Report - www.xyz.com/

Report Overview

Submitted URL
www.xyz.com/
IP
52.8.203.224
ASN
#16509 AMAZON-02
Submitted
2022-11-12 19:45:15
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.4 kB	6.2 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	782 B	2.4 kB	34.102.187.140
www.xyz.com	unknown			343 B	475 B	52.8.203.224
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	52.42.148.177
snap.licdn.com	1044	2014-10-06T10:43:45Z	2023-03-10T10:16:19Z	373 B	4.8 kB	23.36.76.210
cdn.linkedin.oribi.io	unknown	2022-10-19T16:36:39Z	2023-03-10T11:40:01Z	504 B	493 B	54.230.111.78
script.hotjar.com	887	2020-11-05T17:23:46Z	2023-03-10T15:35:05Z	376 B	69 kB	54.230.111.44
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	4.1 kB	8.4 kB	142.250.74.35
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-10T05:15:22Z	365 B	29 kB	31.13.72.12
www.google.com	7	2015-05-10T13:11:19Z	2023-03-10T12:19:40Z	718 B	1.3 kB	142.250.74.164
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-10T12:41:09Z	591 B	702 B	142.251.1.154
gen.xyz	113365	2014-06-17T15:14:38Z	2023-02-14T03:26:44Z	437 B	2.0 kB	172.67.74.107
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-10T13:03:15Z	375 B	54 kB	142.250.74.168
www.googleadservices.com	107	2012-06-26T16:53:06Z	2023-03-10T16:05:03Z	378 B	16 kB	142.250.74.162
static.ads-twitter.com	614	2018-06-24T00:08:39Z	2023-03-10T09:31:28Z	356 B	101 kB	151.101.84.157
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-10T16:21:16Z	1.4 kB	25 kB	142.250.74.66
in.hotjar.com	1746	2018-10-22T19:15:59Z	2023-03-10T11:32:21Z	468 B	287 B	54.78.147.197
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-10T13:35:34Z	364 B	21 kB	142.250.74.174
analytics.twitter.com	526	2013-04-10T21:53:18Z	2023-03-10T09:31:30Z	711 B	613 B	104.244.42.3
www.linkedin.com	608	2015-06-18T18:10:03Z	2023-03-10T11:11:31Z	555 B	2.8 kB	13.107.42.14
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350 B	1.0 kB	54.230.245.118
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	1.7 kB	3.7 kB	93.184.220.29
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
static.hotjar.com	641	2014-11-01T06:14:27Z	2023-03-10T09:34:35Z	369 B	79 kB	54.230.111.8
vars.hotjar.com	1014	2020-11-05T11:13:14Z	2023-03-09T18:15:23Z	497 B	1.7 kB	54.230.111.85
t.co	569	2012-07-25T21:09:44Z	2023-03-10T09:31:30Z	694 B	593 B	104.244.42.133
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	599 B	100 kB	31.13.72.36
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.8 kB	57 kB	34.120.237.76
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-10T07:09:08Z	1.4 kB	1.6 kB	142.250.74.35
px.ads.linkedin.com	522	2018-06-15T13:29:56Z	2023-03-10T11:11:31Z	914 B	2.2 kB	13.107.42.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2022-11-12	medium	xyz.com	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-12	medium	xyz.com	Sinkholed

JavaScript (44)

	URL	Size	First Seen	Last Seen
	gen.xyz/	254 B	2023-03-07	2024-04-25
Pretty URL gen.xyz/ IP 172.67.74.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2024-04-25 12:11:35 Times Seen1583 Hash 38d526d4f322e3a550fe39e8206c36d5 f3a2c9e4f91a094f51c4499ad2d8aaa29dd791d5 eb9084d853891411ee7b809cca094411a91190f54f9bbf6adfad39ffaa6cbe49 Loading...

	gen.xyz/wp-content/themes/xyz/js/jquery-ui.min.js?cache=022	240 kB	2023-03-07	2024-04-26
Pretty URL gen.xyz/wp-content/themes/xyz/js/jquery-ui.min.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:04:01 Last Seen2024-04-26 00:44:26 Times Seen4576 Hash d935d506ae9c8dd9e0f96706fbb91f65 7f650ee30c6a4d3eea04032039b20ff72997559b c4d8dbe77feb63e5a61bee0bead4e5f66e8fa6a927599bd1b74aced52467273c Loading...

	gen.xyz/wp-content/themes/xyz/js/lib/datatables.local.js?ver=6.0.3	437 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/wp-content/themes/xyz/js/lib/datatables.local.js?ver=6.0.3 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 8d7f3f40d460d72615bb6311b0bb3ede e484b8feee6b982438a1e7cf199610f39e65e4e8 aad2385045abd7a0d542d55d0338369ecb7955198283baea2cec5ab8a28d4a7b Loading...

	gen.xyz/	425 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 172.67.74.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 2fb3256ff4bc91dbbb18ce7ced45b563 1caa99b97dc244753613bd8236b67992c3ba2ef1 faf1ef5a1716e330c6980768327baa2b48a152007f3fec1c48d36fff352ec3ca Loading...

	gen.xyz/	160 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 172.67.74.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash e7fc539bee0344fe0aa54476c514092e ac0ae8703b53f0d6be914d41d0d1c0a2bceebbaf 5008f8259e1f829a5f31a2bbc3ac7537ddf8a2347cf3d0e9e172e5cde0b72017 Loading...

	www.googletagmanager.com/gtag/js?id=AW-939580661	138 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=AW-939580661 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:31:39 Last Seen2023-03-11 11:31:39 Times Seen1 Hash f99c6a0c9f39a680feb629766c4e9159 cc9c4de2d7cab5429749cef3c01614b7b37c5ffb fb2729a61f214dbdced78a67126034eff452714685a385f20a182ad94508560e Loading...

	gen.xyz/	403 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 172.67.74.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash e61943f932762294e78ee14f170f4fb2 4b353cfef080082c7c8ad1f2c45ad6d5b2bba2bc a4a194ec96e5a7781b169b2ab4ec8d42e3fa48399388f93e48de9cffa0b25e06 Loading...

	gen.xyz/wp-content/plugins/gravityforms/js/jquery.json-1.3.js?cache=022	4.9 kB	2023-03-07	2023-10-30
Pretty URL gen.xyz/wp-content/plugins/gravityforms/js/jquery.json-1.3.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-10-30 14:35:36 Times Seen7 Hash 6f1069afb41ed83274a60c2b17089c51 2ca09363c33ff1375bc8bc78577c2f2cfb1c0661 386089cf121ec8525a1d38e4a3663eb9ecb321f25cc5acc8b97a6a87b6ead070 Loading...

	gen.xyz/app/bower_components/datatables-tabletools/js/dataTables.tableTools.js?cache=022	84 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/app/bower_components/datatables-tabletools/js/dataTables.tableTools.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 43fb31345ea1d10e0b056622e4fb6d48 b6e3f2eb48e93fee5b845f27c5a386b2010b978a 2b38d1e7dc3a292d38e1f9af7272aa3562fe70b54ef0b1f62a23090c40528963 Loading...

