firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 06:14:51 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZGNY0mjWxSVDiw45uNz6lEDJLoqCaKLj6b6UPZLsaS8zzaMPRc9-LQ==
Age: 3009
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16912
Expires: Sun, 25 Sep 2022 11:46:53 GMT
Date: Sun, 25 Sep 2022 07:05:01 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9c4e2187ca588a029ecfa1388522def2
fc95ced35072dee0f1d57123a75461df5fafe7e3
90c458db9afe65b10eeca7567e8a7d33c7e71fabfc0a2383edb32dad5045ed2e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "90C458DB9AFE65B10EECA7567E8A7D33C7E71FABFC0A2383EDB32DAD5045ED2E"
Last-Modified: Fri, 23 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4379
Expires: Sun, 25 Sep 2022 08:18:00 GMT
Date: Sun, 25 Sep 2022 07:05:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2DnjpJ4YPzJvev0IL1FEi3Ncye5JdO7vxBboW8nuBLCOuLSUuqCrcA==
age: 8987
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9c4e2187ca588a029ecfa1388522def2
fc95ced35072dee0f1d57123a75461df5fafe7e3
90c458db9afe65b10eeca7567e8a7d33c7e71fabfc0a2383edb32dad5045ed2e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "90C458DB9AFE65B10EECA7567E8A7D33C7E71FABFC0A2383EDB32DAD5045ED2E"
Last-Modified: Fri, 23 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4379
Expires: Sun, 25 Sep 2022 08:18:00 GMT
Date: Sun, 25 Sep 2022 07:05:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3408c5b5d0a336c20629d626aa3089e0
1b92ac0d481f493abcf4df9f1aba4684a13362ed
f3eb40afdd37f077bdcc7fe966f8585934b5efd9958c5372539d546f9b1fc44c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3EB40AFDD37F077BDCC7FE966F8585934B5EFD9958C5372539D546F9B1FC44C"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6172
Expires: Sun, 25 Sep 2022 08:47:53 GMT
Date: Sun, 25 Sep 2022 07:05:01 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 07:05:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3408c5b5d0a336c20629d626aa3089e0
1b92ac0d481f493abcf4df9f1aba4684a13362ed
f3eb40afdd37f077bdcc7fe966f8585934b5efd9958c5372539d546f9b1fc44c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3EB40AFDD37F077BDCC7FE966F8585934B5EFD9958C5372539D546F9B1FC44C"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6172
Expires: Sun, 25 Sep 2022 08:47:53 GMT
Date: Sun, 25 Sep 2022 07:05:01 GMT
Connection: keep-alive
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
104.17.25.14200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (65451)
Hash 638a4990025383a0f83ebf29bdb84a68
153e8818dc42f598e47fde8cf398f1447649a4d0
878e34b89800bb271d3588e526eb3598eb3822e263f3bdaf53645847d39d0ad6
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 07:05:01 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 3939280
expires: Fri, 15 Sep 2023 07:05:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5oFJqYe5vJLx7VwIgE46LhhbeqK1zc92W0AP793z6XKcHmYFZY%2B%2BFPnJ%2F8TYXiVbFF2CKkZpUzYfDTKO3bMSTeWU5zGzn08ZJudxEWtSg8LYoXuCGJD%2FZ2aTkpDVb3tldJVXPpxN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7501e8b77f61b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css
104.17.25.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css
IP 104.17.25.14:0
Hash 9f8ae150e614ee49febe1ac6088202e6
5f5d1a1a96289a0fa1d052d8dd59d5a236e5227e
c931e5cbd1bbd7e7e6802ce040c35ce7c1d7425988b767c6a29bedbfa2eb496f
GET /ajax/libs/font-awesome/5.10.2/css/all.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 07:05:01 GMT
content-type: text/css; charset=utf-8
content-length: 10228
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-111e5"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 472964
expires: Fri, 15 Sep 2023 07:05:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZZ0CHcZ9zqA0JhhIHBzu%2BhemaCtdEByoef3tD1htNC8KFAdTX0wrc1Qmx9kf5AwgGbEWiU8omrJUOERb7rqlknrocjuUVIVvrlt7tUTUALhzhlY5SJe52nuwPI7IAuLmv%2FOiNjra"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7501e8b78f6ab517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css
23.36.76.96200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css
IP 23.36.76.96:0
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: text/css
cross-origin-resource-policy: cross-origin
etag: "613bee4d-5"
last-modified: Fri, 10 Sep 2021 23:46:21 GMT
server: nginx
content-length: 5
unused62: 8096267
date: Sun, 25 Sep 2022 07:05:01 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 14c4f50e0f41f858e858b124dcc866ec
1ad2814c77a84887c0f1547a775737e3e6c83f01
fa075971e9f184bf8d79929bbd7e981414d78f12ea06e3246ea4adfa2fbf4eeb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6536
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:01 GMT
Last-Modified: Sun, 25 Sep 2022 05:16:06 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 14c4f50e0f41f858e858b124dcc866ec
1ad2814c77a84887c0f1547a775737e3e6c83f01
fa075971e9f184bf8d79929bbd7e981414d78f12ea06e3246ea4adfa2fbf4eeb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4064
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:01 GMT
Last-Modified: Sun, 25 Sep 2022 05:57:17 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 14c4f50e0f41f858e858b124dcc866ec
1ad2814c77a84887c0f1547a775737e3e6c83f01
fa075971e9f184bf8d79929bbd7e981414d78f12ea06e3246ea4adfa2fbf4eeb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6536
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:01 GMT
Last-Modified: Sun, 25 Sep 2022 05:16:06 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 7.5 kB IP 142.250.74.3:0
Hash 6ace770b8c76c4dd3035f33095cb2234
52eea271c3fb1511db8d0650d1ae21a6c8648e66
5c94c85e2649b028646d286961483b53901f1ab640068885b3e2e97a4829473c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 25 Sep 2022 07:04:17 GMT
Expires: Sun, 25 Sep 2022 08:00:56 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: asuJiKa3wUdsih911pHP5Q9r9MStD2lItdMhbmQqi0jAVi7W1oPPbQ==
Age: 44
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
104.18.10.207200 OK 33 kB URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
IP 104.18.10.207:0
File type ASCII text, with very long lines (65324)
Hash 4a3721213be70778a8d9f359d2a88e59
ed845e30369beb0e47a46db26968d0a2b8234107
af72c6c50b404e339dc3df817da4fb4cf2f968436d1fc1d091447a1594ccf8b5
GET /bootstrap/4.1.3/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 07:05:01 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 2021-04-23 06:08:39
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: c62efa4acc8489a2647d63073221c51f
cdn-cache: HIT
cf-cache-status: HIT
age: 12198820
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7501e8b7dea4b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 70 kB IP 142.250.74.3:0
Hash 5e259f42ae32dd1fe21e143b5bcb8f5a
5cea6053b66684d50acafac7786a2dbbdf837a7b
fc9afe73f3b878cdf35cc00d3e58f8cebcfa513ebda94e1e2d56d52a00667b39
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a7809de115ea73f8b61f3d20a9978493
01fc65a2b694d7aadd5204d21801e87b2b55b73e
72692486033feeb149424c59576c6c75b17228dfc89b4c369d2e17cc4bff3d52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6402
