profit-guru.co/7ypckbcC
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /7ypckbcC HTTP/1.1
Host: profit-guru.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 18 Jan 2023 07:44:46 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Location: https://profit-guru.co/7ypckbcC
Pragma: no-cache
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hgIAwyoGcOkNHsA%2BdSUFo%2BPev5JnpHuFk6puHePIgWANpAuCdVWQUNniiSqLFGeVDHjYSdIQe6sqnb2t1JgysqufYu6O8%2BCZWyOqh51jm%2FTp6bQbbf40bvmVyH9W%2BiJ9Gg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78b5b50f6cff0b4d-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4b8b051d555b46b1e9e64faebf91b4ab
bdab7f1f4146f0e7c16665692e4f1edd83c10a24
e069730519f658e767ec8edb57edd8e2b1ccb18d4f0ade0920654eac18f83456
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E069730519F658E767EC8EDB57EDD8E2B1CCB18D4F0ADE0920654EAC18F83456"
Last-Modified: Tue, 17 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6877
Expires: Wed, 18 Jan 2023 09:39:23 GMT
Date: Wed, 18 Jan 2023 07:44:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bb0c8d0984a1f09a012961a54cda03c6
1a8ad450a0241554ee4fc7d02fac7b83529e60f6
eee3ca879a67cc25ea89cb83de9521eea1b82845705c3e82169d4787ecb7dd3a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EEE3CA879A67CC25EA89CB83DE9521EEA1B82845705C3E82169D4787ECB7DD3A"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3222
Expires: Wed, 18 Jan 2023 08:38:28 GMT
Date: Wed, 18 Jan 2023 07:44:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 18 Jan 2023 07:34:22 GMT
content-type: application/json
age: 624
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6c8239f3894cfba54d1f3a9ea1c85db5
a70f2b3bf79f2aa26b0cc0340dd182565c3eb946
64dc0508d3fcea1ec92fb60310e9b3f5454c0b69f61e8453fd443bc46ab9471b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64DC0508D3FCEA1EC92FB60310E9B3F5454C0B69F61E8453FD443BC46AB9471B"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2270
Expires: Wed, 18 Jan 2023 08:22:36 GMT
Date: Wed, 18 Jan 2023 07:44:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: O1+mxXfX7s0wZaCVdEDzMV06T1tGAm/4+b/n6UJdXnA1g9PdA83qU2SDUw7P8gCJrSAddMw8HzM=
x-amz-request-id: QKW8CMGC81WEHPVM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 18 Jan 2023 06:56:35 GMT
age: 2891
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 07:44:46 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 18 Jan 2023 06:48:57 GMT
age: 3349
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 8720730dce33d0026a1a354ac93d4a7d
ed5f086bc646a4d93d2344b19ff7821c96e44f7c
b2892fda88242fbc4d58dd1f3bb159ca02cbf98b77c57dde66fba98d183c0136
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1800
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:47 GMT
Last-Modified: Wed, 18 Jan 2023 07:14:47 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
www.offshorecompanycorp.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
200 OK 4.4 kB URL HTTP/2 www.offshorecompanycorp.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
Hash a6c1caf27cc7b64b2a993052a56f47f9
54f9056b0fec2ddf3690e0a98ea4c0ee442c8062
becc7a43b4b679cbcdee9792d894df1177c42aba886f2b06996fc83233165abf
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.offshorecompanycorp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/insight/jurisdiction-update/singapore-corporate-income-tax?gclid=Cj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB
Cookie: OFFID=9f46ccb6d3a8d8f39e7d966a629c4451
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:47 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 23:34:08 GMT
etag: W/"63c1ea70-302c"
vary: Accept-Encoding
server: cloudflare
cf-ray: 78b5b5166949b4ed-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 20 Jan 2023 07:44:47 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2b02c407fd912449a1b278f0bf3d8574
817bcff5b7c0444426b19027c772bddce84cf130
67ceddcf2eef43f1c11fc85c1398c39b5ff875a93dafbf9c4526e6d3bc5eb52a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dusyzh85wmzqh.cloudfront.net/shared/js/intlTelInput.min.js
200 OK 11 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/shared/js/intlTelInput.min.js
IP
Hash 205199518297a35f9db6eb6c21201657
3205c63dda710a5df2fdaea6c7158b714ae47e6a
e31e1be2089b56c2ff48e5d12817e4868dfcb5795d68c7d5732e0dab9caecc56
GET /shared/js/intlTelInput.min.js HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 11 Apr 2020 03:17:01 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 06:16:54 GMT
cache-control: max-age=86400
etag: W/"779fe907f7061225f4729b174418304c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YCUc37KNvvnPh4ueONLHabhBXvysDk6eolSEUYO9lpJtjnoqhJohEA==
age: 14068
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: J39/4GW5YIg+UzoRLuspGQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AeN2sXZLs1i3eLz1XUrAXtwRgys=
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dusyzh85wmzqh.cloudfront.net/frontend/js/leadformjs-1.4.min.js
200 OK 38 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/js/leadformjs-1.4.min.js
IP
Hash b896a8418cfc69d458524409c8f14d36
6d39050e3e0c1bdc16bf9967d99686d2bd004158
ada160d8b13ab821b68d2293d3a6379e2db718a0a0bee385a16f7e99677f24f6
GET /frontend/js/leadformjs-1.4.min.js HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 14 Dec 2021 06:27:47 GMT
x-amz-version-id: XKSlGEJUzPLXEjjwuFE3inQDTA_mBy6s
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 00:54:42 GMT
cache-control: max-age=86400
etag: W/"b909ed35305040260f9ed938dc8aa779"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RVZgtFQpcimK_lIHNOs6Vb8P0MretrcBRtfxDCqOC4nnOoYCzVvAZg==
age: 24622
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/js/bootstrap.min.js
200 OK 10 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/js/bootstrap.min.js
IP
Hash b345a84f5d87856af4af4acc85f9bb24
7c66c59cff5d8f30c27a96678697b00596cf58a2
5c32a6378c8836aae92b1b5e7f3e84aeb872ac06b04d7210bef49f34a9edaee9
GET /frontend/js/bootstrap.min.js HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 14 Jan 2019 09:33:20 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 06:16:54 GMT
cache-control: max-age=86400
etag: W/"f500d05d91d5d52ffe41405dee91e646"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: P2STmCPQ6B8roOXUghIUSBb6ceac2C0MjhydouRzL3U3aFVyqMYxHg==
age: 13274
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/js/lazysizes.min.js
200 OK 3.9 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/js/lazysizes.min.js
IP
Hash 0507a354e292ce8afc2c9c962371f357
90329f4a424908c5fdceba568e66131ac10787d9
7a00b88b3b1b42731fbaec80960ba631f8cab4b91da0570e080593ade60435c8
GET /frontend/js/lazysizes.min.js HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Mar 2020 02:11:55 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 03:15:08 GMT
cache-control: max-age=86400
etag: W/"9ae40087f1e5be5ceddb2bb6f70f209d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: j86xKYR8zg-jgkZzkQg1iUi-PEU_QRPYWbwgZZvZVoouGzUyJyQHxg==
age: 20387
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
200 OK 22 kB URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP
Hash 7f2eff8be69f2f2cca15d429767a9947
f97f9da5db82ae1ee45ca97a31dfd21b9abb5fcd
33844f5e0c52d14080c2aa514897e854ea996a77970b3e3b8debed495167bf41
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:47 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 78b5b5175b9bb503-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/js/main-1.2.min.js
200 OK 18 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/js/main-1.2.min.js
IP
Hash 34a774248cbe84f5dd7fcfd29d6b46f9
cba5d5c2ab197b73b42df6277ae61522b7f5567c
3d95210967ae2e33556125188d03f3994a4048e1c143948eb94dd0437137c4b9
GET /frontend/js/main-1.2.min.js HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 03:13:58 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Tue, 17 Jan 2023 10:47:59 GMT
cache-control: max-age=86400
etag: W/"2c008c5c0845e557574a4238502b69ba"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RRIIhQwGBESTuNk3EowPqX8wdHSRXPk47T28AC1n9xG-NzUmEh0HXg==
age: 75409
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/js/style-2.6.min.js
200 OK 3.7 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/js/style-2.6.min.js
IP
File type ASCII text, with very long lines (12782), with no line terminators
Hash cef1f783427c15772772a98d0b84b58e
1cc16c41906f5b6c6343470b3b2b08a6472c50aa
7ca6ec7386646d59aba02a4e45608307086f1a6785859d1ecfc07494d67c1d5b
GET /frontend/js/style-2.6.min.js HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 31 Dec 2020 04:33:08 GMT
x-amz-version-id: as0MuPPuV0_ekYgn2JsZFjV5kpLdt8Ux
server: AmazonS3
content-encoding: gzip
date: Tue, 17 Jan 2023 09:34:04 GMT
cache-control: max-age=86400
etag: W/"0a08eac562ba67bf6ffa1f8e6304e6aa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: L6anLXEnao1SR4que2q5u_0sYIx88H7-r4gIJTFS_HtwxIAgIzN5vw==
age: 79844
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/images/icon-header-phone.svg
200 OK 669 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/images/icon-header-phone.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (669), with no line terminators
Hash 3c0749e2b1e5ca4515b687e88214da38
92047beca6c5abb9e516a23cad8bd14a5df31bc7
3afe346dc0843a43f77e31c6ff7690d851717fac9f297e0f31d5c6f881ce4316
GET /frontend/images/icon-header-phone.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 669
last-modified: Thu, 27 Feb 2020 04:15:52 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 06:16:54 GMT
cache-control: max-age=86400
etag: "3c0749e2b1e5ca4515b687e88214da38"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: u2uD5O-W_yRvDeyUNbbktdKdfK-lVgyRwG47uCDsh9t7_8-Cauz4BA==
age: 12044
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/images/sx.svg
200 OK 63 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/images/sx.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash dc9f980b00fecb8afb07b1bff3f02351
a9e29a42ab2ce2ea575d4822c7c93e18f3d3d690
ae53d9841138b2b916ea2e4544a7946273766c2d918a8698c4cfa13218c0dfeb
GET /frontend/images/sx.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 63
last-modified: Thu, 19 Mar 2020 02:14:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 07:38:51 GMT
cache-control: max-age=86400
etag: "dc9f980b00fecb8afb07b1bff3f02351"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S2z9yuB1r8yGOKj-J2wemp2_yqrkYHi0--AAyehH6D4o8-m4vim09A==
age: 1382
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/uploads/singapore-corporate-income-tax-large-1546403108.png
200 OK 188 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/uploads/singapore-corporate-income-tax-large-1546403108.png
IP
File type PNG image data, 750 x 480, 8-bit colormap, non-interlaced\012- data
Size 188 kB (188516 bytes)
Hash 692c4fc9a3098c092a2ac1bbf4928754
103d550cb508a7808433035f063e082d0e58da82
c654301ad541edbe248ac26c80f3be8d951ff4f104d25f84190c98c50858a11e
GET /uploads/singapore-corporate-income-tax-large-1546403108.png HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 188516
last-modified: Wed, 02 Jan 2019 04:25:10 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Tue, 17 Jan 2023 08:26:31 GMT
cache-control: max-age=86400
etag: "692c4fc9a3098c092a2ac1bbf4928754"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sut5JEgvxJ5R9bqdk48GsXUAOSXk8vOwkg6BOzFSWySH0ydRjBT5xA==
age: 83896
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/images/bg-about-us.jpg
200 OK 18 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/images/bg-about-us.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1440x150, components 3\012- data
Hash 661f579e78b07383b9abb29d42778a81
11baf1f81705e3c1c5dff92f455e40b0fd6a7b2b
9be759509535e9572bb49edb70288b8af9a52f213c970f6a0fe7ec7309b05b34
GET /frontend/images/bg-about-us.jpg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18371
last-modified: Thu, 19 Mar 2020 03:00:06 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 03:15:08 GMT
cache-control: max-age=86400
etag: "661f579e78b07383b9abb29d42778a81"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RU41sJ4Hjp4hGQ2cgIfegoQJXMQkzI0ypzev0d72HwBoEzDPJviePw==
age: 20557
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/uploads/what-licenses-and-permits-are-needed-to-start-a-business-in-belize-icon-1665367550.jpg
200 OK 220 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/uploads/what-licenses-and-permits-are-needed-to-start-a-business-in-belize-icon-1665367550.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 555x393, components 3\012- data
Size 220 kB (220102 bytes)
Hash 5e3d165cf381a1e36e23c8fb57af6f94
8f5d0a5d432f98be52d49fd9a5dee37d929c32ad
2941b1ba841e4c921ef2350b41705ed97d5006d65933715ee2941ed8b8535e0d
GET /uploads/what-licenses-and-permits-are-needed-to-start-a-business-in-belize-icon-1665367550.jpg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 220102
last-modified: Mon, 10 Oct 2022 02:05:51 GMT
x-amz-version-id: P9ruz.rAuSZfV_GqGVU7GwTTtOxRTHB_
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 04:03:57 GMT
cache-control: max-age=86400
etag: "5e3d165cf381a1e36e23c8fb57af6f94"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 76k4GdNcoQTO0BHkqdsiqP2MEFvSqHI29B3Dup2uR8l7xfhOUq2poA==
age: 13251
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dusyzh85wmzqh.cloudfront.net/uploads/sx-1584584648.svg
200 OK 63 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/uploads/sx-1584584648.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash dc9f980b00fecb8afb07b1bff3f02351
a9e29a42ab2ce2ea575d4822c7c93e18f3d3d690
ae53d9841138b2b916ea2e4544a7946273766c2d918a8698c4cfa13218c0dfeb
GET /uploads/sx-1584584648.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 63
last-modified: Thu, 19 Mar 2020 02:24:09 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 03:15:08 GMT
cache-control: max-age=86400
etag: "dc9f980b00fecb8afb07b1bff3f02351"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DLy8ctJThP2a2nQPYFX4QEFh-MQ7zYN-JwbqTcg5h6h2TODUN2qaUA==
age: 17616
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/images/icon-select.png
200 OK 449 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/images/icon-select.png
IP
File type PNG image data, 11 x 7, 4-bit colormap, non-interlaced\012- data
