Report - l.instagram.com/?u=http%3A%2F%2Fngl.link%2F_sabri_c&e=ATPdEYjdpwTlJaJ8srRIXStFVGrF2O3plda3DpE5tpl1uLS-_GgknuTlTlpt9tr

Report Overview

Submitted URL
l.instagram.com/?u=http%3A%2F%2Fngl.link%2F_sabri_c&e=ATPdEYjdpwTlJaJ8srRIXStFVGrF2O3plda3DpE5tpl1uLS-_GgknuTlTlpt9tr_SvkIycWtcXyATu4a&s=1
IP
157.240.200.63
ASN
#32934 FACEBOOK
Submitted
2022-09-19 16:13:09
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.35
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	4.9 kB	142.250.74.3
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	780 B	36 kB	142.250.74.163
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	696 B	555 B	216.239.34.36
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	987 B	2.2 kB	93.184.220.29
ngl.link	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.6 kB	14 kB	104.22.78.252
firebaseinstallations.googleapis.com	529	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	1.7 kB	216.58.207.234
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	376 B	66 kB	142.250.74.72
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	326 B	729 B	23.36.76.226
l.instagram.com	9191	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	941 B	2.9 kB	157.240.200.63
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	44.240.140.78
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	56 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.5 kB	23.36.77.32
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	372 B	32 kB	142.250.74.138
firebase.googleapis.com	4897	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	1.5 kB	142.250.74.138

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	l.instagram.com/?u=http%3A%2F%2Fngl.link%2F_sabri_c&e=ATPdEYjdpwTlJaJ8srRIXStFVGrF2O3plda3DpE5tpl1uLS-_GgknuTlTlpt9tr_SvkIycWtcXyATu4a&s=1	57 B	2023-03-07	2023-03-07
Pretty URL l.instagram.com/?u=http%3A%2F%2Fngl.link%2F_sabri_c&e=ATPdEYjdpwTlJaJ8srRIXStFVGrF2O3plda3DpE5tpl1uLS-_GgknuTlTlpt9tr_SvkIycWtcXyATu4a&s=1 IP 157.240.200.63 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:17:30 Last Seen2023-03-07 21:17:30 Times Seen1 Hash 6b54256f27ed9caa07c2c838914cd80d 559ca71b41753febc17181b6c87e33aca61a1183 b67a4f07616b1460a3f3884a37de747a704356bc2fdfd805925a2f990e3e3b0b Loading...

	ngl.link/_sabri_c	892 B	2023-03-07	2023-03-07
Pretty URL ngl.link/_sabri_c IP 104.22.78.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:17:30 Last Seen2023-03-07 21:17:30 Times Seen1 Hash 24336d1f11cbcde0a03bbb9591223152 79446710cfaac87cda220daa29b4aa40b0b02b80 733a972fe729c5546eeff9c802f643555179deaa29b3d8c4267af1a167cca579 Loading...

	www.gstatic.com/firebasejs/9.6.1/firebase-app.js	51 kB	2023-03-07	2023-09-16
Pretty URL www.gstatic.com/firebasejs/9.6.1/firebase-app.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:17:30 Last Seen2023-09-16 23:11:50 Times Seen5 Hash 450364cc817e2a2c22fbde4c172a40c6 6b3a2d4ef3df92b5c6fea136426a523d0266f782 7bbe7684eb6a67961ba3b5c9425ccadd5fedcb1902cdb472be693576abed78b8 Loading...

	www.gstatic.com/firebasejs/9.6.1/firebase-analytics.js	107 kB	2023-03-07	2023-09-16
Pretty URL www.gstatic.com/firebasejs/9.6.1/firebase-analytics.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:17:30 Last Seen2023-09-16 23:11:50 Times Seen5 Hash 3850d5881e33d2c23b715470130da7d1 bb00fac19439f933375c17f7581830a8b1fc84fa cdf47d917624ac8cb0feaf89d010753fa26340ef309e4cc487db96c692346ac6 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js	90 kB	2023-03-07	2024-05-10
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-05-10 15:23:54 Times Seen269826 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	www.googletagmanager.com/gtag/js?l=dataLayer&id=G-5DV1ZR5ZHG	176 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?l=dataLayer&id=G-5DV1ZR5ZHG IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:17:30 Last Seen2023-03-07 21:17:30 Times Seen1 Hash 16626d76ab99d2258287901410e20bd0 e06d3695030ff494bf96fb3822f715e352cef79a 290badca4033111a4e0c726a5184b1f366ed796c06ad65dbe885b8fe39053db6 Loading...