	static.hotjar.com/c/hotjar-2663986.js?sv=6	4.5 kB	2023-03-11	2023-03-11
Pretty URL static.hotjar.com/c/hotjar-2663986.js?sv=6 IP 54.230.111.8 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:31:39 Last Seen2023-03-11 11:31:39 Times Seen1 Hash a9f5a1adeea56a929d4aaf750935c0af 5fae73c88cb6143b874bda7289996713cef485cf f5bf49d77bddf410d577458ef697c939ca7cf1ff172fa6dee8c4aad5e6031c2a Loading...

	gen.xyz/	2.2 kB	2023-03-08	2023-03-12
Pretty URL gen.xyz/ IP 172.67.74.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:19:35 Last Seen2023-03-12 23:11:53 Times Seen1 Hash 2c18ef98c4b9d67a99fae43fec16e44b 335469b8c48f8d3d650048e367dbdf693cfbea21 77e05e4d1be8ca5616b0c5f81c912554e7cd38a9204804d0b9dcf2ab5d0971e4 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 05:43:43 Times Seen37084308 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	gen.xyz/	426 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 172.67.74.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 2efc1378c9064381e764ab203b2704b5 883e5c9454d19c560b29f34638a4ca64d36613cf 2691d456011e71b4a7a0e2c2ed07dd55a086a2594c627b607ee9383ceac34c27 Loading...

	gen.xyz/	3.2 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 172.67.74.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash bec938113199108723728a7dd956e313 44150726fac87607d61930de52ff0f736d09b1dc 0ed5b71269fe8ed889fbb841eeca5762bd2708626c835e548f6f13fd240be348 Loading...

	gen.xyz/app/bower_components/jquery/dist/jquery.js?cache=022	272 kB	2023-03-07	2024-04-26
Pretty URL gen.xyz/app/bower_components/jquery/dist/jquery.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-26 05:42:26 Times Seen58968 Hash 6a07da9fae934baf3f749e876bbfdd96 46a436eba01c79acdb225757ed80bf54bad6416b d8aa24ecc6cecb1a60515bc093f1c9da38a0392612d9ab8ae0f7f36e6eee1fad Loading...

	gen.xyz/wp-content/plugins/gravityforms/js/gravityforms.js?cache=022	47 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/wp-content/plugins/gravityforms/js/gravityforms.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 97f5a84d21b6a9dcb2a8da1b3ad470fd 8c68c322dd935c668b0a459c67b148b88a0816cc 23775a2f8403312cd3521fd2dae3908faad9548397128fa260d480ebfdfbf34b Loading...

	gen.xyz/wp-content/themes/xyz/js/theme.min.js?cache=022	19 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/wp-content/themes/xyz/js/theme.min.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 54849f7c74a1a4f89beaf9cada1f9ee8 087550e99db3b67f87aa12234c2a80aaf74baef9 fc19f414db4faca747fa01c1acdfcd0a187080f727f29175d3857cb54ad3af30 Loading...

	connect.facebook.net/signals/config/1729164704043487?v=2.9.89&r=canary	300 kB	2023-03-11	2023-03-11
Pretty URL connect.facebook.net/signals/config/1729164704043487?v=2.9.89&r=canary IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:31:40 Last Seen2023-03-11 11:31:40 Times Seen1 Hash a0b632165c2b8dd991f04fbf0d8db76c e7a51f348ac16652a2cf112ba53e644887add5b6 610cb58662ae46fa1eac2a7bdafc3ff821f6ae44954a8c9803e9308c04353773 Loading...

	www.googleadservices.com/pagead/conversion_async.js	42 kB	2023-03-11	2023-03-11
Pretty URL www.googleadservices.com/pagead/conversion_async.js IP 142.250.74.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:40:21 Last Seen2023-03-11 12:47:19 Times Seen1 Hash 3082362cb51bc5b1cb99a36fd7970bcb d2323010cba61818f0fdb6dd20729340ea3a2fff e62a3a7c03feb2938265c69ed5a0da7d6b1a2bbdaf39e9ad0ff355818049964c Loading...

	gen.xyz/	38 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 172.67.74.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash e2f501ee4e5881de31ae499ae0e23124 f0060a310de1abe21ea0d401802c9a273022cc6b a29812874f6701f428a116f11dba401a83fb55cad51b479289bf01db328b91c9 Loading...

	gen.xyz/app/bower_components/requirejs/require.js	83 kB	2023-03-07	2023-11-27
Pretty URL gen.xyz/app/bower_components/requirejs/require.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-11-27 05:52:19 Times Seen7 Hash 640929dac3c23a448d2eebc37bc32062 bb053e41b1df0fe25058666f5055154860df9bae cba8e7dbd7b7289150954fbce84d7b1213e4d7ba50e602c78aff3be8a10606c1 Loading...

	gen.xyz/wp-content/themes/xyz/js/lib/slick.min.js?cache=022	37 kB	2023-03-07	2024-04-07
Pretty URL gen.xyz/wp-content/themes/xyz/js/lib/slick.min.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2024-04-07 22:25:49 Times Seen235 Hash e89ab0412e152eb33cba77569a88297a 213f9015e6302ab4950519647baa4a48bd01b5c4 f295ebe06fc74dd639fc1d926abdea188a4c960b17266e73da205d034ac37f0e Loading...

	snap.licdn.com/li.lms-analytics/insight.min.js	13 kB	2023-03-08	2023-03-13
Pretty URL snap.licdn.com/li.lms-analytics/insight.min.js IP 23.36.76.210 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:42 Last Seen2023-03-13 04:47:26 Times Seen1 Hash ccebe282ded746fbb6ea21ac6a200a36 75bb7beb33754f5a6fc3bee95674aef319613501 9549e9deeeab6d3a9f6ab1347e1b859fd5791cec82ff1a4175757c28b3df78e7 Loading...

	http:blank	580 B	2023-03-11	2023-03-11
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:31:40 Last Seen2023-03-11 11:31:40 Times Seen1 Hash a6090e8e410fc7a641e65ecfa743247b bbcf49eeff9a7a07e1fc770eed75f2402fa64817 f839358ea149cc131922caf6d060ce32edf40321a5aaa9ecf52eb8132b1c16df Loading...

	gen.xyz/wp-content/themes/xyz/js/lib/countUp.js	8.1 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/wp-content/themes/xyz/js/lib/countUp.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 630b91f2f82777e44cea801a6d2fed28 f834a9d4fa517d58a50ce2c9f007b7df816662fb 1eb30085d1419ea37123d5a7fb1b5cf4ccbf5be4a14389972460185d02e1ea3c Loading...

	gen.xyz/	384 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 172.67.74.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 836671b24b63c2f221bdf5a21fb40148 16fa940d6f9e9de3a444ad99fd7b7f688a5ce352 a502abed5c17ddc6a2a4b5132a38ad8ed35646e446b08872092a49da30b5fdc0 Loading...

	gen.xyz/	104 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 172.67.74.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash bed1bd3c3c8c36ecdd483d44e3222fa4 29aebfbb0ab91fdebf10e3b7936ec38224e2235b 61f59eff26bd9b08c056e9c1aa043055d7849eb3e0b46e6aaf430a4eeb141c8d Loading...

	static.ads-twitter.com/uwt.js	58 kB	2023-03-08	2024-04-20
Pretty URL static.ads-twitter.com/uwt.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:46 Last Seen2024-04-20 17:48:03 Times Seen4329 Hash 32ad004436155ec972bc50e6238b5b67 9b2cdb645c2fa5b98a9d05dcdca521fed4a17b7b cf7fcc9f75c8717897bfaef72f303fab423ce1b70c98512aeb3677e4af988dee Loading...