Hash bb208aef7927ca7327ebf4e056b041bc
099e4ce991e014beaaae60e5f1951fd9762d9be6
dbd51b063d589eadbd4110b643a24e2227b33b95c17eab7ffe7355e7d8975c74
GET /frontend/images/icon-select.png HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dusyzh85wmzqh.cloudfront.net/frontend/css/common-9.1.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 449
last-modified: Mon, 14 Jan 2019 09:33:07 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Tue, 17 Jan 2023 09:20:44 GMT
cache-control: max-age=86400
etag: "bb208aef7927ca7327ebf4e056b041bc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Jl3Bw7oJFNTBlvefNDZ5qRmmxOuBbGnGG6c1g-nPXt8h2fbgG3hnaA==
age: 80644
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/images/icon-notification.svg
200 OK 662 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/images/icon-notification.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (662), with no line terminators
Hash 5a4a4e7e68976c7c49ea85bb2721d0f0
34c379dbd845863b536dcae3feb635db56f9733d
d7565b1ab7ac367208ae850ac5ca911f9d7dc4c718ad14fc7b17112fd615b691
GET /frontend/images/icon-notification.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dusyzh85wmzqh.cloudfront.net/frontend/css/common-9.1.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 662
last-modified: Mon, 14 Jan 2019 09:33:02 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 07:38:52 GMT
cache-control: max-age=86400
etag: "5a4a4e7e68976c7c49ea85bb2721d0f0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rvwl_BD4ygk3cbGiB44QUldZ0ZsGLZV9HEmHBhaxYTXp3Ey4RFcn9w==
age: 356
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/images/icon-search.svg
200 OK 603 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/images/icon-search.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (603), with no line terminators
Hash e43bcdd4a83dd09e9978e7418ab75aa0
994f85801fd7f7f3258b18855f1d8d9c0c73054b
5aef55ab2dd4ff5fbcd3c3f9c5ebe1a07329ab75c0a39b4bad9c81c4a02c407e
GET /frontend/images/icon-search.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dusyzh85wmzqh.cloudfront.net/frontend/css/common-9.1.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 603
last-modified: Mon, 14 Jan 2019 09:33:06 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Tue, 17 Jan 2023 17:50:04 GMT
cache-control: max-age=86400
etag: "e43bcdd4a83dd09e9978e7418ab75aa0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: h6Fb7Mm65lWpyTPu7zXGoXk2Atf8JRltxA-H1bVmtoEYmtFIAIUiiQ==
age: 51379
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/images/icon-breadcrumb-right-black.png
200 OK 408 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/images/icon-breadcrumb-right-black.png
IP
File type PNG image data, 6 x 10, 4-bit colormap, non-interlaced\012- data
Hash f67072dd16276ee384b71a2041027d92
b8cf305f2b1f0c6806abb71531f7a524ca0f00c4
76f9d2a22ef3f461467eb93ba972db6eda25f685a101773e3cfbdee51bb5ed44
GET /frontend/images/icon-breadcrumb-right-black.png HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dusyzh85wmzqh.cloudfront.net/frontend/css/common-9.1.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 408
last-modified: Mon, 14 Jan 2019 09:32:56 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Tue, 17 Jan 2023 09:42:23 GMT
cache-control: max-age=86400
etag: "f67072dd16276ee384b71a2041027d92"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: onhTX4Rvu7XWdlxZ4AyYx4YEhc6VAFh74C8dlNJraymW4e6ORPa9TQ==
age: 79345
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/images/bg-subscribe.png
200 OK 520 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/images/bg-subscribe.png
IP
File type PNG image data, 954 x 456, 8-bit/color RGBA, non-interlaced\012- data
Size 520 kB (520517 bytes)
Hash 600aa923478d79672c15e9760e7e2ce7
4a6dc7771e552bd381129e7900db96bfdc7c449b
ec14434323a8b2a6c6ba2c29daebc3edcc8755d08548583b81b5c1f04c198632
GET /frontend/images/bg-subscribe.png HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 520517
last-modified: Mon, 20 Jun 2022 07:18:48 GMT
x-amz-version-id: kMT1Aw4oeEMtVXvHRAK8xpniZUqCuxPY
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 07:38:51 GMT
cache-control: max-age=86400
etag: "600aa923478d79672c15e9760e7e2ce7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 03fuXTDwi5cRai3_knMp7I3i5W5YZUVf4XVY8pyN87pfZXpLGND7Zw==
age: 20970
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/images/arrow-right.png
200 OK 235 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/images/arrow-right.png
IP
File type PNG image data, 25 x 39, 8-bit/color RGBA, non-interlaced\012- data
Hash 355c9a223d1d17417a3b9d5a0acff57b
fd7812511c9448907bac1e7c1a8565c606b2cdbe
309975719db9e78e9efe8ee2b139d549290eb5593ce57efb3a9ae9600fc2fa97
GET /frontend/images/arrow-right.png HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dusyzh85wmzqh.cloudfront.net/frontend/css/common-9.1.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 235
last-modified: Mon, 14 Jan 2019 09:32:45 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Tue, 17 Jan 2023 09:52:58 GMT
cache-control: max-age=86400
etag: "355c9a223d1d17417a3b9d5a0acff57b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dVyVJTEpxyFnPdj9b8c_VKctcC05v5FClc9h0A8rMC2ui4d29fcdDQ==
age: 78710
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 43904744042cec16f81766250b8ebf49
8393568a2e9c86dafc36563c76703704c7cd86c6
d2359c7cce5176a68cd627ba7e39dfceff78036c6840cd468994df8519f1fb27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d19ocbwhar60hv.cloudfront.net/uploads/logo-techtime-1635568072.png
200 OK 4.6 kB URL HTTP/1.1 d19ocbwhar60hv.cloudfront.net/uploads/logo-techtime-1635568072.png
IP
File type PNG image data, 180 x 80, 8-bit/color RGB, non-interlaced\012- data
Hash 5a0f6520ad510f1c4ef64c2fc8227acf
cb8af84dfdd42358503fbb970b0d55483ab81702
56c919355c1e6d21caab60148671cc66c79dcc8a18bea7a4255544680f0905a8
GET /uploads/logo-techtime-1635568072.png HTTP/1.1
Host: d19ocbwhar60hv.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 4556
Connection: keep-alive
Date: Wed, 18 Jan 2023 07:44:49 GMT
Last-Modified: Sat, 30 Oct 2021 04:27:53 GMT
ETag: "5a0f6520ad510f1c4ef64c2fc8227acf"
Cache-Control: max-age=86400
x-amz-version-id: qW3_1Lmz0cjVG0FJry7_4LJYtY3ej_rk
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gUcH7lDx9ypFzcmfJI_-47sAqOODZX53PTcwWvDIs4nL13p1mh9_Hg==
Vary: Origin
dusyzh85wmzqh.cloudfront.net/shared/css/intlTelInput.min.css
200 OK 3.0 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/shared/css/intlTelInput.min.css
IP
Hash 87b56179c338eb7f31ecd52a810f1959
3744d8fdef979f176505705d1019e0f827964749
39f6f4122bad408b1d4ecabe65284c033332b9598a0e353ef340389d3fa86cc4
GET /shared/css/intlTelInput.min.css HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 11 Apr 2020 03:16:21 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 03:15:08 GMT
cache-control: max-age=86400
etag: W/"1c3579d43bdc1ba1306900a93ddbc668"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cuoOMk4NBPcRDp_M5_bZc2tZt7xbcpQy1GxBEyEsp8jYyY9P4PB8ZQ==
age: 23038
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,500,700&display=swap
200 OK 6.9 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,500,700&display=swap
IP
Hash d24b0a26cd0e3e5ff6d6d3c547ba8dce
1498b97a067fef562bd0727d2e68ad1d75485020
f769e9ee83a9d35fe8134407f901733361b31d1bcdcb893c26e3512d6c788436
GET /css?family=Roboto:400,500,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 18 Jan 2023 07:44:47 GMT
date: Wed, 18 Jan 2023 07:44:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/js/select2/select2orderservices-1.1.min.css
200 OK 7.0 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/js/select2/select2orderservices-1.1.min.css
IP
Hash 7cbd9a091acb4b9e29139fe8b83a86f8
2c2c184d027e493d929ac31ac0eba885cb4c6eec
5a4d1a396f5944fd0e04b441d22ddb441fe0f8317c6defb77ee8042fd47500d3
GET /frontend/js/select2/select2orderservices-1.1.min.css HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 19 Jun 2020 01:10:23 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 06:16:54 GMT
cache-control: max-age=86400
etag: W/"e06148a64cd8d0e7c72282dae284f3ba"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _t_Ga3g2amDkBbgLzvoPpdjdrVDqePLmtqTwCm2jdz6TQPRfBTQlEA==
age: 13124
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 773596e36fe4af70225f1ee08e977461
5595433fd09a22008b2c739f6626aef116ad5285
fb18080471e9a54e7d1c060d2e26b023f09c135e0d195e48917cd064549d7fdc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-W6FF6DK
200 OK 95 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-W6FF6DK
IP
File type ASCII text, with very long lines (57239)
Hash b938a0df5ca46ede9f30f5ae0e6fb5ea
2b99722c0d75e5c85f463ecd171183106e6b4845
24ce76a0fc3bf371e08d30ef5c23883cc58ff11abdf49be3fe19a142f9916c87
GET /gtm.js?id=GTM-W6FF6DK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 18 Jan 2023 07:44:48 GMT
expires: Wed, 18 Jan 2023 07:44:48 GMT
cache-control: private, max-age=900
last-modified: Wed, 18 Jan 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95304
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/images/icon-user.svg
200 OK 1.2 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/images/icon-user.svg
IP
Hash 6dd2b4a34855e63d6077894b3b7a2019
76a923dec32705fd5f78a9cb5e7eb6fb13abf297
7b3fd84500df1e295550631c9e72f96554b33fd56da0abc3b115beb24d6f6c0e
GET /frontend/images/icon-user.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dusyzh85wmzqh.cloudfront.net/frontend/css/common-9.1.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 14 Jan 2019 09:33:10 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 07:13:34 GMT
cache-control: max-age=86400
etag: W/"1e5c601bf9b90190efecfe3ec75f371f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yffb3-t9LwxaqQJyFbDUctvHdBWWpHnY1bKO8Bto98S59GypXZuwng==
age: 2844
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/images/icon-large-notification.svg
200 OK 1.2 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/images/icon-large-notification.svg
IP
Hash 0dfc0f8798d46acb8ea228fa4c58698e
727532e460375b30f5058a3007f65665c9bf81e6
2f6f7474c4b209162bcef954d07c27102945e9a717b32831795bcb123dd3ed3f
GET /frontend/images/icon-large-notification.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 24 Aug 2020 07:07:49 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 07:38:51 GMT
cache-control: max-age=86400
etag: W/"101973ffd79d8140c410457db457a154"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aKvK8P5PSFzIYIms9YZnt2M4-_WbeMwHFyNAgpzmNYs8hWZsMU4T-A==
age: 788
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/u35fw2Dx4G0WsO6SztVYg4cV/recaptcha__en.js
200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/u35fw2Dx4G0WsO6SztVYg4cV/recaptcha__en.js
IP
File type ASCII text, with very long lines (534)
Size 163 kB (162972 bytes)
Hash 76ec8636078661afbc2c6fdd811b0b76
035c5fe2d57e0363a7abaedc294ef890a6e2a081
194068b0223ebb32c7e7026851a4c1eb6b70c988b269c7fa10f4dd3362bd650a
GET /recaptcha/releases/u35fw2Dx4G0WsO6SztVYg4cV/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162972
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jan 2023 15:07:39 GMT
expires: Tue, 16 Jan 2024 15:07:39 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 Jan 2023 00:08:35 GMT
content-type: text/javascript
age: 146229
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
d3nqrmb1lqq5py.cloudfront.net/images/currency/USD.png
200 OK 609 B URL HTTP/2 d3nqrmb1lqq5py.cloudfront.net/images/currency/USD.png
IP
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 968591e0050981be9fa94bd2597afb48
dd9e149e2b5ad59dd8b4b262f5fdeb5cc10ecf43
36cce5cae3d2e0045b2b2b6cbffdad7a0aba3e99919cc219bbf0578efdc45585
GET /images/currency/USD.png HTTP/1.1
Host: d3nqrmb1lqq5py.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 609
last-modified: Fri, 23 Nov 2018 09:20:13 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 06:40:24 GMT
cache-control: max-age=86400
etag: "968591e0050981be9fa94bd2597afb48"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7Mpmw_rI0EtstjuaYYWsV9jGxGPlGaD2vmp8fFdlEbMtaAUYMBDqfg==
age: 3946
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8265
Expires: Wed, 18 Jan 2023 10:02:33 GMT
Date: Wed, 18 Jan 2023 07:44:48 GMT
Connection: keep-alive
dusyzh85wmzqh.cloudfront.net/uploads/st-kitts-and-nevis-citizenship-by-investment-icon-1654163266.jpg
200 OK 109 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/uploads/st-kitts-and-nevis-citizenship-by-investment-icon-1654163266.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 555x393, components 3\012- data
Size 109 kB (108924 bytes)
Hash 2821342cadf2188730eece34ce904ddb
357e6cb24c6d042d504eafae0ba064aa7d597fb0
101d8bff2fdc38ee9a69be99714a957d2fa6c2ab33587586aed1a696a335aa31
GET /uploads/st-kitts-and-nevis-citizenship-by-investment-icon-1654163266.jpg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 108924
last-modified: Thu, 02 Jun 2022 09:47:47 GMT
x-amz-version-id: wWeHwsMFzAysSV40XZV6l35BtHtPiTOg
accept-ranges: bytes
server: AmazonS3
date: Tue, 17 Jan 2023 21:44:26 GMT
cache-control: max-age=86400
etag: "2821342cadf2188730eece34ce904ddb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: s4P3rTueUl1Z6Sl33oXPD1Mh5B6tTeod9490iMvi4F_VP9I_yxS7mA==
age: 36023
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8265
Expires: Wed, 18 Jan 2023 10:02:33 GMT
Date: Wed, 18 Jan 2023 07:44:48 GMT
Connection: keep-alive
dusyzh85wmzqh.cloudfront.net/frontend/images/icon-news.png
200 OK 304 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/images/icon-news.png
IP
File type PNG image data, 25 x 17, 8-bit/color RGBA, non-interlaced\012- data
Hash b7029a53872124048334287409810410
98b293143d772e053f3aaf25a29d8568708499c6
a388c11683b8afcbf5e409bd164c796c6e5fcf6a7200470020ebf8b92593e385
GET /frontend/images/icon-news.png HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 304
last-modified: Thu, 28 Feb 2019 06:56:23 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 07:38:52 GMT
cache-control: max-age=86400
etag: "b7029a53872124048334287409810410"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PyNytVz5Ny8uCPT2RGdKn0ykI3jptATPwRYD8gBTewQUDsJ03FJ3uQ==
age: 4312
X-Firefox-Spdy: h2
www.offshorecompanycorp.com/cdn-cgi/rum?