HTTP Transactions (46)

	URL	IP	Response	Size
	firefox.settings.services.mozilla.com/v1/	143.204.55.35	200 OK	939 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/ IP 143.204.55.35:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash b593eb39329cfe060d55be5e4a5405e2 78e46c1028e9f94f8569303ad2d90d7df13a059a 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Mon, 19 Sep 2022 16:12:43 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: m-3dxIC2udL8ihisDhN9QTLm6egdeqQFC3LFRrUTPyQmH2jcM1TibA== Age: 15

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 861cfa99de956423d917ed0ddbea4b9c ad65dbc394b48b04a45c205f56af296c8d008db4 5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9" Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5841 Expires: Mon, 19 Sep 2022 17:50:19 GMT Date: Mon, 19 Sep 2022 16:12:58 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain	143.204.55.35	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain IP 143.204.55.35:0 ASN #16509 AMAZON-02 File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 6113f8408c59aebe188d6af273b90743 7398873bf00f99944eaa77ad3ebc0d43c23dba6b b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Sat, 10 Sep 2022 18:47:45 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Mon, 19 Sep 2022 04:35:14 GMT etag: "6113f8408c59aebe188d6af273b90743" x-cache: Hit from cloudfront via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: cg3d6QAMbfYl60yNj8O6NhpAb-enkY3m7d8eOrXw2fEVtp8bFhOaMQ== age: 41865 X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 03e95d6ac9bb3e6ef6e1dfe2a026fbf3 4e978362bd5c83f5d155ad5f8f83ca309c908ecc fc7c31e926857965e62a0e62402e2fb1a26de1f6b13a370aea6983e31bfc7275 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5878 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Mon, 19 Sep 2022 16:12:58 GMT Last-Modified: Mon, 19 Sep 2022 14:35:00 GMT Server: ECS (ska/F706) X-Cache: HIT Content-Length: 471`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Mon, 19 Sep 2022 16:12:58 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ngl.link/_sabri_c	104.22.78.252	301 Moved Permanently	0 B
URL HTTP/1.1 ngl.link/_sabri_c IP 104.22.78.252:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /_sabri_c HTTP/1.1 Host: ngl.link User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: https://l.instagram.com/ Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Date: Mon, 19 Sep 2022 16:12:59 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Mon, 19 Sep 2022 17:12:59 GMT Location: https://ngl.link/_sabri_c Vary: Accept-Encoding Server: cloudflare CF-RAY: 74d39b250b16f146-ARN`

	e1.o.lencr.org/	23.36.76.226	200 OK	345 B
URL HTTP/1.1 e1.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 345 B (345 bytes) Hash 267e62a210d3229846237f794e1da271 07d8a3e306db7bc034ff5963f3227153a36bd247 d36ebe19ec3d43c0521bb5b02b3e9e3dec7534de5d92fc1c6668747c993df106 HTTP Headers `POST / HTTP/1.1 Host: e1.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 345 ETag: "D36EBE19EC3D43C0521BB5B02B3E9E3DEC7534DE5D92FC1C6668747C993DF106" Last-Modified: Sun, 18 Sep 2022 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19920 Expires: Mon, 19 Sep 2022 21:44:59 GMT Date: Mon, 19 Sep 2022 16:12:59 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	143.204.55.35	200 OK	329 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 143.204.55.35:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Mon, 19 Sep 2022 16:03:22 GMT Cache-Control: max-age=3600 Expires: Mon, 19 Sep 2022 16:06:31 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: EyymfMeNMKV-xImgzUoi1CXDbSJMJ2Z49slH37BZ9TyF5gG02qewTA== Age: 577

	l.instagram.com/favicon.ico	157.240.200.63	302 Found	0 B
URL HTTP/2 l.instagram.com/favicon.ico IP 157.240.200.63:0 ASN #32934 FACEBOOK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: l.instagram.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://l.instagram.com/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 302 Found location: https://www.instagram.com/ content-type: text/html; charset="utf-8" x-fb-debug: OsMDiXEfaKJbCmHQHmUpBcdxYmNSSdoyY5469qJarIW3m2o29zo+/egqPgzch2R5IkWDKMFvxUfCxAin9TJ/fA== content-length: 0 date: Mon, 19 Sep 2022 16:12:59 GMT priority: u=3,i x-fb-trip-id: 1679558926 X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 304e32da2de8d54cb6ab4cdcb506838a 5dbb0757c1d7c91f12f7eb28de33ebbe3b9e2bd1 3324a1da999fd289510eed54bf23560597c76a6bd6550b95f695885130c67944 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3207 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Mon, 19 Sep 2022 16:12:59 GMT Last-Modified: Mon, 19 Sep 2022 15:19:32 GMT Server: ECS (ska/F706) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 5c817aa82ca8ed4a4257fd1e1628b423 7905c62b6bbc582860c07b75eddae371a4b8d02b dce1783ecfe50c83d30878b48d60e1cf3fe42a3fa4090fb5d318194de73e53d6 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2714 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Mon, 19 Sep 2022 16:12:59 GMT Last-Modified: Mon, 19 Sep 2022 15:27:45 GMT Server: ECS (ska/F706) X-Cache: HIT Content-Length: 471`