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:01 GMT
Last-Modified: Sun, 25 Sep 2022 05:18:19 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
js.chargebee.com/v2/animation.css
143.204.55.124200 OK 758 B URL HTTP/2 js.chargebee.com/v2/animation.css
IP 143.204.55.124:0
Hash f8a79fc47c28375628855b4c78ff6f85
b2fb79a766c233408a6e0dd38a169dee2e88d4b0
e3b7f54cf81a0ff1f16662abce7b1970ed6a8a8191da96cf05dcf6644d203df3
GET /v2/animation.css HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 758
last-modified: Thu, 15 Sep 2022 05:19:25 GMT
x-amz-version-id: 5nQKGbXlEN0YC0apk9RJi1qhuAALmKao
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Sun, 25 Sep 2022 07:02:40 GMT
cache-control: max-age=300,public
etag: "f8a79fc47c28375628855b4c78ff6f85"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UspUroJgKLeJYqXdW57WGZeAA_4CAA1_y4f0olrsfXyZxFReO7PHaA==
age: 153
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/account
172.67.187.81204 No Content 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/account
IP 172.67.187.81:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/account HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Sun, 25 Sep 2022 07:05:02 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=MkRNDd5CqCS3Sr9tNiaScHSCQb7gmPNRNq68o0p7; expires=Mon, 25-Sep-2023 07:05:02 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dGpFTSSFU71Z05QDnp%2BpPIc1emxBA1kQ8fEzjeuVuxUmG0hd%2FwUJtDKX0%2BELQs1iefv3ml54nlF0pQJo7MD9cLtufsvg5SydMXY%2BzV4MUFNSq7nYSeSweUqTtyaVGOC9itRNMhYpgcMdP4SZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 7501e8bc38aeb529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.chargebee.com/v2/master-462d72037425e5b57d4075564816847f.html
143.204.55.124200 OK 203 B URL HTTP/2 js.chargebee.com/v2/master-462d72037425e5b57d4075564816847f.html
IP 143.204.55.124:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fea6444fa4f8ddc8acc92e5ee0de0ac4
4d3980ef42b6de5e9cd7bb803fdc0ae77412c1e6
1bb2720c5d446808ffdef06fa259c25a5f2043f1aa917697d731883f2d9a1f59
GET /v2/master-462d72037425e5b57d4075564816847f.html HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 203
last-modified: Wed, 21 Sep 2022 10:33:56 GMT
x-amz-version-id: agxpOGS1sp_l9.VNH4GPqnHeiUpAKRvZ
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Sun, 25 Sep 2022 07:01:57 GMT
cache-control: max-age=300,public
etag: "fea6444fa4f8ddc8acc92e5ee0de0ac4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pqt_R7KVQSljJty0WUhln-R3mg1XvCN0LJlA2EF3hqxOWyw6bB8-Sg==
age: 186
X-Firefox-Spdy: h2
fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
142.250.74.163200 OK 128 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 128360, version 1.0\012- data
Size 128 kB (128360 bytes)
Hash 393b5d8b3fd798486652801f3ee8c6ea
979383e09be691921a211f5fc4ef97fc4406e4dd
83be7b2f504af2c948c5106fa907dc4224380a7b75a993a7bff52cd71ec8c7d3
GET /s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128360
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 20:30:37 GMT
expires: Fri, 22 Sep 2023 20:30:37 GMT
cache-control: public, max-age=31536000
age: 210865
last-modified: Thu, 25 Aug 2022 00:09:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.242.41.15101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.242.41.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 34MBKDk/mboMICOXWGHKpA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xEctn3fu++mwOdmCv0c2wDsxDEc=
publisher.linkvertise.com/api/v1/redirect/link/static/475013/pokimane-1?origin=
172.67.187.81204 No Content 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/475013/pokimane-1?origin=
IP 172.67.187.81:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/redirect/link/static/475013/pokimane-1?origin= HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 25 Sep 2022 07:05:02 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=TrRW61VVg3Jxbl0mxiyryARxIqCT5WdTQ1vpodnt; expires=Mon, 25-Sep-2023 07:05:02 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MHYAvKEyNe0B%2Fkl858Az%2BLUi8f6GrE3qfkEX7ro7DZO3nZa%2FKsVKNA9iXMJ915hYyvNJ3vpPPDdG1TUhs%2BwTo7peHa4T7jJCIj21KVsla2JosF73IvW%2FzCESat4YR7QI76sc0uDE0GEzzidi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 7501e8bce9a5b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash f91e02abe06e36b2557a9e4e2707137e
265d4a4029c8160c87bff9d0f7fca97b10f1a970
ec25924fff34adf6dc52005bc0556fe0939ecfe9f0ce9fea4d7259ef8cad6b04
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 07:05:02 GMT
Etag: "632ee63e-1d7"
Server: ECS (dcb/7F3B)
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nQhCDt3Qatgv5SJmvrSki_0gAPq2aYZ4koJ3GEcPRWT2AaPMsAUhbg==
sand.ostrichesica.com/clicktrue_invocation.js?id=14473
54.230.111.55200 OK 29 kB URL HTTP/2 sand.ostrichesica.com/clicktrue_invocation.js?id=14473
IP 54.230.111.55:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash d50a5cd8b5a1cace376d73df8400debe
d3cefd9941ec85b41c949ff915f1a76c4aae945d
775ac116fe46dcd64c2df0c91f200a2c4c0e22778817a54717c0d88d4c1e7eec
GET /clicktrue_invocation.js?id=14473 HTTP/1.1
Host: sand.ostrichesica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 29046
content-encoding: gzip
server: Caddy
date: Sun, 25 Sep 2022 01:24:10 GMT
cache-control: max-age=43200
expires: Sun, 25 Sep 2022 08:21:18 GMT
etag: "136ad-VEhtZguqCPjpTXcb81GBnH26a2k"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rCCoW6dfjU_aiL5yu9ChoI3Uf_TChI_0rn6b950S2E3koCI0GkBTAg==
age: 38624
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 42a944dc4e57bf1f42e2064118e47938
d6cd4a46f0b2487b464b03b0a748c72cf4bc1c68
8a810aba9005cd6fe47d416cd66abfbc75d383ac055b6a2953b5e3fdd02e7d1a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8A810ABA9005CD6FE47D416CD66ABFBC75D383AC055B6A2953B5E3FDD02E7D1A"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2146
Expires: Sun, 25 Sep 2022 07:40:48 GMT
Date: Sun, 25 Sep 2022 07:05:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 15a5433900483e455c8e4d230592c4cd
5b7e2be28422b0030efc1d39677cf8493bda68d3
dad7cef2379def7ab966078e967b5536d4da5bcea57b42135133d8c5f40cb4b9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAD7CEF2379DEF7AB966078E967B5536D4DA5BCEA57B42135133D8C5F40CB4B9"
Last-Modified: Fri, 23 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2194
Expires: Sun, 25 Sep 2022 07:41:36 GMT
Date: Sun, 25 Sep 2022 07:05:02 GMT
Connection: keep-alive
www.thinksuggest.org/simple/suggest-min-unpacked.js
176.9.175.232200 OK 52 kB URL HTTP/1.1 www.thinksuggest.org/simple/suggest-min-unpacked.js
IP 176.9.175.232:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (51479), with no line terminators
Hash cd2f3074326840d55a3c3ea1e99e83fe
3a2e1d1a93506526ae3ed2b44d584af7771ff8d0
9ec9f50ac6a5dfdf7ace0a047ab4e86a7f8ff297030f93f9b8b4e27c57fdaa51
GET /simple/suggest-min-unpacked.js HTTP/1.1
Host: www.thinksuggest.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 25 Sep 2022 07:05:02 GMT
Content-Type: application/javascript
Content-Length: 51487