204 No Content 0 B URL HTTP/2 www.offshorecompanycorp.com/cdn-cgi/rum?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: www.offshorecompanycorp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 12621
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/insight/jurisdiction-update/singapore-corporate-income-tax?gclid=Cj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB
Cookie: OFFID=9f46ccb6d3a8d8f39e7d966a629c4451
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Wed, 18 Jan 2023 07:44:48 GMT
access-control-allow-origin: https://www.offshorecompanycorp.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 78b5b51f6cefb4ed-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefcc19e1-75f3-4a6f-8686-3308f93dd409.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefcc19e1-75f3-4a6f-8686-3308f93dd409.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df397b10a8e03cec7f74cd8f0fbb4e6e
625e8a1b7e865def8861e194ac754c486cd374e7
6bafab2eaac6814dd4c0f2155119f71e01cf6ecd602d51fa5d5e547db3588705
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefcc19e1-75f3-4a6f-8686-3308f93dd409.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7574
x-amzn-requestid: e330d010-6465-47c6-b45f-b25a6de84f9d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A16GjsIAMFYgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714f2-17ca5566719117874cb6a6d0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wF_siKELQDBuWLkhNtrGzLwKyuMaGaSoCQNpE5etDRs6XotQgRYF3w==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:02:53 GMT
age: 34915
etag: "625e8a1b7e865def8861e194ac754c486cd374e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/uploads/icon-email-subscribe-1655709060.svg
200 OK 13 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/uploads/icon-email-subscribe-1655709060.svg
IP
Hash e754f5c0802755d86dc5f6ad0f76e69c
13bec8494d8016c447badd2978d434d09f6e3e16
7f6c216d7772956932a7b77bf9a53b3efd8916c27e5603d8b7cba7b73080cd73
GET /uploads/icon-email-subscribe-1655709060.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 20 Jun 2022 07:11:02 GMT
x-amz-version-id: WY9_XPZqImJA3HTInVEbradah_1oMRr3
server: AmazonS3
content-encoding: gzip
date: Tue, 17 Jan 2023 20:29:44 GMT
cache-control: max-age=86400
etag: W/"8952f71a04859051835d2c9a46918ec8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: z3Qsxj0jCaRDAL16ks_zPxDmNHzH0UHW3y3fxbXDygyjxY4YhXowVA==
age: 40503
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8656702f08344d3a4658bc43a9074a1f
fba424e1d09cbdc839ca320458b51715dafbbccc
0b0ac963c377b07f843637348f3d7c41d2aca89540ab8c2b80ef5fbbf466fee8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13848
x-amzn-requestid: 93bbdd19-aa04-49ec-858f-9fa1d6b736d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6BKCGEtoAMFgsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c71573-008911af44c3998d7b27b837;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:38:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: adtKl3gOcesaXNHcRbi71-1Wz6caEgtXrAvbhB9qhId7eJEkd7d7pQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:59:45 GMT
age: 35103
etag: "fba424e1d09cbdc839ca320458b51715dafbbccc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f112ea3865f38cbbcc8400b58320fa0
dacc584338546bf60f26b2a0bec48e9b584640dc
7feb3c0691f40354701d1cb0bf3c834d1eeead4a7297fac3afc0f4a7ca2c94cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8853
x-amzn-requestid: ff98ec33-294a-4a13-b064-3cd4744cd2b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0LLKHPnIAMF0vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4bf14-233cbc6407c6b138144d7abb;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:05:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QZZaGtGl3Z-4G4DxO4R_gjfDdQVgJc30Ur9EyLAvbGFhv4LfaXziPQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 04:00:29 GMT
age: 13459
etag: "dacc584338546bf60f26b2a0bec48e9b584640dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/images/icon-global.svg
200 OK 11 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/images/icon-global.svg
IP
Hash 958b441df26baa56744a1df39354f00a
395503621dd0e2779f25e473ba95cda3ed44f6d1
0dcef55419677756874c3d08c60c4399a2829fa9c3a296f93e71c87218c0da6e
GET /frontend/images/icon-global.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 19 Dec 2019 07:25:51 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 07:38:51 GMT
cache-control: max-age=86400
etag: W/"fe080588246bb6d477e84d612e2858f0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NYOzDn_zhv4lIe-DDZ4r0GVBhZ0fjECpqjv3_jrl8IFfsNxly7jvNw==
age: 12615
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp
200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9200e43ca808b9ecec74828e03853d4c
3070340147ced46e5fdf73408272aa39391976fb
abdaedfc2da45180c463607686b20afd82113b78cfa78b0f28ab169b9858469b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6454
x-amzn-requestid: 79329eb3-8d89-423f-8626-32c5e2e2831a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gHpeoAMF-Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-5e859dc121cd322c6b684eee;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TKl5JNASQseZsuX_yJtVaUT2TCY5lKIxjJ8QvhDIXDAkC8GwIRilYg==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:01:08 GMT
age: 35020
etag: "3070340147ced46e5fdf73408272aa39391976fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/uploads/icon-facebook-1600681107.svg
200 OK 25 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/uploads/icon-facebook-1600681107.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52913), with CRLF line terminators
Hash 109d98f9b5e0816be98e479e0ddf41a5
15500f60465a726b730166e61d3b1fe2f0298a1d
e03306135c4b5c8cd016765e594ccb86366b54f4785441f57abad85ee9e389f9
GET /uploads/icon-facebook-1600681107.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 21 Sep 2020 09:38:28 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 07:38:51 GMT
cache-control: max-age=86400
etag: W/"875e8da9a477e42106eb4270216c9cbc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: B2cacm9Ae8rMmygGr1ctIfTKjhA7aZ_qICMnlLN1XUb7eBFlMSYKIA==
age: 458
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/uploads/icon-youtube-1600681198.svg
200 OK 164 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/uploads/icon-youtube-1600681198.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (531), with CRLF, LF line terminators
Size 164 kB (164013 bytes)
Hash 986141099b43ad7e39ceb0196f894e3d
40e66cd73553e9e8a2b2fd772ca3a213d4997b85
06467e25d204e43c51614ba146b4176286a065ec18a56ffb84faa9a5a7cb92d0
GET /uploads/icon-youtube-1600681198.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 21 Sep 2020 09:40:00 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 03:15:08 GMT
cache-control: max-age=86400
etag: W/"515a4f7f11ecbcea5cc047b7e0e0d4f5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oyhEjszZ8ScIRSreE6QbYHtXt88H-gA3olBndZSn9RY7CEfIivR7cQ==
age: 20484
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-main.js
200 OK 408 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-main.js
IP
File type ASCII text, with no line terminators
Hash fa4440a1de1e65ad825f996e706f71e6
4facab0e6f471a7a45a7cfdab17637125b96eafb
feef1fb7abc15f2080f7126f85ff4bc5da1bbcfd59c2bab41d9c3d5238a14e05
GET /_s/v4/app/63b77dcd282/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:48 GMT
content-type: application/javascript
age: 5271
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b5b520dc9e0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sc-static.net/scevent.min.js
200 OK 13 kB URL HTTP/2 sc-static.net/scevent.min.js
IP
File type ASCII text, with very long lines (30920), with no line terminators
Hash 5c1e6ef321052f9ef17baa3b17775b15
dc24d4674334a60c2b9d1cd9aae0b6ed1bbb09ea
12a2c25fdde940fdbf0dcf5f2743c615bf8acac3ce6d19bf8b55102526bf763f
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 13268
server: CloudFront
date: Wed, 18 Jan 2023 07:44:48 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Thu, 19 Jan 2023 06:46:28 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nbfFo0TioD8R8K_wClBnjMBmazaRU6OpEFoBGZ9MWpfriEaPf0jZKw==
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/shared/js/jquery-1.12.4.min.js
200 OK 34 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/shared/js/jquery-1.12.4.min.js
IP
Hash f93b5de7b23362d2e33559c7b6eecfbb
440d94757bfa0278106397dd53836c6289bd84f2
169b4b20a54385658d9bfeb0121d8842e1b9cb1d9e793d28c60efa92fc6b1adb
GET /shared/js/jquery-1.12.4.min.js HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 14 Jan 2019 09:32:35 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 07:13:35 GMT
cache-control: max-age=86400
etag: W/"618538b4ab9639d444e962729a927f15"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VpwR5Ii-sBOHhABfo5lNat3k0V6JJFRXVKCpu2AdyCrToG3rKh3wpQ==
age: 3859
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash a58bc03b6b79b7488ea8e9a0743b1755
16cef4689cfa24f7e377111b54ca40c384bfbc4d
0b7bb3118c8592ce386b0ceea811e8280b47bfd379b6e0cded128df74bc71657
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3147
Cache-Control: max-age=86203
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:49 GMT
Etag: "63c644e1-1d7"
Expires: Thu, 19 Jan 2023 07:41:32 GMT
Last-Modified: Tue, 17 Jan 2023 06:49:05 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash a58bc03b6b79b7488ea8e9a0743b1755
16cef4689cfa24f7e377111b54ca40c384bfbc4d
0b7bb3118c8592ce386b0ceea811e8280b47bfd379b6e0cded128df74bc71657
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6339
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:49 GMT
Last-Modified: Wed, 18 Jan 2023 05:59:10 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 314 B IP
Hash 5cf4d2f816b765ec911ce39ed46dbc8f
b85da611ce513ac5839b2b9ce0ad405605dc82a7
86c428fb0d4e82d58d5af29670c9a899bfb1e938a26b89cb9c1ebc0ebe66c397
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 757
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:49 GMT
Last-Modified: Wed, 18 Jan 2023 07:32:12 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 314
tr.snapchat.com/cm/i?pid=4c501f1a-644e-42c8-9e22-785362012977&u_scsid=241214ae-ade2-485d-82f8-841797c2d35b&u_sclid=017bba7b-3095-462a-8368-33afaa83c92a
200 OK 0 B URL HTTP/2 tr.snapchat.com/cm/i?pid=4c501f1a-644e-42c8-9e22-785362012977&u_scsid=241214ae-ade2-485d-82f8-841797c2d35b&u_sclid=017bba7b-3095-462a-8368-33afaa83c92a
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/i?pid=4c501f1a-644e-42c8-9e22-785362012977&u_scsid=241214ae-ade2-485d-82f8-841797c2d35b&u_sclid=017bba7b-3095-462a-8368-33afaa83c92a HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:49 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.snapchat.com/p
200 OK 68 B IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
POST /p HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1087
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:49 GMT
access-control-allow-origin: https://www.offshorecompanycorp.com
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBiREAIQgEsIqYcRV52sHlqqD4S+x1EUlBxRXdSilayvFkXwO+zhmY69oekbN+NfpT9DIAAAA=;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 6
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-app.js
200 OK 186 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-app.js
IP
File type ASCII text, with no line terminators
Hash 7aff54ba95f6e6d7ced0f62f8a5d8982
8b2614be82c89507083cc81a333f72b91b3bfc5e
4f4237081452065738462e40bd7f833d5e54f6ba8e55bb6d3a70486fdf9e43c1
GET /_s/v4/app/63b77dcd282/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:48 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
age: 679015
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b5b520dcab0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash a58bc03b6b79b7488ea8e9a0743b1755
16cef4689cfa24f7e377111b54ca40c384bfbc4d
0b7bb3118c8592ce386b0ceea811e8280b47bfd379b6e0cded128df74bc71657
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6339
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:49 GMT
Last-Modified: Wed, 18 Jan 2023 05:59:10 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 21:48:03 GMT
expires: Fri, 12 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 467806
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 16:40:43 GMT
expires: Fri, 12 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 486246
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/images/logo.svg
200 OK 5.2 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/images/logo.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7328)
Hash bf6242af4a0daba6caf543bf53786841
2058dcc287dbf3bdc190121b79439aa8b8b5b69d
8f58a6704f20bfe557a10047f4e7f9f316de75607e83e51745bd9a3a8fbed99b
GET /frontend/images/logo.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 14 Jan 2019 09:33:11 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 06:40:24 GMT
cache-control: max-age=86400
etag: W/"c575b7e6ef6b30e388c65a389287c603"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XGbxrZrQOULfM0WsY42YT7U0H5_nKuRrjeT2uDGzG497L7WZztX1iw==
age: 5105
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CASJH1BC77U804GF5SOG&lib=ttq
200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CASJH1BC77U804GF5SOG&lib=ttq
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2295)
Hash 5e9290714a169735c230311b5fd96754
51b0f0015f25a50abcb348d680a8d56fcc03c3a0
9c5405babdc4cd10541a0d5ac76e72bf01280fb8f00faedfe2cce2d950a668d1
GET /i18n/pixel/events.js?sdkid=CASJH1BC77U804GF5SOG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2023011807444921131F101FFC1CC43A9E
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6682c39b0a71e8efdc034705b3b6c95a5b6b7867644ce41b5f5f0022dd8703613f6bfa63e550b939e037343539926b12b36e9bd85f8d51570b569c1ac18ca5b8d61c66d359e0c8671f0479472c3591883
content-encoding: gzip
expires: Wed, 18 Jan 2023 07:44:49 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 07:44:49 GMT
content-length: 1130
x-cache: TCP_MISS from a95-101-10-126.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2KUSuJbqqwPpo7lYL6AMAxD2OhY; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=0, origin; dur=96
x-origin-response-time: 96,95.101.10.126
x-akamai-request-id: 72718dce
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 312 B IP
Hash 2ba43181ef28ed2dca6f0614e3524724
debbdc8706a9c572baf0bd9aa6fc68bd6a46f9f4
f95a250c7c0f433146479595728b91c6e8f91c6890e51e35d7803ef8d8c71352
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6306
Cache-Control: max-age=113802
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:49 GMT
Etag: "63c6a459-138"
Expires: Thu, 19 Jan 2023 15:21:31 GMT
Last-Modified: Tue, 17 Jan 2023 13:36:25 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 312
analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMA.js
200 OK 68 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMA.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash 0124d7d5e989c270f40d9802f0732fd8
1e6e3eda854acb2f92faad41cc39ed1b1baff7d8
828d1a595277d3b5aa0c72690a79a46306468f88ed16054e59e721dfde2253a6
GET /i18n/pixel/static/main.MWE2YWY2YTgzMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Cookie: _ttp=2KUSuJbqqwPpo7lYL6AMAxD2OhY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202301121758356AC605B348667A840430
x-tt-trace-host: 01814bbe4def86411beeb30373d8a0a1078f6d8d03190a3ce90a20922b9aace6a6925fe29dc6bed8d3832c2d873443cc0251bca2c5a97bb333427eee117429af43184bae223d82a747b6fe9ca6f355277d642babeee153884a939461620437b9bc
content-encoding: gzip
content-length: 68082
date: Wed, 18 Jan 2023 07:44:49 GMT
x-cache: TCP_HIT from a95-101-10-126.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 72718e39
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=www.offshorecompanycorp.com&origin=onetag
200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?topUrl=www.offshorecompanycorp.com&origin=onetag
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash 2cf12a61c5f3f23abe6f26d2181f908c
7cc44e27a14d87f3a8180a7b3a99f6fbc52f99c8
f0b7a85374c53a3a5e3dc9074aa1587df2e43cbd4835cb777f23ae7492cf2041
GET /syncframe?topUrl=www.offshorecompanycorp.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:48 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=0df0cbd7-759f-4417-832c-058560cec3ff; expires=Mon, 12 Feb 2024 07:44:48 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 432162
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash e35cd3aeb48075134b13d5d593e609af
b967aced0b33616a54a9b7d5d3d092f28b9cca81
e25f7cb45c4d46dc9ebcf4cbe5209c87765cb94c15384780899eee7d888273e6
GET /i18n/pixel/static/identify_c4832.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Cookie: _ttp=2KUSuJbqqwPpo7lYL6AMAxD2OhY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825795F92399DF9E7BC6845
x-tt-trace-host: 01213c9428e1dc2e706424a5e4830ae2753a9403fe7ed2020932fc61a3c47c96784adda24a6c56428140d39df42ee71252f6133830581f45dad09e0f84f6c427e5570f8f5241c1349d3294ee56c52eab748dbda5cfd0ecad2a022e79233890d27b
content-encoding: gzip
content-length: 30930
date: Wed, 18 Jan 2023 07:44:49 GMT
x-cache: TCP_MEM_HIT from a95-101-10-126.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=1
x-akamai-request-id: 72718e96
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 314 B IP
Hash 18bf6f110d4e88ee265f6da6d21bd123
21b106133c400cd4f7faf212f0d377515fc894bd