	ngl.link/stylesheets/normalize.css	172.67.10.95	200 OK	1.7 kB
URL HTTP/2 ngl.link/stylesheets/normalize.css IP 172.67.10.95:0 ASN #13335 CLOUDFLARENET File type ASCII text Size 1.7 kB (1737 bytes) Hash 500c1489fc59e3cd2ddb6bd8951ffa5e 30aa437dd7c5a799e8f0fc4a5ec9e89bf8b0667d fb5e5490c690f08fb6399c76828fae42eeb6195646961666ab1a98911113012d HTTP Headers `GET /stylesheets/normalize.css HTTP/1.1 Host: ngl.link User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ngl.link/_sabri_c Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Mon, 19 Sep 2022 16:12:59 GMT content-type: text/css; charset=utf-8 content-length: 1737 cache-control: max-age=14400 content-encoding: gzip etag: "fb5e5490c690f08fb6399c76828fae42eeb6195646961666ab1a98911113012d" last-modified: Thu, 01 Sep 2022 19:29:34 GMT strict-transport-security: max-age=31556926 x-served-by: cache-bma1682-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1662060741.664720,VS0,VE1 vary: x-fh-requested-host, accept-encoding cf-cache-status: HIT age: 1469 accept-ranges: bytes server: cloudflare cf-ray: 74d39b280a4cfac8-OSL X-Firefox-Spdy: h2

	ngl.link/stylesheets/style.css?v=4	172.67.10.95	200 OK	1.5 kB
URL HTTP/2 ngl.link/stylesheets/style.css?v=4 IP 172.67.10.95:0 ASN #13335 CLOUDFLARENET File type assembler source, ASCII text Size 1.5 kB (1479 bytes) Hash 79259cd4453717fd6148becf72650c23 f7151f888caf41d6e8c0a4fb6071794baf6fa8a0 bdc7d63dfc0e39204d7cf77ba9f4c8cde0a6cc9301294288f0361bec7ef60003 HTTP Headers `GET /stylesheets/style.css?v=4 HTTP/1.1 Host: ngl.link User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ngl.link/_sabri_c Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Mon, 19 Sep 2022 16:12:59 GMT content-type: text/css; charset=utf-8 content-length: 1479 cache-control: max-age=14400 content-encoding: gzip etag: "bdc7d63dfc0e39204d7cf77ba9f4c8cde0a6cc9301294288f0361bec7ef60003" last-modified: Thu, 01 Sep 2022 19:29:34 GMT strict-transport-security: max-age=31556926 x-served-by: cache-bma1669-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1662060741.673105,VS0,VE1 vary: x-fh-requested-host, accept-encoding cf-cache-status: HIT age: 1469 accept-ranges: bytes server: cloudflare cf-ray: 74d39b280a4dfac8-OSL X-Firefox-Spdy: h2