Last-Modified: Fri, 05 Jun 2020 12:39:04 GMT
Connection: keep-alive
ETag: "5eda3ce8-c91f"
Accept-Ranges: bytes
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Sun, 25 Sep 2022 06:41:09 GMT
expires: Sun, 25 Sep 2022 08:41:09 GMT
cache-control: public, max-age=7200
age: 1433
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F475013%2Fpokimane-1%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1664089501052&hl=1&op=0&ag=718972423&rand=73185657222119707972107026851125219105070699206175925559195820110152296219&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%2Fbz1zaGFyaW5nIl0sWy01MSwiLSJdLFstNTIsIi0iXSxbLTUzLCIwMTAiXSxbImRkYiIsIjEsNywwLDEsMSwzLDAsMCwwLDAsMSwwLDAsMCwyLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMiwwLDAsMSwxLDAsMCwwLDAsMCwxLDEsMiwyLDAsMTcsMCwyLDAsMCwwLDAiXSxbImJuY2giLDY0XSxbImFibmNoIiw2NV1d&dep=0&pre=0&sdd=%7B%7D&cri=Yb3zT1eI16&pto=1709&ver=47&gac=-&mei=&ap=&duid=1.1664089501.sOyswDFN6v6Gtkow&suid=1.1664089501.o3jqxQvzEXtVQpkH&tuid=1.1664089501.kr3GSQU0HfaCmY8S&fbc=->m=W10%3D&it=67%2C1344%2C256&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
3.227.190.204200 OK 930 B URL HTTP/2 paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F475013%2Fpokimane-1%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1664089501052&hl=1&op=0&ag=718972423&rand=73185657222119707972107026851125219105070699206175925559195820110152296219&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%2Fbz1zaGFyaW5nIl0sWy01MSwiLSJdLFstNTIsIi0iXSxbLTUzLCIwMTAiXSxbImRkYiIsIjEsNywwLDEsMSwzLDAsMCwwLDAsMSwwLDAsMCwyLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMiwwLDAsMSwxLDAsMCwwLDAsMCwxLDEsMiwyLDAsMTcsMCwyLDAsMCwwLDAiXSxbImJuY2giLDY0XSxbImFibmNoIiw2NV1d&dep=0&pre=0&sdd=%7B%7D&cri=Yb3zT1eI16&pto=1709&ver=47&gac=-&mei=&ap=&duid=1.1664089501.sOyswDFN6v6Gtkow&suid=1.1664089501.o3jqxQvzEXtVQpkH&tuid=1.1664089501.kr3GSQU0HfaCmY8S&fbc=->m=W10%3D&it=67%2C1344%2C256&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP 3.227.190.204:0
File type ASCII text, with very long lines (2577), with no line terminators
Hash a20198eb8c9b34efb19610dc8a9948eb
fb7908df1032dd16702e1fc3e2b8545759cd37ba
b4d455341e43d8086db8cd30c21705c811ec1ec344eec5a38147e6bcee1ec5da
GET /ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F475013%2Fpokimane-1%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1664089501052&hl=1&op=0&ag=718972423&rand=73185657222119707972107026851125219105070699206175925559195820110152296219&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDE2MjFdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFsiY2IiLCIwLDAsMCwwLDIsMCwwLDAsMCwyLDMsMCwxLDEsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDIsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAiXSxbLTEsIkxpbnV4IHg4Nl82NCJdLFstMiwiNyxJTEhZTEI5QkxUYTJKcVFnM0ZvZWVsMndZYkUyb2dCSUtKNmNSMDAwTUpIUXdZVERHWWFodjN1dDcxVnBYUjlPOCtNNXJWU0tzMWtQQmUvLzk5c25WSkdwVWRQZmR6em4zT2ZjIl0sWy0zLCJbXSJdLFstNCwiLSJdLFstNSwiLSJdLFstNiwie1wid1wiOltcIjBcIixcIiRcIixcImpRdWVyeVwiLFwiYm9vdHN0cmFwXCIsXCJqUXVlcnkzNDEwMTc1NDk1NTUwNjc1NDM5NTQxXCIsXCJkYXRhTGF5ZXJcIixcImY3MDVcIixcImNiSnNvblBcIixcIl9fY29yZS1qc19zaGFyZWRfX1wiLFwiY2Jfd2luZG93X2xvZ2dlclwiLFwiX19TRU5UUllfX1wiLFwiQ2hhcmdlYmVlXCIsXCJOb3RpZnlQYWludEV2ZW50XCIsXCJpc0FkQmxvY2tBY3RpdmVcIixcIl9tTkhhbmRsZVwiLFwibWVkaWFuZXRfdmVyc2lvbklkXCIsXCJtZWRpYW5ldF9jaG5tXCIsXCJtZWRpYW5ldF9jaG5tMlwiLFwibWVkaWFuZXRfY2hubTNcIixcIm1lZGlhbmV0X21pc2NcIixcIk1ENVwiLFwiQ0hFUWd1YXJkXCIsXCJ3ZWJwYWNrQ2h1bmtsdl93ZWJcIixcIiRsb2NhbGl6ZVwiLFwiWm9uZVwiLFwiX196b25lX3N5bWJvbF9fUHJvbWlzZVwiLFwiX196b25lX3N5bWJvbF9fZmV0Y2hcIixcIl9fem9uZV9zeW1ib2xfX3F1ZXVlTWljcm90YXNrXCIsXCJfX3pvbmVfc3ltYm9sX19zZXRUaW1lb3V0XCIsXCJfX3pvbmVfc3ltYm9sX19jbGVhclRpbWVvdXRcIixcIl9fem9uZV9zeW1ib2xfX3NldEludGVydmFsXCIsXCJfX3pvbmVfc3ltYm9sX19jbGVhckludGVydmFsXCIsXCJfX3pvbmVfc3ltYm9sX19yZXF1ZXN0QW5pbWF0aW9uRnJhbWVcIixcIl9fem9uZV9zeW1ib2xfX2NhbmNlbEFuaW1hdGlvbkZyYW1lXCIsXCJfX3pvbmVfc3ltYm9sX19hbGVydFwiLFwiX196b25lX3N5bWJvbF9fcHJvbXB0XCIsXCJfX3pvbmVfc3ltYm9sX19jb25maXJtXCIsXCJfX3pvbmVfc3ltYm9sX19NdXRhdGlvbk9ic2VydmVyXCIsXCJfX3pvbmVfc3ltYm9sX19JbnRlcnNlY3Rpb25PYnNlcnZlclwiLFwiX196b25lX3N5bWJvbF9fRmlsZVJlYWRlclwiLFwiX196b25lX3N5bWJvbF9fb25vbmRldmljZW1vdGlvbnBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub25kZXZpY2VvcmllbnRhdGlvbnBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub25hYnNvbHV0ZWRldmljZW9yaWVudGF0aW9ucGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheWNvbm5lY3RwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5ZGlzY29ubmVjdHBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXlhY3RpdmF0ZXBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXlkZWFjdGl2YXRlcGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheXByZXNlbnRjaGFuZ2VwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uYWJvcnRwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uYmx1cnBhdGNoZWRcIl0sXCJuXCI6W10sXCJkXCI6W119Il0sWy03LCItIl0sWy04LCItIl0sWy05LCIrIl0sWy0xMCwiLSJdLFstMTEsIntcInRcIjpcIlwiLFwibVwiOltdfSJdLFstMTIsIlwidW5zcGVjaWZpZWRcIiJdLFstMTMsIi0iXSxbLTE0LCItIl0sWy0xNSwiLSJdLFstMTYsIjAiXSxbLTE3LCIxNiJdLFstMTgsIlsxLDAsMCwwXSJdLFstMTksIlswLDAsMCwwLDAsMCwxLDI0LDI0LFwiLVwiLDEyODAsMTAwMiwxMjgwLDEwMjQsMTI4MCwxMDI0LDEyODAsOTM5LDAsMCwwLDAsXCItXCIsXCItXCJdIl0sWy0yMCwiLSJdLFstMjEsIi0iXSxbLTIyLCJbXCJuXCIsXCJuXCJdIl0sWy0yMywiKyJdLFstMjQsIltdIl0sWy0yNSwiLSJdLFstMjYsIi0iXSxbLTI3LCItIl0sWy0yOCwiZW4tVVMsZW4iXSxbLTI5LCItIl0sWy0zMCwiW1widlwiLDBdIl0sWy0zMSwiZmFsc2UiXSxbLTMyLCIwIl0sWy0zMywiLSJdLFstMzQsIi0iXSxbLTM1LCJbMTY2NDA4OTUwMTAyMywwXSJdLFstMzYsIltcIjUvNFwiLFwiNS80XCJdIl0sWy0zNywiLSJdLFstMzgsImksLTEsLTEsMzUyLDAsMywwLDcsNzMsNDksLTEsMCwsMTQ5NCwxNjc5LDE2NzkiXSxbLTM5LCJbXCIyMDEwMDEwMVwiLDAsXCJHZWNrb1wiLFwiTmV0c2NhcGVcIixcIk1vemlsbGFcIixcIjIwMTgxMDAxMDAwMDAwXCIsbnVsbCxmYWxzZSxudWxsLGZhbHNlLG51bGwsMF0iXSxbLTQwLCIzNyJdLFstNDEsIi0iXSxbLTQyLCIxNzcwMDUwMDgxIl0sWy00MywiMDAwMDAwMDEwMDAwMDAwMDAxMTExMDAxMDAiXSxbLTQ0LCIwLDUsMCw1Il0sWy00NSwiMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwIl0sWy00NiwiMCJdLFstNDcsIlVUQyxlbi1VUyxsYXRuLGdyZWdvcnkiXSxbLTQ4LCIwLDAiXSxbLTQ5LCItIl0sWy01MCwiaHR0cHM6Ly9saW5rdmVydGlzZS5jb20vNDc1MDEzL3Bva2ltYW5lLTE%2Fbz1zaGFyaW5nIl0sWy01MSwiLSJdLFstNTIsIi0iXSxbLTUzLCIwMTAiXSxbImRkYiIsIjEsNywwLDEsMSwzLDAsMCwwLDAsMSwwLDAsMCwyLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMiwwLDAsMSwxLDAsMCwwLDAsMCwxLDEsMiwyLDAsMTcsMCwyLDAsMCwwLDAiXSxbImJuY2giLDY0XSxbImFibmNoIiw2NV1d&dep=0&pre=0&sdd=%7B%7D&cri=Yb3zT1eI16&pto=1709&ver=47&gac=-&mei=&ap=&duid=1.1664089501.sOyswDFN6v6Gtkow&suid=1.1664089501.o3jqxQvzEXtVQpkH&tuid=1.1664089501.kr3GSQU0HfaCmY8S&fbc=->m=W10%3D&it=67%2C1344%2C256&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Sun, 25 Sep 2022 07:05:02 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=6c3ffb3ac6bbeb7e6290e71d3679d720; Max-Age=29030400; Path=/; Expires=Sun, 27 Aug 2023 07:05:02 GMT; HttpOnly; Secure; SameSite=None
content-length: 930
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/linkvertise-link-to/loader.js
151.101.85.44200 OK 25 kB URL HTTP/2 cdn.taboola.com/libtrc/linkvertise-link-to/loader.js