dc7c5bcb1d7e58289f8b618ff21ddbbda12536f8635135280ccae84cfe7e4e9e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5707
Cache-Control: max-age=166538
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:49 GMT
Etag: "63c774b0-13a"
Expires: Fri, 20 Jan 2023 06:00:27 GMT
Last-Modified: Wed, 18 Jan 2023 04:25:20 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
200 OK 314 B IP
Hash 18bf6f110d4e88ee265f6da6d21bd123
21b106133c400cd4f7faf212f0d377515fc894bd
dc7c5bcb1d7e58289f8b618ff21ddbbda12536f8635135280ccae84cfe7e4e9e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5795
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:49 GMT
Last-Modified: Wed, 18 Jan 2023 06:08:14 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 314
region1.analytics.google.com/g/collect?v=2&tid=G-6V7B49S462>m=2oe1a1&_p=1003559380&_gaz=1&cid=2085998395.1674027889&ul=en-us&sr=1280x1024&_s=1&sid=1674027888&sct=1&seg=0&dl=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&dt=Singapore%20Corporate%20Income%20Tax&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-6V7B49S462>m=2oe1a1&_p=1003559380&_gaz=1&cid=2085998395.1674027889&ul=en-us&sr=1280x1024&_s=1&sid=1674027888&sct=1&seg=0&dl=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&dt=Singapore%20Corporate%20Income%20Tax&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-6V7B49S462>m=2oe1a1&_p=1003559380&_gaz=1&cid=2085998395.1674027889&ul=en-us&sr=1280x1024&_s=1&sid=1674027888&sct=1&seg=0&dl=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&dt=Singapore%20Corporate%20Income%20Tax&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.offshorecompanycorp.com
date: Wed, 18 Jan 2023 07:44:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6a6b2d9466c78838d5b89a24b1afc5f1
056b045d2648e975609cc689aace2cebf56dc4b8
87f1afd429d569be0ae89952298d447806d8c9d543b4ed8d2bc80cd9dc3d125d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-6V7B49S462&cid=2085998395.1674027889>m=2oe1a1&aip=1
204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-6V7B49S462&cid=2085998395.1674027889>m=2oe1a1&aip=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-6V7B49S462&cid=2085998395.1674027889>m=2oe1a1&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.offshorecompanycorp.com
date: Wed, 18 Jan 2023 07:44:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 934
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Cookie: _ttp=2KUSuJbqqwPpo7lYL6AMAxD2OhY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230118074449BE80D77C6D0902D7FBB3
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6bb7d7a187227b5b419016dcf0268d1056ee90a1691e79643655eb3dace4b68040d3fb57991c83394406307508bbb4a15f4c06ec457344829dc2c42af6ebf4dc600a3a4749e81bb3d8c262da6eea0d62a7fa65692d3ba0e212073aadfb8b26268
x-origin-response-time: 24,23.220.104.207
x-akamai-request-id: 1d85f1f4.72718eaa
expires: Wed, 18 Jan 2023 07:44:49 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 07:44:49 GMT
x-cache: TCP_MISS from a95-101-10-126.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_MISS from a23-220-104-207.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=96, origin; dur=24, inner; dur=21
x-parent-response-time: 115,95.101.10.126
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/uploads/icon-twitter-1600681198.svg
200 OK 1.4 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/uploads/icon-twitter-1600681198.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 3c8cf11c64f3b18d7420be8ea273f359
352157fda0df10295287c06ba6297db16f7f242b
cf3cc0bce0b0daa94bd8e412d5a52f6b44f7834be8f42fda7a1616f869bd10a4
GET /uploads/icon-twitter-1600681198.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 21 Sep 2020 09:39:59 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Tue, 17 Jan 2023 08:09:50 GMT
cache-control: max-age=86400
etag: W/"dfa05f696baaf1d2d2a7ce99233781f3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2z5U9KG9IFwX7wusRxmW1Dc06RS9CNrDq3aii63SfToFOTEhR8pH4g==
age: 84898
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 941
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Cookie: _ttp=2KUSuJbqqwPpo7lYL6AMAxD2OhY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230118074449A06C6A6F9C232AC4B360
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6bb7d7a187227b5b419016dcf0268d105d55659143cb9e1f4d0aa79c72745e899aa4df2d2638588db4fb9d5646bed993b9603a21ee0a89c195a9113efb8d1ee318fb40d5850b433c6325f03e25bb0166487398011707b5376d8b200c5f6df7243
x-origin-response-time: 21,23.217.116.188
x-akamai-request-id: 1a1b2969.72718eb6
expires: Wed, 18 Jan 2023 07:44:49 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 07:44:49 GMT
x-cache: TCP_MISS from a95-101-10-126.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_MISS from a23-217-116-188.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=97, origin; dur=20, inner; dur=18
x-parent-response-time: 113,95.101.10.126
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6a6b2d9466c78838d5b89a24b1afc5f1
056b045d2648e975609cc689aace2cebf56dc4b8
87f1afd429d569be0ae89952298d447806d8c9d543b4ed8d2bc80cd9dc3d125d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dusyzh85wmzqh.cloudfront.net/uploads/belize-economic-system-is-characterized-icon-1654156606.jpg
200 OK 217 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/uploads/belize-economic-system-is-characterized-icon-1654156606.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 555x393, components 3\012- data
Size 217 kB (216695 bytes)
Hash 1a282eb6e336e781de42114e98d61e67
98c72b1b5131e05bffd814711721d2151cab2017
8309986fb5542e203fa5a21a64319f5d0066b631c4ac7d6e0edd531eecf5ff40
GET /uploads/belize-economic-system-is-characterized-icon-1654156606.jpg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 216695
last-modified: Thu, 02 Jun 2022 07:56:47 GMT
x-amz-version-id: oOV2hXgQ70VIDJAWQtSo4Fwo6FhkhD4q
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 07:24:10 GMT
cache-control: max-age=86400
etag: "1a282eb6e336e781de42114e98d61e67"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tCwS7H5ylM6mg9EvL-3nQe8uVHERilSAwfheAH9dW5SLRjUUucIP-A==
age: 1240
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/uploads/seychelles-economy-overview-icon-1654158158.jpg
200 OK 134 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/uploads/seychelles-economy-overview-icon-1654158158.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 555x393, components 3\012- data
Size 134 kB (133773 bytes)
Hash 81c4a33e9bfe02102dfd561038b5c3f1
5c19c3860159008b863848db7bbda6ae96be6d06
c5b8cf400a27819c478ef4a425374040b96865a79d82e0d959b304623a650a68
GET /uploads/seychelles-economy-overview-icon-1654158158.jpg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 133773
last-modified: Thu, 02 Jun 2022 08:22:39 GMT
x-amz-version-id: cwRV7et9J6fDkZW2yKk8wUogWnfMAovt
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 05:55:46 GMT
cache-control: max-age=86400
etag: "81c4a33e9bfe02102dfd561038b5c3f1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: j0I4kPHyH-U0nkXLj4kIgg7jLwV_wOyPCglvcUq4xPK6PtIONra98Q==
age: 6544
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/uploads/what-to-consider-when-expanding-a-business-internationally-icon-1654155918.jpg
200 OK 179 kB URL HTTP/2 dusyzh85wmzqh.cloudfront.net/uploads/what-to-consider-when-expanding-a-business-internationally-icon-1654155918.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 555x393, components 3\012- data
Size 179 kB (178831 bytes)
Hash 325674d373c1596bcce866e2794829c9
f5f657e4e59dc2ec43aedb1375f0b6533fa8d0d8
5002dbf0ff944c93f269f89b70a5c8c44759e6a4d076bb7243b12b7d04e56c4b
GET /uploads/what-to-consider-when-expanding-a-business-internationally-icon-1654155918.jpg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 178831
last-modified: Thu, 02 Jun 2022 07:45:19 GMT
x-amz-version-id: cqV.88QuiYfRUWJZdJq74jguGP87Gv49
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 02:59:03 GMT
cache-control: max-age=86400
etag: "325674d373c1596bcce866e2794829c9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: C_Mh7-gz3YgTyEWQXPa5zcyNNQf2o8kgPhIcWWz2v8NHG137t2CeCQ==
age: 17147
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=52225
date: Wed, 18 Jan 2023 07:44:49 GMT
content-length: 4777
x-cdn: AKAM
X-Firefox-Spdy: h2
www.offshorecompanycorp.com/favicon.ico
200 OK 4.2 kB URL HTTP/2 www.offshorecompanycorp.com/favicon.ico
IP
File type MS Windows icon resource - 2 icons, 48x48, 32 bits/pixel, 16x16, 32 bits/pixel\012- data
Hash 5667bea1642a4de2c16353092242e010
002a674ce87f031d90b70e11fd83f8043cdbee79
e748afaef9d30571765e0b5ca8d90da18d8aa02ddff211b9646c8209d4c91f30
GET /favicon.ico HTTP/1.1
Host: www.offshorecompanycorp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/insight/jurisdiction-update/singapore-corporate-income-tax?gclid=Cj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB
Cookie: OFFID=9f46ccb6d3a8d8f39e7d966a629c4451
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:47 GMT
content-type: image/x-icon
last-modified: Wed, 04 Sep 2019 02:46:27 GMT
cf-cache-status: REVALIDATED
expires: Wed, 18 Jan 2023 11:44:47 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 78b5b5189c40b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Wed, 18 Jan 2023 07:44:49 GMT
x-served-by: cache-iad-kiad7000089-IAD, cache-bma1660-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f96ac6d23518cd0485e1d41d276d8184
58de3ad32744f1f92b86e9f60c29094c7ba5b115
a1b6546dc485dbbfc652a64b11655450987e9a391e44b05a6eb20b323ede242c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-vendor.js
200 OK 512 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-vendor.js
IP
Hash ee6ef8b56ce419a90c1a229841d864d7
b28bf01b8327207745c6bc65ecab013fdcf6972e
d796cef7dbf7343d85b1995735eb3329243518e582a91c8ec03496b61ddedf47
GET /_s/v4/app/63b77dcd282/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:48 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
age: 679015
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b5b520dc9f0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 24 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
Hash 943ef5ab68bbbf9d2a203e9e56fd59dc
b452e6f3e3ec83f8015f095b585b1fe4f5cc5078
a29f782fe405b0d3155486466c64c3b043437653deae8c200defc50f4adce1a8
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 18 Jan 2023 06:41:07 GMT
expires: Wed, 18 Jan 2023 08:41:07 GMT
cache-control: public, max-age=7200
age: 3822
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: CDV8eTn00LtBcuxPxb7YhJYSRGhau0zpE1teK31OLxcuvks4r0mPUOv3MS73Ewl1VngshT2UNr8WaVsRYvGKig==
content-length: 27815
x-fb-trip-id: 1904183273
date: Wed, 18 Jan 2023 07:44:49 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
bat.bing.com/bat.js
200 OK 12 kB IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Hash b77f77f4f821a11c0a501be8d6a19659
7bba3d65db27d7c0e050bbf2294021433221de5d
e80b6b1a2f792de4681310088abf8d9172a81ee10a54965c8eb602fae2d92319
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11472
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=363E87409C32661B328F95DD9DC767FE; domain=.bing.com; expires=Mon, 12-Feb-2024 07:44:49 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 863D19759FC24AFA9C2B6C6956FA3D92 Ref B: OSL30EDGE0216 Ref C: 2023-01-18T07:44:49Z
date: Wed, 18 Jan 2023 07:44:48 GMT
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/449743827/?random=1674027888612&cv=11&fst=1674027888612&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&tiba=Singapore%20Corporate%20Income%20Tax&auid=1107041475.1674027889&data=event%3Dview_item%3Bdynx_itemid%3D%3Bgoogle_business_vertical%3Dcustom%3Bid%3D%3Blocation_id%3DSG&rfmt=3&fmt=4
200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/449743827/?random=1674027888612&cv=11&fst=1674027888612&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&tiba=Singapore%20Corporate%20Income%20Tax&auid=1107041475.1674027889&data=event%3Dview_item%3Bdynx_itemid%3D%3Bgoogle_business_vertical%3Dcustom%3Bid%3D%3Blocation_id%3DSG&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2381), with no line terminators
Hash 8b293828561f7a62220f1340227eac67
c8fa801c719095abbc7bcf09e88c60257f73aa53
16dcb8e06e1d0a7a846074b4c0096f7599e46abe4bd433faf4dd2ede8a1325cc
GET /pagead/viewthroughconversion/449743827/?random=1674027888612&cv=11&fst=1674027888612&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&tiba=Singapore%20Corporate%20Income%20Tax&auid=1107041475.1674027889&data=event%3Dview_item%3Bdynx_itemid%3D%3Bgoogle_business_vertical%3Dcustom%3Bid%3D%3Blocation_id%3DSG&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 18 Jan 2023 07:44:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1051
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 18-Jan-2023 07:59:49 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 97c18a1f4ad26bed14c097c5bb7459f0
2c6ee86fc895d1b3a4b5b8e4caf9cb71a54ab790
d6817e25966a6106335f3e3c2eecb392cc3cff8e148e1dfadf7c26254cc8e8dc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6483
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:49 GMT
Last-Modified: Wed, 18 Jan 2023 05:56:46 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
va.tawk.to/v1/widget-settings?propertyId=57be9c2d2b03647ba16b7ccf&widgetId=default&sv=undefined
200 OK 1.1 kB URL HTTP/2 va.tawk.to/v1/widget-settings?propertyId=57be9c2d2b03647ba16b7ccf&widgetId=default&sv=undefined
IP
File type JSON data\012- , ASCII text, with very long lines (2555), with no line terminators
Hash a6d4eded97fa81366c1dd308c3104651
8438a9cdb23a066ef7c6693b78e0b12e851afb5e
c18147c26a526f411f3e9ef407695de5cfa61d0c965d4667666def23b44a7d88
GET /v1/widget-settings?propertyId=57be9c2d2b03647ba16b7ccf&widgetId=default&sv=undefined HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.offshorecompanycorp.com/
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:49 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-6vgh
access-control-allow-origin: *
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-67-1"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: REVALIDATED
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b5b5228e0f0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sslwidget.criteo.com/event?a=86417&v=5.12.3&p0=e%3Dce%26m%3D%255B%252523%252523Email%252520ID%252520of%252520user%252523%252523%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvl%26p%3D%255BIncorporation1%252CIncorporation10%252CIncorporation11%252CIncorporation12%252CIncorporation133%252CIncorporation14%252CIncorporation147%252CIncorporation15%252CIncorporation157%252CIncorporation16%252CIncorporation160%252CIncorporation17%252CIncorporation18%252CIncorporation19%252CIncorporation2%252CIncorporation20%252CIncorporation21%252CIncorporation22%252CIncorporation23%252CIncorporation24%252CIncorporation3%252CIncorporation4%252CIncorporation6%252CIncorporation8%252CIncorporation9%252CIncorporation96%252CIncorporation246%252CIncorporation98%255D&p3=e%3Ddis&adce=1&bundle=VXgt9l9iZmJHU2Y0N3RNQWUzQm1URzQxJTJGbXV4M21oeTFLRXJpMVBDZnY5RVFpJTJGR2Fvdjc2bUFzeUwxbEFta2g0WU1OaGF3OWNHVzAlMkZ6OUQzR0gyaSUyRkF4NDdyTzlMc2klMkZ6S0xKVTNEM3E2RHRmRnU1T29ZR21aJTJGY01mbU83YTY0SGpNNmklMkJ4VEpXTXBJUG8lMkZhSnoxNjU4JTJCcUElM0QlM0Q&tld=offshorecompanycorp.com&fu=https%253A%252F%252Fwww.offshorecompanycorp.com%252Finsight%252Fjurisdiction-update%252Fsingapore-corporate-income-tax%253Fgclid%253DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&dtycbr=8364
302 Found 0 B URL HTTP/2 sslwidget.criteo.com/event?a=86417&v=5.12.3&p0=e%3Dce%26m%3D%255B%252523%252523Email%252520ID%252520of%252520user%252523%252523%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvl%26p%3D%255BIncorporation1%252CIncorporation10%252CIncorporation11%252CIncorporation12%252CIncorporation133%252CIncorporation14%252CIncorporation147%252CIncorporation15%252CIncorporation157%252CIncorporation16%252CIncorporation160%252CIncorporation17%252CIncorporation18%252CIncorporation19%252CIncorporation2%252CIncorporation20%252CIncorporation21%252CIncorporation22%252CIncorporation23%252CIncorporation24%252CIncorporation3%252CIncorporation4%252CIncorporation6%252CIncorporation8%252CIncorporation9%252CIncorporation96%252CIncorporation246%252CIncorporation98%255D&p3=e%3Ddis&adce=1&bundle=VXgt9l9iZmJHU2Y0N3RNQWUzQm1URzQxJTJGbXV4M21oeTFLRXJpMVBDZnY5RVFpJTJGR2Fvdjc2bUFzeUwxbEFta2g0WU1OaGF3OWNHVzAlMkZ6OUQzR0gyaSUyRkF4NDdyTzlMc2klMkZ6S0xKVTNEM3E2RHRmRnU1T29ZR21aJTJGY01mbU83YTY0SGpNNmklMkJ4VEpXTXBJUG8lMkZhSnoxNjU4JTJCcUElM0QlM0Q&tld=offshorecompanycorp.com&fu=https%253A%252F%252Fwww.offshorecompanycorp.com%252Finsight%252Fjurisdiction-update%252Fsingapore-corporate-income-tax%253Fgclid%253DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&dtycbr=8364