	ngl.link/scripts/main.js?v=2	172.67.10.95	200 OK	3.1 kB
URL HTTP/2 ngl.link/scripts/main.js?v=2 IP 172.67.10.95:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text Size 3.1 kB (3112 bytes) Hash 43729f356017d26b9100d83b2bb336d1 271292adabea47c1190f176ba4f2d5c2b53b23ca d7e7ad7ba0820f35901572b791f6095d9669c79f0003a4bc594f3628189a9e64 HTTP Headers `GET /scripts/main.js?v=2 HTTP/1.1 Host: ngl.link User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ngl.link/_sabri_c Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Mon, 19 Sep 2022 16:12:59 GMT content-type: text/javascript; charset=utf-8 content-length: 3112 cache-control: max-age=14400 content-encoding: gzip etag: "d7e7ad7ba0820f35901572b791f6095d9669c79f0003a4bc594f3628189a9e64" last-modified: Thu, 01 Sep 2022 19:29:34 GMT strict-transport-security: max-age=31556926 x-served-by: cache-bma1652-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1662060741.684752,VS0,VE1 vary: x-fh-requested-host, accept-encoding cf-cache-status: HIT age: 1469 accept-ranges: bytes server: cloudflare cf-ray: 74d39b281a53fac8-OSL X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash a9323cf0781cad0d5ac23f0c81c105b1 772d0218be53da9f875bb96a287c904976c296da 5c808b03cd8dd26275f12a850d8a36b467246c1461ea65a4c717acb04f2ca722 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 19 Sep 2022 16:12:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash e34f594c2e3b9b6a81e4ae9fef80f363 b7f65f5fb0df328d3c863af6c9351923205645f2 bcedda132b602d90a62a5fbe07e7c37f69cce319fb4b84e1bed40b1200e9898b HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 19 Sep 2022 16:12:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 4f5180e6651455bc8443945fb5b6860c 01457b8648200c9d274b2790b95274b1dc855aaf 39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 19 Sep 2022 16:12:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.gstatic.com/firebasejs/9.6.1/firebase-app.js	142.250.74.163	200 OK	11 kB
URL HTTP/2 www.gstatic.com/firebasejs/9.6.1/firebase-app.js IP 142.250.74.163:0 ASN #15169 GOOGLE File type C++ source, ASCII text, with CRLF, LF line terminators Size 11 kB (10807 bytes) Hash 00eeb99a616fcd16e98cbffa86111e3c 70c4a29f345e23eebf24cd78cae4c477cbbeba1e 3a3aa8f74706abcaa5352adee6351860820818b90b9f675c81073e048292cd0f HTTP Headers `GET /firebasejs/9.6.1/firebase-app.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://ngl.link Connection: keep-alive Referer: https://ngl.link/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js" report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} content-length: 10807 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 19 Sep 2022 04:45:24 GMT expires: Tue, 19 Sep 2023 04:45:24 GMT cache-control: public, max-age=31536000 age: 41255 last-modified: Thu, 09 Dec 2021 21:53:39 GMT content-type: text/javascript; charset=UTF-8 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	www.gstatic.com/firebasejs/9.6.1/firebase-analytics.js	142.250.74.163	200 OK	23 kB
URL HTTP/2 www.gstatic.com/firebasejs/9.6.1/firebase-analytics.js IP 142.250.74.163:0 ASN #15169 GOOGLE File type C++ source text\012- Java source, ASCII text, with CRLF, LF line terminators Size 23 kB (22853 bytes) Hash 275de6667fe6e2446edb8a9fafefdc65 c52ce6ef95b73587895a8442fd47592e8ff5dd3b 3549c4b782078549cf6b27515d4c20caa49f049e0cd083d62b7edf04700df3fb HTTP Headers `GET /firebasejs/9.6.1/firebase-analytics.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://ngl.link Connection: keep-alive Referer: https://ngl.link/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js" report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} content-length: 22853 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sun, 18 Sep 2022 10:42:17 GMT expires: Mon, 18 Sep 2023 10:42:17 GMT cache-control: public, max-age=31536000 age: 106242 last-modified: Thu, 09 Dec 2021 21:53:42 GMT content-type: text/javascript; charset=UTF-8 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js	142.250.74.138	200 OK	31 kB
URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 142.250.74.138:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (65447) Size 31 kB (31017 bytes) Hash 7808e0e4b7a714230373852158500533 4a79d18722a68a2f38d52e2d3a11b550bdd30b3c 8ba5796bee6a065b8b31895e7e8d59ba564cfd36d2ce056e327588e67736f054 HTTP Headers `GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ngl.link/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 31017 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 19 Sep 2022 09:42:03 GMT expires: Tue, 19 Sep 2023 09:42:03 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 age: 23456 last-modified: Wed, 10 Mar 2021 14:28:09 GMT content-type: text/javascript; charset=UTF-8 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash a9323cf0781cad0d5ac23f0c81c105b1 772d0218be53da9f875bb96a287c904976c296da 5c808b03cd8dd26275f12a850d8a36b467246c1461ea65a4c717acb04f2ca722 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 19 Sep 2022 16:12:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash eaa8b4aa123f9dd7237c5c51d2f848d9 1082f5f6ef7229ec76f94f3d236f273b26294563 d1ad33dae2fcab5c7d66875f0e7a01cc30e0b3a031606917fa5448c54f84e20d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 19 Sep 2022 16:12:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ngl.link/images/top-left-corner.svg	172.67.10.95	200 OK	174 B
URL HTTP/2 ngl.link/images/top-left-corner.svg IP 172.67.10.95:0 ASN #13335 CLOUDFLARENET File type SVG Scalable Vector Graphics image\012- , ASCII text Size 174 B (174 bytes) Hash 3ace6202149b3c7af96414bc19350d9b 26e6ed1aead2087d11f5197230fc549e2c77b85c 35796a31e03302b46418a4e3a1520f23e6fd14ecb398f5fd58d9bf7daf149f9c HTTP Headers `GET /images/top-left-corner.svg HTTP/1.1 Host: ngl.link User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ngl.link/stylesheets/style.css?v=4 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Mon, 19 Sep 2022 16:12:59 GMT content-type: image/svg+xml content-length: 174 cache-control: max-age=14400 content-encoding: gzip etag: "35796a31e03302b46418a4e3a1520f23e6fd14ecb398f5fd58d9bf7daf149f9c" last-modified: Thu, 01 Sep 2022 19:29:34 GMT strict-transport-security: max-age=31556926 x-served-by: cache-bma1633-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1662060742.252379,VS0,VE1 vary: x-fh-requested-host, accept-encoding cf-cache-status: HIT age: 1469 accept-ranges: bytes server: cloudflare cf-ray: 74d39b290ae7fac8-OSL X-Firefox-Spdy: h2

	ngl.link/images/top-right-corner.svg	172.67.10.95	200 OK	173 B
URL HTTP/2 ngl.link/images/top-right-corner.svg IP 172.67.10.95:0 ASN #13335 CLOUDFLARENET File type SVG Scalable Vector Graphics image\012- , ASCII text Size 173 B (173 bytes) Hash 9fa30f79a84cb076eaaa9f8cf68a1807 26d54944713ee8fe042191d3c703e0955f448840 63f6106e6deecc4f9966743d912ca543f2ec93c401d9b219da094e460435853b HTTP Headers `GET /images/top-right-corner.svg HTTP/1.1 Host: ngl.link User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ngl.link/stylesheets/style.css?v=4 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Mon, 19 Sep 2022 16:12:59 GMT content-type: image/svg+xml content-length: 173 cache-control: max-age=14400 content-encoding: gzip etag: "63f6106e6deecc4f9966743d912ca543f2ec93c401d9b219da094e460435853b" last-modified: Thu, 01 Sep 2022 19:29:34 GMT strict-transport-security: max-age=31556926 x-served-by: cache-bma1643-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1662060742.253343,VS0,VE1 vary: x-fh-requested-host, accept-encoding cf-cache-status: HIT age: 1469 accept-ranges: bytes server: cloudflare cf-ray: 74d39b290ae6fac8-OSL X-Firefox-Spdy: h2