	gen.xyz/wp-content/themes/xyz/js/modernizr.custom.min.js?ver=2.8.3	9.9 kB	2023-03-07	2023-11-06
Pretty URL gen.xyz/wp-content/themes/xyz/js/modernizr.custom.min.js?ver=2.8.3 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:32 Last Seen2023-11-06 00:36:04 Times Seen13 Hash 333ed17397abc1cb3f95a56bc99175ee 3bb7f2d314eb569db4c616fe2b7894e6fd8d156e e754195c8dda039e2163e1164d065c6eb4fdc7a6b87dd2c4c29c8c577ec10034 Loading...

	gen.xyz/	84 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 172.67.74.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash ee44fd63b47a5702de5e3de88230d6a2 9dff9764da87aa9fc6d268f69005d512b186bf6f 01851f22d81181abf5be23e3264d711f8026ed90023b4420406652e3fb88f257 Loading...

	gen.xyz/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3	19 kB	2023-03-07	2024-04-26
Pretty URL gen.xyz/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 01:56:03 Times Seen38055 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	gen.xyz/	515 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 172.67.74.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 7d5aa9a1dd78c7c847b222cf58f1a8f5 b126f92163bf1a49ef123fcd3a47146d732ceb1b 0ba1fce9cbe98b8bdd18b80cf55ef6f7e915102cf74e6978965b3c58c3ebcd7a Loading...

	gen.xyz/	1.4 kB	2023-03-11	2023-03-11
Pretty URL gen.xyz/ IP 172.67.74.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:31:40 Last Seen2023-03-11 11:31:40 Times Seen1 Hash d4e213a7c40d8b4ac24504e64511a1f8 2240eec8e167f47182b55fd7ab958a025422f9de fcfb9e2b62145b76571ca4cef9ec30ce883d23cedcff3a29599d935f845dd1b8 Loading...

	gen.xyz/app/bower_components/jquery-migrate-official/dist/jquery-migrate.js?cache=022	18 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/app/bower_components/jquery-migrate-official/dist/jquery-migrate.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash b9a677088bc014840e05844b481dd835 5321b828654198d3a75374b9a529f38bab996889 67b010c8e18b0bafb1c2ded6b2101abcd5e4e6300990ef58000047f8f280f69b Loading...

	gen.xyz/wp-content/themes/xyz/js/punycode.js?cache=022	12 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/wp-content/themes/xyz/js/punycode.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 780cbb8b0cfebfe41d46a8c1fd5f2577 c41e1d416e32fb59087d04db55d65e5656131663 d0d94f52816ab288570a660d468d8f52b5c6cc9ec7521599d66d410996a66fef Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-26
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-26 00:32:39 Times Seen1530 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	gen.xyz/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-26
Pretty URL gen.xyz/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 03:59:20 Times Seen31834 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1668282305356&cv=11&fst=1668282305356&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=466792434.1668282305&data=event%3Dgtag.config&rfmt=3&fmt=4	1.9 kB	2023-03-11	2023-03-11
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1668282305356&cv=11&fst=1668282305356&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=466792434.1668282305&data=event%3Dgtag.config&rfmt=3&fmt=4 IP 142.250.74.66 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:31:40 Last Seen2023-03-11 11:31:40 Times Seen1 Hash 14e533af281c8956963bf00cbeff7b03 969c4e670c5743e7ba29842886f5707a3f44768c cb8754d3861a3047a75d262c60e39794efc41dc1b5c850ab77fd6a3f7b9391b4 Loading...

	vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html	2.3 kB	2023-03-10	2023-03-17
Pretty URL vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html IP 54.230.111.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 00:23:49 Last Seen2023-03-17 21:22:49 Times Seen1 Hash 34086a2f3d61b9a459a6141d1343ece0 ae09be0d58acca43ea80769df13cbbfea21a9ccb f639e1347dd440a977783f03b6524b2deda7b39daa1060b3519c64c337c6ae55 Loading...

	www.google.com/pagead/1p-conversion/939580661/?random=1668282305365&cv=11&fst=1668282305365&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&label=_sg9CPzitd8CEPW5g8AD&hn=www.google.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&gtm_ee=1&auid=466792434.1668282305&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4	43 B	2023-03-07	2024-04-20
Pretty URL www.google.com/pagead/1p-conversion/939580661/?random=1668282305365&cv=11&fst=1668282305365&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&label=_sg9CPzitd8CEPW5g8AD&hn=www.google.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&gtm_ee=1&auid=466792434.1668282305&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2024-04-20 17:48:03 Times Seen63949 Hash ad8b6f08655797587cdec719a94efe59 182adf5a140796f81e930649d05654dbf22fd5b7 77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6 Loading...

	connect.facebook.net/en_US/fbevents.js	108 kB	2023-03-08	2023-03-11
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:17:55 Last Seen2023-03-11 23:19:05 Times Seen1 Hash 5e511b3578ab77f7aee198f9889565f6 5dc876ccccd1e545fbf432ae4af297366278525a a257990e7458c455a246d0d7555f678b16505e738ee5d2641612230d790f941f Loading...

	gen.xyz/app/js/gen.js?v=022	2.0 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/app/js/gen.js?v=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash a18909a76ea838afea6e6c726a6ac86e b12e41f4c136d7ecded8f86a2117fc84e2983a9b 274a39282ded9f2e5a9ef5426b4bcfbf7ecde1aab1507391c0df0a217a25005d Loading...

	gen.xyz/app/bower_components/datatables/media/js/jquery.dataTables.js?cache=022	436 kB	2023-03-07	2023-05-11
Pretty URL gen.xyz/app/bower_components/datatables/media/js/jquery.dataTables.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-05-11 11:06:21 Times Seen3 Hash 89714e2311c98d375b09050e68e686df bad157c0fde8e982d1ef06d302c038d8a5ec21ed 25369dbf8cd6c54a553e0586a11376d371d73d71f66564ffd88a7c1b2a13ace9 Loading...

	gen.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-26
Pretty URL gen.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 04:19:35 Times Seen68652 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

HTTP Transactions (62)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3d0727e32cd103ddd4b73f28c81758aa
197a7bf43d63723fc532c23c6dced68d5cc36652
d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3052
Expires: Sat, 12 Nov 2022 20:35:55 GMT
Date: Sat, 12 Nov 2022 19:45:03 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
de470c6bab46e7c4b7cc69f392900fe7
189e4dcc4c2b8bf1f050e06bd68bce8a99618918
86f57134ddebd23a25615dc4d59c4b1ca8919e3e0495e1f006cbe7c0f39aa27e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3777
Cache-Control: max-age=143349
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:03 GMT
Etag: "636f75f3-1d7"
Expires: Mon, 14 Nov 2022 11:34:12 GMT
Last-Modified: Sat, 12 Nov 2022 10:31:15 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 12 Nov 2022 19:44:14 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 49
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5076aaa9f4ccd602540286ce0590cb9a
bbf7936a8413a564478971d9e19beb6338cbc869
00e3b967c579b0ccf709b78d497a43d95646b16eb50925fef1e2694c58f290b2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00E3B967C579B0CCF709B78D497A43D95646B16EB50925FEF1E2694C58F290B2"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9575
Expires: Sat, 12 Nov 2022 22:24:38 GMT
Date: Sat, 12 Nov 2022 19:45:03 GMT
Connection: keep-alive

www.xyz.com/

52.8.203.224

301 Moved Permanently

241 B

URL HTTP/1.1
www.xyz.com/
IP
52.8.203.224:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
241 B (241 bytes)
Hash
37a3e84f855ce249326aee6a924cc82a
90102b83b36dd44688aa8d6bc352deb64de03169
67eb2485441493c49d7dfbbea1ab68027e7b1f68f03b482e0f5e99f30460388e