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?a=86417&v=5.12.3&p0=e%3Dce%26m%3D%255B%252523%252523Email%252520ID%252520of%252520user%252523%252523%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvl%26p%3D%255BIncorporation1%252CIncorporation10%252CIncorporation11%252CIncorporation12%252CIncorporation133%252CIncorporation14%252CIncorporation147%252CIncorporation15%252CIncorporation157%252CIncorporation16%252CIncorporation160%252CIncorporation17%252CIncorporation18%252CIncorporation19%252CIncorporation2%252CIncorporation20%252CIncorporation21%252CIncorporation22%252CIncorporation23%252CIncorporation24%252CIncorporation3%252CIncorporation4%252CIncorporation6%252CIncorporation8%252CIncorporation9%252CIncorporation96%252CIncorporation246%252CIncorporation98%255D&p3=e%3Ddis&adce=1&bundle=VXgt9l9iZmJHU2Y0N3RNQWUzQm1URzQxJTJGbXV4M21oeTFLRXJpMVBDZnY5RVFpJTJGR2Fvdjc2bUFzeUwxbEFta2g0WU1OaGF3OWNHVzAlMkZ6OUQzR0gyaSUyRkF4NDdyTzlMc2klMkZ6S0xKVTNEM3E2RHRmRnU1T29ZR21aJTJGY01mbU83YTY0SGpNNmklMkJ4VEpXTXBJUG8lMkZhSnoxNjU4JTJCcUElM0QlM0Q&tld=offshorecompanycorp.com&fu=https%253A%252F%252Fwww.offshorecompanycorp.com%252Finsight%252Fjurisdiction-update%252Fsingapore-corporate-income-tax%253Fgclid%253DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&dtycbr=8364 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 18 Jan 2023 07:44:49 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.as.criteo.com/event?a=86417&v=5.12.3&p0=e%3Dce%26m%3D%255B%252523%252523Email%252520ID%252520of%252520user%252523%252523%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvl%26p%3D%255BIncorporation1%252CIncorporation10%252CIncorporation11%252CIncorporation12%252CIncorporation133%252CIncorporation14%252CIncorporation147%252CIncorporation15%252CIncorporation157%252CIncorporation16%252CIncorporation160%252CIncorporation17%252CIncorporation18%252CIncorporation19%252CIncorporation2%252CIncorporation20%252CIncorporation21%252CIncorporation22%252CIncorporation23%252CIncorporation24%252CIncorporation3%252CIncorporation4%252CIncorporation6%252CIncorporation8%252CIncorporation9%252CIncorporation96%252CIncorporation246%252CIncorporation98%255D&p3=e%3Ddis&adce=1&bundle=VXgt9l9iZmJHU2Y0N3RNQWUzQm1URzQxJTJGbXV4M21oeTFLRXJpMVBDZnY5RVFpJTJGR2Fvdjc2bUFzeUwxbEFta2g0WU1OaGF3OWNHVzAlMkZ6OUQzR0gyaSUyRkF4NDdyTzlMc2klMkZ6S0xKVTNEM3E2RHRmRnU1T29ZR21aJTJGY01mbU83YTY0SGpNNmklMkJ4VEpXTXBJUG8lMkZhSnoxNjU4JTJCcUElM0QlM0Q&tld=offshorecompanycorp.com&fu=https%253A%252F%252Fwww.offshorecompanycorp.com%252Finsight%252Fjurisdiction-update%252Fsingapore-corporate-income-tax%253Fgclid%253DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&dtycbr=8364
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 7983728
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
s.pinimg.com/ct/core.js
200 OK 1.1 kB IP
File type ASCII text, with very long lines (1146), with no line terminators
Hash 91c4ea42bc7f1df938d8cd8de8d598db
ccecbe4405d83510ca1a6291c374ea8ab1da33d9
aacfea800a59766fdd3672fad8e5eba13abae2dab105014fc9214cb0c1409925
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "91c4ea42bc7f1df938d8cd8de8d598db"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f96ac6d23518cd0485e1d41d276d8184
58de3ad32744f1f92b86e9f60c29094c7ba5b115
a1b6546dc485dbbfc652a64b11655450987e9a391e44b05a6eb20b323ede242c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gum.criteo.com/sid/json?origin=onetag&domain=offshorecompanycorp.com&sn=FirefoxSyncframe&so=0&topUrl=www.offshorecompanycorp.com&info=MT1aWV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czYlMkZlbWxVNHVHVHJDMEozN0hQekhhRlk2MnlnMHRuciUyQkV6SU92czhhJTJCc1Q&idsd=-1758418005,-1513230113&cw=1&lsw=1
200 OK 1.4 kB URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=offshorecompanycorp.com&sn=FirefoxSyncframe&so=0&topUrl=www.offshorecompanycorp.com&info=MT1aWV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czYlMkZlbWxVNHVHVHJDMEozN0hQekhhRlk2MnlnMHRuciUyQkV6SU92czhhJTJCc1Q&idsd=-1758418005,-1513230113&cw=1&lsw=1
IP
Hash c6dfbd4a1e8335fa6f4ba1a99e7fd927
33611bbc153b25031f52a3b6bcc891f9b8217846
139f2695498e1397a89283ae5d6119e08ef7ff36526772e0b1108ef653bd5b94
GET /sid/json?origin=onetag&domain=offshorecompanycorp.com&sn=FirefoxSyncframe&so=0&topUrl=www.offshorecompanycorp.com&info=MT1aWV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czYlMkZlbWxVNHVHVHJDMEozN0hQekhhRlk2MnlnMHRuciUyQkV6SU92czhhJTJCc1Q&idsd=-1758418005,-1513230113&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=www.offshorecompanycorp.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:48 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1349219
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 38de5599544ffa789bad3f8686808c5e
fa442ea8ec124d47130fe75d0e848330a279e19e
d0344819ecf4cb1795fcd668d5f1a806121a48e174588ecd2eb8751595ac61ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 312 B IP
Hash 6e7debaa9ef4c63cf5e6c8a600b5265f
308cce074b318f39d7883536062f49ce30cf0729
cd9c74a94de37b504c00b87d54e7f7fe44f8ef10eafad0ad06c1407f0a1f1e51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1300
Cache-Control: max-age=102691
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:50 GMT
Etag: "63c68c81-138"
Expires: Thu, 19 Jan 2023 12:16:21 GMT
Last-Modified: Tue, 17 Jan 2023 11:54:41 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
200 OK 312 B IP
Hash 6e7debaa9ef4c63cf5e6c8a600b5265f
308cce074b318f39d7883536062f49ce30cf0729
cd9c74a94de37b504c00b87d54e7f7fe44f8ef10eafad0ad06c1407f0a1f1e51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3492
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:50 GMT
Last-Modified: Wed, 18 Jan 2023 06:46:38 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 312
t.co/i/adsct?bci=3&eci=2&event_id=5f6ea8b4-5423-46fa-8680-f0fa628c928a&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=1e7aaf18-d453-4813-9a49-ceb6402ab613&tw_document_href=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5z56&type=javascript&version=2.3.29
200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=5f6ea8b4-5423-46fa-8680-f0fa628c928a&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=1e7aaf18-d453-4813-9a49-ceb6402ab613&tw_document_href=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5z56&type=javascript&version=2.3.29
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=5f6ea8b4-5423-46fa-8680-f0fa628c928a&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=1e7aaf18-d453-4813-9a49-ceb6402ab613&tw_document_href=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5z56&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:49 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=14945dec-63ad-42f0-abe5-55361d048ee9; Max-Age=63072000; Expires=Fri, 17 Jan 2025 07:44:50 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: c8a8229fa00c8bb5
strict-transport-security: max-age=0
x-response-time: 104
x-connection-hash: a8d8b91b7fbf11f09174d4518e7423abd86dde96f53d28f89fe0c2075b9a7eea
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=e7d5ecc2-723e-4b6a-a7c4-75de4fd7676f&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=1e7aaf18-d453-4813-9a49-ceb6402ab613&tw_document_href=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o4jqo&type=javascript&version=2.3.29
200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=e7d5ecc2-723e-4b6a-a7c4-75de4fd7676f&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=1e7aaf18-d453-4813-9a49-ceb6402ab613&tw_document_href=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o4jqo&type=javascript&version=2.3.29
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=e7d5ecc2-723e-4b6a-a7c4-75de4fd7676f&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=1e7aaf18-d453-4813-9a49-ceb6402ab613&tw_document_href=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o4jqo&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:50 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=670cecda-c86d-46e4-b901-d04600743d9a; Max-Age=63072000; Expires=Fri, 17 Jan 2025 07:44:50 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 7fc863e951550b2d
strict-transport-security: max-age=0
x-response-time: 105
x-connection-hash: a8d8b91b7fbf11f09174d4518e7423abd86dde96f53d28f89fe0c2075b9a7eea
X-Firefox-Spdy: h2
va.tawk.to/v1/session/start
200 OK 35 B URL HTTP/2 va.tawk.to/v1/session/start
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.offshorecompanycorp.com/
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:49 GMT
x-served-by: visitor-application-preemptive-tkx1
access-control-allow-origin: https://www.offshorecompanycorp.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b5b5228e0c0b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=56286354&Ver=2&mid=beeec03c-0396-478c-a25c-06c1eb6cae08&sid=fcb663f0970311edb60c8da5c03e6302&vid=fcb6d960970311edba3c073daa607224&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Singapore%20Corporate%20Income%20Tax&kw=corporate%20income%20tax%20singapore,%20singapore%20corporate%20income%20tax,%20corporate%20income%20tax%20in%20singapore,%20singapore%20corporate%20income%20tax%20rate,%20income%20tax%20assessment%20singapore,%20singapore%20income%20tax%20for%20foreigners,%20singapore%20corporate%20tax,%20singapore%20company%20income&p=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&r=<=2340&evt=pageLoad&sv=1&rn=455048
204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=56286354&Ver=2&mid=beeec03c-0396-478c-a25c-06c1eb6cae08&sid=fcb663f0970311edb60c8da5c03e6302&vid=fcb6d960970311edba3c073daa607224&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Singapore%20Corporate%20Income%20Tax&kw=corporate%20income%20tax%20singapore,%20singapore%20corporate%20income%20tax,%20corporate%20income%20tax%20in%20singapore,%20singapore%20corporate%20income%20tax%20rate,%20income%20tax%20assessment%20singapore,%20singapore%20income%20tax%20for%20foreigners,%20singapore%20corporate%20tax,%20singapore%20company%20income&p=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&r=<=2340&evt=pageLoad&sv=1&rn=455048
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=56286354&Ver=2&mid=beeec03c-0396-478c-a25c-06c1eb6cae08&sid=fcb663f0970311edb60c8da5c03e6302&vid=fcb6d960970311edba3c073daa607224&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Singapore%20Corporate%20Income%20Tax&kw=corporate%20income%20tax%20singapore,%20singapore%20corporate%20income%20tax,%20corporate%20income%20tax%20in%20singapore,%20singapore%20corporate%20income%20tax%20rate,%20income%20tax%20assessment%20singapore,%20singapore%20income%20tax%20for%20foreigners,%20singapore%20corporate%20tax,%20singapore%20company%20income&p=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&r=<=2340&evt=pageLoad&sv=1&rn=455048 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=283D592D888D620A0F7E4BB089786376; domain=.bing.com; expires=Mon, 12-Feb-2024 07:44:50 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: DCBEDDF48BD640468EF09E0AC6642AAC Ref B: OSL30EDGE0216 Ref C: 2023-01-18T07:44:50Z
date: Wed, 18 Jan 2023 07:44:49 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash cc801dcdb63bac82d1f66fc29a1ac762
07778d4f04632fd2190a2140e28fdfc64f9093ca
34e03c2acf99396bb3b97bb45285e98550314a14a42f407f8849ac8ff6add142
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6019
Cache-Control: max-age=148440
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:50 GMT
Etag: "63c72cc7-139"
Expires: Fri, 20 Jan 2023 00:58:50 GMT
Last-Modified: Tue, 17 Jan 2023 23:18:31 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
200 OK 313 B IP
Hash cc801dcdb63bac82d1f66fc29a1ac762
07778d4f04632fd2190a2140e28fdfc64f9093ca
34e03c2acf99396bb3b97bb45285e98550314a14a42f407f8849ac8ff6add142
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1905
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:50 GMT
Last-Modified: Wed, 18 Jan 2023 07:13:05 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 313
bat.bing.com/p/action/56286354.js
204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/56286354.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/56286354.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=0CE97E35B5756AC83F8C6CA8B4806B8A; domain=.bing.com; expires=Mon, 12-Feb-2024 07:44:50 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 6DED49F338A34E6AB0137F90D90F7C80 Ref B: OSL30EDGE0216 Ref C: 2023-01-18T07:44:50Z
date: Wed, 18 Jan 2023 07:44:49 GMT
X-Firefox-Spdy: h2
s.pinimg.com/ct/lib/main.f6304d83.js
200 OK 20 kB URL HTTP/2 s.pinimg.com/ct/lib/main.f6304d83.js
IP
File type ASCII text, with very long lines (56364), with no line terminators
Hash fe9b810e040cd8cd5323a13c712440ca
ffc29540d5d7d231bb6500449752545fcf81fb74
a1da4f552aa59996a83ec493589977c6302d29653981188528298d6db6866890
GET /ct/lib/main.f6304d83.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "fe9b810e040cd8cd5323a13c712440ca"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 19456
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 8eb28aa9e41279e04ad39e7dfa0010a3
d8ce48bdc1fa5d654d9c00a9ad6ffb6006b37e82
15f8a04fd3088f4eeb0679e7f750095bfe9bf0b5677895231cf0491cc6b10796
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "15F8A04FD3088F4EEB0679E7F750095BFE9BF0B5677895231CF0491CC6B10796"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13477
Expires: Wed, 18 Jan 2023 11:29:27 GMT
Date: Wed, 18 Jan 2023 07:44:50 GMT
Connection: keep-alive
px.ads.linkedin.com/collect?v=2&fmt=js&pid=2550420&time=1674027889784&url=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB
302 Found 3.8 kB URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=2550420&time=1674027889784&url=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 0d8fce8e163aab79558c8aca8adba440
e823573946ab7de1a4f8fbfbd316c4183d5fc305
f351f089d487ee891dac741775b6b8ed6983014198fb7743aa378a9398465295
GET /collect?v=2&fmt=js&pid=2550420&time=1674027889784&url=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2550420%26time%3D1674027889784%26url%3Dhttps%253A%252F%252Fwww.offshorecompanycorp.com%252Finsight%252Fjurisdiction-update%252Fsingapore-corporate-income-tax%253Fgclid%253DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQKayHJaTZUbeQAAAYXD1naVcmmZTWQSiDsCJvRc91LLPEDZ7JNJaiCE4gLhVl6f4MjRzO0YKbI8mw; Max-Age=2592000; Expires=Fri, 17 Feb 2023 07:44:50 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKl756gZ6u_1QAAAYXD1naV0dL8KqmNO-p0YPtwD1xlxLmDRp4O5ePk2pTyba905pU5qYmo3EjreCMR73YQwg; Max-Age=2592000; Expires=Fri, 17 Feb 2023 07:44:50 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&b2a33783-6826-4324-8b83-d1edbac6c2e0"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 18-Jan-2024 07:44:50 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2412:u=1:x=1:i=1674027890:t=1674114290:v=2:sig=AQFOE63tErKSau5r5TS89FvphuMQU6gb"; Expires=Thu, 19 Jan 2023 07:44:50 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXyhP2/ISOkPCeUkfd9jQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: E0A37C3997234C37B50EA2A1E7228569 Ref B: OSL30EDGE0309 Ref C: 2023-01-18T07:44:50Z
date: Wed, 18 Jan 2023 07:44:49 GMT
content-length: 0
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=5f6ea8b4-5423-46fa-8680-f0fa628c928a&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=1e7aaf18-d453-4813-9a49-ceb6402ab613&tw_document_href=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5z56&type=javascript&version=2.3.29
200 OK 3.4 kB URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=5f6ea8b4-5423-46fa-8680-f0fa628c928a&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=1e7aaf18-d453-4813-9a49-ceb6402ab613&tw_document_href=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5z56&type=javascript&version=2.3.29
IP
Hash d78c58de416702afd1cc47f17e397567
a0706e76a8e10a1731df2fec8d3ebcf4c8b4d1d3
a7289e0955ce565005b5aeb297f110debec57fda95eb6418dc45dd0136d845d1
GET /i/adsct?bci=3&eci=2&event_id=5f6ea8b4-5423-46fa-8680-f0fa628c928a&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=1e7aaf18-d453-4813-9a49-ceb6402ab613&tw_document_href=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5z56&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:50 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_YHdzvJ1Yp/7rk/xjijwVQg=="; Max-Age=63072000; Expires=Fri, 17 Jan 2025 07:44:50 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 53cd072a7d3b3c1a
strict-transport-security: max-age=631138519
x-response-time: 104
x-connection-hash: 026da7173bf7cbbf8f06b73f9b8e9b5a8987bf858d453ec4309faac17d658631
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=e7d5ecc2-723e-4b6a-a7c4-75de4fd7676f&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=1e7aaf18-d453-4813-9a49-ceb6402ab613&tw_document_href=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o4jqo&type=javascript&version=2.3.29
200 OK 373 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=e7d5ecc2-723e-4b6a-a7c4-75de4fd7676f&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=1e7aaf18-d453-4813-9a49-ceb6402ab613&tw_document_href=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o4jqo&type=javascript&version=2.3.29
IP
File type Applesoft BASIC program data, first line number 17\012- data
Hash 65541d9c7adebeee00f268d5ad07339b
b7338ee1f8ffa5bb2ff2b4168151dc2deca5f322
52d9e707a071ab3d4e04c5418b6e95e91b18affceca4210827a5155fcc5fdfcf
GET /i/adsct?bci=3&eci=2&event_id=e7d5ecc2-723e-4b6a-a7c4-75de4fd7676f&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=1e7aaf18-d453-4813-9a49-ceb6402ab613&tw_document_href=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o4jqo&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:50 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_2oeBCUWWd9NHMZvTmnRy1Q=="; Max-Age=63072000; Expires=Fri, 17 Jan 2025 07:44:50 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 611587b3603e635c
strict-transport-security: max-age=631138519
x-response-time: 103