	ngl.link/images/profilePlaceholder.png	172.67.10.95	200 OK	2.2 kB
URL HTTP/2 ngl.link/images/profilePlaceholder.png IP 172.67.10.95:0 ASN #13335 CLOUDFLARENET File type PNG image data, 70 x 69, 8-bit/color RGBA, non-interlaced\012- data Size 2.2 kB (2184 bytes) Hash a2abe9515d525cd71eda6aa8ae61d7f1 ed4028c4cb84957da5379afcfe1bd8a99fb9f545 d2e38d23ec9f6fa0a2b8979ed3ca1fc36679f5d12981a7e22053b7bb2c84e47a HTTP Headers `GET /images/profilePlaceholder.png HTTP/1.1 Host: ngl.link User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ngl.link/stylesheets/style.css?v=4 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Mon, 19 Sep 2022 16:12:59 GMT content-type: image/png content-length: 2184 cache-control: max-age=14400 etag: "8ab6a311021074047e138394f24c1bc0713304657511800fad512f0e00db4e0c" last-modified: Thu, 01 Sep 2022 19:29:34 GMT strict-transport-security: max-age=31556926 x-served-by: cache-bma1635-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1662060742.253828,VS0,VE1 vary: x-fh-requested-host, accept-encoding cf-cache-status: HIT age: 1469 accept-ranges: bytes server: cloudflare cf-ray: 74d39b290ae5fac8-OSL X-Firefox-Spdy: h2

	push.services.mozilla.com/	44.240.140.78	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 44.240.140.78:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: foxE03+4pQw308WVYv9IWw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: m1sQ6eu+RBxk5oaZJDDfVBqejiU=`