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.xyz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx/1.15.12
Date: Sat, 12 Nov 2022 19:45:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.5.9-1ubuntu4.29
Location: https://gen.xyz/

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Rt6mVPd0TFxwrESrKsjYpUPxzco0KtB1gy0jSm3jdWtsps+zow+7F8lASXjxu1B6TKoHSGEg2023fzZrV9FydQ==
x-amz-request-id: RHQD11M61MFV638W
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 12 Nov 2022 18:50:23 GMT
age: 3280
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 19:45:03 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Cache-Control, Retry-After, Content-Length, Expires, ETag, Pragma, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 12 Nov 2022 19:44:48 GMT
cache-control: public,max-age=3600
age: 16
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ae51f1958554de4457c22a7d5a9ba8b6
173e90a8c6ee36b7ec569dbea47436a90d7e7c76
dc43a04e1e26243f63a8e628f2ebcb23a9527fd4bc40dc6d1d61879b0f95bb21

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6295
Cache-Control: max-age=140802
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:04 GMT
Etag: "636f622c-1d7"
Expires: Mon, 14 Nov 2022 10:51:46 GMT
Last-Modified: Sat, 12 Nov 2022 09:06:52 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.42.148.177

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.42.148.177:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KagmkJ8JoCs+/abdPaBeYQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hr/Nc9FEl6HG7nYgOJM4IofXxDg=

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e7dc2623cb841be51d3e8857e015d8e1
cbfdb2a7b965598de893fef89d47e17763501acf
df1fc0809a603469e6abcf1f07a13d792550d68c862f80e38c00e47e9b233a5b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
56f73d46671416e78467be58979f7379
d62eaf6b5abdd80f083040cc09137b7236826f82
00d6cdaa9edd0ed41b8ec324c862bb270a5dd578315c1aa3d59ba8e5f03dc31b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=AW-939580661

142.250.74.168

200 OK

53 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=AW-939580661
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
53 kB (53028 bytes)
Hash
8684eee8007391b86f5e68b44c182348
9605f978a0351231132ae4cf3a3d8148ff6ab53b
c1b7997d51422670434bf49638f29526d8e5b9893f23136d252124c7258e7660

HTTP Headers

GET /gtag/js?id=AW-939580661 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 12 Nov 2022 19:45:04 GMT
expires: Sat, 12 Nov 2022 19:45:04 GMT
cache-control: private, max-age=900
last-modified: Sat, 12 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 53028
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googleadservices.com/pagead/conversion_async.js

142.250.74.162

200 OK

15 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion_async.js
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1654)
Size
15 kB (15191 bytes)
Hash
43554e104968194aa58c92a60f87b85f
83b93428a7de45e05dee9935cd267ded8fbe3047
761e05cdcb9af97e1de328b96155b9c5595111aadeb3de62c28a07bfb4c68c71

HTTP Headers

GET /pagead/conversion_async.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 12 Nov 2022 19:45:04 GMT
expires: Sat, 12 Nov 2022 19:45:04 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 2264052217849554208
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15191
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e7dc2623cb841be51d3e8857e015d8e1
cbfdb2a7b965598de893fef89d47e17763501acf
df1fc0809a603469e6abcf1f07a13d792550d68c862f80e38c00e47e9b233a5b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c7532175bdda623cb1f7d83c236772d4
71a1540c0d3e9acb10807b74b44228af537c6785
fba2db2a9be13aebe95a85d8c7086b97794e4ebc19781a967c4d157f78c4626a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3235
Expires: Sat, 12 Nov 2022 20:39:00 GMT
Date: Sat, 12 Nov 2022 19:45:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3235
Expires: Sat, 12 Nov 2022 20:39:00 GMT
Date: Sat, 12 Nov 2022 19:45:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3235
Expires: Sat, 12 Nov 2022 20:39:00 GMT
Date: Sat, 12 Nov 2022 19:45:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3235
Expires: Sat, 12 Nov 2022 20:39:00 GMT
Date: Sat, 12 Nov 2022 19:45:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3235
Expires: Sat, 12 Nov 2022 20:39:00 GMT
Date: Sat, 12 Nov 2022 19:45:05 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9012 bytes)
Hash
516f1bfefb1c1a737ea2441f85343b32
0cc22d7bf9092fb30f31e2ca8f242c197b891669
733824d4f6f7c5b54ce4e02ecaf152cfc1e10f3f6a801d7e2c55a02460e40087

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9012
x-amzn-requestid: 83eac9e7-5387-4e11-9769-182fa3f7fffb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdNC6FxzoAMF80w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec212-5ca277b90a5a9a4c437edc1e;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PrJoEROPymrtc0egNlWRoOMjohiCo3zReD01qAHwByaSiXarfRS0XQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 22:00:43 GMT
age: 78262
etag: "0cc22d7bf9092fb30f31e2ca8f242c197b891669"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5583 bytes)
Hash
85c6f450b38f41a2fb924d6d9a9cbff8
691f59b65ca9fde4f59bbf96b37071e07351f190
c8f877488a2cf65f0d9829384fd4113847722a1b4df94b6b1d5788699689722c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5583
x-amzn-requestid: e844f42a-e87e-4e61-8c97-137c07c5ae28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNeQ9Ho7IAMF5_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687739-62c44d2f7d23632e74895bd8;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uHlIN1IVGCFUVl5lx5pFSux0YncseT2HQjiwFDL9eaEaBa9CdnCl8g==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 04:50:44 GMT
age: 53661
etag: "691f59b65ca9fde4f59bbf96b37071e07351f190"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9f88d70-47ed-4a86-9b90-ea63f189df00.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5902 bytes)
Hash
94a390953f36bf9902cb9f04007c36c1
13535f16f207d4c19c1b6019757f6739a4531eeb
37d73300955a979e5b9d3dabc6e924c4e9734c6c63d92c42c709f8cb0d5aeabb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9f88d70-47ed-4a86-9b90-ea63f189df00.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5902
x-amzn-requestid: 9c8be25c-9c96-4861-89c8-8b7bf06ffc16
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdNBrH2DoAMFqbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec20a-6c770a86581d1f7f4599684f;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ncUYc6gH2CYjxAwoVCC4MEj8Va5GGn1ZAg-gBmFtm5gzYIe898Ittg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:12 GMT
age: 79193
etag: "13535f16f207d4c19c1b6019757f6739a4531eeb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b650f84-0cd0-4921-bc04-f0ea0459e4d1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8482 bytes)
Hash
084ca839d34b15916cd2f5034440a1ef
7764777ce9a862c1590712ef33032df72edefffd
b8893d7f327f88316cb909ded7fd8f4e1809190a7da807677785bf953f6e33fb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b650f84-0cd0-4921-bc04-f0ea0459e4d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8482
x-amzn-requestid: 79e5e211-afc8-4531-b361-6f6f3386f16e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUGJsIAMF7Mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-5a0ba4a93eba91c81ba3a9bc;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CxrOwBRw0YlwOnKPJZI7h7YEwOAYS3ZtFa8q2o5rDvQct6pehCAFAg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:51:43 GMT
age: 78802
etag: "7764777ce9a862c1590712ef33032df72edefffd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facfcee70-832e-4f2d-8fc7-55d2bfff651e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8633 bytes)
Hash
eac2ed4bece6282c8273a58a88371e2e
2d90ff66079e8ffbaaa367a6bfc08927e7cc424d
aea97fd7d90302edcb3e0c08507d682e02166e8ddd4d082fc4f5435af438594c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facfcee70-832e-4f2d-8fc7-55d2bfff651e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8633
x-amzn-requestid: 8bdfbfbb-5193-4c62-ba1b-c906f7548676
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhSEC1oAMF8tw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-39b4c2954dbc8e4c40a2c9d8;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lxrfhO5oOGvECIrlZYKsfXOTZZksAIIHAafyRM-FdRXAaBVZs5cEQA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:21 GMT
age: 79184
etag: "2d90ff66079e8ffbaaa367a6bfc08927e7cc424d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F073ec866-b693-4f96-82bf-76ba051797c9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6577 bytes)
Hash
faa8e3cf2ab3c1d53a1735def5bb7476
ccc1ec5ebb5090c6255dcb1e8899e95cdd91e12f
e81a8fa312ec478871427f1d04ba7fe563573c683809153f75dec8df979d6efe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F073ec866-b693-4f96-82bf-76ba051797c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6577
x-amzn-requestid: b4587cfb-6041-453c-9e74-fa35ecd31448
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMjIGHRoAMF26g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec147-29e7ec741b0e6f6f674aef75;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hsMmHIBEt_4cL455goPqDKQVQA75u4oGFbSxsGP_e_0uG7SZmSLBhQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 22:00:57 GMT
age: 78248
etag: "ccc1ec5ebb5090c6255dcb1e8899e95cdd91e12f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