x-connection-hash: 026da7173bf7cbbf8f06b73f9b8e9b5a8987bf858d453ec4309faac17d658631
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1161347827977345&ev=PageView&dl=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&rl=&if=false&ts=1674027890332&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.1.1674027890331.2082152826&it=1674027889872&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1161347827977345&ev=PageView&dl=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&rl=&if=false&ts=1674027890332&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.1.1674027890331.2082152826&it=1674027889872&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1161347827977345&ev=PageView&dl=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&rl=&if=false&ts=1674027890332&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.1.1674027890331.2082152826&it=1674027889872&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 18 Jan 2023 07:44:50 GMT
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 8eb28aa9e41279e04ad39e7dfa0010a3
d8ce48bdc1fa5d654d9c00a9ad6ffb6006b37e82
15f8a04fd3088f4eeb0679e7f750095bfe9bf0b5677895231cf0491cc6b10796
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "15F8A04FD3088F4EEB0679E7F750095BFE9BF0B5677895231CF0491CC6B10796"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13477
Expires: Wed, 18 Jan 2023 11:29:27 GMT
Date: Wed, 18 Jan 2023 07:44:50 GMT
Connection: keep-alive
ct.pinterest.com/user/?tid=2613913102813&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1674027890338&dep=2%2CPAGE_LOAD
200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?tid=2613913102813&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1674027890338&dep=2%2CPAGE_LOAD
IP
File type JSON data\012- , ASCII text, with very long lines (534), with no line terminators
Hash 6e63eb6af30db692485439f6687cfd3e
8b369c1b024c90a5646b8f7d36ff73e71a949bcd
a35f431d3eec1e88e5356fd6485190f4c4213276c1e046b072bfedb4f00dab19
GET /user/?tid=2613913102813&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1674027890338&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVpXUmlaR1UyTlRNdE9EY3pZeTAwWkdReUxXRTFZakF0WlRBNFpEY3pORGMxTldKaw
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.offshorecompanycorp.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 8374557457267789
date: Wed, 18 Jan 2023 07:44:50 GMT
vary: Accept-Encoding
akamai-grn: 0.540a655f.1674027890.3d2f1212
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613913102813&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1674027890339
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613913102813&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1674027890339
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613913102813&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1674027890339 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 4087683876502793
date: Wed, 18 Jan 2023 07:44:50 GMT
akamai-grn: 0.540a655f.1674027890.3d2f1213
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
200 OK 54 kB URL HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP
File type ASCII text, with very long lines (32014)
Hash ea53ffc3c20542881a2735a62c0426d7
365e24ffd4a54e4c019a47c94204ad90a8538eb5
e4f801f6cd7462489966e441ff53795823a607656497f9d0ce8cbfc08f6c7448
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 18 Jan 2023 07:44:50 GMT
age: 26174247
x-served-by: cache-fra19156-FRA, cache-bma1648-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53889
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
200 OK 323 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 4688435949209006
date: Wed, 18 Jan 2023 07:44:50 GMT
vary: Accept-Encoding
akamai-grn: 0.540a655f.1674027890.3d2f122a
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2550420%26time%3D1674027889784%26url%3Dhttps%253A%252F%252Fwww.offshorecompanycorp.com%252Finsight%252Fjurisdiction-update%252Fsingapore-corporate-income-tax%253Fgclid%253DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB%26liSync%3Dtrue
302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2550420%26time%3D1674027889784%26url%3Dhttps%253A%252F%252Fwww.offshorecompanycorp.com%252Finsight%252Fjurisdiction-update%252Fsingapore-corporate-income-tax%253Fgclid%253DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB%26liSync%3Dtrue
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2550420%26time%3D1674027889784%26url%3Dhttps%253A%252F%252Fwww.offshorecompanycorp.com%252Finsight%252Fjurisdiction-update%252Fsingapore-corporate-income-tax%253Fgclid%253DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.offshorecompanycorp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=2550420&time=1674027889784&url=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&f12cb017-016d-4c1b-85b3-7c44a080fc0c"; Domain=.linkedin.com; Expires=Thu, 18-Jan-2024 07:44:50 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20230118074450b838fcb9-0a4b-4d59-8a18-807d3611cb9aAQEVD70nhUZhjQLUXQlsI8-cXidk2g9N"; Domain=.www.linkedin.com; Expires=Thu, 18-Jan-2024 07:44:50 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzQwMjc4OTA7MjswMjHufauskhK4+KsuPO6Zv11S0sq7kqX1TX6MX9w4rHl/Bg==; Domain=.linkedin.com; Expires=Mon, 17 Jul 2023 07:44:50 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2445:u=1:x=1:i=1674027890:t=1674114290:v=2:sig=AQGvZ6girLvc00Ev3vKVLDv909zp10qD"; Expires=Thu, 19 Jan 2023 07:44:50 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXyhP3DcM0qgclO/adGxQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B54B07E3D14045A59D494F09E278167B Ref B: OSL30EDGE0309 Ref C: 2023-01-18T07:44:50Z
date: Wed, 18 Jan 2023 07:44:50 GMT
content-length: 0
X-Firefox-Spdy: h2
vsb80.tawk.to/s/?k=63c7a372bfcd93799712fa1a&cver=0&pop=false&asver=244840&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1N2JlOWMyZDJiMDM2NDdiYTE2YjdjY2YiLCJ2aWQiOiI1N2JlOWMyZDJiMDM2NDdiYTE2YjdjY2YtMGdTbjAycEI0eXNiZWxvR0dFc29PIiwic2lkIjoiNjNjN2EzNzJiZmNkOTM3OTk3MTJmYTFhIiwiaWF0IjoxNjc0MDI3ODkwLCJleHAiOjE2NzQwMjk2OTAsImp0aSI6Ik04dW1FYjlVWF9KQnJjRFNHZEJwdSJ9.Ad-T_3ogoshgucheNYho2FBbR_FUUY4AxwULctkZKx3RxhTEY-KLWTmhz2hR30EOworG12BxKE3hd2X5nr3RVQ&EIO=3&transport=websocket&__t=ON3rdMm
101 Switching Protocols 2.3 kB URL HTTP/1.1 vsb80.tawk.to/s/?k=63c7a372bfcd93799712fa1a&cver=0&pop=false&asver=244840&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1N2JlOWMyZDJiMDM2NDdiYTE2YjdjY2YiLCJ2aWQiOiI1N2JlOWMyZDJiMDM2NDdiYTE2YjdjY2YtMGdTbjAycEI0eXNiZWxvR0dFc29PIiwic2lkIjoiNjNjN2EzNzJiZmNkOTM3OTk3MTJmYTFhIiwiaWF0IjoxNjc0MDI3ODkwLCJleHAiOjE2NzQwMjk2OTAsImp0aSI6Ik04dW1FYjlVWF9KQnJjRFNHZEJwdSJ9.Ad-T_3ogoshgucheNYho2FBbR_FUUY4AxwULctkZKx3RxhTEY-KLWTmhz2hR30EOworG12BxKE3hd2X5nr3RVQ&EIO=3&transport=websocket&__t=ON3rdMm
IP
Hash a5b05f036d8991ef25fb88905f31a084
7db2cdc735972fb4f3bf8c144693992c75a0496b
3f3808b4700efc7d262601009e935e88979b536e1da5948cb32a5bfbea8419c3
GET /s/?k=63c7a372bfcd93799712fa1a&cver=0&pop=false&asver=244840&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1N2JlOWMyZDJiMDM2NDdiYTE2YjdjY2YiLCJ2aWQiOiI1N2JlOWMyZDJiMDM2NDdiYTE2YjdjY2YtMGdTbjAycEI0eXNiZWxvR0dFc29PIiwic2lkIjoiNjNjN2EzNzJiZmNkOTM3OTk3MTJmYTFhIiwiaWF0IjoxNjc0MDI3ODkwLCJleHAiOjE2NzQwMjk2OTAsImp0aSI6Ik04dW1FYjlVWF9KQnJjRFNHZEJwdSJ9.Ad-T_3ogoshgucheNYho2FBbR_FUUY4AxwULctkZKx3RxhTEY-KLWTmhz2hR30EOworG12BxKE3hd2X5nr3RVQ&EIO=3&transport=websocket&__t=ON3rdMm HTTP/1.1
Host: vsb80.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.offshorecompanycorp.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: WY2TnimsfuDw9KnkHAf7sw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 18 Jan 2023 07:44:50 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: RWRndcPBz7UZ/dnJqgG1rDtmFrg=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 78b5b52a0a86b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
px.ads.linkedin.com/collect?v=2&fmt=js&pid=2550420&time=1674027889784&url=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&liSync=true
200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=2550420&time=1674027889784&url=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&liSync=true
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=2550420&time=1674027889784&url=https%3A%2F%2Fwww.offshorecompanycorp.com%2Finsight%2Fjurisdiction-update%2Fsingapore-corporate-income-tax%3Fgclid%3DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.offshorecompanycorp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&019464a1-1287-407f-8123-75a4a389b9a5"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 18-Jan-2024 07:44:50 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2469:u=1:x=1:i=1674027890:t=1674114290:v=2:sig=AQFmAUeP8gd0eKRkYxg9PIpv2C2vRDdG"; Expires=Thu, 19 Jan 2023 07:44:50 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXyhP3Fv36tm5meCbT4FQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 2FA5F4B36C6746F991A3142D8C8EEC13 Ref B: OSL30EDGE0309 Ref C: 2023-01-18T07:44:50Z
date: Wed, 18 Jan 2023 07:44:50 GMT
content-length: 0
X-Firefox-Spdy: h2
tawk.link/57be9c2d2b03647ba16b7ccf/var/chat_bubble/a89335f1ef7e2d66c9f016f8bcda79cd75fde15b
200 OK 54 kB URL HTTP/2 tawk.link/57be9c2d2b03647ba16b7ccf/var/chat_bubble/a89335f1ef7e2d66c9f016f8bcda79cd75fde15b
IP
Hash 7e2dbc50d960bb0e9328b7bc4a401b5c
b1ba516469af4b0b8db5cc6ba6bb31f37d1f59cf
b6dfb24566a0488ca369f24269c86a4f5565a0f7c8e45fb21f208707313a5877
GET /57be9c2d2b03647ba16b7ccf/var/chat_bubble/a89335f1ef7e2d66c9f016f8bcda79cd75fde15b HTTP/1.1
Host: tawk.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:50 GMT
content-type: application/octet-stream
x-powered-by: Express
strict-transport-security: max-age=600
cache-control: max-age=86400
cf-cache-status: HIT
age: 208861
last-modified: Sun, 15 Jan 2023 21:43:49 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fMoStkF2JTQkwYRX6qqeDNgB4DI8o6TsDhOYlSeUnNnz6SAa5NDNSY98Y4N3R2L%2FPmWruNUA9E7dvJk6al%2FSMz7HvH0wnkyHb0rNYjzD6K4nX3FkowipaR3A1U0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78b5b52b1c17b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b5e62650519dd89cec0c0950b563c96d
95062135838a0d93ea573bd8f08171b856fdabd0
507f88315fee614f0890cbcbc15479d895de46d3ac115acee3861a7346b1b6a2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "507F88315FEE614F0890CBCBC15479D895DE46D3AC115ACEE3861A7346B1B6A2"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13564
Expires: Wed, 18 Jan 2023 11:30:55 GMT
Date: Wed, 18 Jan 2023 07:44:51 GMT
Connection: keep-alive
matching.ivitrack.com/sync?realm=criteo&uid=k-RYr8agbDrEmsvPjmAPstnD3XWHAWAjCg4zJbIQ
200 OK 42 B URL HTTP/2 matching.ivitrack.com/sync?realm=criteo&uid=k-RYr8agbDrEmsvPjmAPstnD3XWHAWAjCg4zJbIQ
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /sync?realm=criteo&uid=k-RYr8agbDrEmsvPjmAPstnD3XWHAWAjCg4zJbIQ HTTP/1.1
Host: matching.ivitrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Wed, 18 Jan 2023 07:44:50 GMT
content-type: image/gif
content-length: 42
cache-control: public, max-age=86400
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: tag-manager.programmatic.svc.cluster.local:3000/*
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b5e62650519dd89cec0c0950b563c96d
95062135838a0d93ea573bd8f08171b856fdabd0
507f88315fee614f0890cbcbc15479d895de46d3ac115acee3861a7346b1b6a2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "507F88315FEE614F0890CBCBC15479D895DE46D3AC115ACEE3861A7346B1B6A2"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13564
Expires: Wed, 18 Jan 2023 11:30:55 GMT
Date: Wed, 18 Jan 2023 07:44:51 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 803357cbe4519fb86480e2350c5a339c
6fe4ef93b7c41826a71135ea926c1575b238f2a7
6d3bfc5dddd44edb5bbf29286ded57414fd7a0fbddeb27063e911f15d208c938
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 18 Jan 2023 07:44:51 GMT
Last-Modified: Wed, 18 Jan 2023 06:20:39 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1pOK1BQEDsZhe5oHQQRBnooieoZTTQXv1ioSTiSfy0qFnnIorw35dQ==
Age: 5052
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 18 Jan 2023 07:44:50 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 999020
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k--EKeuQbDrEmsvPjmAPstnD3XWHAwjfHtvAUiUA
200 OK 185 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k--EKeuQbDrEmsvPjmAPstnD3XWHAwjfHtvAUiUA
IP
File type GIF image data, version 87a, 1 x 1\012- data
Hash 2928dbfed4988ff900a5b71bc377b1dd
c0121c4706f66d9da0b6f8641555aa517e8c11c7
91dd324553ada6ebadf22405bbf3dff8c04ea24f5eb880b7a6f83110a1727a68
GET /cksync.php?cs=3&type=crt&ovsid=k--EKeuQbDrEmsvPjmAPstnD3XWHAwjfHtvAUiUA HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 185
content-type: image/gif
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA"
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-mnet-hl2: E
expires: Wed, 18 Jan 2023 07:44:51 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 07:44:51 GMT
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-mAUTtgbDrEmsvPjmAPstnD3XWHB8GP8Cus8xaQ&google_cm&google_hm=ay1tQVVUdGdiRHJFbXN2UGptQVBzdG5EM1hXSEI4R1A4Q3VzOHhhUQ
302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-mAUTtgbDrEmsvPjmAPstnD3XWHB8GP8Cus8xaQ&google_cm&google_hm=ay1tQVVUdGdiRHJFbXN2UGptQVBzdG5EM1hXSEI4R1A4Q3VzOHhhUQ
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 6d8e45a40e19ad6f5b43d9d96b87368f
a423f9f7dc39cd1ed6e9551349a80063076f0d4e
57d524c854d199df4129fdbcb14e71afe9db2bbeb87486b6b1c2da76da7a7e3c
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-mAUTtgbDrEmsvPjmAPstnD3XWHB8GP8Cus8xaQ&google_cm&google_hm=ay1tQVVUdGdiRHJFbXN2UGptQVBzdG5EM1hXSEI4R1A4Q3VzOHhhUQ HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-mAUTtgbDrEmsvPjmAPstnD3XWHB8GP8Cus8xaQ&google_cm=&google_hm=ay1tQVVUdGdiRHJFbXN2UGptQVBzdG5EM1hXSEI4R1A4Q3VzOHhhUQ&google_tc=
date: Wed, 18 Jan 2023 07:44:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 18-Jan-2023 07:59:51 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
criteo-sync.teads.tv/um?eid=80&uid=k-NR5hdwbDrEmsvPjmAPstnD3XWHBUPU57ahiLyA
200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-NR5hdwbDrEmsvPjmAPstnD3XWHBUPU57ahiLyA
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-NR5hdwbDrEmsvPjmAPstnD3XWHBUPU57ahiLyA HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Wed, 18 Jan 2023 07:44:51 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 07:44:51 GMT
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-mAUTtgbDrEmsvPjmAPstnD3XWHB8GP8Cus8xaQ&google_cm=&google_hm=ay1tQVVUdGdiRHJFbXN2UGptQVBzdG5EM1hXSEI4R1A4Q3VzOHhhUQ&google_tc=
302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-mAUTtgbDrEmsvPjmAPstnD3XWHB8GP8Cus8xaQ&google_cm=&google_hm=ay1tQVVUdGdiRHJFbXN2UGptQVBzdG5EM1hXSEI4R1A4Q3VzOHhhUQ&google_tc=
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 7a9f7cc13ab5079a52eb8d37af2e28e4
e957025152fe733be961ce1960307ae976643e31
e282283b586d7527349ee3be7b0b6019e22b7b91f19e8c6a442237c8073e6d36
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-mAUTtgbDrEmsvPjmAPstnD3XWHB8GP8Cus8xaQ&google_cm=&google_hm=ay1tQVVUdGdiRHJFbXN2UGptQVBzdG5EM1hXSEI4R1A4Q3VzOHhhUQ&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-mAUTtgbDrEmsvPjmAPstnD3XWHB8GP8Cus8xaQ&google_error=3
date: Wed, 18 Jan 2023 07:44:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Wed, 18 Jan 2023 07:44:51 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: d4188656-e3c1-4563-8055-2d39ec2cd042
Set-Cookie: uuid2=7085552499201836278; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 18-Apr-2023 07:44:51 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 868.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.sectigo.com/
200 OK 471 B IP
Hash 8796e6a2b9ae3b266a776ede62580e69
c5740324bb0c3faee35f93e1a81bcf7dd4271a89
1dfee7ac16c08adcd6320bd503d9031d6b85b74d73cd81c19b299dfbba82037b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 07:44:51 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 13:56:51 GMT
Expires: Tue, 24 Jan 2023 13:56:50 GMT
Etag: "c5740324bb0c3faee35f93e1a81bcf7dd4271a89"
Cache-Control: max-age=540118,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78b5b5333d97b4f9-OSL
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-z8MyrwbDrEmsvPjmAPstnD3XWHB66B6BiyuUxBysSu03AEP5
200 OK 491 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-z8MyrwbDrEmsvPjmAPstnD3XWHB66B6BiyuUxBysSu03AEP5
IP
Hash ec321b6703f8b3676fa58ede2f14352e
bf5a5b73fa97850f0073efe2e4986082353ca853
afe05cba24820801a724de458f658deefe647fd4666b5bdf9bbad199210a0df9
GET /usersync/push?partner=criteo&partnerId=k-z8MyrwbDrEmsvPjmAPstnD3XWHB66B6BiyuUxBysSu03AEP5 HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:51 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%22fdbd2180-9703-11ed-bf71-938c5a8074ea%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 01 Feb 2023 07:44:51 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%22fdbd2180-9703-11ed-bf71-938c5a8074ea%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 01 Feb 2023 07:44:51 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%22fdbd2180-9703-11ed-bf71-938c5a8074ea%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 01 Feb 2023 07:44:51 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%22fdbd2180-9703-11ed-bf71-938c5a8074ea%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 01 Feb 2023 07:44:51 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-z8MyrwbDrEmsvPjmAPstnD3XWHB66B6BiyuUxBysSu03AEP5%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Wed, 01 Feb 2023 07:44:51 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Wed, 18 Jan 2023 07:44:51 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: 7986617b-48e4-473f-ae32-2345b300d012