	firebase.googleapis.com/v1alpha/projects/-/apps/1:214597529567:web:d49e8aeef77b9e0a039e6a/webConfig	142.250.74.138	200 OK	0 B
URL HTTP/2 firebase.googleapis.com/v1alpha/projects/-/apps/1:214597529567:web:d49e8aeef77b9e0a039e6a/webConfig IP 142.250.74.138:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /v1alpha/projects/-/apps/1:214597529567:web:d49e8aeef77b9e0a039e6a/webConfig HTTP/1.1 Host: firebase.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: x-goog-api-key Referer: https://ngl.link/ Origin: https://ngl.link Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://ngl.link vary: origin, referer, x-origin access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT access-control-allow-headers: x-goog-api-key access-control-max-age: 3600 date: Mon, 19 Sep 2022 16:12:59 GMT content-type: text/html server: ESF content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	firebase.googleapis.com/v1alpha/projects/-/apps/1:214597529567:web:d49e8aeef77b9e0a039e6a/webConfig	142.250.74.138	200 OK	242 B
URL HTTP/2 firebase.googleapis.com/v1alpha/projects/-/apps/1:214597529567:web:d49e8aeef77b9e0a039e6a/webConfig IP 142.250.74.138:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text Size 242 B (242 bytes) Hash 9bf8eb2beb7a5bd24d553ceb67b56405 f603d88091ae95ebf7392bc499bdb045f1fa4e53 af0c50534a1404e77389c4eeb977d7a0f2b51d22dbd96a2fbf4e91253e4340a9 HTTP Headers GET /v1alpha/projects/-/apps/1:214597529567:web:d49e8aeef77b9e0a039e6a/webConfig HTTP/1.1 Host: firebase.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://ngl.link/ x-goog-api-key: AIzaSyCmL3X8pQOHhtXMIFTxJsO7KHQ2nDr_G6w Origin: https://ngl.link Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK content-type: application/json; charset=UTF-8 vary: Origin, X-Origin, Referer content-encoding: gzip date: Mon, 19 Sep 2022 16:12:59 GMT server: ESF cache-control: private content-length: 242 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff access-control-allow-origin: https://ngl.link access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	firebaseinstallations.googleapis.com/v1/projects/ask-fun-d10f0/installations	216.58.207.234	200 OK	0 B
URL HTTP/2 firebaseinstallations.googleapis.com/v1/projects/ask-fun-d10f0/installations IP 216.58.207.234:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /v1/projects/ask-fun-d10f0/installations HTTP/1.1 Host: firebaseinstallations.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,x-goog-api-key Referer: https://ngl.link/ Origin: https://ngl.link Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://ngl.link vary: origin, referer, x-origin access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT access-control-allow-headers: content-type,x-goog-api-key access-control-max-age: 3600 date: Mon, 19 Sep 2022 16:12:59 GMT content-type: text/html server: ESF content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 45f95aa258ab932ac2f8a33ff7944ffe 8f52b66e897dab7cb160d481886805ea216f407f de4fd2aaa566b601e82c38806ec8ea84110b1d63f15efe48186f5bcf70847488 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 19 Sep 2022 16:12:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtag/js?l=dataLayer&id=G-5DV1ZR5ZHG	142.250.74.72	200 OK	65 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?l=dataLayer&id=G-5DV1ZR5ZHG IP 142.250.74.72:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (2996) Size 65 kB (64899 bytes) Hash 4c18c7267768ca3940bac284280d4714 c693e94b075177152599e685712af65323fe1013 53db5fa95d9834862fb3766ce536041c4c4b4a87bce5301aaaff27c1829e249f HTTP Headers `GET /gtag/js?l=dataLayer&id=G-5DV1ZR5ZHG HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ngl.link/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Mon, 19 Sep 2022 16:13:00 GMT expires: Mon, 19 Sep 2022 16:13:00 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 64899 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 45f95aa258ab932ac2f8a33ff7944ffe 8f52b66e897dab7cb160d481886805ea216f407f de4fd2aaa566b601e82c38806ec8ea84110b1d63f15efe48186f5bcf70847488 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 19 Sep 2022 16:13:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	firebaseinstallations.googleapis.com/v1/projects/ask-fun-d10f0/installations	216.58.207.234	200 OK	489 B
URL HTTP/2 firebaseinstallations.googleapis.com/v1/projects/ask-fun-d10f0/installations IP 216.58.207.234:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (330) Size 489 B (489 bytes) Hash 409df0c711eb54f7b34bce973da62bc8 9260d874079b7613611572603b97977858620214 ab7c106e91580bb4cafe5eabd93a865b317b5d1e05bd9c6f04e340d3a46eafb2 HTTP Headers POST /v1/projects/ask-fun-d10f0/installations HTTP/1.1 Host: firebaseinstallations.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://ngl.link/ content-type: application/json x-goog-api-key: AIzaSyCmL3X8pQOHhtXMIFTxJsO7KHQ2nDr_G6w Origin: https://ngl.link Content-Length: 130 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK content-type: application/json; charset=UTF-8 vary: Origin, X-Origin, Referer content-encoding: gzip date: Mon, 19 Sep 2022 16:13:00 GMT server: ESF cache-control: private content-length: 489 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff access-control-allow-origin: https://ngl.link access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	region1.google-analytics.com/g/collect?v=2&tid=G-5DV1ZR5ZHG&gtm=2oe9e0&_p=533921510&_fid=egKGainyKrNqzqt6yEdpJu&cid=537468986.1663603961&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663603960&sct=1&seg=0&dl=https%3A%2F%2Fngl.link%2F_sabri_c&dr=https%3A%2F%2Fl.instagram.com%2F&dt=&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.origin=firebase	216.239.34.36	204 No Content	0 B
URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-5DV1ZR5ZHG&gtm=2oe9e0&_p=533921510&_fid=egKGainyKrNqzqt6yEdpJu&cid=537468986.1663603961&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663603960&sct=1&seg=0&dl=https%3A%2F%2Fngl.link%2F_sabri_c&dr=https%3A%2F%2Fl.instagram.com%2F&dt=&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.origin=firebase IP 216.239.34.36:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-5DV1ZR5ZHG&gtm=2oe9e0&_p=533921510&_fid=egKGainyKrNqzqt6yEdpJu&cid=537468986.1663603961&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663603960&sct=1&seg=0&dl=https%3A%2F%2Fngl.link%2F_sabri_c&dr=https%3A%2F%2Fl.instagram.com%2F&dt=&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.origin=firebase HTTP/1.1 Host: region1.google-analytics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://ngl.link Connection: keep-alive Referer: https://ngl.link/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 HTTP/2 204 No Content access-control-allow-origin: https://ngl.link date: Mon, 19 Sep 2022 16:13:00 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 5e0d4379f6517fd75a29a3d94d9199eb 0d383b811ebe839400f04333d16a5c9d4d78f802 e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F" Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2156 Expires: Mon, 19 Sep 2022 16:48:56 GMT Date: Mon, 19 Sep 2022 16:13:00 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 5e0d4379f6517fd75a29a3d94d9199eb 0d383b811ebe839400f04333d16a5c9d4d78f802 e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F" Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2156 Expires: Mon, 19 Sep 2022 16:48:56 GMT Date: Mon, 19 Sep 2022 16:13:00 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg	34.120.237.76	200 OK	5.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.9 kB (5866 bytes) Hash 1105b56cf779b6df1cbd081bbd0cda50 58c5d6f8ba1d3236d788ac55ff7cb2ec7863fb5c 10c1f0433baf51e06565ff905688075aaba8fec0a8b3f9cef34168e297f94c2c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5866 x-amzn-requestid: 3a7db39d-cd4f-486f-954b-39fc7464706c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YrNeAE67IAMFSoQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63278f8c-66a419ac7fbd977f5f41061b;Sampled=0 x-amzn-remapped-date: Sun, 18 Sep 2022 21:37:16 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: TdVz72qdwMdsuW1WsOq1qEZk2vmbXJlbppLTTsZ9PlrmN7GEph0dyQ== via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google date: Sun, 18 Sep 2022 21:51:43 GMT age: 66077 etag: "58c5d6f8ba1d3236d788ac55ff7cb2ec7863fb5c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg	34.120.237.76	200 OK	9.