IP 151.101.85.44:0
File type Unicode text, UTF-8 text, with very long lines (28629)
Hash f53ce5651dae7a7bbe686fa5e939996d
474e79b2f4b65a6d9812a8b91e7575e7d45ae1ef
8e4b75f903330e932939b153becb8e1d99d5de8f845d3c7045c0737e63dcc33b
GET /libtrc/linkvertise-link-to/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LBxyv5DqmRk7r0LDjNLyvt4I7M0PAsMekXKWfM9DP35AgSSaz+miN8FhaJaWRt+uxUpe3rwVeuQ=
x-amz-request-id: 3QE35Z9NF46BQ6A8
last-modified: Thu, 22 Sep 2022 14:44:16 GMT
etag: "fcc608428dcc63f9c81f81606882d15d"
x-amz-version-id: do0J0jUVT9lxiNcGhd3U1spFfbtBItLW
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 25 Sep 2022 07:05:02 GMT
via: 1.1 varnish
age: 89
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664089503.857452,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 82
content-length: 25178
X-Firefox-Spdy: h2
js.chargebee.com/v2/pi-worker-462d72037425e5b57d4075564816847f.js
143.204.55.124200 OK 21 kB URL HTTP/2 js.chargebee.com/v2/pi-worker-462d72037425e5b57d4075564816847f.js
IP 143.204.55.124:0
File type ASCII text, with very long lines (52043)
Hash 108f82cf188681e40787c155e15fefb0
b646cb5a7825ebd8fcd6cbbfc05ad0a6aa8b0d72
7258b3d2304482b4719544be2840927c03b1d0927c4ecb7c6f25456ad546d3ef
GET /v2/pi-worker-462d72037425e5b57d4075564816847f.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-462d72037425e5b57d4075564816847f.html
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 21 Sep 2022 10:33:55 GMT
x-amz-version-id: ba20pViTLkzhAyjbjArW44HCva.qemAr
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 25 Sep 2022 07:02:59 GMT
cache-control: max-age=300,public
etag: W/"f1462fce58a639733d1accf818d861fb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JJ7_84_wptHj6z6tLzrhq0n6A4AiCBeEsJ3BCOXu1eEuDVttXzkrLw==
age: 137
X-Firefox-Spdy: h2
paper.ostrichesica.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136ceac73de3428a9f9225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5f15896a2417071a10acf9f29f674fd180df517e3c4aad7e2556d269d837c1063905769453545c33035692b9694f77be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac7e7d7e85d33e417caff29a029dc04c2548e1562e8270cff0a461d3cbc1c7dfd80a3f667ee7ded07dc12e3382831ec81683124735f9b659b810bb25174ea99a324457277d48e2876dfd259192c4772555ff38d78352f0fa5ff1f7cd9ada62cc1f247604379b9aca7969e76a2cf9b18b744964a662689a8d9bfe92bcc85bc30d1664c95a08a790645a83c70ac971164efdbe434d05da61be3da4ddf4ed4ce6dd82a61c38b2dd9798290bda2ccb0bd0b20f533a4e8e823434ac3c17f82e650b9475a13920c488fd1cd88d1fb8137d83ad78ef5d038ae323b358e3873d4959b493486fa61aa41a9d3419563a478415d5fc13aff559ccbee31f8823be612ec88d0cd4c88191c2db21e5a137a495fc9a764b853ffcac77ce5d125b3d03cd4c2b1c72cc1ffb30d3430c7b80a12e4f9495c15ffeaa26cb63b84eb5ae9e42eba75a531944d976b9eeb7bb36c59e2e894117b643f4438174e54efb8d87ed810b65b4f452ffcb447d69d180de0e7dce0fd24a3abae89eebcc9900b1444e95b94f21c37d7516f09d67d5c776af27ba77f1cc2eadf38c863a046eace2cb5ee5cea26662943106001de80b2c9361038860a07d18acbb1b0d6415cddc9fd0fca902020818c452e63afc0851574fa&cri=Yb3zT1eI16&ts=418&cb=1664089501470
3.227.190.204200 OK 43 B URL HTTP/2 paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=Yb3zT1eI16&ts=418&cb=1664089501470
IP 3.227.190.204:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=Yb3zT1eI16&ts=418&cb=1664089501470 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=6c3ffb3ac6bbeb7e6290e71d3679d720
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Sun, 25 Sep 2022 07:05:02 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 968 B IP 142.250.74.3:0
Hash 02efad6814e228fbb4aa1c1ea95563e7
4ba5b29f96eed1b059f2aa375c5d73f80c317bae
e15f8ff52bd509f7f6a9cefa2ed33296cba79a7def97c13ffc9d58aef605d6e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F475013%2Fpokimane-1%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1664089501588&hl=1&op=0&ag=718972423&rand=24120199117852805556081598150960685522082688980666015059515921055210510157&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=cG6mEWudPo&pto=2244&ver=47&gac=772485628.1664089501&mei=&ap=&duid=1.1664089501.sOyswDFN6v6Gtkow&suid=1.1664089501.o3jqxQvzEXtVQpkH&tuid=1.1664089501.kr3GSQU0HfaCmY8S&fbc=->m=W10%3D&it=81%2C1344%2C256&fbcl=-&gacl=&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
3.227.190.204200 OK 945 B URL HTTP/2 paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F475013%2Fpokimane-1%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1664089501588&hl=1&op=0&ag=718972423&rand=24120199117852805556081598150960685522082688980666015059515921055210510157&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDI0NjZdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFsiY2IiLCIwLDAsMCwwLDMsMCwwLDAsMSwwLDEsMSwwLDAsMCwxLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDIsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAiXSxbLTEsIkxpbnV4IHg4Nl82NCJdLFstMiwiNixJTEhZTEI5QkxUYTJKcVFnM0ZvZWVsMndZYkUyb2dCSUtKNmNSMDAwTUpIUXdZVERHWWFodjN1dDcxVnBYUjlPOCtNNXJWU0tzMWtQQmUvLzk5c25WSkdwVWRQZmR6em4zT2ZjIl0sWy0zLCJbXSJdLFstNCwiLSJdLFstNSwiLSJdLFstNiwie1wid1wiOltcIjBcIixcIiRcIixcImpRdWVyeVwiLFwiYm9vdHN0cmFwXCIsXCJqUXVlcnkzNDEwMTc1NDk1NTUwNjc1NDM5NTQxXCIsXCJkYXRhTGF5ZXJcIixcImY3MDVcIixcImNiSnNvblBcIixcIl9fY29yZS1qc19zaGFyZWRfX1wiLFwiY2Jfd2luZG93X2xvZ2dlclwiLFwiX19TRU5UUllfX1wiLFwiQ2hhcmdlYmVlXCIsXCJOb3RpZnlQYWludEV2ZW50XCIsXCJpc0FkQmxvY2tBY3RpdmVcIixcIl9tTkhhbmRsZVwiLFwibWVkaWFuZXRfdmVyc2lvbklkXCIsXCJtZWRpYW5ldF9jaG5tXCIsXCJtZWRpYW5ldF9jaG5tMlwiLFwibWVkaWFuZXRfY2hubTNcIixcIm1lZGlhbmV0X21pc2NcIixcIk1ENVwiLFwiQ0hFUWd1YXJkXCIsXCJ3ZWJwYWNrQ2h1bmtsdl93ZWJcIixcIiRsb2NhbGl6ZVwiLFwiWm9uZVwiLFwiX196b25lX3N5bWJvbF9fUHJvbWlzZVwiLFwiX196b25lX3N5bWJvbF9fZmV0Y2hcIixcIl9fem9uZV9zeW1ib2xfX3F1ZXVlTWljcm90YXNrXCIsXCJfX3pvbmVfc3ltYm9sX19zZXRUaW1lb3V0XCIsXCJfX3pvbmVfc3ltYm9sX19jbGVhclRpbWVvdXRcIixcIl9fem9uZV9zeW1ib2xfX3NldEludGVydmFsXCIsXCJfX3pvbmVfc3ltYm9sX19jbGVhckludGVydmFsXCIsXCJfX3pvbmVfc3ltYm9sX19yZXF1ZXN0QW5pbWF0aW9uRnJhbWVcIixcIl9fem9uZV9zeW1ib2xfX2NhbmNlbEFuaW1hdGlvbkZyYW1lXCIsXCJfX3pvbmVfc3ltYm9sX19hbGVydFwiLFwiX196b25lX3N5bWJvbF9fcHJvbXB0XCIsXCJfX3pvbmVfc3ltYm9sX19jb25maXJtXCIsXCJfX3pvbmVfc3ltYm9sX19NdXRhdGlvbk9ic2VydmVyXCIsXCJfX3pvbmVfc3ltYm9sX19JbnRlcnNlY3Rpb25PYnNlcnZlclwiLFwiX196b25lX3N5bWJvbF9fRmlsZVJlYWRlclwiLFwiX196b25lX3N5bWJvbF9fb25vbmRldmljZW1vdGlvbnBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub25kZXZpY2VvcmllbnRhdGlvbnBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub25hYnNvbHV0ZWRldmljZW9yaWVudGF0aW9ucGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheWNvbm5lY3RwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5ZGlzY29ubmVjdHBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXlhY3RpdmF0ZXBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXlkZWFjdGl2YXRlcGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheXByZXNlbnRjaGFuZ2VwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uYWJvcnRwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uYmx1cnBhdGNoZWRcIl0sXCJuXCI6W10sXCJkXCI6W119Il0sWy03LCItIl0sWy04LCItIl0sWy05LCIrIl0sWy0xMCwiLSJdLFstMTEsIntcInRcIjpcIlwiLFwibVwiOltcIkRlc2NyaXB0aW9uXCJdfSJdLFstMTIsIlwidW5zcGVjaWZpZWRcIiJdLFstMTMsIi0iXSxbLTE0LCItIl0sWy0xNSwiLSJdLFstMTYsIjAiXSxbLTE3LCIxNiJdLFstMTgsIlsxLDAsMCwwXSJdLFstMTksIlswLDAsMCwwLDAsMCwxLDI0LDI0LFwiLVwiLDEyODAsMTAwMiwxMjgwLDEwMjQsMTI4MCwxMDI0LDEyODAsOTM5LDAsMCwwLDAsXCItXCIsXCItXCJdIl0sWy0yMCwiNzcyNDg1NjI4LjE2NjQwODk1MDEiXSxbLTIxLCItIl0sWy0yMiwiW1wiblwiLFwiblwiXSJdLFstMjMsIisiXSxbLTI0LCJbXSJdLFstMjUsIi0iXSxbLTI2LCItIl0sWy0yNywiLSJdLFstMjgsImVuLVVTLGVuIl0sWy0yOSwiLSJdLFstMzAsIltcInZcIiwwXSJdLFstMzEsImZhbHNlIl0sWy0zMiwiMCJdLFstMzMsIi0iXSxbLTM0LCItIl0sWy0zNSwiWzE2NjQwODk1MDE1NzksMF0iXSxbLTM2LCJbXCI1LzRcIixcIjUvNFwiXSJdLFstMzcsIi0iXSxbLTM4LCJpLC0xLC0xLDM1MiwwLDMsMCw3LDczLDQ5LC0xLDAsLDE0OTQsMjIzNSwyMjM1Il0sWy0zOSwiW1wiMjAxMDAxMDFcIiwwLFwiR2Vja29cIixcIk5ldHNjYXBlXCIsXCJNb3ppbGxhXCIsXCIyMDE4MTAwMTAwMDAwMFwiLG51bGwsZmFsc2UsbnVsbCxmYWxzZSxudWxsLDBdIl0sWy00MCwiMzciXSxbLTQxLCItIl0sWy00MiwiMTc3MDA1MDA4MSJdLFstNDMsIjAwMDAwMDAxMDAwMDAwMDAwMTExMTAwMTAwIl0sWy00NCwiMCw1LDAsNSJdLFstNDUsIjAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCJdLFstNDYsIjAiXSxbLTQ3LCJVVEMsZW4tVVMsbGF0bixncmVnb3J5Il0sWy00OCwiMCwwIl0sWy00OSwiLSJdLFstNTAsImh0dHBzOi8vbGlua3ZlcnRpc2UuY29tLzQ3NTAxMy9wb2tpbWFuZS0xP289c2hhcmluZyJdLFstNTEsIi0iXSxbLTUyLCItIl0sWy01MywiMDEwIl0sWyJkZGIiLCIwLDQsMCwxLDEsMiwwLDAsMSwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDMsMCwwLDAsMSwwLDAsMCwwLDAsMCwxLDEsMiwwLDEsMCwwLDAsMCwwLDEiXSxbImJuY2giLDMzXSxbImFibmNoIiwzNF1d&dep=0&pre=0&sdd=%7B%7D&cri=cG6mEWudPo&pto=2244&ver=47&gac=772485628.1664089501&mei=&ap=&duid=1.1664089501.sOyswDFN6v6Gtkow&suid=1.1664089501.o3jqxQvzEXtVQpkH&tuid=1.1664089501.kr3GSQU0HfaCmY8S&fbc=->m=W10%3D&it=81%2C1344%2C256&fbcl=-&gacl=&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP 3.227.190.204:0
File type ASCII text, with very long lines (2653), with no line terminators
Hash baa87cf26a9739cdb6b399936d1f8c9c
9fe0a4bdd8ade559200795d2407b31856aa1c8bd
308f945a9d3c3b1bf4799442fe984c637401280944e7e19b6ad11c991229eeef
GET /ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F475013%2Fpokimane-1%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1664089501588&hl=1&op=0&ag=718972423&rand=24120199117852805556081598150960685522082688980666015059515921055210510157&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=cG6mEWudPo&pto=2244&ver=47&gac=772485628.1664089501&mei=&ap=&duid=1.1664089501.sOyswDFN6v6Gtkow&suid=1.1664089501.o3jqxQvzEXtVQpkH&tuid=1.1664089501.kr3GSQU0HfaCmY8S&fbc=->m=W10%3D&it=81%2C1344%2C256&fbcl=-&gacl=&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=6c3ffb3ac6bbeb7e6290e71d3679d720
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Sun, 25 Sep 2022 07:05:03 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 945
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-123426114-2&cid=772485628.1664089501&jid=1019868520&gjid=285675699&_gid=835098336.1664089501&_u=YADAAEAAAAAAAC~&z=675855924
64.233.162.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-123426114-2&cid=772485628.1664089501&jid=1019868520&gjid=285675699&_gid=835098336.1664089501&_u=YADAAEAAAAAAAC~&z=675855924
IP 64.233.162.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-123426114-2&cid=772485628.1664089501&jid=1019868520&gjid=285675699&_gid=835098336.1664089501&_u=YADAAEAAAAAAAC~&z=675855924 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://linkvertise.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 25 Sep 2022 07:05:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cd8e3570655a88b47a20fb93af0fc0c5
6ebbd655af47cbe0788f5ea6a7d9cd457bda2f33
12bc57afd44ddf43fc3802ecc23e743660b146acff0958093fcea30e96b02f6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=cG6mEWudPo&ts=133&cb=1664089501721
3.227.190.204200 OK 30 kB URL HTTP/2 paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=cG6mEWudPo&ts=133&cb=1664089501721
IP 3.227.190.204:0
Hash d460f453cf9ebf3b139fe4abff99a86e
a64363d444fff8c9b8d388f6be70ba641e48bf78
0833e3828cbc0b3926189d9bbe4be7da0625aac8471e0b8954a223e81f3b922a
GET /tracker/tc_imp.gif?e=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&cri=cG6mEWudPo&ts=133&cb=1664089501721 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=6c3ffb3ac6bbeb7e6290e71d3679d720
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Sun, 25 Sep 2022 07:05:03 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
linkvertise.chargebeestaticv2.com/api/internal/1664089200/retrieve_js_info
54.230.111.75202 Accepted 0 B URL HTTP/2 linkvertise.chargebeestaticv2.com/api/internal/1664089200/retrieve_js_info
IP 54.230.111.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/internal/1664089200/retrieve_js_info HTTP/1.1
Host: linkvertise.chargebeestaticv2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-requested-with
Referer: https://js.chargebee.com/
Origin: https://js.chargebee.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
content-length: 0
date: Sun, 25 Sep 2022 07:05:03 GMT
cache-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
pragma: no-cache
access-control-allow-origin: https://js.chargebee.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token
access-control-allow-methods: GET, OPTIONS, POST
server: ChargeBee
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zoNEVzArJFYOS0SLulNeBjipBEXL-D9-u1TiAuCs7M9TsIfpweq3Qw==
X-Firefox-Spdy: h2
linkvertise.chargebeestaticv2.com/api/internal/1664089200/retrieve_js_info
54.230.111.75200 OK 422 B URL HTTP/2 linkvertise.chargebeestaticv2.com/api/internal/1664089200/retrieve_js_info
IP 54.230.111.75:0
File type JSON data\012- , ASCII text, with very long lines (422), with no line terminators
Hash 5fca6d79bfbddbe797230a949c632337
41b5aad51bc2527c3bb91b11257f7782c6b54156
11c61b1db6bcd8ea0cf7d683dc532bcaca777552ffa6a6149b7c777eb5d96c92
GET /api/internal/1664089200/retrieve_js_info HTTP/1.1
Host: linkvertise.chargebeestaticv2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://js.chargebee.com
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=utf-8
content-length: 422
date: Sun, 25 Sep 2022 07:03:57 GMT
cache-control: max-age=0, must-revalidate, public, s-maxage=3600
expires: Thu, 01 Jan 1970 00:00:00 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: https://js.chargebee.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token
access-control-allow-methods: GET, OPTIONS, POST
server: ChargeBee
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GIPP92h7zYiK5KBi6c5SitS3-nXveDvh4DXtQekQT8t_dXLqnHhhRA==
age: 66
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/impl.20220922-16-RELEASE.js
151.101.85.44200 OK 146 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20220922-16-RELEASE.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (65508)
Size 146 kB (145469 bytes)
Hash b6247ec22fba797cf6f51ae4c86a6509
1807f86f8b7146c10c986fd203d31de61ee67d8a
742c16a6b9e92d702d4e514560b0826268e676278e169e990c548d0bb6dd8a2f