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 868.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
x.bidswitch.net/sync?dsp_id=46&user_id=k-lxL3DAbDrEmsvPjmAPstnD3XWHA3KEMYa1nwaQ&expires=30
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=46&user_id=k-lxL3DAbDrEmsvPjmAPstnD3XWHA3KEMYa1nwaQ&expires=30
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-lxL3DAbDrEmsvPjmAPstnD3XWHA3KEMYa1nwaQ&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 18 Jan 2023 07:44:51 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-lxL3DAbDrEmsvPjmAPstnD3XWHA3KEMYa1nwaQ&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=62f3b1dd-b64d-4e11-b56e-7cfe96565600; path=/; expires=Thu, 18-Jan-2024 07:44:51 GMT; domain=.bidswitch.net; samesite=none; secure
c=1674027891; path=/; expires=Thu, 18-Jan-2024 07:44:51 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1674027891; path=/; expires=Thu, 18-Jan-2024 07:44:51 GMT; domain=.bidswitch.net; samesite=none; secure
c=1674027891; path=/; expires=Thu, 18-Jan-2024 07:44:51 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-uTJs7wbDrEmsvPjmAPstnD3XWHDWcS2W4n4z7A
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-uTJs7wbDrEmsvPjmAPstnD3XWHDWcS2W4n4z7A
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-uTJs7wbDrEmsvPjmAPstnD3XWHDWcS2W4n4z7A HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 18 Jan 2023 07:44:51 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 010bf88d77d801d3288a04f44f056648
fc9e7edde6dd9c0d430cb9d7647427dae871cb21
17aa4487f9bb4de5cfe1cf722d1a474b4f4a08e5d25abbf8c1b440fecd87abb9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6213
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:51 GMT
Last-Modified: Wed, 18 Jan 2023 06:01:18 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 314 B IP
Hash de9b5748b924db99305310af9ff963d9
96381b4ec953df4445bcfae3f37ef2ea6605696e
324aef11b73f1813ebcfdf005f2c573259d85fe7048dbc103c898c27168cf2a5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5310
Cache-Control: max-age=121098
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:51 GMT
Etag: "63c6c4bf-13a"
Expires: Thu, 19 Jan 2023 17:23:09 GMT
Last-Modified: Tue, 17 Jan 2023 15:54:39 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 314
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-lxL3DAbDrEmsvPjmAPstnD3XWHA3KEMYa1nwaQ&expires=30
200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-lxL3DAbDrEmsvPjmAPstnD3XWHA3KEMYa1nwaQ&expires=30
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-lxL3DAbDrEmsvPjmAPstnD3XWHA3KEMYa1nwaQ&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:51 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-Keu2QgbDrEmsvPjmAPstnD3XWHDdL-2TvwZBdw
302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-Keu2QgbDrEmsvPjmAPstnD3XWHDdL-2TvwZBdw
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-Keu2QgbDrEmsvPjmAPstnD3XWHDdL-2TvwZBdw HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 18 Jan 2023 07:44:51 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-Keu2QgbDrEmsvPjmAPstnD3XWHDdL-2TvwZBdw&C=1
cf-ray: 78b5b533df04b51b-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y8ejc6TA3hcDrpklS1vyTwAA; Path=/; Domain=casalemedia.com; Expires=Thu, 18 Jan 2024 07:44:51 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=712; Path=/; Domain=casalemedia.com; Expires=Tue, 18 Apr 2023 07:44:51 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=712; Path=/; Domain=casalemedia.com; Expires=Tue, 18 Apr 2023 07:44:51 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iWS0b14PN7P0knXink1b2VInGw12s443WzQjnhtlICjU%2BK1OKydBFGh7BdLsBtH%2F%2Fcr5UJK2vGpqkXUDubFsn25TcCa%2BRL%2F%2FNWLkeJC%2FXD7nj%2FyOb22MKm4pic%2BIxxebo5uI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-XxkPVQbDrEmsvPjmAPstnD3XWHBGM019TTedDQ&expires=30
204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-XxkPVQbDrEmsvPjmAPstnD3XWHBGM019TTedDQ&expires=30
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-XxkPVQbDrEmsvPjmAPstnD3XWHBGM019TTedDQ&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 17c962550296893d145ef1b8078fc6d6
Content-Type: image/gif
ocsp.digicert.com/
200 OK 471 B IP
Hash 5b260ae920b0b400fbb37eec1d438563
129ba1800acd56c3b48c01a69227669563f10925
ef1862da52c8a13cae46dba868d0a9cec8458b22f9aec9176db46fce43a43f05
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3929
Cache-Control: max-age=117184
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:51 GMT
Etag: "63c6bada-1d7"
Expires: Thu, 19 Jan 2023 16:17:55 GMT
Last-Modified: Tue, 17 Jan 2023 15:12:26 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash a0f19d1a664ef8542293bc85e78a0c56
01eeb1b3648a6a86ea05574113533d80cf95ec65
8721c4080bd091a7d2fcd5ec6cd166b26c41efa83c5791ee2cd5d540ca285af9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6214
Cache-Control: max-age=118391
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:51 GMT
Etag: "63c6b6a4-1d7"
Expires: Thu, 19 Jan 2023 16:38:02 GMT
Last-Modified: Tue, 17 Jan 2023 14:54:28 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash bc03d059d02da11121a3d2a727ff5a3c
ed478ff3ca011d30241bf4a82f78c6dae9c1ba67
f9b9eddaa2143aeadec9cf1804cffdf80275eb11e44ec643682b843bd731182c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=106885
Date: Wed, 18 Jan 2023 07:44:51 GMT
Etag: "63c69c0a-1d7"
Expires: Thu, 19 Jan 2023 13:26:16 GMT
Last-Modified: Tue, 17 Jan 2023 13:00:58 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rV7J67EU8Ebrseh2ClQbAK23U9JVYbyDOFFWB-6t5Ck3Dg67Hefslg==
Age: 1518
ocsp.digicert.com/
200 OK 471 B IP
Hash 46a56cce68bfd977f6e7bfc4f3835b33
d468ba73156815a49283c91895f99c644ef1bbeb
2719eaa8df02b2bcaa8fcbb02a779357c33b986fa70f786517cca8bf330672aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3849
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:51 GMT
Last-Modified: Wed, 18 Jan 2023 06:40:42 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-JeoEMgbDrEmsvPjmAPstnD3XWHDrpE7T7D9dCw
200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-JeoEMgbDrEmsvPjmAPstnD3XWHDrpE7T7D9dCw
IP
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-JeoEMgbDrEmsvPjmAPstnD3XWHDrpE7T7D9dCw HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Wed, 18 Jan 2023 07:44:51 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=1947084558892953674; expires=Sun, 18 Feb 2024 07:44:51 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 18 Feb 2024 07:44:51 GMT; domain=smartadserver.com; path=/
csync=79:k-JeoEMgbDrEmsvPjmAPstnD3XWHDrpE7T7D9dCw; expires=Thu, 18 Jan 2024 07:44:51 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
cm.adform.net/pixel?adform_pid=15&adform_pc=k-cDOAgwbDrEmsvPjmAPstnD3XWHBfaAZYsIz02w
200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-cDOAgwbDrEmsvPjmAPstnD3XWHBfaAZYsIz02w
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-cDOAgwbDrEmsvPjmAPstnD3XWHBfaAZYsIz02w HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 07:44:51 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 04 Oct 2021 14:04:49 GMT
etag: "615b0a01-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-YakE3QbDrEmsvPjmAPstnD3XWHAQO8NUrOMK9A
302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-YakE3QbDrEmsvPjmAPstnD3XWHAQO8NUrOMK9A
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-YakE3QbDrEmsvPjmAPstnD3XWHAQO8NUrOMK9A HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 18 Jan 2023 07:44:51 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-YakE3QbDrEmsvPjmAPstnD3XWHAQO8NUrOMK9A&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBHOjx2MCEBLNHRS-5vMaAUX_2UiqYyEFEgEBAQH0yGPRYwAAAAAA_eMAAA&S=AQAAAvNvbb4-WhQE8b98ru2kOFo; Expires=Thu, 18 Jan 2024 13:44:51 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-Keu2QgbDrEmsvPjmAPstnD3XWHDdL-2TvwZBdw&C=1
200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-Keu2QgbDrEmsvPjmAPstnD3XWHDdL-2TvwZBdw&C=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-Keu2QgbDrEmsvPjmAPstnD3XWHDdL-2TvwZBdw&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:51 GMT
content-type: image/gif
content-length: 43
cf-ray: 78b5b5343f53b51b-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6XgijrAC%2F%2BQYFTYnxyiEqYv67MoHQg952e7p5MHPzDHBvuH62Lz%2BSIsf2ZjP34e%2Fk8dfvTqjp2S95Q3rcdXnf3zF%2BGkOEEaQyO0Xah0AukUXKxFNpHV7V14MsFXLUXgO7W5S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 92e45e0fb4b9a1d6e1e879d93dd20c60
f4b992e2329dbf0656fa19596d3b87fe1ad03018
55b231bc5aba92c90c22ea735581ddcba3e6ed1ae13349f4ef251c3494c22231
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=151422
Date: Wed, 18 Jan 2023 07:44:51 GMT
Etag: "63c73f35-1d7"
Expires: Fri, 20 Jan 2023 01:48:33 GMT
Last-Modified: Wed, 18 Jan 2023 00:37:09 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: CGrSWtk9b0DhYeWzPZRgoWZ_5wFUMf-a-VdejE115JaDSoI83xwn3A==
Age: 4285
eb2.3lift.com/xuid?mid=2711&xuid=k-oQMnywbDrEmsvPjmAPstnD3XWHAI6LKTsJIL8Q&dongle=013b
200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-oQMnywbDrEmsvPjmAPstnD3XWHAI6LKTsJIL8Q&dongle=013b
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-oQMnywbDrEmsvPjmAPstnD3XWHAI6LKTsJIL8Q&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:51 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
dpm.demdex.net/ibs:dpid=28645&dpuuid=
302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v045-0a4852727.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=66336131001767213903635719497773229940; Max-Age=15552000; Expires=Mon, 17 Jul 2023 07:44:51 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: obTg5cPnS7M=
Content-Length: 0
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e4d88c1d3dad44890818aea066a7e09f
d0f045067e67d50ac4af7f3dbf445dff6261ae32
7292b379e2f044207f316c292f07697a795b69c614349ce48993434a6d1a5ba2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7292B379E2F044207F316C292F07697A795B69C614349CE48993434A6D1A5BA2"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5404
Expires: Wed, 18 Jan 2023 09:14:55 GMT
Date: Wed, 18 Jan 2023 07:44:51 GMT
Connection: keep-alive
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-UxPToAbDrEmsvPjmAPstnD3XWHCXP-gv07THtA
302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-UxPToAbDrEmsvPjmAPstnD3XWHCXP-gv07THtA
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-UxPToAbDrEmsvPjmAPstnD3XWHCXP-gv07THtA HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 18 Jan 2023 07:44:51 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-UxPToAbDrEmsvPjmAPstnD3XWHCXP-gv07THtA
set-cookie: tuuid=f672b7e5-d803-46d6-8ce2-68bdaf94878e; Expires=Tue, 18 Apr 2023 07:44:51 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1674027891; Expires=Tue, 18 Apr 2023 07:44:51 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-YakE3QbDrEmsvPjmAPstnD3XWHAQO8NUrOMK9A&verify=true
204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-YakE3QbDrEmsvPjmAPstnD3XWHAQO8NUrOMK9A&verify=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-YakE3QbDrEmsvPjmAPstnD3XWHAQO8NUrOMK9A&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 18 Jan 2023 07:44:51 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBHOjx2MCEKduiyWII-6y-yP85rH8wakFEgEBAQH0yGPRYwAAAAAA_eMAAA&S=AQAAAvJNjjENBqDqt7yotOUnTl0; Expires=Thu, 18 Jan 2024 13:44:51 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
status.thawte.com/
200 OK 471 B IP
Hash 830f1190be00b973f6ef09e3d9bf6507
7dc9d36c17ed01e497dde088dfec47bcd4fe35f6
98e71bdee99fd097eb2a5717d61eef5c481c543b4f881c1aaac2bdcc945e7490
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4181
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:51 GMT
Last-Modified: Wed, 18 Jan 2023 06:35:10 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 293f45d73b83d93c7fa3c36e1202ba1b
d98618928612ebb9bc26240637c3593c91481f66
483fb179fa74faee694975da4f4251711403c6f9b53fac3672f13798023222c0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5705
Cache-Control: max-age=98807
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:51 GMT
Etag: "63c66c21-1d7"
Expires: Thu, 19 Jan 2023 11:11:38 GMT
Last-Modified: Tue, 17 Jan 2023 09:36:33 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 7d90a0017868f6b60b04c21c4665455d
08028479b1688b82aece625906e88b4a492cd49c
e29d7d417d472eac03bc0b4f7ca4c235f02e3c18192e78635e238a99af8729b9
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 18 Jan 2023 07:44:51 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 17 Jan 2023 20:59:33 GMT
Expires: Wed, 18 Jan 2023 20:59:33 GMT
ETag: "08028479b1688b82aece625906e88b4a492cd49c"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
id5-sync.com/s/966/9.gif?puid=k-AyQYQgbDrEmsvPjmAPstnD3XWHBT8thifOmkaQ
200 43 B URL HTTP/1.1 id5-sync.com/s/966/9.gif?puid=k-AyQYQgbDrEmsvPjmAPstnD3XWHBT8thifOmkaQ
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /s/966/9.gif?puid=k-AyQYQgbDrEmsvPjmAPstnD3XWHBT8thifOmkaQ HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Wed, 18-Jan-2023 07:49:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Wed, 18-Jan-2023 07:49:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Wed, 18-Jan-2023 07:49:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Wed, 18-Jan-2023 07:49:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Wed, 18-Jan-2023 07:49:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Wed, 18-Jan-2023 07:49:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Wed, 18 Jan 2023 07:44:51 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-UxPToAbDrEmsvPjmAPstnD3XWHCXP-gv07THtA
200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-UxPToAbDrEmsvPjmAPstnD3XWHCXP-gv07THtA
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-UxPToAbDrEmsvPjmAPstnD3XWHCXP-gv07THtA HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:51 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ad.yieldlab.net/m?dt_id=8664&ext_id=k-q2xuWwbDrEmsvPjmAPstnD3XWHD3RxOMVxv9Sw
204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-q2xuWwbDrEmsvPjmAPstnD3XWHD3RxOMVxv9Sw
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-q2xuWwbDrEmsvPjmAPstnD3XWHD3RxOMVxv9Sw HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Tue, 17 Jan 2023 07:44:51 GMT
Date: Wed, 18 Jan 2023 07:44:51 GMT
Connection: keep-alive
Set-Cookie: id=66f50ad0-febf-4118-b64c-46f002c35357; Path=/; Domain=prod.svc.y6b.de; Expires=Thu, 18-Jan-2024 07:44:51 GMT; Max-Age=31536000; Secure; SameSite=None
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-HX-aOQbDrEmsvPjmAPstnD3XWHDIaalb1D57tQ
200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-HX-aOQbDrEmsvPjmAPstnD3XWHDIaalb1D57tQ
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-HX-aOQbDrEmsvPjmAPstnD3XWHDIaalb1D57tQ HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 07:44:51 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-HX-aOQbDrEmsvPjmAPstnD3XWHDIaalb1D57tQ&KRTB&23144-uid:k-HX-aOQbDrEmsvPjmAPstnD3XWHDIaalb1D57tQ&KRTB&23286-uid:k-HX-aOQbDrEmsvPjmAPstnD3XWHDIaalb1D57tQ&KRTB&23287-uid:k-HX-aOQbDrEmsvPjmAPstnD3XWHDIaalb1D57tQ; domain=pubmatic.com; secure; expires=Fri, 17-Feb-2023 07:44:51 GMT; path=/
PugT=1674027891; domain=pubmatic.com; secure; expires=Fri, 17-Feb-2023 07:44:51 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v045-0cfa310b8.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: zJ7dMLFXSeE=
Content-Length: 59
Connection: keep-alive
widget.as.criteo.com/event?a=86417&v=5.12.3&p0=e%3Dce%26m%3D%255B%252523%252523Email%252520ID%252520of%252520user%252523%252523%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvl%26p%3D%255BIncorporation1%252CIncorporation10%252CIncorporation11%252CIncorporation12%252CIncorporation133%252CIncorporation14%252CIncorporation147%252CIncorporation15%252CIncorporation157%252CIncorporation16%252CIncorporation160%252CIncorporation17%252CIncorporation18%252CIncorporation19%252CIncorporation2%252CIncorporation20%252CIncorporation21%252CIncorporation22%252CIncorporation23%252CIncorporation24%252CIncorporation3%252CIncorporation4%252CIncorporation6%252CIncorporation8%252CIncorporation9%252CIncorporation96%252CIncorporation246%252CIncorporation98%255D&p3=e%3Ddis&adce=1&bundle=VXgt9l9iZmJHU2Y0N3RNQWUzQm1URzQxJTJGbXV4M21oeTFLRXJpMVBDZnY5RVFpJTJGR2Fvdjc2bUFzeUwxbEFta2g0WU1OaGF3OWNHVzAlMkZ6OUQzR0gyaSUyRkF4NDdyTzlMc2klMkZ6S0xKVTNEM3E2RHRmRnU1T29ZR21aJTJGY01mbU83YTY0SGpNNmklMkJ4VEpXTXBJUG8lMkZhSnoxNjU4JTJCcUElM0QlM0Q&tld=offshorecompanycorp.com&fu=https%253A%252F%252Fwww.offshorecompanycorp.com%252Finsight%252Fjurisdiction-update%252Fsingapore-corporate-income-tax%253Fgclid%253DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&dtycbr=8364
200 OK 3.8 kB URL HTTP/2 widget.as.criteo.com/event?a=86417&v=5.12.3&p0=e%3Dce%26m%3D%255B%252523%252523Email%252520ID%252520of%252520user%252523%252523%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvl%26p%3D%255BIncorporation1%252CIncorporation10%252CIncorporation11%252CIncorporation12%252CIncorporation133%252CIncorporation14%252CIncorporation147%252CIncorporation15%252CIncorporation157%252CIncorporation16%252CIncorporation160%252CIncorporation17%252CIncorporation18%252CIncorporation19%252CIncorporation2%252CIncorporation20%252CIncorporation21%252CIncorporation22%252CIncorporation23%252CIncorporation24%252CIncorporation3%252CIncorporation4%252CIncorporation6%252CIncorporation8%252CIncorporation9%252CIncorporation96%252CIncorporation246%252CIncorporation98%255D&p3=e%3Ddis&adce=1&bundle=VXgt9l9iZmJHU2Y0N3RNQWUzQm1URzQxJTJGbXV4M21oeTFLRXJpMVBDZnY5RVFpJTJGR2Fvdjc2bUFzeUwxbEFta2g0WU1OaGF3OWNHVzAlMkZ6OUQzR0gyaSUyRkF4NDdyTzlMc2klMkZ6S0xKVTNEM3E2RHRmRnU1T29ZR21aJTJGY01mbU83YTY0SGpNNmklMkJ4VEpXTXBJUG8lMkZhSnoxNjU4JTJCcUElM0QlM0Q&tld=offshorecompanycorp.com&fu=https%253A%252F%252Fwww.offshorecompanycorp.com%252Finsight%252Fjurisdiction-update%252Fsingapore-corporate-income-tax%253Fgclid%253DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&dtycbr=8364
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (5812)
Hash 4b1d562a03a25358a7e5f7fc3cf9a32c
69c999a9ec0a3ad8d518c17d309a2b51ba48a380
b7dbf9cea0203e53f223a4b6b166ee80cf511fd19d61cc0e45438d1677eef83b
GET /event?a=86417&v=5.12.3&p0=e%3Dce%26m%3D%255B%252523%252523Email%252520ID%252520of%252520user%252523%252523%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvl%26p%3D%255BIncorporation1%252CIncorporation10%252CIncorporation11%252CIncorporation12%252CIncorporation133%252CIncorporation14%252CIncorporation147%252CIncorporation15%252CIncorporation157%252CIncorporation16%252CIncorporation160%252CIncorporation17%252CIncorporation18%252CIncorporation19%252CIncorporation2%252CIncorporation20%252CIncorporation21%252CIncorporation22%252CIncorporation23%252CIncorporation24%252CIncorporation3%252CIncorporation4%252CIncorporation6%252CIncorporation8%252CIncorporation9%252CIncorporation96%252CIncorporation246%252CIncorporation98%255D&p3=e%3Ddis&adce=1&bundle=VXgt9l9iZmJHU2Y0N3RNQWUzQm1URzQxJTJGbXV4M21oeTFLRXJpMVBDZnY5RVFpJTJGR2Fvdjc2bUFzeUwxbEFta2g0WU1OaGF3OWNHVzAlMkZ6OUQzR0gyaSUyRkF4NDdyTzlMc2klMkZ6S0xKVTNEM3E2RHRmRnU1T29ZR21aJTJGY01mbU83YTY0SGpNNmklMkJ4VEpXTXBJUG8lMkZhSnoxNjU4JTJCcUElM0QlM0Q&tld=offshorecompanycorp.com&fu=https%253A%252F%252Fwww.offshorecompanycorp.com%252Finsight%252Fjurisdiction-update%252Fsingapore-corporate-income-tax%253Fgclid%253DCj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB&dtycbr=8364 HTTP/1.1
Host: widget.as.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.offshorecompanycorp.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:51 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 12941430
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 18 Jan 2023 07:44:51 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 515016
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
sync.outbrain.com/cookie-sync?p=criteo&uid=k-kFmSRwbDrEmsvPjmAPstnD3XWHClpbBvBBG2Kg
200 OK 0 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-kFmSRwbDrEmsvPjmAPstnD3XWHClpbBvBBG2Kg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync?p=criteo&uid=k-kFmSRwbDrEmsvPjmAPstnD3XWHClpbBvBBG2Kg HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 07:44:52 GMT
Content-Length: 0
Cache-Control: no-cache
X-TraceId: 5058e2b19e829984d3829e372e1b56d5
ocsp.sca1b.amazontrust.com/
200 OK 480 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 68fac6594e458ffc2caddd2941074e59
4e8b829a768598b94d445a8c22a940d0e0bb33b4
75c240f55cf9809dde487fffedb00faae8730a3bfaa40440ce843fd28359e05e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 18 Jan 2023 07:44:52 GMT
Last-Modified: Wed, 18 Jan 2023 07:18:59 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: G8DQNYzOm8vYQI533M2JfLCwaDlrPIEZmNUNrLcFuIjH9rjwKPcchQ==
Age: 1553
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 9cefe2174f16a9b0b45ff92b7f33460d
df3c3488d94c5310d6691dd62be1fdc3e320f613
aab2799a8fd2e028ce4ca9a26491e8f7f59275889ab581ec90571e74ae9bd7c1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 18 Jan 2023 07:44:52 GMT
Last-Modified: Wed, 18 Jan 2023 06:23:56 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NkVKo4e__eXCsrznBOHte1yrLnA8znFTlHH2f2fC7e5p0i6GuyiO5w==
Age: 4856
sync-criteo.ads.yieldmo.com/sync?id=k-zU_LAQbDrEmsvPjmAPstnD3XWHBgE43IeNkVeQ&pn_id=criteo&ext=1
200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-zU_LAQbDrEmsvPjmAPstnD3XWHBgE43IeNkVeQ&pn_id=criteo&ext=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-zU_LAQbDrEmsvPjmAPstnD3XWHBgE43IeNkVeQ&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:52 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=g39590fccc0353917649%7C1674027892108%7C0%7C; Domain=.yieldmo.com; Expires=Thu, 18-Jan-2024 07:44:52 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-zU_LAQbDrEmsvPjmAPstnD3XWHBgE43IeNkVeQ; Domain=ads.yieldmo.com; Expires=Thu, 18-Jan-2024 07:44:52 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash c9d33359f8adede9f0d60eabc6518848
ef33a045714eee400d18d4e53a1c09d35da2aad8
6083d2b7313321be344a0e4905a3722a04f31ba5db5b9466423c01e0c99b296d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 07:44:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 03:11:54 GMT
Expires: Wed, 25 Jan 2023 03:11:53 GMT
Etag: "ef33a045714eee400d18d4e53a1c09d35da2aad8"
Cache-Control: max-age=587820,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78b5b5348eecb4f9-OSL
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-NGt79gbDrEmsvPjmAPstnD3XWHBLkFFVDkZr0g
200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-NGt79gbDrEmsvPjmAPstnD3XWHBLkFFVDkZr0g
IP
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-NGt79gbDrEmsvPjmAPstnD3XWHBLkFFVDkZr0g HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=9f37e49e1c9ea247bc598e705114d558; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Wed, 18 Jan 2023 07:44:51 GMT
content-length: 49
x-envoy-upstream-service-time: 5
server: ayl-lb-fra02
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash eabb1ca4cca7ec12484e1081951b9938
727e7b1e193cf419f870ba386b256a64657684ea
be872a7d2c051e0a24f2ac039f75b49f542f77e48db0f7cdf8abc22956073d3c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3276
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 07:44:52 GMT
Last-Modified: Wed, 18 Jan 2023 06:50:17 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 18 Jan 2023 07:44:52 GMT
set-cookie: _kuid_=PU1vTv3v; Expires=Mon, 17-Jul-23 07:44:52 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n014-dub-prod.krxd.net
x-request-time: D=67 t=1674027892
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 18 Jan 2023 07:44:52 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 578858
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.entrust.net/
200 OK 1.6 kB IP
Hash 5ca32f517b1b69826fbd4094d2ae4d71
8b3ade4cafde211e6df624ca8d8c2563dec0dd4c
8af270a5d583d017bd355d5173cab2287cd2a0ebfa78d5bd70b231d78db2289d
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "8AF270A5D583D017BD355D5173CAB2287CD2A0EBFA78D5BD70B231D78DB2289D"
Last-Modified: Tue, 17 Jan 2023 20:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2006
Expires: Wed, 18 Jan 2023 08:18:18 GMT
Date: Wed, 18 Jan 2023 07:44:52 GMT
Connection: keep-alive
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:52 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: fe67b961-9703-11ed-9ed4-0000ac170317
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:51 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 537049
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/2550420/domain/offshorecompanycorp.com/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/2550420/domain/offshorecompanycorp.com/token
IP
GET /partner/2550420/domain/offshorecompanycorp.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Wed, 18 Jan 2023 06:59:16 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lneJ36Euwl8AaNSlnQjqUIR739WFUWH397VgbLW26T_pMcwb0z2cOA==
age: 2734
X-Firefox-Spdy: h2
static.criteo.net/js/ld/ld.js
200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/ld.js
IP
GET /js/ld/ld.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 07:44:48 GMT
content-type: text/javascript
last-modified: Tue, 08 Nov 2022 15:05:46 GMT
etag: W/"636a704a-a8d9"
expires: Thu, 19 Jan 2023 07:44:48 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/js/select2/select2.min.js
200 OK 0 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/js/select2/select2.min.js
IP
GET /frontend/js/select2/select2.min.js HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 14 Jan 2019 09:33:27 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 03:15:08 GMT
cache-control: max-age=86400
etag: W/"b9333a6f5edb8fdcd152f7a2fe388f52"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EFl4qhxJgM5v8WPzvDqiUED5rDrZLgc56-8EbwPrj7ICMpzEQ83vnA==
age: 20596
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/css/common-9.1.min.css
200 OK 0 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/css/common-9.1.min.css
IP
GET /frontend/css/common-9.1.min.css HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 14 Oct 2021 01:20:20 GMT
x-amz-version-id: 9r5YVFe603UEFzlvFKbGq72f8PhUNFKj
server: AmazonS3
content-encoding: gzip
date: Tue, 17 Jan 2023 10:01:01 GMT
cache-control: max-age=86400
etag: W/"bead55ff689837ea84b00522d9314b8a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yWfOr5164bLoqRmLkxerHufiua-Zk8qhIPfnc35Re0F9_G_6gsCaAw==
age: 78227
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/uploads/icon-instagram-1600681107.svg
200 OK 0 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/uploads/icon-instagram-1600681107.svg
IP
GET /uploads/icon-instagram-1600681107.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 21 Sep 2020 09:38:28 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Tue, 17 Jan 2023 15:47:56 GMT
cache-control: max-age=86400
etag: W/"4a922eece112a4b3f89ca3113383627a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GSUTJYDnumFMMz2N21btXxwgD3e3AoMrf9AL_HIzTt_ny6RXSA0eMw==
age: 57412
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/images/icon-app.svg
200 OK 0 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/images/icon-app.svg
IP
GET /frontend/images/icon-app.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Tue, 12 Oct 2021 05:04:21 GMT
x-amz-version-id: ELYx_sUbOG67UrAQRVC3BzPtS6MNeJb5
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 06:16:54 GMT
cache-control: max-age=86400
etag: W/"6f0ab1ec8b41bf2afd8835c995a4a565"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: M31U_juFYELQGFN5a6XZB7l7BkN6SHHjTxi0QqfAJ94CYUCLTI7Bog==
age: 11687
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/uploads/icon-linkedin-1600681107.svg
200 OK 0 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/uploads/icon-linkedin-1600681107.svg
IP
GET /uploads/icon-linkedin-1600681107.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 21 Sep 2020 09:38:28 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 06:16:54 GMT
cache-control: max-age=86400
etag: W/"45c2c86fc5beff8c8e9219164f8996b1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: doFRrMlQlgfc210Sl4I-V8OuNt37AkjwHSBNWDFAa5C2uSN-SvI9Wg==
age: 7922
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/uploads/logo-tiktok-1655695396.svg
200 OK 0 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/uploads/logo-tiktok-1655695396.svg
IP
GET /uploads/logo-tiktok-1655695396.svg HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 20 Jun 2022 03:23:17 GMT
x-amz-version-id: Yn0SEinyV30ZcQ3jef.x9rSh64PeCC9B
server: AmazonS3
content-encoding: gzip
date: Tue, 17 Jan 2023 07:50:07 GMT
cache-control: max-age=86400
etag: W/"239639e93d85505f64dc10b4efb7ef59"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VWAloteKi60h4T-0C0yjwzlwULivgBiyhUhkVekT9pq0zvtglBrgmQ==
age: 86081
X-Firefox-Spdy: h2
tr.snapchat.com/config/com/4c501f1a-644e-42c8-9e22-785362012977.js
200 OK 0 B URL HTTP/2 tr.snapchat.com/config/com/4c501f1a-644e-42c8-9e22-785362012977.js
IP
GET /config/com/4c501f1a-644e-42c8-9e22-785362012977.js HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:49 GMT
access-control-allow-origin: https://www.offshorecompanycorp.com
content-type: application/javascript
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-vendors.js
200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-vendors.js
IP
GET /_s/v4/app/63b77dcd282/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:48 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"70dac54eca3bb2143032bc4db3237623"
age: 679015
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b5b520dca00b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-tzWFsAbDrEmsvPjmAPstnD3XWHBILscKRj8ibw
200 OK 0 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-tzWFsAbDrEmsvPjmAPstnD3XWHBILscKRj8ibw
IP
GET /sync?UICR=k-tzWFsAbDrEmsvPjmAPstnD3XWHBILscKRj8ibw HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:52 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-gqbbhQbDrEmsvPjmAPstnD3XWHBkDuwk4qLU7A
200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-gqbbhQbDrEmsvPjmAPstnD3XWHBkDuwk4qLU7A
IP
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-gqbbhQbDrEmsvPjmAPstnD3XWHBkDuwk4qLU7A HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 07:44:51 GMT
x-fastly-to-nlb-rtt: 22641
access-control-allow-credentials: true
X-Firefox-Spdy: h2
dusyzh85wmzqh.cloudfront.net/frontend/js/spelling-mistake-1.0.min.js
200 OK 0 B URL HTTP/2 dusyzh85wmzqh.cloudfront.net/frontend/js/spelling-mistake-1.0.min.js
IP
GET /frontend/js/spelling-mistake-1.0.min.js HTTP/1.1
Host: dusyzh85wmzqh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 08 Jan 2021 03:19:07 GMT
x-amz-version-id: MpkOE6Z6uAuojVgZ5A4Yp4WmXPQr3MyD
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 06:16:54 GMT
cache-control: max-age=86400
etag: W/"ae76d9274a9161177a5ccb9024cf7b1d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: U_CbmHY312GM_Vq2MlZ0RUx6zYH3Tot3zQqEh8QgojO5arPfDMRBYg==
age: 10268
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-runtime.js
200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-runtime.js
IP
GET /_s/v4/app/63b77dcd282/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:48 GMT
content-type: application/javascript
age: 5271
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"de21d01e9f8b6cc35ea67267d0ba80ec"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b5b520dcaa0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dnacdn.net/dna
200 OK 0 B IP
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=N1dyyl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czYlMkZlbWxVNHVHVHJDMEozN0hQekhhSExPY3NRMnI5RHk5cGdaazhXMzhySA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:48 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=MT1aWV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czYlMkZlbWxVNHVHVHJDMEozN0hQekhhRlk2MnlnMHRuciUyQkV6SU92czhhJTJCc1Q; expires=Mon, 12 Feb 2024 07:44:49 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 392091
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:48 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 103797
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-mAUTtgbDrEmsvPjmAPstnD3XWHB8GP8Cus8xaQ&google_error=3
200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-mAUTtgbDrEmsvPjmAPstnD3XWHB8GP8Cus8xaQ&google_error=3
IP
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-mAUTtgbDrEmsvPjmAPstnD3XWHB8GP8Cus8xaQ&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:51 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 439196
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
profit-guru.co/7ypckbcC
302 Found 0 B IP
GET /7ypckbcC HTTP/1.1
Host: profit-guru.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Wed, 18 Jan 2023 07:44:46 GMT
content-type: text/html; charset=UTF-8
location: https://www.offshorecompanycorp.com/insight/jurisdiction-update/singapore-corporate-income-tax?gclid=Cj0KCQiA5NSdBhDfARIsALzs2EB-WxcD1g_hvUFP0a2vg-BTsy8SuV5JfKH884jMlyGtA9LWE0uwizcaAvicEALw_wcB
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _subid=s8hnpa28lm;Expires=Saturday, 18-Feb-2023 07:44:46 GMT;Max-Age=2678400;Path=/
e70e1=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjM0NlwiOjE2NzQwMjc4ODZ9LFwiY2FtcGFpZ25zXCI6e1wiMTE3XCI6MTY3NDAyNzg4Nn0sXCJ0aW1lXCI6MTY3NDAyNzg4Nn0ifQ.kUuuDUQYaydLRd6wkKO0RCoyR_EfLYthS5gUojr8lxQ;Expires=Wednesday, 05-Feb-2076 15:29:32 GMT;Max-Age=1674114286;Path=/
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cKbdf092aG8utuaR5HDvVPk9w%2FUce35T2eMtM3CwzxoFkZSpgpwzadhGYIdN819WmJWF0FHflJgR3PAV%2FSB5OYdOvV36tKzFHhbfydZlAL7rX5LQj8daPKc3VMkpY%2FnRAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78b5b511aaf8b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-common.js
200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-common.js
IP
GET /_s/v4/app/63b77dcd282/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.offshorecompanycorp.com
Connection: keep-alive
Referer: https://www.offshorecompanycorp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 07:44:48 GMT
content-type: application/javascript
age: 5271
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"385105148a50079bafff97e9c9476109"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78b5b520dca10b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
188.114.97.1
151.101.193.229
104.110.10.32
93.184.220.29
35.157.17.37
23.43.133.70
54.194.137.201
104.16.31.75
37.157.5.142
141.226.228.48
182.161.74.16
185.255.84.152