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.9 kB (9901 bytes) Hash da8b8819fc21dcfb224ce0e7ecdc6772 e460ad4376cd118a6fe8b6b050af9398117d9531 9d0cf5fe17040e6c494d1596c24f01501babff37c95caa47d048b5e1aefa7697 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9901 x-amzn-requestid: e1792a3b-1893-48a6-8d01-463050259dc2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YiGMYE3IoAMFgvQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6323ea4f-42ab13411e65943538101b11;Sampled=0 x-amzn-remapped-date: Fri, 16 Sep 2022 03:15:27 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: XmcyJv7bahHB4wMjFmgvh2fEkJJYLPhRrISZ_DczSErdEQjXIxWUvg== via: 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google date: Mon, 19 Sep 2022 03:58:21 GMT age: 44079 etag: "e460ad4376cd118a6fe8b6b050af9398117d9531" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 85aa2dcaf76d25900c78356e5e1c254f 46cd66c9921a162c9e67cfa7d85bc82e5967d531 741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D" Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8184 Expires: Mon, 19 Sep 2022 18:29:24 GMT Date: Mon, 19 Sep 2022 16:13:00 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10894 bytes) Hash d3e70b2859ca89b353682d03f6b46b93 ebd83f29edd95217dfa4f4c7a94eddf34dd58b14 43ad8f8b0a664bbec39e0410c1201498a2d2e36e5bd7d5ece8d65b15230ec50b HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10894 x-amzn-requestid: f7aad96e-af80-4db7-8bc1-d1e09a9b37e8 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YeJQGHhOIAMFYuw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6322559a-538534e91448af217c59ab3d;Sampled=0 x-amzn-remapped-date: Wed, 14 Sep 2022 22:28:42 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: P7aZQzmAvqn2rcHJUQjHo0Dcg8dsrqseey5mNOabfq1b857M4SUMDQ== via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google date: Mon, 19 Sep 2022 01:08:23 GMT age: 54277 etag: "ebd83f29edd95217dfa4f4c7a94eddf34dd58b14" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24f3f8eb-09f7-4c60-864d-3ff96da7c86a.jpeg	34.120.237.76	200 OK	6.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24f3f8eb-09f7-4c60-864d-3ff96da7c86a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.4 kB (6428 bytes) Hash 893f3495f1f575e946a57c8e8411b2a5 480182fd29c7edd369339847b85e4e2580cef0f6 097d868881231eae089ac8b97d5dc290583477f63dc35b7458ed4898e0db3e0c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24f3f8eb-09f7-4c60-864d-3ff96da7c86a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6428 x-amzn-requestid: 7dd3072b-403a-4bb4-b8c4-58a6d7c254f7 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YRmgCGJVIAMFk5Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-631d5133-0756be8c75da02a857e36a2f;Sampled=0 x-amzn-remapped-date: Sun, 11 Sep 2022 03:08:35 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: UPvPiYucU7q4x4t0X4tGF7XPXUy0D4F0gcXtWVx-MS-MOunPEWcVUA== via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google date: Sun, 18 Sep 2022 21:53:43 GMT age: 65957 etag: "480182fd29c7edd369339847b85e4e2580cef0f6" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11919 bytes) Hash f003d8b6e12692fb16dddd6827deead8 786c333cf08456aea446a55c547520572e1c2df9 d79ea50cfc0f237b3de8f1826cbae1de0b1dbc632a5a06b08d9640abedded935 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11919 x-amzn-requestid: b04884f3-149d-4750-876b-8e8762f0f2a5 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YbfzrHKMoAMFlfQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6321467d-5852e5ef280580b8569b548f;Sampled=0 x-amzn-remapped-date: Wed, 14 Sep 2022 03:11:57 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: vaJ_7zKaGiXZh4VtTlLZCOFpi7bz9tpKRbsvRDJ4En-E93sREYnz5w== via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google date: Mon, 19 Sep 2022 05:49:41 GMT age: 37399 etag: "786c333cf08456aea446a55c547520572e1c2df9" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg	34.120.237.76	200 OK	5.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.1 kB (5064 bytes) Hash e4098577adb98eae5ba4a8b5e143df71 b0ad467f2837d103f8a96fb732bd34176c4c7110 83aa54020ffc684690dfb58d78608411de38ab02fee50808a8243c6b388e77c0 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5064 x-amzn-requestid: 985dbd5b-3e8a-4e22-a974-1effa6c99112 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YrOS8FyBoAMFrCQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-632790df-201df5494f1513b91eefe9d5;Sampled=0 x-amzn-remapped-date: Sun, 18 Sep 2022 21:42:55 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: RWcHVQkq3COqcWuVRgOdpVDi7VFrdjpu4q-NU0D3iod1B58xF4K_Yw== via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google date: Sun, 18 Sep 2022 21:51:55 GMT age: 66065 etag: "b0ad467f2837d103f8a96fb732bd34176c4c7110" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	l.instagram.com/?u=http%3A%2F%2Fngl.link%2F_sabri_c&e=ATPdEYjdpwTlJaJ8srRIXStFVGrF2O3plda3DpE5tpl1uLS-_GgknuTlTlpt9tr_SvkIycWtcXyATu4a&s=1	157.240.200.63	200 OK	0 B
URL HTTP/2 l.instagram.com/?u=http%3A%2F%2Fngl.link%2F_sabri_c&e=ATPdEYjdpwTlJaJ8srRIXStFVGrF2O3plda3DpE5tpl1uLS-_GgknuTlTlpt9tr_SvkIycWtcXyATu4a&s=1 IP 157.240.200.63:0 ASN #32934 FACEBOOK File type Size 0 B (0 bytes) Hash HTTP Headers GET /?u=http%3A%2F%2Fngl.link%2F_sabri_c&e=ATPdEYjdpwTlJaJ8srRIXStFVGrF2O3plda3DpE5tpl1uLS-_GgknuTlTlpt9tr_SvkIycWtcXyATu4a&s=1 HTTP/1.1 Host: l.instagram.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/2 200 OK vary: Accept-Encoding content-encoding: br refresh: 1;URL=http://ngl.link/_sabri_c referrer-policy: origin x-robots-tag: noindex, nofollow reporting-endpoints: content-security-policy-report-only: default-src .facebook.com .fbcdn.net .instagram.com data: blob:;script-src .facebook.com .fbcdn.net .facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' .fbcdn.net .facebook.com .instagram.com;connect-src .facebook.com facebook.com .fbcdn.net .facebook.net wss://.facebook.com: blob: .instagram.com .cdninstagram.com wss://.instagram.com: 'self';font-src .facebook.com data: .fbcdn.net .instagram.com;img-src .instagram.com .facebook.com .fbcdn.net data: blob: .cdninstagram.com .fbsbx.com android-webview-video-poster: .oculuscdn.com;media-src .facebook.com .fbcdn.net .instagram.com .cdninstagram.com cdn.fbsbx.com data: blob:;frame-src .instagram.com .facebook.com .fbsbx.com fbsbx.com data:;block-all-mixed-content;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; content-security-policy: default-src .facebook.com .fbcdn.net .instagram.com data: blob:;script-src .facebook.com .fbcdn.net .facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' .fbcdn.net .facebook.com .instagram.com;connect-src .facebook.com facebook.com .fbcdn.net .facebook.net wss://.facebook.com: blob: .instagram.com .cdninstagram.com wss://.instagram.com: 'self';font-src .facebook.com data: .fbcdn.net .instagram.com;img-src .instagram.com .facebook.com .fbcdn.net data: blob: .cdninstagram.com .fbsbx.com android-webview-video-poster: .oculuscdn.com;media-src .facebook.com .fbcdn.net .instagram.com .cdninstagram.com cdn.fbsbx.com data: blob:;frame-src .instagram.com .facebook.com .fbsbx.com fbsbx.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; document-policy: force-load-at-top cross-origin-opener-policy: unsafe-none pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT x-content-type-options: nosniff x-xss-protection: 0 x-frame-options: DENY content-type: text/html; charset="utf-8" x-fb-debug: CD9IzQvbQQKQ9bHeoxhZTdI/11em8CRbe0BnVewqSO7jevpOWJxPK2f69xvPW+VBwrXdOJnizz37aRfE2uIMTQ== date: Mon, 19 Sep 2022 16:12:58 GMT x-fb-trip-id: 1679558926 X-Firefox-Spdy: h2

