gtm=W10%3D&it=74%2C1255%2C80&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 IP 50.16.211.97:0 ASN #14618 AMAZON-AES File type ASCII text, with very long lines (2793), with no line terminators Size 985 B (985 bytes) Hash d82c9f5bec36296cd05220e56c9e26df 82d2c578b91a1356ed771654f23e07caa0e49547 8a9695b7343d52d490266fdff2b006561fd8a13657761dae6f8a4a22428299b0 HTTP Headers GET /ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F345616%2Fmayu%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675711782159&hl=1&op=0&ag=1317291471&rand=735121751677801161080965150200825622790157105017171181062718226079052958259&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=Ikig39t7c2&pto=1977&ver=50&gac=916818288.1675711782&mei=&ap=&duid=1.1675711781.H5v6x24QTktFKatW&suid=1.1675711781.byReRohLkATVmciH&tuid=1.1675711781.wyngeJXBZXm6yVnz&fbc=-&gtm=W10%3D&it=74%2C1255%2C80&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1 Host: paper.ostrichesica.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Cookie: cg_uuid=2ef7e539bbff19b605777325e26a120b Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK cache-control: no-cache, no-store, must-revalidate content-encoding: gzip content-type: text/javascript date: Mon, 06 Feb 2023 19:28:55 GMT expires: Fri, 01 Jan 1990 00:00:00 GMT pragma: no-cache content-length: 985 X-Firefox-Spdy: h2`

	paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=Ikig39t7c2&ts=15&cb=1675711782174	50.16.211.97	200 OK	43 B
URL HTTP/2 paper.ostrichesica.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136debc034eb4089989225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5f15896a2417071a10acf9f29f674bd7d58e52293c12ac2a215286328d64c7013702249050050a37020ec7bc6b1d77be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c284527510bf28d25367c01a2f3497b8eaba62c91e40f754f28fef3a29c9e21b8cfc248b5038e523c60cbe986a7b376cccee879cf774a91bac333074aae3f34eec55620b79bae6adc59a259b1801dc44ecdd022957170899835c477c487faf98ef3f15b7fa76ce9e5e8235235bfcf71c3a648a13b3913cb4f0897dad38681eb8670907c9edea58f7ce96c6b33943873d4d4df0e26daa82beb00ed945ec065bd7c020514c035ab06d9c4b874b58b789f5cebcf929b628d784a66fa52027878092687e323fa05d0cca62aae9969ebbb2a9adaa9b13dc1f0f7512626b1b8101588e6471556a6beac7ba73c9e8740fdb46beb28b23b8752ca15d1af39c01b26e3a69378473a260562095876cebac81aa953f3225c5f3bbbf1168b8a121effa6debcbb69c5ece5fb8ef9b1a3022d699918deca021fe72538488e1b4f6d7eb23ef6220bc8f9c07d8b66d0208caa2dcab00c873c467f7757067beeaa8c863a3233c4525789c19bfbe6d8596ef3acaf3fd2966171d9ce006838bdc0a50972e663dc00c178b668c24d85da19f9a620bbd8f192ea1b3dbcbb623dd564acdbe1f755c921&cri=Ikig39t7c2&ts=15&cb=1675711782174 IP 50.16.211.97:0 ASN #14618 AMAZON-AES File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash db04c7b378cb2db912c3ba8a5a774ee3 dee34bd86c3484d31002182aa2b7caa4699126b8 98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a HTTP Headers GET /tracker/tc_imp.gif?e=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&cri=Ikig39t7c2&ts=15&cb=1675711782174 HTTP/1.1 Host: paper.ostrichesica.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Cookie: cg_uuid=2ef7e539bbff19b605777325e26a120b Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK cache-control: no-cache, no-store, must-revalidate content-type: image/gif date: Mon, 06 Feb 2023 19:28:55 GMT expires: Fri, 01 Jan 1990 00:00:00 GMT pragma: no-cache content-length: 43 X-Firefox-Spdy: h2`

	vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html	143.204.55.118	200 OK	1.0 kB
URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html IP 143.204.55.118:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators Size 1.0 kB (1034 bytes) Hash 112fdf47cdb80b9ce3d033ed09717460 3898efa86cbf1b64dc41a90a110ed5afd6f2ae13 3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb HTTP Headers `GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1 Host: vars.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/html content-length: 1034 date: Fri, 03 Feb 2023 13:10:06 GMT accept-ranges: bytes cache-control: max-age=31536000 content-encoding: br cross-origin-embedder-policy: require-corp cross-origin-resource-policy: cross-origin etag: "112fdf47cdb80b9ce3d033ed09717460" last-modified: Fri, 03 Feb 2023 13:09:45 GMT strict-transport-security: max-age=2592000; includeSubDomains x-robots-tag: none vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: FAfrjQpvP3O-y2VgC1f0XPPITpMGMPsmHf2cLnVYwWZylHigZekESw== age: 281930 X-Firefox-Spdy: h2

	static.hotjar.com/c/hotjar-3321028.js?sv=7	54.230.111.66	200 OK	72 kB
URL HTTP/2 static.hotjar.com/c/hotjar-3321028.js?sv=7 IP 54.230.111.66:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (7460) Size 72 kB (71911 bytes) Hash 2b07b6bc4aa18792cc844a10573c85cf 269e0317e14eb855e7f577d7b931fe276518e875 1966b722ee47168de3ec99afc46fcdcfcf163f88dc3ba03eafe49096d9489e5e HTTP Headers `GET /c/hotjar-3321028.js?sv=7 HTTP/1.1 Host: static.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * content-encoding: br cross-origin-resource-policy: cross-origin strict-transport-security: max-age=2592000; includeSubDomains x-cache-hit: 1 x-content-type-options: nosniff date: Mon, 06 Feb 2023 19:28:55 GMT cache-control: max-age=60 etag: W/5e85c9dee8aa7be3a46a4c71847cc6be vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: TnLdS1miHr0az3ubjTqmn5eQqrBj2U_tepFFnQWqON8yZOLcP__Z2Q== X-Firefox-Spdy: h2

	cdn.taboola.com/libtrc/impl.20230205-36-RELEASE.js	151.101.1.44	200 OK	195 kB
URL HTTP/2 cdn.taboola.com/libtrc/impl.20230205-36-RELEASE.js IP 151.101.1.44:0 ASN #54113 FASTLY File type data Size 195 kB (194951 bytes) Hash 5504e42e61e3ae42ba9d2b000c09bbe2 6f6a914a2c4daa48f6ba3a76b3f978eeb7049cf0 b0e0024e226a969f278a410b059c21981ac7e7027500f22703fb986d94ba9fbe HTTP Headers `GET /libtrc/impl.20230205-36-RELEASE.js HTTP/1.1 Host: cdn.taboola.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: DSZBhQ/bz0FLQdOUBod5anUe3DHTaLzNpXZ3RaoUPFYktAx4K+5TAqN0scESBU1T/IhEctcjTnc= x-amz-request-id: 1FESGEY0R5KXW2TE x-amz-replication-status: PENDING last-modified: Mon, 06 Feb 2023 19:28:02 GMT etag: "b5425d60a7ee4ea3a380b89452140834" x-amz-version-id: FjuPGumA6PIC8pFczxCDvqqvHLi13GLc content-type: application/javascript; charset=utf-8 server: AmazonS3 content-encoding: gzip accept-ranges: bytes date: Mon, 06 Feb 2023 19:28:56 GMT via: 1.1 varnish age: 53 x-served-by: cache-bma1646-BMA x-cache: HIT x-cache-hits: 43 x-timer: S1675711736.093900,VS0,VE0 cache-control: private,max-age=31536000 vary: Accept-Encoding abp: 99 content-length: 194493 X-Firefox-Spdy: h2

	linkvertise.chargebeestaticv2.com/api/internal/1675710900/retrieve_js_info	54.230.111.33	202 Accepted	0 B
URL HTTP/2 linkvertise.chargebeestaticv2.com/api/internal/1675710900/retrieve_js_info IP 54.230.111.33:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/internal/1675710900/retrieve_js_info HTTP/1.1 Host: linkvertise.chargebeestaticv2.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: x-requested-with Referer: https://js.chargebee.com/ Origin: https://js.chargebee.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 202 Accepted content-length: 0 date: Mon, 06 Feb 2023 19:28:56 GMT cache-control: no-store, no-cache, must-revalidate expires: Thu, 01 Jan 1970 00:00:00 UTC strict-transport-security: max-age=31536000; includeSubDomains; preload pragma: no-cache access-control-allow-origin: https://js.chargebee.com access-control-allow-credentials: true access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token access-control-allow-methods: GET, OPTIONS, POST server: ChargeBee x-cache: Miss from cloudfront via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: lLukCjO30arCHgtXxSBWQ3T8HWiSIAS_WJarh5Koidmp7cqJtVO9YQ== X-Firefox-Spdy: h2

	linkvertise.chargebeestaticv2.com/api/internal/1675710900/retrieve_js_info	54.230.111.33	200 OK	451 B
URL HTTP/2 linkvertise.chargebeestaticv2.com/api/internal/1675710900/retrieve_js_info IP 54.230.111.33:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (451), with no line terminators Size 451 B (451 bytes) Hash 53e8a4bad15d11a2df3eb6a44e64734b 9681853dd64480d24c5482edfe9ddbc138008f19 6cb113617c09dcd449abccfe4341acc4ba667bce0ca54f92b95ffc0f03b16a79 HTTP Headers GET /api/internal/1675710900/retrieve_js_info HTTP/1.1 Host: linkvertise.chargebeestaticv2.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-Requested-With: XMLHttpRequest Origin: https://js.chargebee.com Connection: keep-alive Referer: https://js.chargebee.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK content-type: application/json;charset=utf-8 content-length: 451 date: Mon, 06 Feb 2023 19:24:23 GMT cache-control: max-age=0, must-revalidate, public, s-maxage=3600 expires: Thu, 01 Jan 1970 00:00:00 UTC strict-transport-security: max-age=31536000; includeSubDomains; preload access-control-allow-origin: https://js.chargebee.com access-control-allow-credentials: true access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token access-control-allow-methods: GET, OPTIONS, POST server: ChargeBee x-cache: Hit from cloudfront via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: M-MJ-kQXVgxKM6kii0GiELKc9vnQb42FENU8bNVQfSStV7wxOxEqXg== age: 273 X-Firefox-Spdy: h2

	region1.google-analytics.com/g/collect?v=2&tid=G-7DRMH8RP03&gtm=45je3210&_p=1720455989&cid=916818288.1675711782&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675711781&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F345616%2Fmayu%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1	216.239.32.36	204 No Content	0 B
URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-7DRMH8RP03&gtm=45je3210&_p=1720455989&cid=916818288.1675711782&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675711781&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F345616%2Fmayu%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1 IP 216.239.32.36:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-7DRMH8RP03&gtm=45je3210&_p=1720455989&cid=916818288.1675711782&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675711781&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F345616%2Fmayu%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 Host: region1.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: https://linkvertise.com date: Mon, 06 Feb 2023 19:28:56 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash c0c18b789b296a2b3cc9adb04c94e6f7 a0fa241f813c414178f5dffd30d5c2b82d16669b 95ec61ae9d1384fdbcee256ec441d6db4e3243ed3f8e1801b3607ce3c2e1e3f0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:56 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.com/recaptcha/api.js?render=explicit&onload=ng2recaptchaloaded	142.250.74.132	200 OK	577 B
URL HTTP/2 www.google.com/recaptcha/api.js?render=explicit&onload=ng2recaptchaloaded IP 142.250.74.132:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (913), with no line terminators Size 577 B (577 bytes) Hash 86d8597405f2f99d0f6348f68822ec0b 9efe62ea7209790e1e508e806fa44dfdcd2b87e8 9fa61c189d08c5f4403db505f00b301948c7fa52835675f91916c795dd9f1293 HTTP Headers `GET /recaptcha/api.js?render=explicit&onload=ng2recaptchaloaded HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK expires: Mon, 06 Feb 2023 19:28:56 GMT date: Mon, 06 Feb 2023 19:28:56 GMT cache-control: private, max-age=300 content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block content-length: 577 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 45214010f2ef8a835d723fcd5b485977 346507b6da40928a8c600ef9c52fd6a7e0875344 4b4e5c2038d6fe241aedc738e0bd22052078bf365b6dade88cae752d0f06fa54 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:56 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 3b4ea902c3e097daaa31810cb66d585a 97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049 0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F" Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5693 Expires: Mon, 06 Feb 2023 21:03:49 GMT Date: Mon, 06 Feb 2023 19:28:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 3b4ea902c3e097daaa31810cb66d585a 97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049 0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F" Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5693 Expires: Mon, 06 Feb 2023 21:03:49 GMT Date: Mon, 06 Feb 2023 19:28:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 3b4ea902c3e097daaa31810cb66d585a 97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049 0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F" Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5693 Expires: Mon, 06 Feb 2023 21:03:49 GMT Date: Mon, 06 Feb 2023 19:28:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 3b4ea902c3e097daaa31810cb66d585a 97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049 0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F" Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5693 Expires: Mon, 06 Feb 2023 21:03:49 GMT Date: Mon, 06 Feb 2023 19:28:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 3b4ea902c3e097daaa31810cb66d585a 97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049 0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F" Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5693 Expires: Mon, 06 Feb 2023 21:03:49 GMT Date: Mon, 06 Feb 2023 19:28:56 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10514 bytes) Hash 9046d887fd45a0940e31a74173d17798 1ff698b9cf660165e846dfc4770f29852aedce45 0c7b0e1250aa7718b7b35b80a1442f62e94ace1fb578fb781ec8204ee96386d0 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10514 x-amzn-requestid: ac2a383b-833d-4dae-9bd9-43dc3d9e373d x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f4oiPEIyoAMFqUw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e02141-436bb6816b269ce45b9f8600;Sampled=0 x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: RYNzle5-l5dOMPWb2Bmu_T5aIJw9NX2FKuJsej8hzpYZcgD6coH9SA== via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 21:50:09 GMT age: 77927 etag: "1ff698b9cf660165e846dfc4770f29852aedce45" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js	142.250.74.35	200 OK	164 kB
URL HTTP/2 www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js IP 142.250.74.35:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (633) Size 164 kB (163841 bytes) Hash fe98364486b3206867b17008f995646f 35a5e9aa210970f7abd718d99e629c6982a3cc02 1fd703cb16e3f6f3f7192109d19c69d6e5ac1cfa0feb5b105a86564b7970d28a HTTP Headers `GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 163841 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 31 Jan 2023 08:53:11 GMT expires: Wed, 31 Jan 2024 08:53:11 GMT cache-control: public, max-age=31536000 last-modified: Tue, 31 Jan 2023 02:51:47 GMT content-type: text/javascript age: 556545 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg	34.120.237.76	200 OK	9.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.8 kB (9808 bytes) Hash ccc8078cc937b7de0b299bcee1496f1b 395f04af71767acc9516387c8b07bde08968fdfe cf959fc4a72d80dcab20c235bec6d21eadaab87efa7a8969744cd228628ba050 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9808 x-amzn-requestid: 75cc8041-19f5-4994-96b6-b14d3c90ec6e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f4oiSFZAIAMF65g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e02141-355d272c345c8c37595b4bb2;Sampled=0 x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: T7YlRZ936VEDkBvo2YKrS3GbyEh1xzC8W-50KiODzFjTnQb-hvkKpw== via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 22:10:54 GMT age: 76682 etag: "395f04af71767acc9516387c8b07bde08968fdfe" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg	34.120.237.76	200 OK	8.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.9 kB (8929 bytes) Hash d0c62c5956f36c9f1c5d2f17bc372d98 fca4d7140e4c391b02d734425ccc92acec568a70 eb1b743ede5ed223536358bd92a322ca5231267f4434be1eced98a0fe93b790d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8929 x-amzn-requestid: ea29dd36-d05b-4824-ba18-78f868259f76 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f4oiQEeTIAMFqGA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e02141-7a6ade1c4501a81c0823ce10;Sampled=0 x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: O-QHP886Cczm6dsVDQVMR7SMSxgIhUSuEPAKJvzQTQtkj59Pg-z9QA== via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 22:11:05 GMT age: 76671 etag: "fca4d7140e4c391b02d734425ccc92acec568a70" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10905 bytes) Hash 1a4eed23b240d04a3cd6b085cfa93375 f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00 93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10905 x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fmNJCEDzIAMFmxA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: gcy4nCriTOJhhTqFJBuks649uy0s4r3TVV3-yAcUhImLwqKpn1d2_w== via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 22:10:20 GMT age: 76716 etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg	34.120.237.76	200 OK	8.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.6 kB (8649 bytes) Hash ad2298793399bf73c51c7d60952065c1 816bd4c36ceea2c46489ae72fde0b4a94c7c4bef dc540d64e5e0835c7007e89ca3b5dd620b43a87e13309f323f3843a5f908a199 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8649 x-amzn-requestid: f85f3c9d-95c1-4db6-af5f-595070fe46c3 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f4oiRHzboAMFQCA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e02141-6eed72bf20887cac6dc1a56a;Sampled=0 x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: z7HTSLYJmhfIGlCjeG2EeN3q2Cd9vKlq71nqo3iIuhwkgwlEAlRPmQ== via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 21:51:02 GMT age: 77874 etag: "816bd4c36ceea2c46489ae72fde0b4a94c7c4bef" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 29af19f4d35dda344776c6f6db66c235 164bc64453a7e1e9c960982ff07d116ccf11434f 64ead99aef7098e547907e17edee7de198173e5951a82f91a038a562b50d1486 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=164124 Date: Mon, 06 Feb 2023 19:28:56 GMT Etag: "63e11bdf-1d7" Expires: Wed, 08 Feb 2023 17:04:20 GMT Last-Modified: Mon, 06 Feb 2023 15:25:19 GMT Server: ECS (nyb/1D1D) X-Cache: Miss from cloudfront Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 5Z68Ei8BU9W-3XFtYQdeSdfHWMwuSF_n3CB_yIKtd64qZj11M4DO9Q== Age: 5941

	ocsp.digicert.com/	93.184.220.29	200 OK	313 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 313 B (313 bytes) Hash 05aa05f22704cbc8b64c815899a13c94 632b64f54509fc72c4729f97c8e73bad306020db 949f9947acaf797fd2b3c6fd770c2d317c661cf9838fc7ddb9704741ed7b9332 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5835 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:57 GMT Last-Modified: Mon, 06 Feb 2023 17:51:42 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 313`

	gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com	178.250.2.146	200 OK	5.1 kB
URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com IP 178.250.2.146:0 ASN #44788 Criteo SA File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465) Size 5.1 kB (5066 bytes) Hash 336d3e015f987a65d205999a49be4805 57a3f572cd89347b5ead196670776134f1f0f69e 9621f1cc5441ed0d364b0fb9986a8c6742af2c5c356e6e4edb432728fe319ff3 HTTP Headers GET /syncframe?origin=rtus&topUrl=linkvertise.com HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:56 GMT content-type: text/html; charset=utf-8 server: Kestrel cache-control: private, max-age=3600 set-cookie: uid=a6e9fba7-0c0c-4fbd-9c87-7d2bf9ee4d6f; expires=Sat, 02 Mar 2024 19:28:56 GMT; domain=.criteo.com; path=/; secure; samesite=none optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/ cross-origin-resource-policy: cross-origin cross-origin-embedder-policy: require-corp server-processing-duration-in-ticks: 802412 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	312 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 312 B (312 bytes) Hash 92b631f7b55d843abd5dc7d324fce950 b3b95b87af1a860eaa2838893a4dae9437d2a1d8 8e86b9dd457844961a5e97c418053d33e41622d1bc9c8ffaef3bd5760b23f652 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4710 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:57 GMT Last-Modified: Mon, 06 Feb 2023 18:10:27 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 312`

	ocsp.digicert.com/	93.184.220.29	200 OK	312 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 312 B (312 bytes) Hash 92b631f7b55d843abd5dc7d324fce950 b3b95b87af1a860eaa2838893a4dae9437d2a1d8 8e86b9dd457844961a5e97c418053d33e41622d1bc9c8ffaef3bd5760b23f652 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6010 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:57 GMT Last-Modified: Mon, 06 Feb 2023 17:48:47 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 312`

	gum.criteo.com/sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=XiECbV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czNMdmVnU0VvMm90dUxkMzJQcnVZcDZWdEpwb2k0JTJGUWY4d0wyb3hTQzRkUw&idsd=-1211232971,-892458210&cw=1&rtusCallerId=72&lsw=1	178.250.2.146	200 OK	322 B
URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=XiECbV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czNMdmVnU0VvMm90dUxkMzJQcnVZcDZWdEpwb2k0JTJGUWY4d0wyb3hTQzRkUw&idsd=-1211232971,-892458210&cw=1&rtusCallerId=72&lsw=1 IP 178.250.2.146:0 ASN #44788 Criteo SA File type JSON data\012- , ASCII text, with very long lines (396), with no line terminators Size 322 B (322 bytes) Hash 8c42460cb270974f46b8ff5c3f1f5494 86bc0d6c995c95b9f2df08a15009a858c6c77f6f 9947eacb64cca54c3913f57c482c9926bbbb6dad47e9c24fae0423094e71ae17 HTTP Headers GET /sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=XiECbV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czNMdmVnU0VvMm90dUxkMzJQcnVZcDZWdEpwb2k0JTJGUWY4d0wyb3hTQzRkUw&idsd=-1211232971,-892458210&cw=1&rtusCallerId=72&lsw=1 HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:56 GMT content-type: application/json; charset=utf-8 server: Kestrel cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 server-processing-duration-in-ticks: 740429 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	313 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 313 B (313 bytes) Hash cdae6f4f8b738f7d3c899da39ffd342d 07d948e74e9b100aa237a4edd56b02b36e8ffcde fee176934534766bf2d359f964449f543f7492d40204bba7d260e0dd6daeb950 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5771 Cache-Control: max-age=167501 Content-Type: application/ocsp-response Date: Mon, 06 Feb 2023 19:28:57 GMT Etag: "63e129bb-139" Expires: Wed, 08 Feb 2023 18:00:38 GMT Last-Modified: Mon, 06 Feb 2023 16:24:27 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 313`

	csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1	178.250.2.150	200 OK	43 B
URL HTTP/2 csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 IP 178.250.2.150:0 ASN #44788 Criteo SA File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash b4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 HTTP Headers GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 HTTP/1.1 Host: csm.nl.eu.criteo.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:57 GMT pragma: no-cache server: Finatra expires: 0 content-type: image/gif cache-control: no-cache, no-store, must-revalidate content-length: 43 cross-origin-resource-policy: cross-origin strict-transport-security: max-age=31536000; preload; X-Firefox-Spdy: h2`

	linkvertise.com/345616/mayu?o=sharing	172.64.206.34	200 OK	0 B
URL HTTP/2 linkvertise.com/345616/mayu?o=sharing IP 172.64.206.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /345616/mayu?o=sharing HTTP/1.1 Host: linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:54 GMT content-type: text/html; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2YgOuZXpwkeYYqmR%2F4b14uspZZNLhcprrV27HVX62r0goWN6mgfTIrwVVqxvIw7OUCk4R87gAIgUvXv2ANiZdqhIi25E4wBbVlJoGjMNmQnsVmimsVhIw5lb69TUp2IXYcc%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-cache-status: DYNAMIC x-frame-options: sameorigin server: cloudflare cf-ray: 79564aa2e84a71fe-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	linkvertise.com/main.0beaefffb6495d99.js	172.64.206.34	200 OK	0 B
URL HTTP/2 linkvertise.com/main.0beaefffb6495d99.js IP 172.64.206.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /main.0beaefffb6495d99.js HTTP/1.1 Host: linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/345616/mayu?o=sharing Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:54 GMT content-type: application/javascript access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"51ad6351d166f48e945427a9165b9d5d" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=shwrOI%2B3Ic9Mv%2FrDrdk1hW2TpUAebbKfX5poZUpBnk7kKJ%2BmsWu4RzmUa2n7hby8iYa2bc%2FudiZICB36hQpxaRPzr7VNij69aQStmaVstSFBzobEb3nkTqb6Vb%2BoFsAucwM%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-cache-status: DYNAMIC x-frame-options: sameorigin server: cloudflare cf-ray: 79564aa42a7b71fe-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	dnacdn.net/dna	178.250.0.157	200 OK	0 B
URL HTTP/2 dnacdn.net/dna IP 178.250.0.157:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash HTTP Headers `GET /dna HTTP/1.1 Host: dnacdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/ Origin: https://gum.criteo.com Connection: keep-alive Cookie: browser_data=qgKuiF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czNMdmVnU0VvMm90dUxkMzJQcnVZcDVUMnRYY3d0cGFJcUdWUGhqSUs3OUY Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:56 GMT content-type: application/json; charset=utf-8 server: Kestrel cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 set-cookie: browser_data=XiECbV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czNMdmVnU0VvMm90dUxkMzJQcnVZcDZWdEpwb2k0JTJGUWY4d0wyb3hTQzRkUw; expires=Sat, 02 Mar 2024 19:28:57 GMT; domain=dnacdn.net; path=/; secure; samesite=none access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-origin: https://gum.criteo.com server-processing-duration-in-ticks: 368714 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2

	gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS	178.250.2.146	200 OK	0 B
URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS IP 178.250.2.146:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash HTTP Headers GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br x-crto-bundle: hA1SVl9UM1AyV0lobnFTcGkxWXA2UlNmS1RHR2hheWU0RGlRNW1IMjRaZUJ5cEpaUSUyQmtFN3lSTnFJcnhqbSUyRmtZRmFZWHhpa1AzeGUwcG9lSEtpTGdxZnZXN2x4YUZpWkZLOXB3VjI4YWJnVHlFdFFCOFVDbzdid2daSnQlMkJrcTFKdnJtZm9aJTJCV0RxYVlaNTlKWjJEYVg2UiUyQiUyRkElM0QlM0Q Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:56 GMT content-type: text/javascript; charset=utf-8 server: Kestrel cache-control: private, max-age=3600 expires: 60 access-control-allow-credentials: true access-control-allow-origin: https://linkvertise.com server-processing-duration-in-ticks: 1491744 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	linkvertise.com/assets/ads.js	172.64.206.34	200 OK	0 B
URL HTTP/2 linkvertise.com/assets/ads.js IP 172.64.206.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/ads.js HTTP/1.1 Host: linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/345616/mayu?o=sharing Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:54 GMT content-type: application/javascript access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"87a18df10c601bf2ed3321eab0aec42a" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EJwvVOwXgV6tc6qBo7n0hN01SbYTPtq6ybvsPkWTH5wPnMbtkK5xiOPMIEr0RITQLjzOEAL9opgC8yYEr7ULbAxjoi%2FfhPnvH9n00ZmeuUftuoi2Lh1KQLVFCH4YM9XaTqk%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-cache-status: DYNAMIC x-frame-options: sameorigin server: cloudflare cf-ray: 79564aa40a4371fe-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	js.chargebee.com/v2/chargebee.js	143.204.55.121	200 OK	0 B
URL HTTP/2 js.chargebee.com/v2/chargebee.js IP 143.204.55.121:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /v2/chargebee.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/x-javascript last-modified: Thu, 02 Feb 2023 08:38:42 GMT x-amz-version-id: fSCvEKsLssq6.dB4pAUTguMPj.oadxag server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Mon, 06 Feb 2023 19:28:54 GMT cache-control: max-age=300,public etag: W/"c41e1c99e410f972cfeb1f8767aa3979" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 6KfzGzISaVq6q-UoVemFOEfWrNV6JsOP0Q_WRRRxz1AFDjjrLNgoyA== age: 1 X-Firefox-Spdy: h2

	linkvertise.com/runtime.9028a2ff6641236d.js	172.64.206.34	200 OK	0 B
URL HTTP/2 linkvertise.com/runtime.9028a2ff6641236d.js IP 172.64.206.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /runtime.9028a2ff6641236d.js HTTP/1.1 Host: linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/345616/mayu?o=sharing Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:54 GMT content-type: application/javascript access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"d88f61353c1dbbf2701151e493c2829f" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ycRB4ekAe9VwtONy1MIsoHwxsqz8s29G4iat8mDmnR%2F6msHRDerb%2F60t8r93yvFBg0M%2FIYrUWCRadTD8beGKabfCZJTz9x8r8LnN9Z2Sp87MDNgP%2B7tzzQ6rB%2FO81Posqbo%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-cache-status: DYNAMIC x-frame-options: sameorigin server: cloudflare cf-ray: 79564aa40a5871fe-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	contextual.media.net/dmedianet.js?cid=8CUG57U1V	2.18.172.23	200 OK	0 B
URL HTTP/2 contextual.media.net/dmedianet.js?cid=8CUG57U1V IP 2.18.172.23:0 ASN #16625 AKAMAI-AS File type Size 0 B (0 bytes) Hash HTTP Headers `GET /dmedianet.js?cid=8CUG57U1V HTTP/1.1 Host: contextual.media.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: Apache content-type: text/javascript; charset=utf-8 x-mnt-h: 22-pz6p x-mnt-w: 22-pz6p etag: "380ed509191ed3f64a79265343aa5eb8" strict-transport-security: max-age=31536000 vary: Accept-Encoding content-encoding: gzip cache-control: max-age=300 expires: Mon, 06 Feb 2023 19:33:55 GMT date: Mon, 06 Feb 2023 19:28:55 GMT X-Firefox-Spdy: h2`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg	34.120.237.76	200 OK	0 B
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8981 x-amzn-requestid: 0054e925-c381-4737-bd92-32b2af3a604e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f4oiQHRFoAMFw6w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e02141-45ea5ee33d07326c593d21d3;Sampled=0 x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: WPChtMRjKafjMFkXCam-m5lHQ-4E-UZ5VwnfjrBKaz6nuOh70Fkunw== via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 22:02:46 GMT age: 77170 etag: "809a42ce7c76cea0ce16af8172d852723c3a5f02" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	in.hotjar.com/api/v2/client/sites/3321028/visit-data?sv=7	54.77.39.192	200 OK	0 B
URL HTTP/2 in.hotjar.com/api/v2/client/sites/3321028/visit-data?sv=7 IP 54.77.39.192:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `POST /api/v2/client/sites/3321028/visit-data?sv=7 HTTP/1.1 Host: in.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain; charset=UTF-8 Content-Length: 149 Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:56 GMT content-type: application/json vary: Accept-Encoding cache-control: no-cache, no-store access-control-allow-origin: * access-control-allow-credentials: true access-control-max-age: 86400 content-encoding: br X-Firefox-Spdy: h2`

	linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js	172.64.206.34	200 OK	0 B
URL HTTP/2 linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js IP 172.64.206.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/cheq/public/sc/disk/CHEQguard.sc.min.js HTTP/1.1 Host: linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/345616/mayu?o=sharing Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:54 GMT content-type: application/javascript access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"e95fe14af1d50eab9d4bf9a757b1f1bf" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jpBxyUxmutrv4hOn84UjGO7nH8RuzTCA4MP4E7QPu1AZO0QcIF5CNckXJa2C%2FCKTETF4ENbFu%2FhYg0AIuCODGvV4JPGL2JZqelBoLWzNyY4gsNicIeFVAGYzs79cMcv1Sbs%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-cache-status: DYNAMIC x-frame-options: sameorigin server: cloudflare cf-ray: 79564aa40a5571fe-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	js.chargebee.com/v2/152-dba6a3a9f49f90e94d8d.js	143.204.55.121	200 OK	0 B
URL HTTP/2 js.chargebee.com/v2/152-dba6a3a9f49f90e94d8d.js IP 143.204.55.121:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /v2/152-dba6a3a9f49f90e94d8d.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Thu, 02 Feb 2023 08:38:42 GMT x-amz-version-id: Ie3xwbsL01lSj9Q7NGbZIrO0mzwpN_BH server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Mon, 06 Feb 2023 19:26:36 GMT cache-control: max-age=300,public etag: W/"4238223b72262e874558e29d28e551b3" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 6vZH9YVbLumxf5cDaGxp7OaajNJ1GhlX-SFzN7FK32g1_JVipDeqFg== age: 140 X-Firefox-Spdy: h2

	stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css	104.18.10.207	200 OK	0 B
URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css IP 104.18.10.207:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /bootstrap/4.1.3/css/bootstrap.min.css HTTP/1.1 Host: stackpath.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:54 GMT content-type: text/css; charset=utf-8 vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE access-control-allow-origin: * cache-control: public, max-age=31919000 last-modified: Mon, 25 Jan 2021 22:04:06 GMT cdn-cachedat: 12/11/2021 23:51:22 cdn-proxyver: 1.02 cdn-requestpullcode: 200 cdn-requestpullsuccess: True cdn-edgestorageid: 601 cdn-status: 200 timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-requestid: 873d47ad8054cd5f5d4a8793d245560e cdn-cache: HIT cf-cache-status: HIT age: 1607026 strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 79564aa4acafb503-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	js.chargebee.com/v2/136-04294f7bee4da31abb6d.js	143.204.55.121	200 OK	0 B
URL HTTP/2 js.chargebee.com/v2/136-04294f7bee4da31abb6d.js IP 143.204.55.121:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /v2/136-04294f7bee4da31abb6d.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Thu, 02 Feb 2023 08:38:42 GMT x-amz-version-id: NSlm2Jg29xJx93Rrs7mbrPf.GhDDN61Q server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Mon, 06 Feb 2023 19:25:39 GMT cache-control: max-age=300,public etag: W/"9aef1ba966da7d13bb8f9410eea89309" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: m6S3G-w2JxUHMChBG3Ut2WYyuIQbTXiH9Qn_GiaicJz2iKI0BhoXuA== age: 195 X-Firefox-Spdy: h2

	linkvertise.com/scripts.03e173ff37d2f1cf.js	172.64.206.34	200 OK	0 B
URL HTTP/2 linkvertise.com/scripts.03e173ff37d2f1cf.js IP 172.64.206.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /scripts.03e173ff37d2f1cf.js HTTP/1.1 Host: linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/345616/mayu?o=sharing Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:54 GMT content-type: application/javascript access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"1268514dea3db40394e6eb9570f7e70d" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pTTtC71upiOzR5NgwFPevlXkh%2BAOdzoteER9e5mn7zMk7ORWw6tX1aKmr2FWVYsS3hlBVBeiLfPzJOA7apTf8ryx7tBIWBOQ8yGHK3mMgutIUHrLug4YO1OLvnl0qM%2FKbw8%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-cache-status: DYNAMIC x-frame-options: sameorigin server: cloudflare cf-ray: 79564aa41a5c71fe-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css	185.76.9.16	200 OK	0 B
URL HTTP/2 maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css IP 185.76.9.16:0 ASN #60068 Datacamp Limited File type Size 0 B (0 bytes) Hash HTTP Headers `GET /vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css HTTP/1.1 Host: maxst.icons8.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:54 GMT content-type: text/css; charset=utf-8 vary: Accept-Encoding etag: W/"15e81-wb0UGHttyzbvrSHlFxH4lBgB3g8" last-modified: 2022-05-16T12:30:47.897Z server-timing: -;dur=0;desc="Generate" strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * access-control-allow-credentials: true expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public x-accel-expires: @1968663886 server: CDN77-Turbo x-77-nzt: AblMCQ0x3Lf/qOpVAQ x-77-nzt-ray: c0a4cc28a5099d6cf654e16391366b20 x-cache: HIT x-age: 22407848 x-77-pop: stockholmSE x-77-cache: HIT content-encoding: gzip X-Firefox-Spdy: h2

	ag.gbc.criteo.com/newidsd	185.235.84.12	200 OK	0 B
URL HTTP/2 ag.gbc.criteo.com/newidsd IP 185.235.84.12:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash HTTP Headers `GET /newidsd HTTP/1.1 Host: ag.gbc.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/ Origin: https://gum.criteo.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:56 GMT content-type: application/json; charset=utf-8 server: Kestrel cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-origin: https://gum.criteo.com server-processing-duration-in-ticks: 94278 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	gem.gbc.criteo.com/newidsd	185.235.84.49	200 OK	0 B
URL HTTP/2 gem.gbc.criteo.com/newidsd IP 185.235.84.49:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash HTTP Headers `GET /newidsd HTTP/1.1 Host: gem.gbc.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/ Origin: https://gum.criteo.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK date: Mon, 06 Feb 2023 19:28:57 GMT content-type: application/json; charset=utf-8 server: Kestrel cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-origin: https://gum.criteo.com server-processing-duration-in-ticks: 84671 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (51)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML