| firefox.settings.services.mozilla.com/v1/ | 143.204.55.27 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash99b7d23c1748d0526782b9ff9ea45f09 eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 04:10:45 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zt4kcshh97y6j21GI3O2SfsRpuy_fENu6z5wBwyM1JMo69sm8QAhCw==
Age: 1261
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash96daaf84cd2c07756756caf7a2724a29 d24d47c68eec98d44bf341dab9d893df97103e1a fef9ce9f75ec19e7ae2ccbffb6654db2473a2b4acc94c1b4303e5ec24149465f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14646
Expires: Fri, 16 Sep 2022 08:35:52 GMT
Date: Fri, 16 Sep 2022 04:31:46 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain | 143.204.55.110 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain IP143.204.55.110:0
File typePEM certificate\012- , ASCII text Hash742edb4038f38bc533514982f3d2e861 cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1 b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OTH8C7up7IF02mULltzRezXLeeQeVt2jRzKVJ1fRCWmLYoBV2Rpqmw==
age: 86191
X-Firefox-Spdy: h2
|
|
| master.masterclasstoolbox.com/ga/click/2-310111595-1588-14146-27622-25491-78200a9658-q79dfc43b5 | 144.91.96.103 | 302 Found | 129 B |
URL HTTP/1.1master.masterclasstoolbox.com/ga/click/2-310111595-1588-14146-27622-25491-78200a9658-q79dfc43b5 IP144.91.96.103:0
File typeHTML document text\012- HTML document, ASCII text, with no line terminators Hashf91bca409ea7f694d3908847c18ba754 a164b2405dd433da4fcee54d281ab5f3b53d7eb2 f8e089906c8dbab6c4aec5068d1a45dd13fc48c013414e2e5f351ad6cfdc6149
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /ga/click/2-310111595-1588-14146-27622-25491-78200a9658-q79dfc43b5 HTTP/1.1
Host: master.masterclasstoolbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 16 Sep 2022 04:31:23 GMT
Server: Apache/2.4.51 (Unix) OpenSSL/1.0.2k-fips PHP/7.3.29
Status: 302 Found
X-Rack-Cache: miss
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-Request-Id: f093b77723f1d8688c5e52b087c6b187
Location: https://ecomhdnmkt.com/?a=10362&c=141747&s1=XMirnhtrllp
X-UA-Compatible: IE=Edge,chrome=1
X-Runtime: 0.023572
Expires: Mon, 01 Jan 1990 00:00:00 GMT
X-Powered-By: Phusion Passenger(R) 6.0.9
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 04:31:46 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp2.globalsign.com/gsalphasha2g2 | 104.18.21.226 | 200 OK | 1.4 kB |
URL HTTP/1.1ocsp2.globalsign.com/gsalphasha2g2 IP104.18.21.226:0
Hashad78ff564d399e7625d327bd8a05a80a 9be5afc6de2d7cddac393c37b5c5c05869a930e5 f8419eda3f1c1aa094646143b1be7cdef7fc3c4a5f2ab02f7233ff10a9ed1b16
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 04:31:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 20 Sep 2022 02:30:04 GMT
ETag: "9be5afc6de2d7cddac393c37b5c5c05869a930e5"
Last-Modified: Fri, 16 Sep 2022 02:30:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2410
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b6dfdf0e560b49-OSL
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.27 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 16 Sep 2022 04:03:22 GMT
Cache-Control: max-age=3600
Expires: Fri, 16 Sep 2022 04:14:12 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PcwX_EYgoSzCrmDp6qI5BcF5PEPPfCC6mUc1iL3lBuvJMWhPHBOkFg==
Age: 1705
|
|
| ecomhdnmkt.com/?a=10362&c=141747&s1=XMirnhtrllp | 23.20.168.171 | 302 Found | 349 B |
URL HTTP/1.1ecomhdnmkt.com/?a=10362&c=141747&s1=XMirnhtrllp IP23.20.168.171:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hashbc01661f5a66402cfa6265f54387dba1 d442db7a48d2b25782f3b6283699b1f3f7471e9b abf462d44341df08146f662751722da9939cf4d40b3f8812c17d039b76a7591f
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /?a=10362&c=141747&s1=XMirnhtrllp HTTP/1.1
Host: ecomhdnmkt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 349
Content-Type: text/html; charset=utf-8
Date: Fri, 16 Sep 2022 04:31:47 GMT
Location: https://smootag.com/?widipub_id=5cc1c44eef28645f96709905&wtrd_offer_id=62bede1047a243535e7222f3&wtrd_offer_pids=62bede5660230168603980d3&widipub_custom1=513790219&widipub_custom2=10362&widipub_custom3=XMirnhtrllp
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=P55nz8eBANm/HL0XfztzZ8GK+9cKCt4wl9dKKD1Y2NpdY9QqbQITZQ==; domain=.ecomhdnmkt.com; path=/; SameSite=None; secure; HttpOnly
trk=WU3XNvMJwZqDqrlMQVH+qMGK+9cKCt4wl9dKKD1Y2NpdY9QqbQITZQ==; domain=.ecomhdnmkt.com; expires=Mon, 16-Sep-2024 04:31:41 GMT; path=/; SameSite=None; secure; HttpOnly
c27949=P55nz8eBANmqDNZMtlleuav09BUDXyfUdZ4oeX451L08eBGUI9rwVw==; domain=.ecomhdnmkt.com; expires=Sun, 16-Oct-2022 04:31:41 GMT; path=/; SameSite=None; secure; HttpOnly
Connection: close
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashd597af1ab2f21a983bf0f0d105b94209 9d5dd938777abde094c89066b539141a02106b88 a614eb7f969544c8040642be7c852625341e2441e757d063d2af1ff465c8c3f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1210
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:47 GMT
Last-Modified: Fri, 16 Sep 2022 04:11:37 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash2c6887c4ff660464a40947a9da02afdb fa5d313eb6a0579522a73aaefb14b1fe2ecc86c5 64156e928e4295c9479ac7592cd50271a075592868c7377f4a65e446ac1d953c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64156E928E4295C9479AC7592CD50271A075592868C7377F4A65E446AC1D953C"
Last-Modified: Tue, 13 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21574
Expires: Fri, 16 Sep 2022 10:31:21 GMT
Date: Fri, 16 Sep 2022 04:31:47 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 54.187.71.185 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.187.71.185:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VIP3W56sLI3WOWHZL+Qmkg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: njjFdlcWhitO1Xiy8ef7ioWz0Ww=
|
|
| browser.sentry-cdn.com/6.17.4/bundle.min.js | 151.101.130.217 | 200 OK | 20 kB |
URL HTTP/2browser.sentry-cdn.com/6.17.4/bundle.min.js IP151.101.130.217:0
File typeASCII text, with very long lines (64556) Hash456782718f10c0d95baf1a859662a1e9 ed821b6fff07ce3882c70771d1409728516a2995 cc835658a5d6fa4d21247c24307e6f75154a3d80ca1e798cfe08e4fa1493b5dc
GET /6.17.4/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://smootag.com
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 18 Aug 2023 05:13:12 GMT
last-modified: Wed, 02 Feb 2022 15:42:58 GMT
etag: "456782718f10c0d95baf1a859662a1e9"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Fri, 16 Sep 2022 04:31:48 GMT
age: 2503116
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20491
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash86e8a8a64a7bb4cdea596d9edad6f782 72028ce3a8593494529ac9f1b685c5de66555e79 77a9fd45c2a2e649bb2cb89009c91470850830bcc1719f9de2be46e4fbb65370
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77A9FD45C2A2E649BB2CB89009C91470850830BCC1719F9DE2BE46E4FBB65370"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5830
Expires: Fri, 16 Sep 2022 06:08:58 GMT
Date: Fri, 16 Sep 2022 04:31:48 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash86e8a8a64a7bb4cdea596d9edad6f782 72028ce3a8593494529ac9f1b685c5de66555e79 77a9fd45c2a2e649bb2cb89009c91470850830bcc1719f9de2be46e4fbb65370
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77A9FD45C2A2E649BB2CB89009C91470850830BCC1719F9DE2BE46E4FBB65370"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5830
Expires: Fri, 16 Sep 2022 06:08:58 GMT
Date: Fri, 16 Sep 2022 04:31:48 GMT
Connection: keep-alive
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js | 104.17.24.14 | 200 OK | 27 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js IP104.17.24.14:0
File typeASCII text, with very long lines (65451) Hash77bd61b98f7b67af56639229724f8dd4 f04f07dd8ff53e58c32b738f81b71a014bca441d 8ce54c3b77bf31899b27b29188ff4936b580f2bd2b3222d43dda2851ba272e24
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 27433
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-1538f"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 648110
expires: Wed, 06 Sep 2023 04:31:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d%2B2l3DnN8siwQugyj4r1UtY9Zk%2F%2B%2B5%2Fn57HXH1zCsw1dXkvMcL2XRhq5Xw5TffeS1ZTtZk9B8D1H1ebEuJVdLrMeu2TCM2p0biUI8jJWTpD0IwFJzHOiTI2VOe5MZumn5VwOLyB%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74b6dfe5886fb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/templates/627a048983a0eb7f1710a962/tested.png | 185.76.9.26 | 200 OK | 18 kB |
URL HTTP/2assets.widitrade.com/assets/templates/627a048983a0eb7f1710a962/tested.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 224 x 224, 8-bit/color RGBA, non-interlaced\012- data Hashe09db0caab8a4bc07d8f1c889694f464 bc7e53eeeed81dbe010de4af7c6dc18737351f15 07db66efc1dc17418306e377a9e7ae4302d34a00507a1761d4e57956fbebe543
GET /assets/templates/627a048983a0eb7f1710a962/tested.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 17779
last-modified: Wed, 18 May 2022 15:26:36 GMT
etag: "6285102c-4573"
access-control-allow-origin: *
x-accel-expires: @1663321933
server: CDN77-Turbo
x-77-nzt: AblMCRQ1m+f/ZwYBAA
x-77-nzt-ray: l5ekreGiu1U
x-cache: HIT
x-age: 67175
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/templates/627a048983a0eb7f1710a962/stars45.png | 185.76.9.26 | 200 OK | 3.4 kB |
URL HTTP/2assets.widitrade.com/assets/templates/627a048983a0eb7f1710a962/stars45.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 349 x 66, 8-bit/color RGBA, non-interlaced\012- data Hash29c89ccd6c3625fd47d81c835c3ef53e 8257596e23035449634dcf157d4113e14abe83f8 bbc902cdc2430659c9298f4da0a8b627d6888940837cd2c8f932eab38e71c2f3
GET /assets/templates/627a048983a0eb7f1710a962/stars45.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 3388
last-modified: Fri, 20 May 2022 11:29:12 GMT
etag: "62877b88-d3c"
access-control-allow-origin: *
x-accel-expires: @1663308154
server: CDN77-Turbo
x-77-nzt: AblMCRTcS6n/OjwBAA
x-77-nzt-ray: toPbDHfCL60
x-cache: HIT
x-age: 80954
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/moment.js/2.20.1/moment-with-locales.min.js | 104.17.24.14 | 200 OK | 52 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/moment.js/2.20.1/moment-with-locales.min.js IP104.17.24.14:0