	ngl.link/_sabri_c	172.67.10.95	200 OK	0 B
URL HTTP/2 ngl.link/_sabri_c IP 172.67.10.95:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /_sabri_c HTTP/1.1 Host: ngl.link User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://l.instagram.com/ Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 19 Sep 2022 16:12:59 GMT content-type: text/html; charset=utf-8 cache-control: public, max-age=600, s-maxage=600 function-execution-id: rdmzvkolw8ov strict-transport-security: max-age=31556926 x-cloud-trace-context: 0257163240030679761f370163ae04b3 x-country-code: NO x-orig-accept-language: en-US,en;q=0.5 x-powered-by: Express x-served-by: cache-bma1681-BMA x-cache: MISS x-cache-hits: 0 x-timer: S1663603979.166797,VS0,VE310 vary: cookie,need-authorization, x-fh-requested-host, accept-encoding cf-cache-status: DYNAMIC server: cloudflare cf-ray: 74d39b259ffffac8-OSL content-encoding: gzip X-Firefox-Spdy: h2

	ngl.link/favicon.ico	172.67.10.95	404 Not Found	0 B
URL HTTP/2 ngl.link/favicon.ico IP 172.67.10.95:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /favicon.ico HTTP/1.1 Host: ngl.link User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ngl.link/_sabri_c Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 404 Not Found date: Mon, 19 Sep 2022 16:12:59 GMT content-type: text/html function-execution-id: rb3smpwkc09p x-cloud-trace-context: aa46874b64ca81376e063e2cf18b9a4b x-served-by: cache-bma1663-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1663603980.769545,VS0,VE1 vary: x-fh-requested-host, accept-encoding cache-control: max-age=14400 cf-cache-status: EXPIRED server: cloudflare cf-ray: 74d39b294b01fac8-OSL content-encoding: gzip X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (46)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size