GET /libtrc/impl.20220922-16-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: COg8lMA673OEz5PM+KFXiDXiosSVySM+TdixW+84HZwxLH8GtDt35DYHxlOgtiehZ9ZB4jLgaQI=
x-amz-request-id: W1R6REBMZ25HV30N
last-modified: Thu, 22 Sep 2022 14:15:17 GMT
etag: "b6247ec22fba797cf6f51ae4c86a6509"
content-encoding: br
x-amz-version-id: wNWqo8c3RDyWSxV8p_CKOzvKdfoSb_oq
content-type: application/javascript
accept-ranges: bytes
date: Sun, 25 Sep 2022 07:05:03 GMT
via: 1.1 varnish
age: 2984
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1501
x-timer: S1664089503.261959,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 83
server: AmazonS3-br
content-length: 145469
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ea6011094da3116e1bb049caa0e491e1
5809e1f5b0beee0282601045c0a152853c977565
25bd8112864ac34144820c6aecf49dec7ff9cfb863d864ca0ebbf55dee213414
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 23ba09c14e337ac70d877d2ed33dc795
175d5155889b45711d0a9050116591ad25e74891
cb117ac56fe205bfca3b512ed3d8ddb46a7115446d099739cc4d111c853696ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-123426114-2&cid=772485628.1664089501&jid=1019868520&_u=YADAAEAAAAAAAC~&z=1819642986
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-123426114-2&cid=772485628.1664089501&jid=1019868520&_u=YADAAEAAAAAAAC~&z=1819642986
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-123426114-2&cid=772485628.1664089501&jid=1019868520&_u=YADAAEAAAAAAAC~&z=1819642986 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 25 Sep 2022 07:05:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-123426114-2&cid=772485628.1664089501&jid=1019868520&_u=YADAAEAAAAAAAC~&z=1819642986
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-123426114-2&cid=772485628.1664089501&jid=1019868520&_u=YADAAEAAAAAAAC~&z=1819642986
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-123426114-2&cid=772485628.1664089501&jid=1019868520&_u=YADAAEAAAAAAAC~&z=1819642986 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 25 Sep 2022 07:05:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-
142.250.74.164200 OK 585 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 91b9bedca84910844c82444d153e6203
a6ba703338c0d124a5c449660d62bda0ce8e85b3
eeca8a422789790e8fb3e17ce13996f749724e81f05d5aadef2522039d35e08c
GET /recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
expires: Sun, 25 Sep 2022 07:05:03 GMT
date: Sun, 25 Sep 2022 07:05:03 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-7DRMH8RP03>m=2oe9l0&_p=1399624797&cid=772485628.1664089501&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664089501&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F475013%2Fpokimane-1%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-7DRMH8RP03>m=2oe9l0&_p=1399624797&cid=772485628.1664089501&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664089501&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F475013%2Fpokimane-1%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7DRMH8RP03>m=2oe9l0&_p=1399624797&cid=772485628.1664089501&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664089501&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F475013%2Fpokimane-1%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://linkvertise.com
date: Sun, 25 Sep 2022 07:05:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9225
Expires: Sun, 25 Sep 2022 09:38:48 GMT
Date: Sun, 25 Sep 2022 07:05:03 GMT
Connection: keep-alive
www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js
142.250.74.163200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (826)
Size 158 kB (158248 bytes)
Hash db1b5789e9915e9c82f5df92e5982980
2e193e502995501c85f45fd89d9f83707a7f9573
db9c82b18117d7cff0f674de758f5bbb39bc6dee969cee679c741090968b9206
GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://js.chargebee.com
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 07:11:34 GMT
expires: Fri, 22 Sep 2023 07:11:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
content-type: text/javascript
age: 258809
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9225
Expires: Sun, 25 Sep 2022 09:38:48 GMT
Date: Sun, 25 Sep 2022 07:05:03 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ea6011094da3116e1bb049caa0e491e1
5809e1f5b0beee0282601045c0a152853c977565
25bd8112864ac34144820c6aecf49dec7ff9cfb863d864ca0ebbf55dee213414
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c4875ff-4140-470a-943a-bc27f68957a5.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c4875ff-4140-470a-943a-bc27f68957a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 00c09f267aacde9465a329542463b9e5
1534aa8a5158dfa9592d65e6fb761b41c0852c58
276ff24598159f62fd7333992575834f901eea7c75a228b9c12d1c049f1df558
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c4875ff-4140-470a-943a-bc27f68957a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7642
x-amzn-requestid: b0fc9bea-7735-43c0-a176-eae4d5000a6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2ZPtHajIAMF8zQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632c08ca-391092bd30ae5bf9692e93ba;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 07:03:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JHbRgCQOZp244YWkU4o78m9HhC77v7LOWAvwnc2eRTW2vHnv99ygaA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 07:31:45 GMT
age: 84798
etag: "1534aa8a5158dfa9592d65e6fb761b41c0852c58"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6ZD1652Yn1xqZG7ehDcirlYoG8Hcsrdj11Fzfgj7zb-OiU8xHj1gw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:32 GMT
age: 34051
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 267300d587831dda7559c30c40cc614e
d7ff0b9754e61f5d4178eddb5e63c3390ab559c8
ec7aad1a3116ce8ef5258b49de87cf3456c8c4890206fa5d46c8e510ded80ac0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d59e1bbd58ff8c5fe5faecb58149601
ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd
c16a2adaeaabbe45801ab5d12ceaeab587b525b4959933f53a9c8dcdb12aec68
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7757
x-amzn-requestid: 3092c81c-f703-403a-b718-e18f035f9464
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJQFUWIAMF7Pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-565f665c7e34294079703141;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hc0cpj1kMbAQqcM0ooSgEdS8nPP0m4FJD1bHdY7jN2OENNsJF_gluA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 07:19:33 GMT
age: 85530
etag: "ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9773faaac4deac40b96cd0802e974f36
db601663fa6ee5564eddaf8d3d84c7b04bf3871c
40e7a573f510ff29db04b3fbfacde2ad6ecd67b4c0be30034e057654c86408a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5305
x-amzn-requestid: df7ba218-d20c-4389-8895-affd870ad15f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y5JqKGtHoAMFcJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632d230d-1854a5420f7091316aa4f211;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 03:07:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: JgS9UxuYxMmnN6Op-LDeWN7tpeQYRosQp5Jo4-2jf8uEMUIHa6j-SQ==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 05:04:13 GMT
age: 7250
etag: "db601663fa6ee5564eddaf8d3d84c7b04bf3871c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0737a7ae-3ae7-4fe5-b739-e988b295c795.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0737a7ae-3ae7-4fe5-b739-e988b295c795.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a89e7161745036637a66e8ab5b7efdf9
79c83cc27996b2339bd63764dbb2ae9744db6d70
13b990c3c6a9bee6def25d007e14628c52e427b6f4c718895b1817d5e8e59760
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0737a7ae-3ae7-4fe5-b739-e988b295c795.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8715
x-amzn-requestid: d5e237f4-4c0e-4e3b-b3ae-ea1eb5b7cafc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y5JmTEAwIAMF_Mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632d22f4-48a975a866edc1755858600f;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 03:07:33 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: IVWTWArqWNBCHmVFP9mQm4bAi4f5pq7wJX2ve-ksyx2xmNqHz5pX8A==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 05:31:50 GMT
age: 5593
etag: "79c83cc27996b2339bd63764dbb2ae9744db6d70"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 12482f755f1264f5587bb8cdc7fff5c3
ff01e5ec3898e03cd21ddd586dab090e994abace
7560f40a0cd5c96d14d22048dc6c0a2937c0f7aad9b23b4e4baf36cd08cec337
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5840
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:03 GMT
Last-Modified: Sun, 25 Sep 2022 05:27:43 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 312
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
142.250.74.163200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11072, version 1.0\012- data
Hash e7df3d0942815909add8f9d0c40d00d9
cf5032eea3399a58870e8a05e629b006a8c7c3c7
bce2f309470952b7affa62ff4d91b454334c68cefa541429b502904d20696875
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:03 GMT
expires: Thu, 21 Sep 2023 19:34:03 GMT
cache-control: public, max-age=31536000
age: 300660
last-modified: Wed, 11 May 2022 19:24:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 9.4 kB URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
File type C source, ASCII text, with very long lines (29462)
Hash 83af0990e69e1cdd22ec09d01442a90b
f4023cb2ea4ab46e1f23cd11b66c557e510f801c
321186a1d16590d29902976c5e859069d58c2b3f517e2f4cb480e39b4ed98f61
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 07:05:02 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 674846
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
trc-events.taboola.com/linkvertise-link-to/log/2/debug?tim=07%3A05%3A02.031&type=usage&msg=rtus&llvl=2&id=8708&cv=20220922-16-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/linkvertise-link-to/log/2/debug?tim=07%3A05%3A02.031&type=usage&msg=rtus&llvl=2&id=8708&cv=20220922-16-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /linkvertise-link-to/log/2/debug?tim=07%3A05%3A02.031&type=usage&msg=rtus&llvl=2&id=8708&cv=20220922-16-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sun, 25 Sep 2022 07:05:03 GMT
x-fastly-to-nlb-rtt: 35911
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js
142.250.74.163200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (826)
Size 158 kB (158248 bytes)
Hash db1b5789e9915e9c82f5df92e5982980
2e193e502995501c85f45fd89d9f83707a7f9573
db9c82b18117d7cff0f674de758f5bbb39bc6dee969cee679c741090968b9206
GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 07:11:34 GMT
expires: Fri, 22 Sep 2023 07:11:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
content-type: text/javascript
age: 258809
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/styles__ltr.css
142.250.74.163200 OK 24 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/styles__ltr.css
IP 142.250.74.163:0
File type ASCII text, with very long lines (52762), with no line terminators
Hash f2d649025c814be9c33f166a5e04fe88
26bf59de631415927ba2c6c9e44fe9c763f95313
f95ec963b7657097e1ef827fc07d96eda5b63f7d3e17b5a1b5eeb7a8d0b67921
GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24251
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 16:19:47 GMT
expires: Tue, 19 Sep 2023 16:19:47 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
content-type: text/css
age: 485116
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 12:31:58 GMT
expires: Sun, 24 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 66785
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/api2/logo_48.png
142.250.74.163200 OK 2.2 kB URL HTTP/2 www.gstatic.com/recaptcha/api2/logo_48.png
IP 142.250.74.163:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 20:02:15 GMT
expires: Mon, 26 Sep 2022 20:02:15 GMT
cache-control: public, max-age=604800
age: 471768
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 7fb4df915d04b7ad9fc63a5387df0de8
b146aa5505e39b734c2591334dddc8192cade32c
4c25a2e5f33eeadf1f3e21cbc4fe7acc9e1ab87743b3130adda2fd94f1fd160b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5329
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:04 GMT
Last-Modified: Sun, 25 Sep 2022 05:36:15 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 312
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 07:05:03 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=WNc9NV80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3pvWHZNUVBOOWkwJTJGMzJFdzlmSUZaNzVkOTMzNnF6YXF1JTJGbXJlTW1velhG; expires=Fri, 20 Oct 2023 07:05:04 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 250596
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash c355ed9771e902f61a7b25899ee283c4
67f4c542d67acf7b206c6f9d19f04db21c588dbc
75d8d7a6cf95a6bcb3d4176ed97a3adafee0d1371480b7997b9e1361ba133dfa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3932
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:04 GMT
Last-Modified: Sun, 25 Sep 2022 05:59:32 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash c355ed9771e902f61a7b25899ee283c4
67f4c542d67acf7b206c6f9d19f04db21c588dbc
75d8d7a6cf95a6bcb3d4176ed97a3adafee0d1371480b7997b9e1361ba133dfa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3959
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:04 GMT
Last-Modified: Sun, 25 Sep 2022 05:59:05 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 312
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-crto-bundle
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 07:05:03 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE
access-control-allow-origin: https://linkvertise.com
server-processing-duration-in-ticks: 461939
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 8530fc194edb79ab8721249c5840e6a6
fe788cc4c2868c4ebc08d399045c006c56ed0169
2acfe4851ebb868023e4170128d6d1f08f1f41d2df2cf5cef1eacc2070a9d8e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2694
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 07:05:04 GMT
Last-Modified: Sun, 25 Sep 2022 06:20:10 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 313
ag.gbc.criteo.com/newidsd
185.235.84.31200 OK 9.2 kB URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.31:0
Hash 33fbcd541151be7fc3aa820a870c87b9
d1f3118b282a765ffbaccdd3973ebd72ec0b1079
d813fe66067dfa2d635771de9d613d2a1db5f65c92903404cc8a4e3ad2c52490
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 07:05:03 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 87276
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com
178.250.0.157200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com
IP 178.250.0.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash cda50de98a15f75acd470dfb91c40964
9717d9f0ecbb58f5a058bc24b0d8acbd6c24be2d
ee3c2296a7e90e5992e79c190dbf7e70457a13f1905540c9816130d05c801a45
GET /syncframe?origin=rtus&topUrl=linkvertise.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 07:05:03 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=27f9f3c0-9174-475b-bb66-586e95d63da6; expires=Fri, 20 Oct 2023 07:05:03 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 684853
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
js.chargebee.com/v2/chargebee.js
143.204.55.124200 OK 0 B URL HTTP/2 js.chargebee.com/v2/chargebee.js
IP 143.204.55.124:0
GET /v2/chargebee.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 21 Sep 2022 10:33:55 GMT
x-amz-version-id: 9K0yGTvs5vTA89SRheSkWen60Euh_.BU
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 25 Sep 2022 07:02:35 GMT
cache-control: max-age=300,public
etag: W/"47cebc77a62a3a58004ad9d258d17c80"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sPzl8HPbDrlljwLL1sOvJxX9BUpV38ojfIWCCSFL0RmI0wgNk-c4gQ==
age: 155
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/account
172.67.187.81200 OK 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/account
IP 172.67.187.81:0
GET /api/v1/account HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 07:05:02 GMT
content-type: application/json
cache-control: no-cache, private
x-ratelimit-limit: 60
x-ratelimit-remaining: 59
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=iCiIRKYZ1LpIiaJT3NMASdgx7Fh8U6B2p1uY3MSv; expires=Mon, 25-Sep-2023 07:05:02 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wdAWuz%2ByRmhaAjMbek9HOpD8J%2F3P0TeUQZM6yp1l0KYAL7Bt0MP2vKljU0piuSzjTBNcLW7x4RO8VYDDciDrski4HH8%2FOXXnusYoa9j%2Fgh6NL05SP6ZIZKIO438bE3c9oA5MtPDSVB1MErjK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 7501e8bc8922b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
104.18.10.207200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
IP 104.18.10.207:0
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 07:05:01 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: ed8d946baeeb2ee38f4aebce8d84f641
cdn-cache: HIT
cf-cache-status: HIT
age: 7132791
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7501e8b7eea9b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.chargebee.com/v2/126-6b491c679ba93a82f801.js
143.204.55.124200 OK 0 B URL HTTP/2 js.chargebee.com/v2/126-6b491c679ba93a82f801.js
IP 143.204.55.124:0
GET /v2/126-6b491c679ba93a82f801.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-462d72037425e5b57d4075564816847f.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 21 Sep 2022 10:33:55 GMT
x-amz-version-id: ZsrQgwmTV_o_aNy.hmK4eVs5azyiiI7I
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 25 Sep 2022 07:03:03 GMT
cache-control: max-age=300,public
etag: W/"944ab4403cc2f30eef7954d7a5da9d59"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Rhwic8pH8huZ0iryiW7V7XIy3eVpHiws_JMILHur3YkNd8brp8lREg==
age: 119
X-Firefox-Spdy: h2
js.chargebee.com/v2/130-7c8f72d726fc8f47a6d9.js
143.204.55.124200 OK 0 B URL HTTP/2 js.chargebee.com/v2/130-7c8f72d726fc8f47a6d9.js
IP 143.204.55.124:0
GET /v2/130-7c8f72d726fc8f47a6d9.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-462d72037425e5b57d4075564816847f.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 21 Sep 2022 10:33:55 GMT
x-amz-version-id: 07zbwq9IGZ1JZaHLSqqTDKJz563zS5md
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 25 Sep 2022 07:01:23 GMT
cache-control: max-age=300,public
etag: W/"28f8e153e68b5931c991dc38cd63345e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8-tWZPocBWHtanluDFDaf7Kwgb8Ub1qJ-Sl7OcHHJKP1sLwme2dITQ==
age: 232
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=WNc9NV80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3pvWHZNUVBOOWkwJTJGMzJFdzlmSUZaNzVkOTMzNnF6YXF1JTJGbXJlTW1velhG
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 07:05:03 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=M8xA2l80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3pvWHZNUVBOOWkwJTJGMzJFdzlmSUZaNUlFbGl2bG9KTTBtcXpodFR1VExTcg; expires=Fri, 20 Oct 2023 07:05:04 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 305150
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.227200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.227:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 07:05:03 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 104092
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
link-center.net/475013/pokimane-1
172.67.210.26302 Found 0 B URL HTTP/2 link-center.net/475013/pokimane-1
IP 172.67.210.26:0
GET /475013/pokimane-1 HTTP/1.1
Host: link-center.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sun, 25 Sep 2022 07:05:01 GMT
location: https://linkvertise.com/475013/pokimane-1?o=sharing
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k8zgpRLV3dE3g3DRzD8M1wwf%2BP0OTHa3tQFu9TiJG3sSMxY2esi%2BkaK6r%2F1IoKcjRsR562ihw%2BbPMniKsKnfg62cl4MjxZL2mb4vsu43sO61cbnuWAhskSfC95xsnWQURNs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7501e8b56fc2b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css
185.76.9.26200 OK 0 B URL HTTP/2 maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
GET /vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css HTTP/1.1
Host: maxst.icons8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 07:05:01 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"15e81-wb0UGHttyzbvrSHlFxH4lBgB3g8"
last-modified: 2022-05-16T12:30:47.897Z
server-timing: -;dur=0;desc="Generate"
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
x-accel-expires: @1968663892
server: CDN77-Turbo
x-77-nzt: AblMCRS3y/D/SZOkAA
x-77-nzt-ray: vNO2WmnSZVg
x-cache: HIT
x-age: 10785609
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
js.chargebee.com/v2/master-b064c1e4493974d651d5.js
143.204.55.124200 OK 0 B URL HTTP/2 js.chargebee.com/v2/master-b064c1e4493974d651d5.js
IP 143.204.55.124:0
GET /v2/master-b064c1e4493974d651d5.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-462d72037425e5b57d4075564816847f.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 21 Sep 2022 10:33:55 GMT
x-amz-version-id: NyyqXN5P0YyIJLRyYCcng9eH9YFZwotR
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 25 Sep 2022 07:02:18 GMT
cache-control: max-age=300,public
etag: W/"15d1ae8d4ccbe48430fefe794408800b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2peeNRH1Wvxo-S_BytQnNJpPpfP4ywVERQN-LYbWuKyVRNPGRKIRyw==
age: 178
X-Firefox-Spdy: h2