File typeASCII text, with very long lines (65536), with no line terminators Hashb59ccb7a8706be03f5567910340c987e f92610db428e47c7654d1d23eee78896f22520b8 9e33fc8dc5449ce08d61d12405ad1ed2d9a1662ba3f8128a2ddea66998984472
GET /ajax/libs/moment.js/2.20.1/moment-with-locales.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 52012
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f26-4c8c5"
last-modified: Mon, 04 May 2020 16:13:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 8743002
expires: Wed, 06 Sep 2023 04:31:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pROwS8cvlV3mRuTrh0OZEJQj7QIV2fiTgRD0h7sj6zymgttrloxQFm5rvys1GhRRdU9RbpnHWYZVxH5fdvqsQakSGW5rYegjUDuVPujEJu6k%2FyVOdYJxrXX1kzeKC3lySjvN6CZ6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74b6dfe5c89db51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash7975b33417f675d21a178b997288d616 1d2e957c46d45d6cb2f44389f3dcc66c880b6065 daffff63daade8bb0c2fd63570229df8502c563dd079b4da4103f6ee89fa67e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash7df27d4646e6e1cd358f0997ad604ea9 bf0c3feb55312e00ed8aa718458cc1e932903ac2 ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/productlogo-white.png | 185.76.9.26 | 200 OK | 3.6 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/productlogo-white.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 400 x 100, 8-bit/color RGBA, non-interlaced\012- data Hash250c4b6daaa8a84d41cdff3be57dcfe2 1d7087be2d6c0764e7a71a6dc0756abc89b82d54 7b5089f49d62105f269ebbd11afc809822bef8b395dd99dd51e5d31737b11548
GET /assets/products/62bebd372888e468a95b2ec0/productlogo-white.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 3559
last-modified: Tue, 05 Jul 2022 13:47:17 GMT
etag: "62c440e5-de7"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRRwLT3Oc2YBAA
x-77-nzt-ray: qHt4V1PEE7E
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/testimonialprofile4.jpg | 185.76.9.26 | 200 OK | 8.4 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/testimonialprofile4.jpg IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 61 x 61, 8-bit/color RGBA, non-interlaced\012- data Hasha63de846857b02fc918a903d56d0a248 8f62407c73b5845f62d1ed077742b4122dec1da1 601fbbdef23fc3ae80fba959523cd992e1b51a13f4afaa0213a5bde58aec7746
GET /assets/products/62bebd372888e468a95b2ec0/testimonialprofile4.jpg HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/jpeg
content-length: 8390
last-modified: Wed, 06 Jul 2022 13:46:07 GMT
etag: "62c5921f-20c6"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRQa02jOc2YBAA
x-77-nzt-ray: nEkaapFNOsA
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/testimonialprofile6.jpg | 185.76.9.26 | 200 OK | 7.8 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/testimonialprofile6.jpg IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 61 x 61, 8-bit/color RGBA, non-interlaced\012- data Hashf9878929d94e18ddc87ac266a29ce352 18287977b4b4bf7259c22387bb9d15d1afda3447 ab96e89d3c1d0b702fa2e22df0e35d47f9fb8bf67427c1c608633a622eed005f
GET /assets/products/62bebd372888e468a95b2ec0/testimonialprofile6.jpg HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/jpeg
content-length: 7846
last-modified: Wed, 06 Jul 2022 13:46:15 GMT
etag: "62c59227-1ea6"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRSURdXOc2YBAA
x-77-nzt-ray: dGmXDrEZtwI
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/testimonialprofile3.jpg | 185.76.9.26 | 200 OK | 7.3 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/testimonialprofile3.jpg IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 61 x 61, 8-bit/color RGBA, non-interlaced\012- data Hashc5b488d073bba99a466c24ded9231460 b633db2fa91cd6ecab5d1da55f7398a59dff7a7f e091228e42a579ce882806e0fd570aa3c504b18a020ffbf3cb8afd05758658aa
GET /assets/products/62bebd372888e468a95b2ec0/testimonialprofile3.jpg HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/jpeg
content-length: 7303
last-modified: Wed, 06 Jul 2022 13:46:02 GMT
etag: "62c5921a-1c87"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRQPoybOc2YBAA
x-77-nzt-ray: VjEiEXmcqQQ
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/testimonialprofile2.jpg | 185.76.9.26 | 200 OK | 5.5 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/testimonialprofile2.jpg IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 61 x 61, 8-bit/color RGBA, non-interlaced\012- data Hash05411e07442f8fc3f6f7fbe0ba7011fd 2b5a874937635d323cc39567d4499fb874d218ab 49ec7c39763e05b1cb2feacb456b1661d1185713737258435fecdda40c70d02d
GET /assets/products/62bebd372888e468a95b2ec0/testimonialprofile2.jpg HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/jpeg
content-length: 5532
last-modified: Wed, 06 Jul 2022 13:45:58 GMT
etag: "62c59216-159c"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRQasuLOc2YBAA
x-77-nzt-ray: zhpRboaJsjE
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-feature1.png | 185.76.9.26 | 200 OK | 2.1 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-feature1.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 101 x 101, 8-bit/color RGBA, non-interlaced\012- data Hashd5d5db9d219d7d852ca44831913f6cf4 31be21343ba4305829e3a8e17d075e565352ebe5 947f7d0a2c1f3b19320cdca1af6efd424eed1c76e225be0542511b21546ef2b9
GET /assets/products/62bebd372888e468a95b2ec0/product-feature1.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 2147
last-modified: Wed, 06 Jul 2022 10:28:12 GMT
etag: "62c563bc-863"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRQVk2vOcmYBAA
x-77-nzt-ray: UPv9MkVfigM
x-cache: REVALIDATED
x-age: 91762
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/testimonialprofile5.jpg | 185.76.9.26 | 200 OK | 6.9 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/testimonialprofile5.jpg IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 61 x 61, 8-bit/color RGBA, non-interlaced\012- data Hasha44a4b51410a721ca3d1f2a96dcda75a 2f96a497a83c176bfbe873713bbf997fc0112ace 84f0c3b8ecf914582749ee8eceb697da1392be288ef95a794c6789efcd11931c
GET /assets/products/62bebd372888e468a95b2ec0/testimonialprofile5.jpg HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/jpeg
content-length: 6900
last-modified: Wed, 06 Jul 2022 13:46:11 GMT
etag: "62c59223-1af4"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRR+RunOc2YBAA
x-77-nzt-ray: gwpwahfQMJI
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-feature2.png | 185.76.9.26 | 200 OK | 1.8 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-feature2.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 101 x 101, 8-bit/color RGBA, non-interlaced\012- data Hash9c3f557fc51044a0aab55fdda9410b3c e2de225535886195dabbdb6110f1846bcb0aedde d65b136e9c7449788e6bb52a035865f3ca4aa2198a9160fb8763b1f462ddeb3a
GET /assets/products/62bebd372888e468a95b2ec0/product-feature2.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 1839
last-modified: Wed, 06 Jul 2022 10:28:16 GMT
etag: "62c563c0-72f"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRQbAF3Oc2YBAA
x-77-nzt-ray: cTedbX6jI6k
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-feature3.png | 185.76.9.26 | 200 OK | 1.5 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-feature3.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 101 x 101, 8-bit/color RGBA, non-interlaced\012- data Hash6d829d4dea5ad973bf309f1cbe42d84a b84c800644d33aa7e22e35d6ea31a0f686afe5a7 ed94ee04618b89562794ab7d5cd3c9a1f89e9609093f710c921743de5e1a00b3
GET /assets/products/62bebd372888e468a95b2ec0/product-feature3.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 1497
last-modified: Wed, 06 Jul 2022 10:28:20 GMT
etag: "62c563c4-5d9"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRSgz0zOc2YBAA
x-77-nzt-ray: QvBl8aS87As
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/templates/627a048983a0eb7f1710a962/guarantee-30.png | 185.76.9.26 | 200 OK | 60 kB |
URL HTTP/2assets.widitrade.com/assets/templates/627a048983a0eb7f1710a962/guarantee-30.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 301 x 300, 8-bit/color RGBA, non-interlaced\012- data Hashcbe6e2af946610ddf4548988fcca6021 d5ac5466f9f18bde5352d0bfa12776bfb8e5f5d0 7d0730189413905a99a81ecffceb5e06653925d019bb60cb4d722b8eb92fb019
GET /assets/templates/627a048983a0eb7f1710a962/guarantee-30.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 60032
last-modified: Thu, 12 May 2022 13:45:51 GMT
etag: "627d0f8f-ea80"
access-control-allow-origin: *
x-accel-expires: @1663342545
server: CDN77-Turbo
x-77-nzt: AblMCRRlsX//47UAAA
x-77-nzt-ray: LLMOKdne3uE
x-cache: HIT
x-age: 46563
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash7df27d4646e6e1cd358f0997ad604ea9 bf0c3feb55312e00ed8aa718458cc1e932903ac2 ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash3b816941816ca5fed922c0604e9da8dc 94c14ea6c512c6c262479b4299f1cd4dd99ea5cd a05000788114487ba8b8c661ba1370b29c96a93a16275b3fab497cf75722b51d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.gstatic.com/firebasejs/5.5.3/firebase-messaging.js | 142.250.74.163 | 200 OK | 10 kB |
URL HTTP/2www.gstatic.com/firebasejs/5.5.3/firebase-messaging.js IP142.250.74.163:0
File typeASCII text, with very long lines (35625) Hash4cdcb53c426bb5434c8907f88bea516c c01a12f3e57b77c354200ddb6d6e6fe198156d5d 82cc6b49cc703ee9309d207d1cb34fb1b7118f17549fb6b8e2a437e24df57891
GET /firebasejs/5.5.3/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10045
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 07:32:10 GMT
expires: Thu, 14 Sep 2023 07:32:10 GMT
cache-control: public, max-age=31536000
age: 161978
last-modified: Thu, 04 Oct 2018 21:56:42 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| smootag.com/?widipub_id=5cc1c44eef28645f96709905&wtrd_offer_id=62bede1047a243535e7222f3&wtrd_offer_pids=62bede5660230168603980d3&widipub_custom1=513790219&widipub_custom2=10362&widipub_custom3=XMirnhtrllp | 212.36.83.70 | 200 OK | 77 kB |
URL HTTP/2smootag.com/?widipub_id=5cc1c44eef28645f96709905&wtrd_offer_id=62bede1047a243535e7222f3&wtrd_offer_pids=62bede5660230168603980d3&widipub_custom1=513790219&widipub_custom2=10362&widipub_custom3=XMirnhtrllp IP212.36.83.70:0 ASN#15699 OGIC Informatica S.L.
Hashca9af2a0d44e2f2e7d9980b7c7091878 497fd35631fd557e3834f213e5537cfefea6b695 b2dfb4419b1774e0bf860dcfbcdb087179cc19bc00225d1fb4e6d864855fe558
GET /?widipub_id=5cc1c44eef28645f96709905&wtrd_offer_id=62bede1047a243535e7222f3&wtrd_offer_pids=62bede5660230168603980d3&widipub_custom1=513790219&widipub_custom2=10362&widipub_custom3=XMirnhtrllp HTTP/1.1
Host: smootag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
content-type: text/html; charset=UTF-8
cache-control: max-age=0, must-revalidate, private
date: Fri, 16 Sep 2022 04:31:47 GMT
content-security-policy: frame-ancestors *
expires: Fri, 16 Sep 2022 04:31:47 GMT
set-cookie: PHPSESSID=073bec4b835cdbb2e156d1e71766cbe3; path=/; HttpOnly
wtrd_pp=5a912d52fd5535605412fa43; expires=Sat, 17-Sep-2022 04:31:47 GMT; Max-Age=86400; path=/; httponly
wtrd_click=6323fc33b26d6f19d92c4011; expires=Thu, 16-Sep-2032 04:31:47 GMT; Max-Age=315619200; path=/; httponly
strict-transport-security: max-age=15768000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-use1.png | 185.76.9.26 | 200 OK | 93 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-use1.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 432 x 337, 8-bit/color RGB, non-interlaced\012- data Hashe2e709055cd380be1e9ab05ee3cfc8a2 d8ea48ec5ece65a52175a2597c671c5f4327fcb3 042685476d4a3b9fd80af2cb0867c1e15561eed7f5fcb27b7260899c0864f080
GET /assets/products/62bebd372888e468a95b2ec0/product-use1.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 92936
last-modified: Tue, 05 Jul 2022 13:47:01 GMT
etag: "62c440d5-16b08"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRRhqSHOc2YBAA
x-77-nzt-ray: DW+exocTl50
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/content-checkout-icon3.png | 185.76.9.26 | 200 OK | 2.5 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/content-checkout-icon3.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data Hashc752f27845ddc8df8115759681f4978b c3080a73df3918fa4a7516bc7efbc97c3eaaa954 2214913db24f7d023df03e87287ce73b45838f862e321d5b9b95b6d64a3ab441
GET /assets/products/62bebd372888e468a95b2ec0/content-checkout-icon3.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 2472
last-modified: Wed, 06 Jul 2022 10:27:56 GMT
etag: "62c563ac-9a8"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRRi2+DOc2YBAA
x-77-nzt-ray: msc2dTENbdU
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/templates/627a048983a0eb7f1710a962/ssl.png | 185.76.9.26 | 200 OK | 68 kB |
URL HTTP/2assets.widitrade.com/assets/templates/627a048983a0eb7f1710a962/ssl.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 306 x 306, 8-bit/color RGBA, non-interlaced\012- data Hash41f3966164ec26a581a71f068cd3f568 a637394df28b10606c2f90cd307ba1bb444179ae a052350aad5ca1b93edbbf95b2cc77959f37b90bb451d6db5dcd7284df599c73
GET /assets/templates/627a048983a0eb7f1710a962/ssl.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 68260
last-modified: Mon, 23 May 2022 06:37:16 GMT
etag: "628b2b9c-10aa4"
access-control-allow-origin: *
x-accel-expires: @1663315319
server: CDN77-Turbo
x-77-nzt: AblMCRSgeX3/PSABAA
x-77-nzt-ray: 7hkByPJKfuQ
x-cache: HIT
x-age: 73789
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/content-checkout-icon1.png | 185.76.9.26 | 200 OK | 2.2 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/content-checkout-icon1.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data Hasha8a23b580a435621398ef549a7c57cac 3d6460b1e6f8e511d5b366d83ad2b3ca6d81398d 7373f0319a0cd06af22d048215071871c58dc155d6a6d3b734913f04d89c1e25
GET /assets/products/62bebd372888e468a95b2ec0/content-checkout-icon1.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 2183
last-modified: Wed, 06 Jul 2022 10:27:44 GMT
etag: "62c563a0-887"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRR/KUXOc2YBAA
x-77-nzt-ray: +e9Y7Bt2kwc
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-not-use1.png | 185.76.9.26 | 200 OK | 138 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-not-use1.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 326 x 315, 8-bit/color RGB, non-interlaced\012- data Size138 kB (137478 bytes) Hash9ea23ef6a30e7a6187d7e7bfa19b10bc 73947fbb7ddad4ea7829c62a3d22786e8f17362f c6f5e81ed822653e8ea60fecfc1c20372804784cd97effbae3b4630d08bd5018
GET /assets/products/62bebd372888e468a95b2ec0/product-not-use1.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 137478
last-modified: Tue, 05 Jul 2022 13:46:49 GMT
etag: "62c440c9-21906"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRQo4arOc2YBAA
x-77-nzt-ray: bkaH0YEdaac
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/about1.jpg | 185.76.9.26 | 200 OK | 202 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/about1.jpg IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 480 x 480, 8-bit/color RGBA, non-interlaced\012- data Size202 kB (201963 bytes) Hash24b2e63771ccbb5425e3bb9bf5d0e75d dcfa148fa309c5ef81b6edaa06a3f7387e3d3ffa f6da78a40fbb826c9cbacd9c6df12dfdc295c18d3f3c7ae5988392a4d6892a77
GET /assets/products/62bebd372888e468a95b2ec0/about1.jpg HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/jpeg
content-length: 201963
last-modified: Thu, 07 Jul 2022 07:44:33 GMT
etag: "62c68ee1-314eb"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRS9OyrOc2YBAA
x-77-nzt-ray: nFqnESG+PxI
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/about2.jpg | 185.76.9.26 | 200 OK | 292 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/about2.jpg IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 479 x 479, 8-bit/color RGBA, non-interlaced\012- data Size292 kB (292490 bytes) Hash9fbfbe2ebead22757e762cc05dfb389b 85375953d4451c55c8816d584c3f28c93c5c7bfc ec956a36ddb5dc24375196f5b28c8e57c7b243d09985e4fc0d22a2fa28199710
GET /assets/products/62bebd372888e468a95b2ec0/about2.jpg HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/jpeg
content-length: 292490
last-modified: Thu, 07 Jul 2022 07:44:28 GMT
etag: "62c68edc-4768a"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRRN6Bbed8sBAA
x-77-nzt-ray: L60tW7j1UeU
x-cache: REVALIDATED
x-age: 117623
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/about4.jpg | 185.76.9.26 | 200 OK | 284 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/about4.jpg IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 479 x 479, 8-bit/color RGBA, non-interlaced\012- data Size284 kB (283655 bytes) Hash1a88cc09e95d292d9376571007f1645d 076617cea70f2aeca9d3b169a2698df5ab609637 75bc7ca197f4e4730e99a49cf50b1fa6e62a4ea49f2d0c4e245df826476d8be7
GET /assets/products/62bebd372888e468a95b2ec0/about4.jpg HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/jpeg
content-length: 283655
last-modified: Thu, 07 Jul 2022 07:44:43 GMT
etag: "62c68eeb-45407"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRQTh0rec8sBAA
x-77-nzt-ray: U4dDLM0Zd5w
x-cache: REVALIDATED
x-age: 117619
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-advice.png | 185.76.9.26 | 200 OK | 362 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-advice.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 1006 x 773, 8-bit/color RGBA, non-interlaced\012- data Size362 kB (362022 bytes) Hashc1648990d448e6571d0f7646a1fd8b03 ce1673e6a711bc82cfc51332faa76d7332093766 9d16c837cd5382545e6ea72519bcc302eb99e85c818d7c08a75c6138900f82c7
GET /assets/products/62bebd372888e468a95b2ec0/product-advice.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 362022
last-modified: Tue, 05 Jul 2022 13:46:41 GMT
etag: "62c440c1-58626"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRRtyW7Oc2YBAA
x-77-nzt-ray: g3IW7mSud+o
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/about3.jpg | 185.76.9.26 | 200 OK | 336 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/about3.jpg IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 479 x 479, 8-bit/color RGBA, non-interlaced\012- data Size336 kB (336208 bytes) Hash5c01026459f48abcd163c16da2c4576e 97e47a15b4f85966fdaa3ae6599614d546e75a66 e39b3d276b0c3408525c7a2b53fe9b2c500cb2dbb9d6dfc84a81ee47bfe9edbd
GET /assets/products/62bebd372888e468a95b2ec0/about3.jpg HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/jpeg
content-length: 336208
last-modified: Thu, 07 Jul 2022 07:44:38 GMT
etag: "62c68ee6-52150"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRSB32zOc2YBAA
x-77-nzt-ray: c5LMtELGnEc
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/firebasejs/5.5.3/firebase-app.js | 142.250.74.163 | 200 OK | 12 kB |
URL HTTP/2www.gstatic.com/firebasejs/5.5.3/firebase-app.js IP142.250.74.163:0
File typeASCII text, with very long lines (34802) Hash85e24b6246c780bf9d5fc6cc1f2d79a9 a3f6f593f14e735289627a0e753eb5f248da8ef5 ac51df4ea72ed05c6eaba63cedf926a95f681967d7f52c1134d49fc836fdc890
GET /firebasejs/5.5.3/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 12419
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 13:19:49 GMT
expires: Sun, 10 Sep 2023 13:19:49 GMT
cache-control: public, max-age=31536000
age: 486719
last-modified: Thu, 04 Oct 2018 21:56:42 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| tvidler-official.com/theme/huusk/product/images/stars.png | 172.67.212.96 | 200 OK | 1.7 kB |
URL HTTP/2tvidler-official.com/theme/huusk/product/images/stars.png IP172.67.212.96:0
File typePNG image data, 298 x 56, 4-bit colormap, non-interlaced\012- data Hash1366406bb849214ac976f9f19a0cfead 2597509371c960696b373f56877a71cc4ef94648 7ff199c0bf00d56110b972ddd95cdd3e867f5cf873dd46eaaccddbb83fc82167
GET /theme/huusk/product/images/stars.png HTTP/1.1
Host: tvidler-official.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 1740
last-modified: Fri, 02 Sep 2022 12:02:27 GMT
etag: "6311f0d3-6cc"
expires: Wed, 05 Oct 2022 02:51:19 GMT
cache-control: public, max-age=2592000
x-cloud-trace-context: 98fa836b860d0beba568718f1487d372;o=1
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 956429
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sh7TJ8q%2FETq4MHAn%2F5%2BSPhwnm8kGk8n89ZfA0I%2F5LZ%2Bgcaf0Xv81gg0Q9ziZ4LixlrKi7%2FVXDq7eSxS36zZzeSzYPSM4JK4FiG%2BcNIsCza1z16EAaRhgqvXbKK68PIfwJkv4%2BX7yiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b6dfe71bb41c12-OSL
X-Firefox-Spdy: h2
|
|
| flagcdn.com/h24/no.png | 104.21.79.51 | 200 OK | 134 B |
IP104.21.79.51:0
File typePNG image data, 33 x 24, 4-bit colormap, non-interlaced\012- data Hash09b584c2d5f5eb4508b6a413874a6057 2ac227503587b2c117f6eff182ff6a08310aff32 85d4daf3b2d31f2afccdcee258daacf152579aaf9e1f64dfa497d9d422008e2b
GET /h24/no.png HTTP/1.1
Host: flagcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 134
last-modified: Thu, 19 Nov 2020 12:03:56 GMT
etag: "5fb65f2c-86"
access-control-allow-origin: *
cache-control: public, max-age=2678400, s-maxage=2678400
cf-cache-status: HIT
age: 333006
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P4yCuIdzSJ9KM%2Bk2VYuPVBkzl7Qtxxy0dZ3KBSOEZsfcNT5FM5hbreWLStgoknUpmP%2FrQlygSOnxRYWW8G6YvCQqYG96I2mdxtdkfEneowa9g2RnDrndiCn5yM78Ww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74b6dfe718cab4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/testimonialprofile1.jpg | 185.76.9.26 | 200 OK | 7.4 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/testimonialprofile1.jpg IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 61 x 61, 8-bit/color RGBA, non-interlaced\012- data Hash22f3a5f45cc80706fc03f6ce4ca9f817 3a1ab9d72700335b3ac8ce2406c0b98f88b524cf d8282e07db64454ac472754c5cd2b13283c8b06b8c079fcb71c7acb508284879
GET /assets/products/62bebd372888e468a95b2ec0/testimonialprofile1.jpg HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/jpeg
content-length: 7379
last-modified: Wed, 06 Jul 2022 13:45:54 GMT
etag: "62c59212-1cd3"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRT5ZWvOc2YBAA
x-77-nzt-ray: mmy8WBJueys
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-example2.png | 185.76.9.26 | 200 OK | 597 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-example2.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 944 x 560, 8-bit/color RGBA, non-interlaced\012- data Size597 kB (597027 bytes) Hash1be862ca379da5a7e7d028390dd09160 574d9451c56d83a870f070d933ae44fdd6f10c69 9504423b8697fb4398a5fc932c8ed5dd89a360449610b707333e6d9fc825e6ce
GET /assets/products/62bebd372888e468a95b2ec0/product-example2.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 597027
last-modified: Tue, 05 Jul 2022 13:46:45 GMT
etag: "62c440c5-91c23"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRTgdV3Oc2YBAA
x-77-nzt-ray: Y+0eKaahue0
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-example1.png | 185.76.9.26 | 200 OK | 502 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-example1.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 946 x 560, 8-bit/color RGBA, non-interlaced\012- data Size502 kB (502482 bytes) Hash87e6e49387be3bcb1b97076577ea4e83 a35d323d3330535ffb479c5bbe2914661a013a4e 328153e845e3f63c09593d12c2d94fb82c8651ba3adeb11d6ab8d8439328632f
GET /assets/products/62bebd372888e468a95b2ec0/product-example1.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 502482
last-modified: Tue, 05 Jul 2022 13:46:37 GMT
etag: "62c440bd-7aad2"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRQDfMbOc2YBAA
x-77-nzt-ray: BKnFrQ/rKxY
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash7975b33417f675d21a178b997288d616 1d2e957c46d45d6cb2f44389f3dcc66c880b6065 daffff63daade8bb0c2fd63570229df8502c563dd079b4da4103f6ee89fa67e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtm.js?id=GTM-NGZ7Z7Q | 142.250.74.72 | 200 OK | 86 kB |
URL HTTP/2www.googletagmanager.com/gtm.js?id=GTM-NGZ7Z7Q IP142.250.74.72:0
File typeASCII text, with very long lines (49147) Hash04375262d84d9725fe3726a889cd73f7 8a760f1409268cf3af582440131229363d3265c5 70b675f20146dd9f1e5424070b32800b35ab02af2326be4dee586ed789faea95
GET /gtm.js?id=GTM-NGZ7Z7Q HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 16 Sep 2022 04:31:48 GMT
expires: Fri, 16 Sep 2022 04:31:48 GMT
cache-control: private, max-age=900
last-modified: Fri, 16 Sep 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86162
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/description-background.png | 185.76.9.26 | 200 OK | 251 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/description-background.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 2160 x 1303, 8-bit/color RGBA, non-interlaced\012- data Size251 kB (251445 bytes) Hashe6b0323eb47f8d7f040fdb67adf07c58 131d0773ca393ab4a8294d1ebc7289c512a47a03 4a301f43ad888e2258beb3971a8c6243e47aa36a43058bae47ecb380f9f1bc4a
GET /assets/products/62bebd372888e468a95b2ec0/description-background.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 251445
last-modified: Tue, 05 Jul 2022 13:46:24 GMT
etag: "62c440b0-3d635"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRTbdT7OcmYBAA
x-77-nzt-ray: ND6zGk2PE/c
x-cache: REVALIDATED
x-age: 91762
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/content-checkout-icon4.png | 185.76.9.26 | 200 OK | 1.6 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/content-checkout-icon4.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 55 x 55, 8-bit/color RGBA, non-interlaced\012- data Hash898cd662a108b3ea0d6cbeee01b59a5f 0b68306e60e1354fc7b98b0ee08281a9506a12b3 bce9803edac19771d785c1cc65e5adae8a1871d4015e9ed20e331c39d73f45a7
GET /assets/products/62bebd372888e468a95b2ec0/content-checkout-icon4.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 1563
last-modified: Tue, 05 Jul 2022 13:52:36 GMT
etag: "62c44224-61b"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRT58LXOc2YBAA
x-77-nzt-ray: zO6ZeDcpHhY
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash7df27d4646e6e1cd358f0997ad604ea9 bf0c3feb55312e00ed8aa718458cc1e932903ac2 ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/tested-image.png | 185.76.9.26 | 200 OK | 781 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/tested-image.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 2880 x 935, 8-bit/color RGB, non-interlaced\012- data Size781 kB (781008 bytes) Hash0999851d9fff2de87d636c01b28c56dd 28940f4caa19a480cfe049327a85b71d0d5c522a eea170a3251ecc618f5f96552323a5c040a0406b64f207fb19b5ad4f396d972f
GET /assets/products/62bebd372888e468a95b2ec0/tested-image.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 781008
last-modified: Tue, 05 Jul 2022 13:47:25 GMT
etag: "62c440ed-bead0"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRRlf5vOcmYBAA
x-77-nzt-ray: ZBAiz794YGw
x-cache: REVALIDATED
x-age: 91762
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/content-checkout-icon2.png | 185.76.9.26 | 200 OK | 1.9 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/content-checkout-icon2.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data Hash2ec7f3929b18523cc50b7700e3950fe7 9ed22b2e42cb730b07527ead0c8b1b9bad97bd26 465500059d873cc8543d346531a00c985f5c92af4c134eddfebf8f966914c7a6
GET /assets/products/62bebd372888e468a95b2ec0/content-checkout-icon2.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 1890
last-modified: Wed, 06 Jul 2022 10:27:52 GMT
etag: "62c563a8-762"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRS0FmjOc2YBAA
x-77-nzt-ray: QIcOjGD9P9g
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-TP7YK51HJS&l=dataLayer&cx=c | 142.250.74.72 | 200 OK | 75 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=G-TP7YK51HJS&l=dataLayer&cx=c IP142.250.74.72:0
File typeASCII text, with very long lines (20041) Hasha724e1305cffb65950e8b832763fb0e9 f800d2b0339dac2907d61806fe52481360ccb6f8 801d936ddc01d2ffab81b99ed9cd3b2008b0be0c664de44c7f1823df7a111849
GET /gtag/js?id=G-TP7YK51HJS&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 16 Sep 2022 04:31:48 GMT
expires: Fri, 16 Sep 2022 04:31:48 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75373
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash3b816941816ca5fed922c0604e9da8dc 94c14ea6c512c6c262479b4299f1cd4dd99ea5cd a05000788114487ba8b8c661ba1370b29c96a93a16275b3fab497cf75722b51d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 142.250.74.163 | 200 OK | 31 kB |
URL HTTP/2fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data Hashac0d2859ea5f8fd6bcb3c305c08ec184 7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7 ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://smootag.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 16:40:18 GMT
expires: Fri, 15 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 42690
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash35f3deb94b2a985eb02f5a14f033c44f 2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd 1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18039
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 04:31:48 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash35f3deb94b2a985eb02f5a14f033c44f 2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd 1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18039
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 04:31:48 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash35f3deb94b2a985eb02f5a14f033c44f 2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd 1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18039
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 04:31:48 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash35f3deb94b2a985eb02f5a14f033c44f 2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd 1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18039
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 04:31:48 GMT
Connection: keep-alive
|
|
| cdn.widitrade.com/build/images/news-logos/white/msn.svg | 185.76.9.18 | 200 OK | 11 kB |
URL HTTP/2cdn.widitrade.com/build/images/news-logos/white/msn.svg IP185.76.9.18:0 ASN#60068 Datacamp Limited
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1719) Hash52b3fb97f29429d3792192a9d84229e8 abec570e71d396531fe75f5dabb011e8c505700c 977c9f538b16894aca651a3f106519a7813f9e2676583ec0d7fecf3ed7ebf37a
GET /build/images/news-logos/white/msn.svg HTTP/1.1
Host: cdn.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/svg+xml
last-modified: Tue, 13 Sep 2022 08:30:02 GMT
etag: W/"63203f8a-168a"
strict-transport-security: max-age=15768000
x-accel-expires: @1664162994
server: CDN77-Turbo
x-77-nzt: AblMCQ2Oc5b/grECAA
x-77-nzt-ray: 8vxskEhU/l8
x-cache: HIT
x-age: 176514
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3a4ed510756efe784c4ca84c61c4b5ba 10262867cfb19d3ba8f618e235d1a98531048f34 b5ba0de5ce381579e49e3e3c23244048fc8aac693ce0c977560f28b9a51f6a0b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10163
x-amzn-requestid: 7c849e5d-468e-4f6a-ad44-c7995bfa81bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYvuGFU5oAMF_Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202cc0-5376d2432c79a3146b6c29f4;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:09:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XGVoNQZeoG0AQ6LabPW2Zg7pAQqdl-bGTFAhbNpLlgTWNWx55-wEUQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:45:14 GMT
age: 24394
etag: "10262867cfb19d3ba8f618e235d1a98531048f34"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-not-use3.png | 185.76.9.26 | 200 OK | 8.4 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-not-use3.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb7d4ee58e0f26ec6817dbab72aa7db6d b6e634ef27eba9da38c6472565e0fdca6898e4f0 07db05a6ee70a699164ad55da47bfca58e6639956e256d902cbe0388cd7995c6
GET /assets/products/62bebd372888e468a95b2ec0/product-not-use3.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 246433
last-modified: Tue, 05 Jul 2022 13:46:57 GMT
etag: "62c440d1-3c2a1"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRT/LcLOc2YBAA
x-77-nzt-ray: DLNM/ubB2qI
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product1.png | 185.76.9.26 | 200 OK | 5.0 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product1.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8bedb04287b8f09d30fed0ae386b9bcc 2b8a6de0faac5c1a99b48c28da9c05f520ef6add cec3955f3330184ace4388b7c00262b52c9ca43e9ece6fb8f2fdec2ee9e53a9e
GET /assets/products/62bebd372888e468a95b2ec0/product1.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 409676
last-modified: Wed, 06 Jul 2022 10:28:28 GMT
etag: "62c563cc-6404c"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRRxf9bO/tEBAA
x-77-nzt-ray: yMRyaDZbQEY
x-cache: REVALIDATED
x-age: 119294
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg | 34.120.237.76 | 200 OK | 8.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe4f3e6b013d785036c9b9c16aef3404f 28bf10400e47ad48eee5db04829b88340e021840 98596627e914528b177b8a3d2be8766bdf210c62415961ab99afefa465440819
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8854
x-amzn-requestid: ae78dca7-cd78-40ad-8ef3-5b287d99b0e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO1suGFuoAMFptg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3651-12f3fedb07f856af06e8b1e5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:01:37 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: h1Q93ahPFyzjb40UxQcoDZPKkpLtrkcj1vE_mB4AW2Gn9CAibFnd6A==
via: 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:03:47 GMT
age: 23281
etag: "28bf10400e47ad48eee5db04829b88340e021840"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash512280055633fcce9abc7d11a9816a24 de5c3e010fca76659455a144875a52c25fa72bdd 435eadb36830928b20d4cf8ead62134b75bd0ed3228489d9fdee66450bcbeaed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13536
x-amzn-requestid: 5533b257-1558-472b-aeb9-8207a78e1110
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDzFa4IAMF9Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb1-05d0dfde7a488ed97d2a40d5;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JAzbRqinDuqQuQoESEsL26c1Y1UTQ5tO1thL3ugE6LPQtNTWGaGTLg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:48:32 GMT
age: 24196
etag: "de5c3e010fca76659455a144875a52c25fa72bdd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-use3.png | 185.76.9.26 | 200 OK | 26 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-use3.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 433 x 337, 8-bit/color RGB, non-interlaced\012- data Hash88f47fee30660a58942e685a5675ee21 f575556e1778284b08558e0e55577d1d3efbc357 bb748e04f316176ade919c3059678d56bff248ad699bbb00564d5384bbf3a034
GET /assets/products/62bebd372888e468a95b2ec0/product-use3.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 26085
last-modified: Tue, 05 Jul 2022 13:47:09 GMT
etag: "62c440dd-65e5"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRSHm3jOc2YBAA
x-77-nzt-ray: YEVr3gwDwBg
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-use2.png | 185.76.9.26 | 200 OK | 81 kB |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/product-use2.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
File typePNG image data, 433 x 337, 8-bit/color RGB, non-interlaced\012- data Hashd6979713428662a28e763c1b18ba5527 1ebad2340b1984db5336ce573122741eca605d63 2e02dd2b13f0aeabb89bce154a3db8a2b2462bac31301a98ccaa043329a1045e
GET /assets/products/62bebd372888e468a95b2ec0/product-use2.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 80614
last-modified: Tue, 05 Jul 2022 13:47:05 GMT
etag: "62c440d9-13ae6"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRTe+YfOc2YBAA
x-77-nzt-ray: jBmLHpWyr0c
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| smootag.com/iframe-gtm2/ | 212.36.83.70 | 200 OK | 69 kB |
IP212.36.83.70:0 ASN#15699 OGIC Informatica S.L.
Hash6145a2978a511a638438bc8c7bac574b 9add08f0ba63097468b47881b7255d085989fc6d 17972a10b4cc30760ad6d66fe4f732c625aff3094b9f5016fc3042b9f5a8c524
GET /iframe-gtm2/ HTTP/1.1
Host: smootag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/?widipub_id=5cc1c44eef28645f96709905&wtrd_offer_id=62bede1047a243535e7222f3&wtrd_offer_pids=62bede5660230168603980d3&widipub_custom1=513790219&widipub_custom2=10362&widipub_custom3=XMirnhtrllp
Cookie: PHPSESSID=073bec4b835cdbb2e156d1e71766cbe3; wtrd_pp=5a912d52fd5535605412fa43; wtrd_click=6323fc33b26d6f19d92c4011
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
date: Fri, 16 Sep 2022 04:31:49 GMT
content-security-policy: frame-ancestors *
strict-transport-security: max-age=15768000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash7dff4bc87dbee6fd33e0d7a3dc5ed3bd 59878d4dd98e60b39dcf7ac288e77bb262afab5d 8c3a027cee1f48144eb0504deff1f2b9aa98c9fc3f4e3057ece6caac9f604315
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6448
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Last-Modified: Fri, 16 Sep 2022 02:44:21 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
|
|
| www.google-analytics.com/analytics.js | 142.250.74.174 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.174:0
File typeASCII text, with very long lines (1325) Hash56f5d7f608e25d64207135f045f988cb 901eb59372ae330ae85e1384da93479b21ae1082 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Fri, 16 Sep 2022 02:41:12 GMT
expires: Fri, 16 Sep 2022 04:41:12 GMT
cache-control: public, max-age=7200
age: 6637
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash91dad4479f7dcb623266cf0dcfef5875 9fcf1f0e16c17a43021ab8fb01089d2d9c9f1d3a 0dc4f9c3ecdccb7e1b7a651c72ee63acc06482b362f060547534c3196e561412
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| connect.facebook.net/en_US/fbevents.js | 31.13.72.12 | 200 OK | 27 kB |
URL HTTP/2connect.facebook.net/en_US/fbevents.js IP31.13.72.12:0
File typeASCII text, with very long lines (64348) Hashecb99528d18dbe7952eac9618eaf2d8e eb59bf3afc849403fa3dde09b75b5fc51f29e7b5 bcecfe43bf3e0f22ff425fe630e189d28fc3ecdc9764dd1686599e5ce59f40cc
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: C/3LvTcYfPKXTQ6scop5f2AbvYOD7py4Fx5Y83WXdhhm4xIBmZA8hfnOS1XkbvYPnSO98YS9/rdl4mP3R1Q4lQ==
content-length: 26872
x-fb-trip-id: 1904183273
date: Fri, 16 Sep 2022 04:31:49 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bat.bing.com/bat.js | 204.79.197.200 | 200 OK | 11 kB |
IP204.79.197.200:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
File typeUnicode text, UTF-8 text, with very long lines (38826), with no line terminators Hash293ae3e0fc8b0d5c143fdf9d8490228d 3976c659b908e70818a3a1ac71860b497fe2d1a9 04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=2B2DD93E21386EB93A84CB1F20CD6F6A; domain=.bing.com; expires=Wed, 11-Oct-2023 04:31:49 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1B5E8A8FBE3D40088F87D0A3592EE526 Ref B: OSL30EDGE0509 Ref C: 2022-09-16T04:31:49Z
date: Fri, 16 Sep 2022 04:31:49 GMT
X-Firefox-Spdy: h2
|
|
| www.google.com/pagead/conversion_async.js | 142.250.74.164 | 200 OK | 16 kB |
URL HTTP/2www.google.com/pagead/conversion_async.js IP142.250.74.164:0
File typeASCII text, with very long lines (1654) Hash890f716858b5f72587e47c5eca121cb5 91871a0acd9a0ab644d51036bb5ca0c3bdc5e687 7a3629e375468328b3fb25e1a6cc5749604f09099e8d2109f366e7e0226aee4a
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 16 Sep 2022 04:31:49 GMT
expires: Fri, 16 Sep 2022 04:31:49 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3080337328058561381
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/plugins/ua/ec.js | 142.250.74.174 | 200 OK | 1.1 kB |
URL HTTP/2www.google-analytics.com/plugins/ua/ec.js IP142.250.74.174:0
File typeASCII text, with very long lines (523) Hash17427cd827c6f9e01d5ee868be659be5 6ff2e43c1a10e3c924870b48ae3cc36280b97f53 59157001be3cd5b0e3eae8afa425d1c694591c403fb9692bc3ad6d3235b423e7
GET /plugins/ua/ec.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1129
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:57:46 GMT
expires: Fri, 16 Sep 2022 04:57:46 GMT
cache-control: public, max-age=3600
age: 2043
last-modified: Thu, 30 Dec 2021 12:48:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash7dff4bc87dbee6fd33e0d7a3dc5ed3bd 59878d4dd98e60b39dcf7ac288e77bb262afab5d 8c3a027cee1f48144eb0504deff1f2b9aa98c9fc3f4e3057ece6caac9f604315
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6448
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Last-Modified: Fri, 16 Sep 2022 02:44:21 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash8ff1c0d8a380ce4a561609526d995bf5 135ecd7e71ea2823d39f8c1efcb2121618ed8167 f7228281af8d6de222aa47b3a78a627f85315244e65a8956fa2c0c7dff1bb7ad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash848674a3bc6b0d4d6cba22b140c574bc ec95f08f3a5b022c3753f78e30f71d03e2895d78 069aaae82ec20e5bbcc694f9603bded464798891e5e2abc27baadeace22f6a05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-123669295-1&cid=526405330.1663302693&jid=736078919&gjid=1075217823&_gid=27074505.1663302693&_u=YCDAgEALAAAAAE~&z=1887104229 | 142.251.1.156 | 200 OK | 4 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-123669295-1&cid=526405330.1663302693&jid=736078919&gjid=1075217823&_gid=27074505.1663302693&_u=YCDAgEALAAAAAE~&z=1887104229 IP142.251.1.156:0
File typeASCII text, with no line terminators Hash48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-123669295-1&cid=526405330.1663302693&jid=736078919&gjid=1075217823&_gid=27074505.1663302693&_u=YCDAgEALAAAAAE~&z=1887104229 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://smootag.com
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://smootag.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 16 Sep 2022 04:31:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash3f94c38b92316f91765ceed606f9f4ea 03442fbbe884ceac60c9585a8bbc0b87278523fd 70df317dbe22ae71bcc285fc0ea2185a11822856187a6c235c758df3f63eb75f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash3f94c38b92316f91765ceed606f9f4ea 03442fbbe884ceac60c9585a8bbc0b87278523fd 70df317dbe22ae71bcc285fc0ea2185a11822856187a6c235c758df3f63eb75f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash3f94c38b92316f91765ceed606f9f4ea 03442fbbe884ceac60c9585a8bbc0b87278523fd 70df317dbe22ae71bcc285fc0ea2185a11822856187a6c235c758df3f63eb75f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| bat.bing.com/action/0?ti=26055977&tm=gtm002&Ver=2&mid=97a19038-d6be-47eb-a73a-32184df05fdd&sid=717bb850357811ed9a926b2b079945a2&vid=717be120357811edb8bd79a1126d53b6&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Smootag&p=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&r=<=2043&evt=pageLoad&sv=1&rn=327353 | 204.79.197.200 | 204 No Content | 0 B |
URL HTTP/2bat.bing.com/action/0?ti=26055977&tm=gtm002&Ver=2&mid=97a19038-d6be-47eb-a73a-32184df05fdd&sid=717bb850357811ed9a926b2b079945a2&vid=717be120357811edb8bd79a1126d53b6&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Smootag&p=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&r=<=2043&evt=pageLoad&sv=1&rn=327353 IP204.79.197.200:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=26055977&tm=gtm002&Ver=2&mid=97a19038-d6be-47eb-a73a-32184df05fdd&sid=717bb850357811ed9a926b2b079945a2&vid=717be120357811edb8bd79a1126d53b6&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Smootag&p=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&r=<=2043&evt=pageLoad&sv=1&rn=327353 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=367BF253BF2C65C33281E072BED964F2; domain=.bing.com; expires=Wed, 11-Oct-2023 04:31:49 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 354B1A43F55A4602BF873789C8C70F4E Ref B: OSL30EDGE0509 Ref C: 2022-09-16T04:31:49Z
date: Fri, 16 Sep 2022 04:31:49 GMT
X-Firefox-Spdy: h2
|
|
| googleads.g.doubleclick.net/pagead/viewthroughconversion/10827001298/?random=1663302693444&cv=9&fst=1663302693444&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&auid=517662679.1663302693&hn=www.google.com&async=1&rfmt=3&fmt=4 | 142.250.74.98 | 200 OK | 1.1 kB |
URL HTTP/2googleads.g.doubleclick.net/pagead/viewthroughconversion/10827001298/?random=1663302693444&cv=9&fst=1663302693444&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&auid=517662679.1663302693&hn=www.google.com&async=1&rfmt=3&fmt=4 IP142.250.74.98:0
File typeASCII text, with very long lines (2576), with no line terminators Hash5f8ec6454d1771f43dd85247219f7103 89ab19326a0a4e700f3ac8f4713826c83af7d75a 3d6ff15418bac29823a65b58a20089c90117f97b6e55d76e0a7b2d905a582c56
GET /pagead/viewthroughconversion/10827001298/?random=1663302693444&cv=9&fst=1663302693444&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&auid=517662679.1663302693&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 04:31:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1122
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 16-Sep-2022 04:46:49 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| googleads.g.doubleclick.net/pagead/viewthroughconversion/787909066/?random=1663302693440&cv=9&fst=1663302693440&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&auid=517662679.1663302693&hn=www.google.com&async=1&rfmt=3&fmt=4 | 142.250.74.98 | 200 OK | 1.1 kB |
URL HTTP/2googleads.g.doubleclick.net/pagead/viewthroughconversion/787909066/?random=1663302693440&cv=9&fst=1663302693440&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&auid=517662679.1663302693&hn=www.google.com&async=1&rfmt=3&fmt=4 IP142.250.74.98:0
File typeASCII text, with very long lines (2572), with no line terminators Hashfd3e88457870a8546c76c665fabd6695 69ef5b77f52036954ae433a07059db5d080c2e01 d2dfd180fdf4c6defab130b3493c90593cff7c554ed79562e986b3fc137b4e92
GET /pagead/viewthroughconversion/787909066/?random=1663302693440&cv=9&fst=1663302693440&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&auid=517662679.1663302693&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 04:31:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1122
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 16-Sep-2022 04:46:49 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| googleads.g.doubleclick.net/pagead/viewthroughconversion/652536324/?random=1663302693443&cv=9&fst=1663302693443&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&auid=517662679.1663302693&hn=www.google.com&async=1&rfmt=3&fmt=4 | 142.250.74.98 | 200 OK | 1.1 kB |
URL HTTP/2googleads.g.doubleclick.net/pagead/viewthroughconversion/652536324/?random=1663302693443&cv=9&fst=1663302693443&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&auid=517662679.1663302693&hn=www.google.com&async=1&rfmt=3&fmt=4 IP142.250.74.98:0
File typeASCII text, with very long lines (2570), with no line terminators Hash78c80d7127b79aed6b4f0d89b2d49b51 c5ec808e5dcd9f5a8cd43ea900dea810573c32c2 5c64ce25d561711bb33a14d448e3eaa803b7064844e088a26c9bd28bc08812ef
GET /pagead/viewthroughconversion/652536324/?random=1663302693443&cv=9&fst=1663302693443&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&auid=517662679.1663302693&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 04:31:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1122
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 16-Sep-2022 04:46:49 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash848674a3bc6b0d4d6cba22b140c574bc ec95f08f3a5b022c3753f78e30f71d03e2895d78 069aaae82ec20e5bbcc694f9603bded464798891e5e2abc27baadeace22f6a05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash3f94c38b92316f91765ceed606f9f4ea 03442fbbe884ceac60c9585a8bbc0b87278523fd 70df317dbe22ae71bcc285fc0ea2185a11822856187a6c235c758df3f63eb75f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashc5ea6df7c10dde3be68ba8d062de2fd4 8a59b08abeaf1633e0a53e4640777e9e6d625599 7ba13e58a52695536343703b69a6c999b976de78ff3a8801f8fc2e1915bbb266
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-TP7YK51HJS>m=2oe9e0&_p=1403208938&cid=526405330.1663302693&ul=en-us&sr=1280x1024&_z=ccd.v9B&cu=EUR&sid=1663302692&sct=1&seg=0&dl=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&dt=Smootag&_s=2 | 216.239.32.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-TP7YK51HJS>m=2oe9e0&_p=1403208938&cid=526405330.1663302693&ul=en-us&sr=1280x1024&_z=ccd.v9B&cu=EUR&sid=1663302692&sct=1&seg=0&dl=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&dt=Smootag&_s=2 IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-TP7YK51HJS>m=2oe9e0&_p=1403208938&cid=526405330.1663302693&ul=en-us&sr=1280x1024&_z=ccd.v9B&cu=EUR&sid=1663302692&sct=1&seg=0&dl=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&dt=Smootag&_s=2 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 333
Origin: https://smootag.com
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: https://smootag.com
date: Fri, 16 Sep 2022 04:31:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-TP7YK51HJS>m=2oe9e0&_p=1403208938&cid=526405330.1663302693&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663302692&sct=1&seg=0&dl=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&dt=Smootag&en=page_view&_fv=1&_nsi=1&_ss=1 | 216.239.32.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-TP7YK51HJS>m=2oe9e0&_p=1403208938&cid=526405330.1663302693&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663302692&sct=1&seg=0&dl=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&dt=Smootag&en=page_view&_fv=1&_nsi=1&_ss=1 IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-TP7YK51HJS>m=2oe9e0&_p=1403208938&cid=526405330.1663302693&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663302692&sct=1&seg=0&dl=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&dt=Smootag&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://smootag.com
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://smootag.com
date: Fri, 16 Sep 2022 04:31:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| bat.bing.com/p/action/26055977.js | 204.79.197.200 | 200 OK | 668 B |
URL HTTP/2bat.bing.com/p/action/26055977.js IP204.79.197.200:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
File typeASCII text, with CRLF line terminators Hash5c01a6979a8b6341d9cd36240d38f5cc 24ca28758dbdfc7d061ac3168b4766ad0dad9fe4 1d3ff45eb3e105943214236e0d25a59f15ab028da0234c1d75684afa88e3bfad
GET /p/action/26055977.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=60
content-length: 668
content-type: application/javascript; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: MUID=314AB957244C61362631AB7625B96078; domain=.bing.com; expires=Wed, 11-Oct-2023 04:31:49 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9E2EA0A305984FE1A8FBC0B7B1CD68E5 Ref B: OSL30EDGE0509 Ref C: 2022-09-16T04:31:49Z
date: Fri, 16 Sep 2022 04:31:49 GMT
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashdb503d6c6780cb1b8dfeffa10a50eada 51a459bdc02f20576031f526be6788f653095d94 b7a653d3c381c6cea5b6838aea01a7de8ea5c2d8bdf5ff92c4cd5c22829c8e8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.facebook.com/tr/?id=441305948034561&ev=PageView&dl=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&rl=&if=false&ts=1663302693603&sw=1280&sh=1024&ud[fn]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&ud[ln]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&ud[ph]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&ud[ct]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&ud[st]=68bca10eea2ba33f6f15a6ab0c7df2a49051a6541f9118d468b0585d5d60398b&ud[zp]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&ud[country]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&v=2.9.81&r=stable&ec=0&o=62&fbp=fb.1.1663302693601.488403357&it=1663302693434&coo=false&eid=68c090f5-77e8-4577-bca2-12c240d97415_1663302692260.16&rqm=GET | 31.13.72.36 | 200 OK | 44 B |
URL HTTP/2www.facebook.com/tr/?id=441305948034561&ev=PageView&dl=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&rl=&if=false&ts=1663302693603&sw=1280&sh=1024&ud[fn]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&ud[ln]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&ud[ph]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&ud[ct]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&ud[st]=68bca10eea2ba33f6f15a6ab0c7df2a49051a6541f9118d468b0585d5d60398b&ud[zp]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&ud[country]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&v=2.9.81&r=stable&ec=0&o=62&fbp=fb.1.1663302693601.488403357&it=1663302693434&coo=false&eid=68c090f5-77e8-4577-bca2-12c240d97415_1663302692260.16&rqm=GET IP31.13.72.36:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashb798f4ce7359fd815df4bdf76503b295 f8cc6addf1707ad236ad9970b0a48f9733d07da5 10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=441305948034561&ev=PageView&dl=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&rl=&if=false&ts=1663302693603&sw=1280&sh=1024&ud[fn]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&ud[ln]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&ud[ph]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&ud[ct]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&ud[st]=68bca10eea2ba33f6f15a6ab0c7df2a49051a6541f9118d468b0585d5d60398b&ud[zp]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&ud[country]=eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&v=2.9.81&r=stable&ec=0&o=62&fbp=fb.1.1663302693601.488403357&it=1663302693434&coo=false&eid=68c090f5-77e8-4577-bca2-12c240d97415_1663302692260.16&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Fri, 16 Sep 2022 04:31:49 GMT
expires: Fri, 16 Sep 2022 04:31:49 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashdb503d6c6780cb1b8dfeffa10a50eada 51a459bdc02f20576031f526be6788f653095d94 b7a653d3c381c6cea5b6838aea01a7de8ea5c2d8bdf5ff92c4cd5c22829c8e8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashdb503d6c6780cb1b8dfeffa10a50eada 51a459bdc02f20576031f526be6788f653095d94 b7a653d3c381c6cea5b6838aea01a7de8ea5c2d8bdf5ff92c4cd5c22829c8e8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashdb503d6c6780cb1b8dfeffa10a50eada 51a459bdc02f20576031f526be6788f653095d94 b7a653d3c381c6cea5b6838aea01a7de8ea5c2d8bdf5ff92c4cd5c22829c8e8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.no/pagead/1p-user-list/10827001298/?random=1663302693444&cv=9&fst=1663300800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&async=1&fmt=3&is_vtc=1&random=2202865321&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y | 142.250.74.3 | 200 OK | 42 B |
URL HTTP/2www.google.no/pagead/1p-user-list/10827001298/?random=1663302693444&cv=9&fst=1663300800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&async=1&fmt=3&is_vtc=1&random=2202865321&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y IP142.250.74.3:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10827001298/?random=1663302693444&cv=9&fst=1663300800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&async=1&fmt=3&is_vtc=1&random=2202865321&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 04:31:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google.no/pagead/1p-user-list/652536324/?random=1663302693443&cv=9&fst=1663300800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&async=1&fmt=3&is_vtc=1&random=324496459&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y | 142.250.74.3 | 200 OK | 42 B |
URL HTTP/2www.google.no/pagead/1p-user-list/652536324/?random=1663302693443&cv=9&fst=1663300800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&async=1&fmt=3&is_vtc=1&random=324496459&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y IP142.250.74.3:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/652536324/?random=1663302693443&cv=9&fst=1663300800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&async=1&fmt=3&is_vtc=1&random=324496459&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 04:31:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google.no/pagead/1p-user-list/787909066/?random=1663302693440&cv=9&fst=1663300800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&async=1&fmt=3&is_vtc=1&random=2789767512&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y | 142.250.74.3 | 200 OK | 42 B |
URL HTTP/2www.google.no/pagead/1p-user-list/787909066/?random=1663302693440&cv=9&fst=1663300800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&async=1&fmt=3&is_vtc=1&random=2789767512&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y IP142.250.74.3:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/787909066/?random=1663302693440&cv=9&fst=1663300800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&frm=0&url=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&tiba=Smootag&async=1&fmt=3&is_vtc=1&random=2789767512&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 04:31:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-123669295-1&cid=526405330.1663302693&jid=736078919&_u=YCDAgEALAAAAAE~&z=15930355 | 142.250.74.3 | 200 OK | 42 B |
URL HTTP/2www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-123669295-1&cid=526405330.1663302693&jid=736078919&_u=YCDAgEALAAAAAE~&z=15930355 IP142.250.74.3:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-123669295-1&cid=526405330.1663302693&jid=736078919&_u=YCDAgEALAAAAAE~&z=15930355 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 04:31:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashdb503d6c6780cb1b8dfeffa10a50eada 51a459bdc02f20576031f526be6788f653095d94 b7a653d3c381c6cea5b6838aea01a7de8ea5c2d8bdf5ff92c4cd5c22829c8e8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| gtm-wxbzjqd-n2y1z.uc.r.appspot.com/g/collect?v=2&tid=G-TP7YK51HJS>m=2oe9e0&_p=1403208938&cid=526405330.1663302693&ul=en-us&sr=1280x1024&_fplc=0&_uc=NO&_z=ccd.v9B&_s=3&sid=1663302692&sct=1&seg=1&dl=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&dt=Smootag&en=page_view&ep.event_id=68c090f5-77e8-4577-bca2-12c240d97415_1663302692260.16&_et=1&richsstsse | 142.250.74.52 | 200 OK | 90 B |
URL HTTP/2gtm-wxbzjqd-n2y1z.uc.r.appspot.com/g/collect?v=2&tid=G-TP7YK51HJS>m=2oe9e0&_p=1403208938&cid=526405330.1663302693&ul=en-us&sr=1280x1024&_fplc=0&_uc=NO&_z=ccd.v9B&_s=3&sid=1663302692&sct=1&seg=1&dl=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&dt=Smootag&en=page_view&ep.event_id=68c090f5-77e8-4577-bca2-12c240d97415_1663302692260.16&_et=1&richsstsse IP142.250.74.52:0
Hash169015d9a1c4742ef1b19ab13dfac200 5a31df9e8f8d370f893c6f087c5974cb3e4ddd7f 8dfbc19663da6a43557027f2e6d3e94066517ce50334a83f410e0a4853935d40
GET /g/collect?v=2&tid=G-TP7YK51HJS>m=2oe9e0&_p=1403208938&cid=526405330.1663302693&ul=en-us&sr=1280x1024&_fplc=0&_uc=NO&_z=ccd.v9B&_s=3&sid=1663302692&sct=1&seg=1&dl=https%3A%2F%2Fsmootag.com%2F%3Fwidipub_id%3D5cc1c44eef28645f96709905%26wtrd_offer_id%3D62bede1047a243535e7222f3%26wtrd_offer_pids%3D62bede5660230168603980d3%26widipub_custom1%3D513790219%26widipub_custom2%3D10362%26widipub_custom3%3DXMirnhtrllp&dt=Smootag&en=page_view&ep.event_id=68c090f5-77e8-4577-bca2-12c240d97415_1663302692260.16&_et=1&richsstsse HTTP/1.1
Host: gtm-wxbzjqd-n2y1z.uc.r.appspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://smootag.com
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
vary: Accept-Encoding
set-cookie: FPLC=NlBfn32mIdv6tKhEzWkFBAG5861LNghnC0Ehe9FgMighXPEjKH%2B%2FjkWYj2Hy9UB8AFsAzGlvUYxEArGhA0FklRPDkuv7PlHXaQ%2BsQR4A73lbnw%2FZ9NdgbNqS1aqQaA%3D%3D; Max-Age=72000; Domain=smootag.com; Path=/; Secure
FPID=FPID2.2.%2FioESkPnXcQQdjygKTfljJyYZxStzW7JdHAIgg0BiT8%3D.1663302693; Max-Age=63072000; Domain=smootag.com; Path=/; Secure; HttpOnly
cache-control: no-cache
x-content-type-options: nosniff
access-control-allow-origin: https://smootag.com
access-control-allow-credentials: true
content-encoding: gzip
x-cloud-trace-context: bc364c9eee0e4b407ca51c621273404e
date: Fri, 16 Sep 2022 04:31:49 GMT
server: Google Frontend
content-length: 90
expires: Fri, 16 Sep 2022 04:31:49 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashc5ea6df7c10dde3be68ba8d062de2fd4 8a59b08abeaf1633e0a53e4640777e9e6d625599 7ba13e58a52695536343703b69a6c999b976de78ff3a8801f8fc2e1915bbb266
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.clarity.ms/tag/uet/26055977 | 104.212.67.157 | 200 OK | 1.5 kB |
URL HTTP/2www.clarity.ms/tag/uet/26055977 IP104.212.67.157:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
File typeASCII text, with very long lines (1541), with no line terminators Hashf81138f055ef3f898d771776156bceb3 801664239ebc0dc14778435e7a65e8a2abff313f 979361b1d2044615a399ba55b7e6f43e3039807d91c2293477099c8594911f13
GET /tag/uet/26055977 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-length: 1541
content-type: application/x-javascript
expires: -1
set-cookie: CLID=8f0f42e6c3f646338b61164ec4fde80d.20220916.20230916; expires=Sat, 16 Sep 2023 04:31:49 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:9c7c879b-c51a-427e-9701-218438da5f81
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0NfwjYwAAAACbmR2BGipvRJ0Z00v/mnS/TVVDMzBFREdFMDMxOAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Fri, 16 Sep 2022 04:31:48 GMT
X-Firefox-Spdy: h2
|
|
| www.clarity.ms/eus2/s/0.6.40/clarity.js | 104.212.67.157 | 200 OK | 23 kB |
URL HTTP/2www.clarity.ms/eus2/s/0.6.40/clarity.js IP104.212.67.157:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
File typeUnicode text, UTF-8 text, with very long lines (54745) Hash6a87d835543a151541da0ae963173dd7 80bac2abc74d2fa93a63ff82514fd64ee8caf9a0 c806647a143cb92f41ed1e60c6be245cd4e78b447c90adbed881ca54ecfa7337
GET /eus2/s/0.6.40/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8bd4806fdad30"
vary: Accept-Encoding
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0NfwjYwAAAAB80ZyCRcgNQ7FPjhlnk9tUTVVDMzBFREdFMDMxOAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Fri, 16 Sep 2022 04:31:49 GMT
X-Firefox-Spdy: h2
|
|
| c.bing.com/c.gif?CtsSyncId=A06DB9CC2F2E42E78D0A4A68BFA1289E&RedC=c.clarity.ms&MXFR=3523AA121CC164F01133B83318C16A4E | 204.79.197.200 | 302 Found | 0 B |
URL HTTP/2c.bing.com/c.gif?CtsSyncId=A06DB9CC2F2E42E78D0A4A68BFA1289E&RedC=c.clarity.ms&MXFR=3523AA121CC164F01133B83318C16A4E IP204.79.197.200:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=A06DB9CC2F2E42E78D0A4A68BFA1289E&RedC=c.clarity.ms&MXFR=3523AA121CC164F01133B83318C16A4E HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smootag.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=A06DB9CC2F2E42E78D0A4A68BFA1289E&MUID=1408409BCCD468B8171152BACD216945
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=1408409BCCD468B8171152BACD216945; domain=c.bing.com; expires=Wed, 11-Oct-2023 04:31:50 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D7FAAC09978644459C3F63145B826B9A Ref B: OSL30EDGE0509 Ref C: 2022-09-16T04:31:50Z
date: Fri, 16 Sep 2022 04:31:50 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| c.clarity.ms/c.gif?CtsSyncId=A06DB9CC2F2E42E78D0A4A68BFA1289E&MUID=1408409BCCD468B8171152BACD216945 | 20.234.93.27 | 200 OK | 42 B |
URL HTTP/2c.clarity.ms/c.gif?CtsSyncId=A06DB9CC2F2E42E78D0A4A68BFA1289E&MUID=1408409BCCD468B8171152BACD216945 IP20.234.93.27:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
File typeGIF image data, version 89a, 1 x 1\012- data Hash32023bb33cfb2a1990a4ef2d85b6ac16 23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1 99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=A06DB9CC2F2E42E78D0A4A68BFA1289E&MUID=1408409BCCD468B8171152BACD216945 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smootag.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 13 Sep 2022 19:54:52 GMT
accept-ranges: bytes
etag: "8d3298b0aac7d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Fri, 16-Sep-2022 04:41:50 GMT; path=/; SameSite=None; Secure;
date: Fri, 16 Sep 2022 04:31:49 GMT
content-length: 42
X-Firefox-Spdy: h2
|
|
| b.clarity.ms/collect | 20.75.32.255 | 204 No Content | 0 B |
IP20.75.32.255:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1527
Origin: https://smootag.com
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://smootag.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Fri, 16 Sep 2022 04:31:50 GMT
X-Firefox-Spdy: h2
|
|
| smootag.com/pixel-click.gif?avd=5e011442ef28642e5a624242&offer=62bede1047a243535e7222f3&offerLanding=62bede5660230168603980e2&offerPrelanding=62bede5660230168603980d3&publisher=5cc1c44eef28645f96709905&attributionDays=30&renderType=prelanding&clickId=6323fc33b26d6f19d92c4011&chargeCost=0&widipub_id=5cc1c44eef28645f96709905&wtrd_offer_id=62bede1047a243535e7222f3&wtrd_offer_pids=62bede5660230168603980d3&widipub_custom1=513790219&widipub_custom2=10362&widipub_custom3=XMirnhtrllp | 212.36.83.70 | 200 OK | 43 B |
URL HTTP/2smootag.com/pixel-click.gif?avd=5e011442ef28642e5a624242&offer=62bede1047a243535e7222f3&offerLanding=62bede5660230168603980e2&offerPrelanding=62bede5660230168603980d3&publisher=5cc1c44eef28645f96709905&attributionDays=30&renderType=prelanding&clickId=6323fc33b26d6f19d92c4011&chargeCost=0&widipub_id=5cc1c44eef28645f96709905&wtrd_offer_id=62bede1047a243535e7222f3&wtrd_offer_pids=62bede5660230168603980d3&widipub_custom1=513790219&widipub_custom2=10362&widipub_custom3=XMirnhtrllp IP212.36.83.70:0 ASN#15699 OGIC Informatica S.L.
File typeGIF image data, version 89a, 1 x 1\012- data Hash57f187c7a868faeac558007a8eb6cb2e 11ab10ab109fdb53d91d444ac781101f5a6360c6 aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /pixel-click.gif?avd=5e011442ef28642e5a624242&offer=62bede1047a243535e7222f3&offerLanding=62bede5660230168603980e2&offerPrelanding=62bede5660230168603980d3&publisher=5cc1c44eef28645f96709905&attributionDays=30&renderType=prelanding&clickId=6323fc33b26d6f19d92c4011&chargeCost=0&widipub_id=5cc1c44eef28645f96709905&wtrd_offer_id=62bede1047a243535e7222f3&wtrd_offer_pids=62bede5660230168603980d3&widipub_custom1=513790219&widipub_custom2=10362&widipub_custom3=XMirnhtrllp HTTP/1.1
Host: smootag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/?widipub_id=5cc1c44eef28645f96709905&wtrd_offer_id=62bede1047a243535e7222f3&wtrd_offer_pids=62bede5660230168603980d3&widipub_custom1=513790219&widipub_custom2=10362&widipub_custom3=XMirnhtrllp
Cookie: PHPSESSID=073bec4b835cdbb2e156d1e71766cbe3; wtrd_pp=5a912d52fd5535605412fa43; wtrd_click=6323fc33b26d6f19d92c4011
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/2 200 OK
server: nginx
content-type: image/gif
cache-control: must-revalidate, no-cache, private
date: Fri, 16 Sep 2022 04:31:49 GMT
content-security-policy: frame-ancestors *
set-cookie: wtrd_customer=%7B%225e011442ef28642e5a624242%22%3A%226323fc349c237d1511741c29%22%7D; expires=Thu, 16-Sep-2032 04:31:49 GMT; Max-Age=315619200; path=/; secure; httponly; samesite=none
wtrd_click=6323fc33b26d6f19d92c4011; expires=Thu, 16-Sep-2032 04:31:49 GMT; Max-Age=315619200; path=/; secure; httponly; samesite=none
wtrd_networkClick=1; expires=Fri, 16-Sep-2022 04:36:49 GMT; Max-Age=300; path=/; secure; httponly; samesite=none
wtrd_publisher=5cc1c44eef28645f96709905; expires=Sun, 16-Oct-2022 04:31:49 GMT; Max-Age=2592000; path=/; secure; httponly; samesite=none
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd0c996-9a44-4dd0-b1b3-c5e213f14167.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd0c996-9a44-4dd0-b1b3-c5e213f14167.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash252e27665094eccd2f18dfed46d4e871 2656d1e3e105c1929b18ebf9b00bd603f2f410a6 ccd05f3e869946687ec611ee0d6c5a118a99f73abb1957c556e346ed522d3088
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd0c996-9a44-4dd0-b1b3-c5e213f14167.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10296
x-amzn-requestid: f3bb82cc-9d5d-4dea-8a22-26b35fe603e6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbIRLHBUIAMF7hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632120d4-64832ad820f6aeaf7868495d;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 00:31:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nZIGf23GLhOvGdsNG2xCOca_Eo8QPU3D1EtJlGiRg3iaxCFlQMG1Qw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:50:47 GMT
age: 24068
etag: "2656d1e3e105c1929b18ebf9b00bd603f2f410a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| cdn.widitrade.com/favicon.ico | 185.76.9.18 | 200 OK | 0 B |
URL HTTP/2cdn.widitrade.com/favicon.ico IP185.76.9.18:0 ASN#60068 Datacamp Limited
GET /favicon.ico HTTP/1.1
Host: cdn.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:49 GMT
content-type: image/x-icon
last-modified: Mon, 24 Aug 2020 09:34:14 GMT
etag: W/"5f438996-47e"
strict-transport-security: max-age=15768000
x-accel-expires: @1663677367
server: CDN77-Turbo
x-77-nzt: AblMCQ2F8w3/fhoKAA
x-77-nzt-ray: rs8j5SzySnE
x-cache: HIT
x-age: 662142
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.widitrade.com/build/images/news-logos/white/nypost.svg | 185.76.9.18 | 200 OK | 0 B |
URL HTTP/2cdn.widitrade.com/build/images/news-logos/white/nypost.svg IP185.76.9.18:0 ASN#60068 Datacamp Limited
GET /build/images/news-logos/white/nypost.svg HTTP/1.1
Host: cdn.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/svg+xml
last-modified: Tue, 13 Sep 2022 08:30:02 GMT
etag: W/"63203f8a-238a"
strict-transport-security: max-age=15768000
x-accel-expires: @1664164539
server: CDN77-Turbo
x-77-nzt: AblMCQ2oSUL/easCAA
x-77-nzt-ray: Q3tQQWWS8xI
x-cache: HIT
x-age: 174969
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.widitrade.com/assets/js/routes/routes-8c8905ab.js | 185.76.9.18 | 200 OK | 0 B |
URL HTTP/2cdn.widitrade.com/assets/js/routes/routes-8c8905ab.js IP185.76.9.18:0 ASN#60068 Datacamp Limited
GET /assets/js/routes/routes-8c8905ab.js HTTP/1.1
Host: cdn.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: application/javascript
last-modified: Thu, 15 Sep 2022 09:00:37 GMT
etag: W/"6322e9b5-24a2"
strict-transport-security: max-age=15768000
x-accel-expires: @1664269385
server: CDN77-Turbo
x-77-nzt: AblMCQ1ofqP/6xEBAA
x-77-nzt-ray: fFcKiphQuDw
x-cache: HIT
x-age: 70123
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/productfx.png | 185.76.9.26 | 200 OK | 0 B |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/productfx.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
GET /assets/products/62bebd372888e468a95b2ec0/productfx.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 304486
last-modified: Tue, 05 Jul 2022 13:47:13 GMT
etag: "62c440e1-4a566"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRQCzZjOc2YBAA
x-77-nzt-ray: shQteNim5IE
x-cache: REVALIDATED
x-age: 91763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.widitrade.com/theme/widi/product/images/bg-hero-circle.png | 185.76.9.18 | 404 Not Found | 0 B |
URL HTTP/2cdn.widitrade.com/theme/widi/product/images/bg-hero-circle.png IP185.76.9.18:0 ASN#60068 Datacamp Limited
GET /theme/widi/product/images/bg-hero-circle.png HTTP/1.1
Host: cdn.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.widitrade.com/build/css/pages/prelanding-product-page/main-e6734ca7fb.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
content-security-policy: frame-ancestors *
x-accel-expires: @1663302768
server: CDN77-Turbo
x-77-nzt: AblMCQ1UIl6R
x-77-nzt-ray: 1g0Gx0rpb08
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2
|
|
| smootag.com/manifest.json | 212.36.83.70 | 200 OK | 0 B |
URL HTTP/2smootag.com/manifest.json IP212.36.83.70:0 ASN#15699 OGIC Informatica S.L.
GET /manifest.json HTTP/1.1
Host: smootag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smootag.com/?widipub_id=5cc1c44eef28645f96709905&wtrd_offer_id=62bede1047a243535e7222f3&wtrd_offer_pids=62bede5660230168603980d3&widipub_custom1=513790219&widipub_custom2=10362&widipub_custom3=XMirnhtrllp
Connection: keep-alive
Cookie: PHPSESSID=073bec4b835cdbb2e156d1e71766cbe3; wtrd_pp=5a912d52fd5535605412fa43; wtrd_click=6323fc33b26d6f19d92c4011; _gcl_au=1.1.517662679.1663302693; _ga_TP7YK51HJS=GS1.1.1663302692.1.1.1663302692.0.0.0; _ga=GA1.1.526405330.1663302693
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 04:31:49 GMT
content-type: application/json
last-modified: Thu, 15 Sep 2022 08:57:54 GMT
etag: W/"6322e912-d1b"
strict-transport-security: max-age=15768000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.widitrade.com/bundles/fosjsrouting/js/router.js | 185.76.9.18 | 200 OK | 0 B |
URL HTTP/2cdn.widitrade.com/bundles/fosjsrouting/js/router.js IP185.76.9.18:0 ASN#60068 Datacamp Limited
GET /bundles/fosjsrouting/js/router.js HTTP/1.1
Host: cdn.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 15:49:28 GMT
etag: W/"63176c08-3c74"
strict-transport-security: max-age=15768000
x-accel-expires: @1663676291
server: CDN77-Turbo
x-77-nzt: AblMCQ0y+B7/sR4KAA
x-77-nzt-ray: 7fvoupRQLzQ
x-cache: HIT
x-age: 663217
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700;800;900&display=swap | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700;800;900&display=swap IP142.250.74.10:0
GET /css2?family=Montserrat:wght@300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Sep 2022 04:31:48 GMT
date: Fri, 16 Sep 2022 04:31:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.5.0/js/bootstrap.bundle.min.js | 104.18.10.207 | 200 OK | 0 B |
URL HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.5.0/js/bootstrap.bundle.min.js IP104.18.10.207:0
GET /bootstrap/4.5.0/js/bootstrap.bundle.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:10 GMT
cdn-cachedat: 2021-08-02 20:26:50
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 772546d82c9925229ea16ef048a7afcf
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 8742500
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74b6dfe5de1f1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v5.0.1/css/all.css?ver=4.9.1 | 172.64.197.18 | 200 OK | 0 B |
URL HTTP/2use.fontawesome.com/releases/v5.0.1/css/all.css?ver=4.9.1 IP172.64.197.18:0
GET /releases/v5.0.1/css/all.css?ver=4.9.1 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: text/css
x-amz-id-2: bQt9oN0HfDTCyampJyHwwpWFLmw8N7eV1oFudIwzpxlIHpvI80WDIfMnBmSZYoIEIiyfCLGwl88=
x-amz-request-id: T64DZSEJ4R354W5T
last-modified: Wed, 30 Jun 2021 15:26:49 GMT
etag: W/"1e802d1ce4a6ec2c7cf8c249f29a5ea0"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 23854171
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=APQauYqqdvopfIbg%2FeXCjXWKPQaqlvetcJSO90eeEWSHKSrGu6Ft5gbaBsTQoYJ%2FVAZiy9igoR71psdLacQqvQbselzKWjSuqQe0%2BXsTCZcgRaxRT12tJu5GryMifRB6G%2FLe05Rb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b6dfe57dba7719-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/hero-background.png | 185.76.9.26 | 200 OK | 0 B |
URL HTTP/2assets.widitrade.com/assets/products/62bebd372888e468a95b2ec0/hero-background.png IP185.76.9.26:0 ASN#60068 Datacamp Limited
GET /assets/products/62bebd372888e468a95b2ec0/hero-background.png HTTP/1.1
Host: assets.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/png
content-length: 2122146
last-modified: Thu, 07 Jul 2022 08:13:33 GMT
etag: "62c695ad-2061a2"
access-control-allow-origin: *
x-accel-expires: @1663389108
server: CDN77-Turbo
x-77-nzt: AblMCRS0kNjOcmYBAA
x-77-nzt-ray: xSQcVeQMgIE
x-cache: REVALIDATED
x-age: 91762
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.widitrade.com/build/css/pages/prelanding-product-page/theme-dd37b4ff4d.css | 185.76.9.18 | 200 OK | 0 B |
URL HTTP/2cdn.widitrade.com/build/css/pages/prelanding-product-page/theme-dd37b4ff4d.css IP185.76.9.18:0 ASN#60068 Datacamp Limited
GET /build/css/pages/prelanding-product-page/theme-dd37b4ff4d.css HTTP/1.1
Host: cdn.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: text/css
last-modified: Tue, 13 Sep 2022 08:30:20 GMT
etag: W/"63203f9c-105bdb"
strict-transport-security: max-age=15768000
x-accel-expires: @1664176849
server: CDN77-Turbo
x-77-nzt: AblMCQ3t3Ef/Y3sCAA
x-77-nzt-ray: 1yTZ8ZnLVpE
x-cache: HIT
x-age: 162659
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.widitrade.com/build/images/news-logos/white/cnn.svg | 185.76.9.18 | 200 OK | 0 B |
URL HTTP/2cdn.widitrade.com/build/images/news-logos/white/cnn.svg IP185.76.9.18:0 ASN#60068 Datacamp Limited
GET /build/images/news-logos/white/cnn.svg HTTP/1.1
Host: cdn.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: image/svg+xml
last-modified: Tue, 13 Sep 2022 08:30:02 GMT
etag: W/"63203f8a-116f"
strict-transport-security: max-age=15768000
x-accel-expires: @1664162994
server: CDN77-Turbo
x-77-nzt: AblMCQ2b7m7/grECAA
x-77-nzt-ray: 9DGGO1wUOpU
x-cache: HIT
x-age: 176514
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css | 104.18.10.207 | 200 OK | 0 B |
URL HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css IP104.18.10.207:0
GET /bootstrap/4.4.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://smootag.com
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"7cc40c199d128af6b01e74a28c5900b0"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 08/20/2022 02:30:41
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 632
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 36dce8c606bb467de0879ad99022ab1a
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74b6dfe4ea011c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.widitrade.com/build/css/pages/prelanding-product-page/main-e6734ca7fb.css | 185.76.9.18 | 200 OK | 0 B |
URL HTTP/2cdn.widitrade.com/build/css/pages/prelanding-product-page/main-e6734ca7fb.css IP185.76.9.18:0 ASN#60068 Datacamp Limited
GET /build/css/pages/prelanding-product-page/main-e6734ca7fb.css HTTP/1.1
Host: cdn.widitrade.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smootag.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:31:48 GMT
content-type: text/css
last-modified: Tue, 13 Sep 2022 08:30:19 GMT
etag: W/"63203f9b-3cbbe"
strict-transport-security: max-age=15768000
x-accel-expires: @1664176849
server: CDN77-Turbo
x-77-nzt: AblMCQ0uCrn/Y3sCAA
x-77-nzt-ray: Pg9H+uAUdy4
x-cache: HIT
x-age: 162659
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|