snap.licdn.com/li.lms-analytics/insight.min.js

23.36.76.210

200 OK

4.5 kB

URL HTTP/2
snap.licdn.com/li.lms-analytics/insight.min.js
IP
23.36.76.210:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (12826)
Size
4.5 kB (4530 bytes)
Hash
806d185619a4ef5951ab91810117e4ba
f40031c0ea5718f6d9a0a35e8ca60262daedc440
06489a801966cb9e7b467aed4edb63aa10bc2e588d259054ef696ade54e4b19f

HTTP Headers

GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 09 Nov 2022 19:27:04 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=59654
date: Sat, 12 Nov 2022 19:45:07 GMT
content-length: 4530
x-cdn: AKAM
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 12 Nov 2022 18:41:09 GMT
expires: Sat, 12 Nov 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 3838
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
125323db3ff29b80f81fae08e2d58df6
5a407fed4d6d43f2a4ccc6d5168f147d7f2af4a2
6e100312be7aa9f36164adeb96b6cead8685c4c0a1d950334128f598b17a945b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5917
Cache-Control: max-age=137171
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:07 GMT
Etag: "636f5579-1d7"
Expires: Mon, 14 Nov 2022 09:51:18 GMT
Last-Modified: Sat, 12 Nov 2022 08:12:41 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
23dd8b12572b78e5d32d491b3d0d9d32
718c3e3abcc55c295c72e5ee4e5441fe5acc1363
f72c359246ea96d4f28bbc5aee8d4d24fcba9f47dfc691693f6c49e370d9b103

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

static.ads-twitter.com/uwt.js

151.101.84.157

200 OK

101 kB

URL HTTP/2
static.ads-twitter.com/uwt.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
data
Size
101 kB (100798 bytes)
Hash
a3e0b42592cb0a4f4bc7fbda4cd55ce3
b284868266e77c726220ca52b42b442bc66e9a55
970f1af2ad8b140b6ff57e58646b05f1900963ee716ab920cf389596030d1e7d

HTTP Headers

GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Sat, 12 Nov 2022 19:45:07 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1665-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
86d1ab5f5a5b326dd100a4bfcda8ceed
ed17be3586e93321dd2ab1a340ae41d6f86e293d
db7591e84a7adaa4ff3ddd38458e379bbb15751e31a10937c6202cba94a8c602

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
23dd8b12572b78e5d32d491b3d0d9d32
718c3e3abcc55c295c72e5ee4e5441fe5acc1363
f72c359246ea96d4f28bbc5aee8d4d24fcba9f47dfc691693f6c49e370d9b103

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

28 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
28 kB (27815 bytes)
Hash
e68ceaeba1b99548159ea2952a6f7f9c
2a3ecb1e5245e8d296ccdcb1bc139b3119460e97
fd4a418f0a67fc363fee8320bb7e11c4e5caa79325c6e80c7233d8f20e815f83

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 3wJv4db20gwKrqNl5tjsVp73hauCMG9sYnSMDedta3kbo/vr0B/CCvztxD73nWPL/7oFj3sDC4vs8IqNMvP7Tw==
content-length: 27815
x-fb-trip-id: 2074150462
date: Sat, 12 Nov 2022 19:45:07 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1668282305365&cv=11&fst=1668282305365&fmt=3&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&label=_sg9CPzitd8CEPW5g8AD&hn=www.google.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&gtm_ee=1&auid=466792434.1668282305&data=event%3Dconversion&gcp=1&ct_cookie_present=1

142.250.74.66

200 OK

22 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1668282305365&cv=11&fst=1668282305365&fmt=3&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&label=_sg9CPzitd8CEPW5g8AD&hn=www.google.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&gtm_ee=1&auid=466792434.1668282305&data=event%3Dconversion&gcp=1&ct_cookie_present=1
IP
142.250.74.66:0
ASN
#15169 GOOGLE

File type
data
Size
22 kB (22296 bytes)
Hash
d6d2efc842205d10ceaa82919aeb0bb0
f6eec1aa28b0eb8cc24578c84d1401e0501cf232
fd403f6b6899a0bc384747680e0522a4612aa0bc6b3693aec6e538153a1c067d

HTTP Headers

GET /pagead/viewthroughconversion/939580661/?random=1668282305365&cv=11&fst=1668282305365&fmt=3&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&label=_sg9CPzitd8CEPW5g8AD&hn=www.google.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&gtm_ee=1&auid=466792434.1668282305&data=event%3Dconversion&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 12 Nov 2022 19:45:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 12-Nov-2022 20:00:07 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/pagead/1p-conversion/939580661/?random=1668282305365&cv=11&fst=1668282305365&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&label=_sg9CPzitd8CEPW5g8AD&hn=www.google.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&gtm_ee=1&auid=466792434.1668282305&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4

142.250.74.164

302 Found

63 B

URL HTTP/2
www.google.com/pagead/1p-conversion/939580661/?random=1668282305365&cv=11&fst=1668282305365&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&label=_sg9CPzitd8CEPW5g8AD&hn=www.google.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&gtm_ee=1&auid=466792434.1668282305&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26

HTTP Headers

GET /pagead/1p-conversion/939580661/?random=1668282305365&cv=11&fst=1668282305365&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&label=_sg9CPzitd8CEPW5g8AD&hn=www.google.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&gtm_ee=1&auid=466792434.1668282305&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 12 Nov 2022 19:45:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/939580661/?random=1668282305365&cv=11&fst=1668282305365&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&label=_sg9CPzitd8CEPW5g8AD&hn=www.google.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&gtm_ee=1&auid=466792434.1668282305&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1668282305356&cv=11&fst=1668282305356&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=466792434.1668282305&data=event%3Dgtag.config&rfmt=3&fmt=4

142.250.74.66

200 OK

892 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1668282305356&cv=11&fst=1668282305356&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=466792434.1668282305&data=event%3Dgtag.config&rfmt=3&fmt=4
IP
142.250.74.66:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1889), with no line terminators
Size
892 B (892 bytes)
Hash
04fda1b0cd3663ac8200f49a902a9ebc
74bf00529e46dba5190ea33c6bcc8dbc75c77a09
85f16fc9256724f24a018a516b0cc56fb6f16bf30070fa31f9292e97371d88fd

HTTP Headers

GET /pagead/viewthroughconversion/939580661/?random=1668282305356&cv=11&fst=1668282305356&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=466792434.1668282305&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 12 Nov 2022 19:45:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 892
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 12-Nov-2022 20:00:07 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-2663986.js?sv=6

54.230.111.8

200 OK

78 kB

URL HTTP/2
static.hotjar.com/c/hotjar-2663986.js?sv=6
IP
54.230.111.8:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
78 kB (78294 bytes)
Hash
ec0ee08e3bf48ad67e8046c9063e6376
9dc9cd5413a241b6525ed92ec97e6ab7578e5db2
8d43e81c53714df00567c3f3a02d273dd6fefba079ecf7a0e804ba0261c23e5b

HTTP Headers

GET /c/hotjar-2663986.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sat, 12 Nov 2022 19:44:09 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/a9f5a1adeea56a929d4aaf750935c0af
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Flky5S90Zv_9v-fcqigFd4GHNRd2o7gz1GcI6WZoKdDWwf6DYqGrIg==
age: 58
X-Firefox-Spdy: h2

vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html

54.230.111.85

200 OK

1.0 kB

URL HTTP/2
vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html
IP
54.230.111.85:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Size
1.0 kB (1035 bytes)
Hash
b6d25d1350d6a014d80689f389e76f97
a957e3d99790759f71a4d9e2fdaf819f60e8c569
fb2a1528b99d3eb4c9374642b5045efaf6e06666fdd48a55560a375449b01079

HTTP Headers

GET /box-c6ca1c87e308a39aabb76b56ba54398b.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Fri, 04 Nov 2022 12:22:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "b6d25d1350d6a014d80689f389e76f97"
last-modified: Fri, 04 Nov 2022 12:21:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rDkZh5l6JpQIGBP9x3BzccZxsNlVcFL7jPS2QjRu_0SjUGxXphx6xA==
age: 717781
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
23dd8b12572b78e5d32d491b3d0d9d32
718c3e3abcc55c295c72e5ee4e5441fe5acc1363
f72c359246ea96d4f28bbc5aee8d4d24fcba9f47dfc691693f6c49e370d9b103

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e569acd833d180f3c2fba0919fbeb704
60a3121c9bf8e08a8a7fe70001c24b6f8c9981f5
994bee0670c93479c3e835985d24d7ce41fbc0a3013e173d79ea1ea5f63ac85c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

314 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
314 B (314 bytes)
Hash
dc7f412a1408e15b6b7f02e9f06e2c68
3972a1c83b74495c8ab9506d61ec64b33ff33a2b
217595b2dc5d3920b2e79aac8512c77beb1661906b0a2d36f1512d5818a33f04

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6130
Cache-Control: max-age=150715
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:07 GMT
Etag: "636f898c-13a"
Expires: Mon, 14 Nov 2022 13:37:02 GMT
Last-Modified: Sat, 12 Nov 2022 11:54:52 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 314

t.co/i/adsct?bci=3&eci=2&event_id=5fc66be8-fb5d-4f6a-a45e-d7991a2c3a1b&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2de4d55c-dae1-4514-94c1-6f8ec1784154&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.29

104.244.42.133

200 OK

43 B

URL HTTP/2
t.co/i/adsct?bci=3&eci=2&event_id=5fc66be8-fb5d-4f6a-a45e-d7991a2c3a1b&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2de4d55c-dae1-4514-94c1-6f8ec1784154&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.29
IP
104.244.42.133:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=5fc66be8-fb5d-4f6a-a45e-d7991a2c3a1b&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2de4d55c-dae1-4514-94c1-6f8ec1784154&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 12 Nov 2022 19:45:07 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=7907fb25-5c3c-4d05-a89f-c5703391dac5; Max-Age=63072000; Expires=Mon, 11 Nov 2024 19:45:07 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: d214d2f5436fb963
strict-transport-security: max-age=0
x-response-time: 115
x-connection-hash: 7223a0dc31fb30d65f353ed7f20d8ba974dd8e38460aaaa8ad79b0f3d2040d6a
X-Firefox-Spdy: h2

cdn.linkedin.oribi.io/partner/50162/domain/gen.xyz/token

54.230.111.78

200 OK

0 B

URL HTTP/2
cdn.linkedin.oribi.io/partner/50162/domain/gen.xyz/token
IP
54.230.111.78:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /partner/50162/domain/gen.xyz/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://gen.xyz/
Origin: https://gen.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 0
date: Sat, 12 Nov 2022 00:59:29 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YEl5d2z6L3-TCaUBv091EVMnxHc130OL76oJQW-mMgOvzG8-c9AyeA==
age: 67539
X-Firefox-Spdy: h2

script.hotjar.com/modules.b738078c6419b4df4360.js

54.230.111.44

200 OK

68 kB

URL HTTP/2
script.hotjar.com/modules.b738078c6419b4df4360.js
IP
54.230.111.44:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (48714)
Size
68 kB (68482 bytes)
Hash
8f0c4297c2d458710337dddf28967bf3
d08ccfbb3663051f6b4c9cb5e04b545832d77906
4ad2290f9d61995edab85f4a0ac65d3134b6cba364b18b7f3047a939f3a775d3

HTTP Headers

GET /modules.b738078c6419b4df4360.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 68482
date: Fri, 11 Nov 2022 12:14:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "8f0c4297c2d458710337dddf28967bf3"
last-modified: Fri, 11 Nov 2022 12:13:35 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ltoRBHsTt5mFpD4KLN8nZdBB5-SK4CK8-z8MDuMtdycn6_9mwip_HA==
age: 113462
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7178c97c15d49f214dd4e238628d8123
60c15885ccb9910621dd369fc0578a344bdab734
c668912ace8d705981ac3a28ffef7075f373ef1352b58d6384f44aae1c386baf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7178c97c15d49f214dd4e238628d8123
60c15885ccb9910621dd369fc0578a344bdab734
c668912ace8d705981ac3a28ffef7075f373ef1352b58d6384f44aae1c386baf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-51822516-1&cid=1788863603.1668282307&jid=1033774878&gjid=1464402796&_gid=1396487654.1668282307&_u=IGBAgEABAAAAAEAAI~&z=1764827310

142.251.1.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-51822516-1&cid=1788863603.1668282307&jid=1033774878&gjid=1464402796&_gid=1396487654.1668282307&_u=IGBAgEABAAAAAEAAI~&z=1764827310
IP
142.251.1.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-51822516-1&cid=1788863603.1668282307&jid=1033774878&gjid=1464402796&_gid=1396487654.1668282307&_u=IGBAgEABAAAAAEAAI~&z=1764827310 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://gen.xyz
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://gen.xyz
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 12 Nov 2022 19:45:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

314 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
314 B (314 bytes)
Hash
e332a4c800bd0aade95654f16a69d09b
72f01080e896b4b0433091580232c78c6383af35
46da569f33746e18130655033c27df3dd298a59c39b47adb5542b6509835019f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5119
Cache-Control: max-age=104331
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:08 GMT
Etag: "636ed850-13a"
Expires: Mon, 14 Nov 2022 00:43:59 GMT
Last-Modified: Fri, 11 Nov 2022 23:18:40 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 314

www.google.no/pagead/1p-user-list/939580661/?random=1668282305356&cv=11&fst=1668279600000&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1531669931&rmt_tld=1&ipr=y

142.250.74.35

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/939580661/?random=1668282305356&cv=11&fst=1668279600000&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1531669931&rmt_tld=1&ipr=y
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/939580661/?random=1668282305356&cv=11&fst=1668279600000&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1531669931&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 12 Nov 2022 19:45:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/pagead/1p-conversion/939580661/?random=1668282305365&cv=11&fst=1668282305365&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&label=_sg9CPzitd8CEPW5g8AD&hn=www.google.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&gtm_ee=1&auid=466792434.1668282305&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0

142.250.74.35

200 OK

63 B

URL HTTP/2
www.google.no/pagead/1p-conversion/939580661/?random=1668282305365&cv=11&fst=1668282305365&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&label=_sg9CPzitd8CEPW5g8AD&hn=www.google.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&gtm_ee=1&auid=466792434.1668282305&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26

HTTP Headers

GET /pagead/1p-conversion/939580661/?random=1668282305365&cv=11&fst=1668282305365&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&label=_sg9CPzitd8CEPW5g8AD&hn=www.google.com&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&gtm_ee=1&auid=466792434.1668282305&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gen.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 12 Nov 2022 19:45:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7178c97c15d49f214dd4e238628d8123
60c15885ccb9910621dd369fc0578a344bdab734
c668912ace8d705981ac3a28ffef7075f373ef1352b58d6384f44aae1c386baf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 19:45:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

px.ads.linkedin.com/collect?v=2&fmt=js&pid=50162&time=1668282306906&url=https%3A%2F%2Fgen.xyz%2F

13.107.42.14

302 Found

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=50162&time=1668282306906&url=https%3A%2F%2Fgen.xyz%2F
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=50162&time=1668282306906&url=https%3A%2F%2Fgen.xyz%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D50162%26time%3D1668282306906%26url%3Dhttps%253A%252F%252Fgen.xyz%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQI1RolkSrOQpQAAAYRtX9Yfm4YBqMCz36k_aJjbOMuGo9i_96fFhTTyHdi1rrDmgT2fEGS3qCl6hg; Max-Age=2592000; Expires=Mon, 12 Dec 2022 19:45:08 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQLgxXLQnhqkqQAAAYRtX9YfZEIr0qK1ddeq5oogYoHxWLoVZcpEb2tUs_8AXJjNY4L-v3B3jclH_a6lx-IsSQ; Max-Age=2592000; Expires=Mon, 12 Dec 2022 19:45:08 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&c7ca29e4-1301-461e-8a15-870b9f2f3a73"; domain=.linkedin.com; Path=/; Secure; Expires=Sun, 12-Nov-2023 19:45:08 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2430:u=1:x=1:i=1668282308:t=1668368708:v=2:sig=AQE6bpEoFBQgPKXNUF2JqKoM9nDQbyd0"; Expires=Sun, 13 Nov 2022 19:45:08 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXtSz5cRP7ICfotLElsmQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 8838EAA2AFCB490F81FC997E2FC015C0 Ref B: OSL30EDGE0112 Ref C: 2022-11-12T19:45:08Z
date: Sat, 12 Nov 2022 19:45:07 GMT
content-length: 0
X-Firefox-Spdy: h2

analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=5fc66be8-fb5d-4f6a-a45e-d7991a2c3a1b&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2de4d55c-dae1-4514-94c1-6f8ec1784154&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.29

104.244.42.3

200 OK

43 B

URL HTTP/2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=5fc66be8-fb5d-4f6a-a45e-d7991a2c3a1b&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2de4d55c-dae1-4514-94c1-6f8ec1784154&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.29
IP
104.244.42.3:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=5fc66be8-fb5d-4f6a-a45e-d7991a2c3a1b&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2de4d55c-dae1-4514-94c1-6f8ec1784154&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 12 Nov 2022 19:45:07 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_tXFL7clZFqg9m8y9D57fUQ=="; Max-Age=63072000; Expires=Mon, 11 Nov 2024 19:45:08 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 5563a039a0c83d01
strict-transport-security: max-age=631138519
x-response-time: 108
x-connection-hash: f5346f5bd8f95930d7dd3dbfb0f330abb9e907dd0619e50a81baccca08ad7b92
X-Firefox-Spdy: h2

www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D50162%26time%3D1668282306906%26url%3Dhttps%253A%252F%252Fgen.xyz%252F%26liSync%3Dtrue

13.107.42.14

302 Found

0 B

URL HTTP/2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D50162%26time%3D1668282306906%26url%3Dhttps%253A%252F%252Fgen.xyz%252F%26liSync%3Dtrue
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D50162%26time%3D1668282306906%26url%3Dhttps%253A%252F%252Fgen.xyz%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gen.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=50162&time=1668282306906&url=https%3A%2F%2Fgen.xyz%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&112c75ca-4be2-4918-8fc2-e2f3e1d64371"; Domain=.linkedin.com; Expires=Sun, 12-Nov-2023 19:45:08 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2022111219450838d33baa-ae50-4df4-828e-4a698773efc1AQFgp8Cr0r61KRDSXWTD6ayQxf4Lzq2A"; Domain=.www.linkedin.com; Expires=Sun, 12-Nov-2023 19:45:08 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjgyODIzMDg7MjswMjG10fYI9tZ2KAL0SuLBJSKrKgc+13WrdX3TWj4a4zg92g==; Domain=.linkedin.com; Expires=Thu, 11 May 2023 19:45:08 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2430:u=1:x=1:i=1668282308:t=1668368708:v=2:sig=AQE6bpEoFBQgPKXNUF2JqKoM9nDQbyd0"; Expires=Sun, 13 Nov 2022 19:45:08 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXtSz5ez/cTqMJre1kIzA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 4FDCCFC265B8442180627B0E1BA33C85 Ref B: OSL30EDGE0112 Ref C: 2022-11-12T19:45:08Z
date: Sat, 12 Nov 2022 19:45:07 GMT
content-length: 0
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.118

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.118:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
b026fbcaccb9995be95377815d02a25e
ebb4780cda49e698152f685b2714ea010f1c86e0
eed84dc168e6059f118b00315ab59bb31bef8a0d8a8335a8541e4a4c25154bfa

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=162662
Date: Sat, 12 Nov 2022 19:45:08 GMT
Etag: "636fbae0-1d7"
Expires: Mon, 14 Nov 2022 16:56:10 GMT
Last-Modified: Sat, 12 Nov 2022 15:25:20 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Oa7jmyNRjvLue0qHwGzyvPBXuxMxDW6qRdtsmsDR9bEzetAy27NVjQ==
Age: 5450

www.facebook.com/tr/?id=1729164704043487&ev=PageView&dl=https%3A%2F%2Fgen.xyz%2F&rl=&if=false&ts=1668282307593&sw=1280&sh=1024&v=2.9.89&r=canary&ec=0&o=30&ttf=4730&tts=4115&ttse=4727&fbp=fb.1.1668282307592.1494798620&it=1668282306979&coo=false&rqm=GET

31.13.72.36

200 OK

100 kB

URL HTTP/2
www.facebook.com/tr/?id=1729164704043487&ev=PageView&dl=https%3A%2F%2Fgen.xyz%2F&rl=&if=false&ts=1668282307593&sw=1280&sh=1024&v=2.9.89&r=canary&ec=0&o=30&ttf=4730&tts=4115&ttse=4727&fbp=fb.1.1668282307592.1494798620&it=1668282306979&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type
data
Size
100 kB (99921 bytes)
Hash
a3370963d075bc5f1be96210a48d4e0b
2f3c16afa08267d8029b8d99b1fea6495519aa0e
d193b2b8e053390f39a1043dd3d3fc82900495b3456ef681256e3e0beba04f30

HTTP Headers

GET /tr/?id=1729164704043487&ev=PageView&dl=https%3A%2F%2Fgen.xyz%2F&rl=&if=false&ts=1668282307593&sw=1280&sh=1024&v=2.9.89&r=canary&ec=0&o=30&ttf=4730&tts=4115&ttse=4727&fbp=fb.1.1668282307592.1494798620&it=1668282306979&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 12 Nov 2022 19:45:08 GMT
X-Firefox-Spdy: h2

px.ads.linkedin.com/collect?v=2&fmt=js&pid=50162&time=1668282306906&url=https%3A%2F%2Fgen.xyz%2F&liSync=true

13.107.42.14

200 OK

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=50162&time=1668282306906&url=https%3A%2F%2Fgen.xyz%2F&liSync=true
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=50162&time=1668282306906&url=https%3A%2F%2Fgen.xyz%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gen.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&21523e8d-8974-41d5-8404-e2452fda2f90"; domain=.linkedin.com; Path=/; Secure; Expires=Sun, 12-Nov-2023 19:45:08 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2416:u=1:x=1:i=1668282308:t=1668368708:v=2:sig=AQEj8EQSat5zVNKeGKDBmyH0QB7NuTun"; Expires=Sun, 13 Nov 2022 19:45:08 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXtSz5hbXokmyP/rxQ32w==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B9780DFF7BA04C75BBA5A40A0928BB2B Ref B: OSL30EDGE0112 Ref C: 2022-11-12T19:45:08Z
date: Sat, 12 Nov 2022 19:45:07 GMT
content-length: 0
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe8955e1-907b-43ed-a437-d4ad1f5fe742.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.5 kB (5478 bytes)
Hash
38e32fc94c445ff47da5d2907e61e3a4
c76588ccaf97fdfd6e73833083200cb49a01a4af
e4e3947b2248206c9dacfd35ff5619ca3b3ae56a7bcd565d40ed048839ffa075

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe8955e1-907b-43ed-a437-d4ad1f5fe742.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 5478
x-amzn-requestid: c06e47c6-da2a-4a70-af2a-c1268557b913
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdM67FEEIAMF-pA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec1df-0628d00244323ddf727e0b80;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:42:55 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3zeJU6wVmWDIbVDBlTYvTh8e78isxbmNC0GKWdKqdI5abbdERoyzpA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:13 GMT
age: 79199
etag: "c76588ccaf97fdfd6e73833083200cb49a01a4af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

gen.xyz/

172.67.74.107

200 OK

0 B

URL HTTP/2
gen.xyz/
IP
172.67.74.107:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: gen.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Sat, 12 Nov 2022 19:45:04 GMT
content-type: text/html; charset=UTF-8
set-cookie: AWSALBTG=hd1DaxVtMDigkDa/RKLojJykCBdm3d/op6E4Zeai/lXyL3TBkzqnHBKPpLpsP7tboYBJAkTeokAOyMoMCO7c0RP2AKaLXJV2WhS7hHKBgmoJkppFgdH4qhgpTJt8/IK9xULLqaOucMor7EVSwTyjL2aSWuUl3GJ4Nh2PBNIqpwVl0CnyMo4=; Expires=Sat, 19 Nov 2022 19:45:04 GMT; Path=/
AWSALBTGCORS=hd1DaxVtMDigkDa/RKLojJykCBdm3d/op6E4Zeai/lXyL3TBkzqnHBKPpLpsP7tboYBJAkTeokAOyMoMCO7c0RP2AKaLXJV2WhS7hHKBgmoJkppFgdH4qhgpTJt8/IK9xULLqaOucMor7EVSwTyjL2aSWuUl3GJ4Nh2PBNIqpwVl0CnyMo4=; Expires=Sat, 19 Nov 2022 19:45:04 GMT; Path=/; SameSite=None; Secure
AWSALB=sMggSsXelw3n70hJvYHZHSqODsURhQEhi9dGzTezwPUKM7MiYcpihmESub4K1i1DYaAJnTaASO7z76GlKCXhvhm7KvC1ZZmZbwebfT5IcRcFG+cSbWfrPdFDVC6U; Expires=Sat, 19 Nov 2022 19:45:04 GMT; Path=/
AWSALBCORS=sMggSsXelw3n70hJvYHZHSqODsURhQEhi9dGzTezwPUKM7MiYcpihmESub4K1i1DYaAJnTaASO7z76GlKCXhvhm7KvC1ZZmZbwebfT5IcRcFG+cSbWfrPdFDVC6U; Expires=Sat, 19 Nov 2022 19:45:04 GMT; Path=/; SameSite=None; Secure
PHPSESSID=4evid2ei170tmqvqq7rqdmjing; path=/; secure; HttpOnly
x-pingback: https://gen.xyz/xmlrpc.php
link: <https://gen.xyz/wp-json/>; rel="https://api.w.org/", <https://gen.xyz/wp-json/wp/v2/pages/4>; rel="alternate"; type="application/json", <https://gen.xyz/>; rel=shortlink
vary: Accept-Encoding
x-xyz-server: web3.gen.xyz
x-xyz-runtime: D=203274
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VgUGbLMIesYg9WDOBuescW1tcqEwglyKqfeCfkSv%2Bf0y8KOkNy4JXI8gg%2F3chjexPG1CFWl9%2F8OZ%2FUdvSVxZxOa%2BGa9VtVD1LNccGby8zdHgGn%2B5DTlbjbg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7691c40e7e91b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

in.hotjar.com/api/v2/client/sites/2663986/visit-data?sv=6

54.78.147.197

200 OK

0 B

URL HTTP/2
in.hotjar.com/api/v2/client/sites/2663986/visit-data?sv=6
IP
54.78.147.197:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /api/v2/client/sites/2663986/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 130
Origin: https://gen.xyz
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 12 Nov 2022 19:45:08 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (44)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations