linkvertise.com/421193/of2022/1
301 Moved Permanently 0 B URL HTTP/1.1 linkvertise.com/421193/of2022/1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /421193/of2022/1 HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 05 Jan 2023 23:56:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 06 Jan 2023 00:56:46 GMT
Location: https://linkvertise.com/421193/of2022/1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EQG6s7LTiWAIvjH9Cc8C9ipcjSaYSrjWcEc2JRbeGLpHfcGeZepMtF1EZ1j0Hy0AzY5TF471cQOXhuofLUi1jLH0WWgRj%2FqeB00aJRwniJy3AFX%2FT%2FAbg%2ByimHUTlRZuXaM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
X-Frame-Options: sameorigin
Server: cloudflare
CF-RAY: 78502708baeb772c-LHR
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 326898eb925368408f6f42ee173b9d89
b8b20ee34b7e7b139e7729b8e46a54ea25f54ac8
96c2c75f700ab55649882111713ca3cfb2eaf08e404c2bc245a641dc12ae168a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96C2C75F700AB55649882111713CA3CFB2EAF08E404C2BC245A641DC12AE168A"
Last-Modified: Wed, 04 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15456
Expires: Fri, 06 Jan 2023 04:14:23 GMT
Date: Thu, 05 Jan 2023 23:56:47 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ce8af3d72e7e9af609039abee59c8b87
8e1b16591fbc632df35f15e23da55ee86af31bc3
52edddbda4a3a3b778f61a491b21e6ea439e9d8024189e636b1f37b2dd7226fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52EDDDBDA4A3A3B778F61A491B21E6EA439E9D8024189E636B1F37B2DD7226FC"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15145
Expires: Fri, 06 Jan 2023 04:09:12 GMT
Date: Thu, 05 Jan 2023 23:56:47 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 05 Jan 2023 23:41:16 GMT
content-type: application/json
age: 931
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 600f7ba6e1a6fbbd176cd2df19b1e4d9
cdd72b25fd91ee980aba193b12e890096e4fe852
860214860947dfbe26099f018747154823b175fceb2821a390cc655da191a6d0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "860214860947DFBE26099F018747154823B175FCEB2821A390CC655DA191A6D0"
Last-Modified: Thu, 05 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7056
Expires: Fri, 06 Jan 2023 01:54:23 GMT
Date: Thu, 05 Jan 2023 23:56:47 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3wFyw556a6yWtVTUgx+YwP2EyoOuR1c4TDIqei4CmAj9Sv9t6XIFNt07noSs0dXahM7i62jKVO4=
x-amz-request-id: 2T6BF3W8B3291HKA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 05 Jan 2023 23:01:55 GMT
age: 3292
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3e74f7f4f9e4453f8f5883ad906f6d32
c617f345114aef2b1b40ff19b8e99ee6b7215279
9769954b6a32b8f8d7c093db1e37044b1ae7b25aa3d1c4fc87f2c5c5ce775391
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9769954B6A32B8F8D7C093DB1E37044B1AE7B25AA3D1C4FC87F2C5C5CE775391"
Last-Modified: Thu, 05 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7033
Expires: Fri, 06 Jan 2023 01:54:00 GMT
Date: Thu, 05 Jan 2023 23:56:47 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 05 Jan 2023 23:56:47 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3e74f7f4f9e4453f8f5883ad906f6d32
c617f345114aef2b1b40ff19b8e99ee6b7215279
9769954b6a32b8f8d7c093db1e37044b1ae7b25aa3d1c4fc87f2c5c5ce775391
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9769954B6A32B8F8D7C093DB1E37044B1AE7B25AA3D1C4FC87F2C5C5CE775391"
Last-Modified: Thu, 05 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7033
Expires: Fri, 06 Jan 2023 01:54:00 GMT
Date: Thu, 05 Jan 2023 23:56:47 GMT
Connection: keep-alive
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
File type ASCII text, with very long lines (65451)
Hash 638a4990025383a0f83ebf29bdb84a68
153e8818dc42f598e47fde8cf398f1447649a4d0
878e34b89800bb271d3588e526eb3598eb3822e263f3bdaf53645847d39d0ad6
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1186661
expires: Tue, 26 Dec 2023 23:56:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E3kZaJWcQtuKa3MOZgcEKG4Et1qwmv5pn7BoC31eDrEKqERq5QhOz5QnZBQGwVprM8ENmnA8qjvrZBW9Lktea4z08TJ2KA6PiJ5GSnWjY%2FvYOKUvtWnH5uPVGO58NPoFau0mBz%2B5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7850270c7f40fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css
200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css
IP
Hash 9f8ae150e614ee49febe1ac6088202e6
5f5d1a1a96289a0fa1d052d8dd59d5a236e5227e
c931e5cbd1bbd7e7e6802ce040c35ce7c1d7425988b767c6a29bedbfa2eb496f
GET /ajax/libs/font-awesome/5.10.2/css/all.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:47 GMT
content-type: text/css; charset=utf-8
content-length: 10228
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-111e5"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 9346470
expires: Tue, 26 Dec 2023 23:56:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3XlIAukEtYngcT4VSUWREHTd6xVBpWnxR8IVxHxt65fYN4Lwrtr%2BE2EA7AHRDEoj35vhQqykZov%2F0SXNJONhyAJUZOkLG3j6Y7gnw9QFl9%2F3DBEI7swyg6AX4KdLghWQzbsn5rkp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7850270c7f41fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash ba6ce5ff724b0bc69d0c5ab7a3d9dabb
14f79afe6371d643f30c306eee2f5d7b7c5e3a7c
18a76b903a4c4d268b5a1aec9c40e4c341bec94f779b7b0054f0fceeaaef6055
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 395
Cache-Control: max-age=97144
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 23:56:47 GMT
Etag: "63b63aac-116"
Expires: Sat, 07 Jan 2023 02:55:51 GMT
Last-Modified: Thu, 05 Jan 2023 02:49:16 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css
200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css
IP
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Thu, 05 Jan 2023 23:56:47 GMT
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
200 OK 22 kB URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
IP
File type ASCII text, with very long lines (65324)
Hash a66b7ffd14bd42fa7bd807c4eb00c221
51c55ebdd13e4907f001413468d0a4e7122056d5
80cc3ca06680099d930b2a37410721a26dde03b9bff456fb742c00e8fc8f752c
GET /bootstrap/4.1.3/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:47 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 2021-04-23 06:08:39
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: c62efa4acc8489a2647d63073221c51f
cdn-cache: HIT
cf-cache-status: HIT
age: 21072326
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7850270ccdd10b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 05 Jan 2023 23:33:38 GMT
age: 1389
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e4fdd703d4ebb3209cd70c0ffd234da1
2e3a0a6fe0e63d2991e4b8726d5a2c21406a0dc1
ff40f371b1ebac1fbc0e809a0e85f500977372f25e8a72eda450083755fef11d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 23:56:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 75cfc8b3d7a22c317465a354b950897b
272651a02a8fa17067d9e4e9ff4878d2c1af75af
40dc9698f6d97aeada27973d1b096a149bb5bb299c38a6ed87e853e6d724d26b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 23:56:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG
200 OK 54 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG
IP
Hash 1d493c2d558e5d34cd5f414ab13f49fb
d40a3ef364da47f15b9f487f134158c691767a4e
362e01c2ba73b80f5b4a169a5398470409baaff40015923870f25e122f465f49
GET /gtm.js?id=GTM-TZ69NZG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 05 Jan 2023 23:56:47 GMT
expires: Thu, 05 Jan 2023 23:56:47 GMT
cache-control: private, max-age=900
last-modified: Thu, 05 Jan 2023 22:10:12 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 50875
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data
Hash 1f6d3cf6d38f25d83d95f5a800b8cac3
279f300ca2cbbdf9f5036ef2f438607fbf377daa
796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Dec 2022 13:33:13 GMT
expires: Sat, 30 Dec 2023 13:33:13 GMT
cache-control: public, max-age=31536000
age: 555814
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 13 kB IP
Hash d4b43683861a4f2574d28dd56adbb716
85212242e53e3fcb7ad1833619228d463cdda4fb
344dc363177e8a9153756c957f3a671b3378f426354209144d7ec3ca47084776
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 23:56:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 73a99621729e1bc9e236a1085b98a0cf
5e1f71493085f6be7788f59987c1f0850b77d4d7
219d1a8d7d1a027553f72c8c024488863d8996457b31c78014002f81174f3ad1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6161
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 23:56:47 GMT
Last-Modified: Thu, 05 Jan 2023 22:14:06 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5Ev0lDbc9N9t1LLsJoU6Hg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KSAPhIUVi4lreGL0lNqs8qIoY7w=
sand.ostrichesica.com/clicktrue_invocation.js?id=14473
200 OK 30 kB URL HTTP/2 sand.ostrichesica.com/clicktrue_invocation.js?id=14473
IP
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 7531e34d0a71f1aec77743adc4c304a7
4618aa95a1d1696421756b181133571b8a2dc8d1
6f0a253d65110dd9f5ca67656130e4b7684c4148c3e36944ad16bb6faf7a6b59
GET /clicktrue_invocation.js?id=14473 HTTP/1.1
Host: sand.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 30502
content-encoding: gzip
server: Caddy
date: Thu, 05 Jan 2023 21:02:08 GMT
cache-control: max-age=43200
expires: Fri, 06 Jan 2023 09:02:04 GMT
etag: "1462b-0Y2Bvdv+9oyUNS+AzJCk4mFb6YQ"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: orx-6VsU-5xFJNTTWAqygX09xQEXKt9HYSwjp0Wi-SQxu_grzOahUw==
age: 10484
X-Firefox-Spdy: h2
js.chargebee.com/v2/animation.css
200 OK 758 B URL HTTP/2 js.chargebee.com/v2/animation.css
IP
Hash f8a79fc47c28375628855b4c78ff6f85
b2fb79a766c233408a6e0dd38a169dee2e88d4b0
e3b7f54cf81a0ff1f16662abce7b1970ed6a8a8191da96cf05dcf6644d203df3
GET /v2/animation.css HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 758
last-modified: Wed, 21 Dec 2022 06:42:01 GMT
x-amz-version-id: 0TS7jDN5QG2C56R40FJkXTmET2U0z2t7
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Thu, 05 Jan 2023 23:54:45 GMT
cache-control: max-age=300,public
etag: "f8a79fc47c28375628855b4c78ff6f85"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: C-iilqb76OHnad5D0TRYJa820HHpzLVYO9V8JUbregI3Nto0isq-mg==
age: 180
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 3fc09ef2ef9131dda69adfa72a32314a
0211292a01e0b096a874c88569cbea746b6e85cf
8fc26cda68c3ddae30c18649ec0eb7b038e3cf9a2f7d2e1d3c313c78696f37ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2708
Cache-Control: max-age=132900
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 23:56:48 GMT
Etag: "63b6bd50-116"
Expires: Sat, 07 Jan 2023 12:51:48 GMT
Last-Modified: Thu, 05 Jan 2023 12:06:40 GMT
Server: ECS (amb/6B9E)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
200 OK 278 B IP
Hash 3fc09ef2ef9131dda69adfa72a32314a
0211292a01e0b096a874c88569cbea746b6e85cf
8fc26cda68c3ddae30c18649ec0eb7b038e3cf9a2f7d2e1d3c313c78696f37ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5819
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 23:56:48 GMT
Last-Modified: Thu, 05 Jan 2023 22:19:49 GMT
Server: ECS (amb/6BB8)
X-Cache: HIT
Content-Length: 278
js.chargebee.com/v2/master-4bc76e806d82eef02ccbab51978cb5a1.html
200 OK 881 B URL HTTP/2 js.chargebee.com/v2/master-4bc76e806d82eef02ccbab51978cb5a1.html
IP
Hash 096ec88cdec60f77a1f0c178b3b343b3
1fb185b01980b0c379253c7f01d136f8c7e4a4a3
ce9e8b021e4ae85bb194ddbb907e2e219fa6662b0f11e11aaf4bc7f805e8b502
GET /v2/master-4bc76e806d82eef02ccbab51978cb5a1.html HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 203
last-modified: Wed, 04 Jan 2023 09:07:41 GMT
x-amz-version-id: sjvf7H14Bgggtw1DRR3DygPMOcnzec8i
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Thu, 05 Jan 2023 23:55:03 GMT
cache-control: max-age=300,public
etag: "71bbffb65ab9aadab5774420f260d4c2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ERzgTZ6PeWRncK4TxNUK03N1RXU5cp-f77KmaqZrFJFenV0CNOwiNQ==
age: 107
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/account
204 No Content 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/account
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/account HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Thu, 05 Jan 2023 23:56:48 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=MwWnfXLS8kyXHwBIUfWztvlghBKN171IwkqpncBl; expires=Fri, 05-Jan-2024 23:56:48 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mnYBMP9trE5HlViIIOKeh91Ln42158ODFPXJ9DtgoL%2F2Mbv9j%2FCXZ%2BX%2BuZZm3uEiaCPKmxP%2BMJiV8LjOI2OYBdDNIoAFWI6euGtuhU3kH3ez3nh71ULK98yqOo6BcL%2B2Xzf9eUimPpVY4TC2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 785027125efc71fe-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
200 OK 129 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
IP
Size 129 kB (129032 bytes)
Hash 0c4ae2ad9e933aa30d2546afdc046436
6ede43c290f9a97f5190e52101a31d5e7bf52b99
cfb0b0e40d7deafd0419271af7dd3d0da14d7ffff06f02e3f8ea261e9d405d5c
GET /s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128360
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Dec 2022 13:33:12 GMT
expires: Sat, 30 Dec 2023 13:33:12 GMT
cache-control: public, max-age=31536000
age: 555816
last-modified: Thu, 25 Aug 2022 00:09:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/redirect/link/static/421193/of2022?origin=
204 No Content 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/421193/of2022?origin=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/redirect/link/static/421193/of2022?origin= HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 05 Jan 2023 23:56:48 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=nZNQ3pdYxJQmA8yPFYh7QN8DRrZrJnakNwGT3snJ; expires=Fri, 05-Jan-2024 23:56:48 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ACLfsPnlXXnaWhglRPMCgWmZHahWeUjyO%2FB2Z6a7Vy%2Fik0xB2VFRtvkq5fJuY0Nwl58pY2e4%2BTpQrEom%2F6fcqEflzL90cROy1OAeDhy8J0oeIRxcCixc58i5flghm0etYb%2BFQ2eZLQigA7jw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 785027128f2171fe-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 3fc09ef2ef9131dda69adfa72a32314a
0211292a01e0b096a874c88569cbea746b6e85cf
8fc26cda68c3ddae30c18649ec0eb7b038e3cf9a2f7d2e1d3c313c78696f37ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2708
Cache-Control: max-age=132900
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 23:56:48 GMT
Etag: "63b6bd50-116"
Expires: Sat, 07 Jan 2023 12:51:48 GMT
Last-Modified: Thu, 05 Jan 2023 12:06:40 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 278
publisher.linkvertise.com/api/v1/account
200 OK 79 kB URL HTTP/2 publisher.linkvertise.com/api/v1/account
IP
File type JSON data\012- , ASCII text, with very long lines (932), with no line terminators
Hash bad525db5cdc5ce210d78595ef073b64
7028d5e4b1e4fe97d86e04e0d544a91426f6c003
07452c9413a24cb775e388981404943e0b459e39fc6d77c56587fdee48381dec
GET /api/v1/account HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:48 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=2lvLLvPqwVNZdTnh8zLQ1j56rsIY5Pm7WqrRMliQ; expires=Fri, 05-Jan-2024 23:56:48 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m9AZxigSmXv7KB8ZgqARa0rDoJ31TvKdcXrM%2FyeH9EH%2FEhzESnCjWnGt4qNdKG8m%2FTVJTYyiDvgyQgZCzZWUKq%2FGMvcltSvjF3qSrGxnO5%2BszLexkVVb8tA%2B6j1WRKIlnbS6ASuYuN%2B52I44"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 78502712cf5e71fe-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2a660da4976aff4b5e8b9e5e16af5167
7b96a5027519f2dbc3e6a32aa16f6644f7b1dc57
9c7c63dca5292eb3630ba8ddefcc81164ad3a95d209f172dfd2d472d34d0a8c7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C7C63DCA5292EB3630BA8DDEFCC81164AD3A95D209F172DFD2D472D34D0A8C7"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11124
Expires: Fri, 06 Jan 2023 03:02:12 GMT
Date: Thu, 05 Jan 2023 23:56:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2a660da4976aff4b5e8b9e5e16af5167
7b96a5027519f2dbc3e6a32aa16f6644f7b1dc57
9c7c63dca5292eb3630ba8ddefcc81164ad3a95d209f172dfd2d472d34d0a8c7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C7C63DCA5292EB3630BA8DDEFCC81164AD3A95D209F172DFD2D472D34D0A8C7"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11124
Expires: Fri, 06 Jan 2023 03:02:12 GMT
Date: Thu, 05 Jan 2023 23:56:48 GMT
Connection: keep-alive
cdn.taboola.com/libtrc/linkvertise-link-to/loader.js
200 OK 26 kB URL HTTP/2 cdn.taboola.com/libtrc/linkvertise-link-to/loader.js
IP
Hash 814bcf1e347ddfab0fe599a1d9284b2f
e14cc43e1fed881021cdcf3c9d8f7c39c8f2cd24
1aa624b14bf5d35fc7ae5e0da9a9ec1dc5218f11c1953d76d5b9e169040b1189
GET /libtrc/linkvertise-link-to/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 9ZiAZg5paDXTpXffuOYFH7JhvBsvZFUx3mdQbLq638OUEyNWLXK01Rp843vvoIChFm7y0bWlio0=
x-amz-request-id: TBAXDPHYEXMBG5JV
last-modified: Thu, 05 Jan 2023 10:13:21 GMT
etag: "cf5cf64da3a1d675bd1f91bf56d57d18"
x-amz-version-id: BUYZRbkTukvTljvDoOXcPEddXkR5bS73
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 05 Jan 2023 23:56:48 GMT
via: 1.1 varnish
age: 52
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672963009.878223,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 84
content-length: 25657
X-Firefox-Spdy: h2
www.thinksuggest.org/simple/suggest-min-unpacked.js
200 OK 54 kB URL HTTP/1.1 www.thinksuggest.org/simple/suggest-min-unpacked.js
IP
ASN #24940 Hetzner Online GmbH
Hash e322d6fa79a9b879c823e01d08a81401
992efdeca95bb15db561d4257a8dc059fbcae423
b70b28a216f6d6d0720c3474db5cf2588e21184219da980c3887458d79445102
GET /simple/suggest-min-unpacked.js HTTP/1.1
Host: www.thinksuggest.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 05 Jan 2023 23:56:48 GMT
Content-Type: application/javascript
Content-Length: 51487
Last-Modified: Fri, 05 Jun 2020 12:39:04 GMT
Connection: keep-alive
ETag: "5eda3ce8-c91f"
Accept-Ranges: bytes
paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F421193%2Fof2022%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1672962998003&hl=1&op=0&ag=1317291471&rand=745170282025070219165881779150021776988106107819158782027112917562662001910&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDU3MzddLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFsiY2IiLCIwLDAsMCwwLDMsMCwwLDAsMCwzLDQsMCwxLDAsMCw4LDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDEwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDEsMCwwLDMiXSxbLTEsIkxpbnV4IHg4Nl82NCJdLFstMiwiNyxJTEhZTEI5QkxUYTJKcVFnM0ZvZWVsMndZYkUyb2dCSUtKNmNSMDAwTUpIUXdZVERHWWFodjN1dDcxVnBYUjlPOCtNNXJWU0tzMWtQQmUvLzk5c25WSkdwVWRQZmR6em4zT2ZjIl0sWy0zLCJbXSJdLFstNCwiLSJdLFstNSwiLSJdLFstNiwie1wid1wiOltcIjBcIixcIiRcIixcImpRdWVyeVwiLFwiYm9vdHN0cmFwXCIsXCJqUXVlcnkzNDEwMjcyOTA1MjIyODI3MjA4NTFcIixcImRhdGFMYXllclwiLFwiZjcwNVwiLFwiY2JKc29uUFwiLFwiX19jb3JlLWpzX3NoYXJlZF9fXCIsXCJjYl93aW5kb3dfbG9nZ2VyXCIsXCJfX1NFTlRSWV9fXCIsXCJDaGFyZ2ViZWVcIixcImlzQWRCbG9ja0FjdGl2ZVwiLFwiX21OSGFuZGxlXCIsXCJtZWRpYW5ldF92ZXJzaW9uSWRcIixcIm1lZGlhbmV0X2Nobm1cIixcIm1lZGlhbmV0X2Nobm0yXCIsXCJtZWRpYW5ldF9jaG5tM1wiLFwibWVkaWFuZXRfbWlzY1wiLFwiTUQ1XCIsXCJDSEVRZ3VhcmRcIixcIk5vdGlmeVBhaW50RXZlbnRcIixcIndlYnBhY2tDaHVua2x2X3dlYlwiLFwiJGxvY2FsaXplXCIsXCJab25lXCIsXCJfX3pvbmVfc3ltYm9sX19Qcm9taXNlXCIsXCJfX3pvbmVfc3ltYm9sX19mZXRjaFwiLFwiX196b25lX3N5bWJvbF9fcXVldWVNaWNyb3Rhc2tcIixcIl9fem9uZV9zeW1ib2xfX3NldFRpbWVvdXRcIixcIl9fem9uZV9zeW1ib2xfX2NsZWFyVGltZW91dFwiLFwiX196b25lX3N5bWJvbF9fc2V0SW50ZXJ2YWxcIixcIl9fem9uZV9zeW1ib2xfX2NsZWFySW50ZXJ2YWxcIixcIl9fem9uZV9zeW1ib2xfX3JlcXVlc3RBbmltYXRpb25GcmFtZVwiLFwiX196b25lX3N5bWJvbF9fY2FuY2VsQW5pbWF0aW9uRnJhbWVcIixcIl9fem9uZV9zeW1ib2xfX2FsZXJ0XCIsXCJfX3pvbmVfc3ltYm9sX19wcm9tcHRcIixcIl9fem9uZV9zeW1ib2xfX2NvbmZpcm1cIixcIl9fem9uZV9zeW1ib2xfX011dGF0aW9uT2JzZXJ2ZXJcIixcIl9fem9uZV9zeW1ib2xfX0ludGVyc2VjdGlvbk9ic2VydmVyXCIsXCJfX3pvbmVfc3ltYm9sX19GaWxlUmVhZGVyXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uZGV2aWNlbW90aW9ucGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmRldmljZW9yaWVudGF0aW9ucGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmFic29sdXRlZGV2aWNlb3JpZW50YXRpb25wYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5Y29ubmVjdHBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXlkaXNjb25uZWN0cGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheWFjdGl2YXRlcGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheWRlYWN0aXZhdGVwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5cHJlc2VudGNoYW5nZXBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub25hYm9ydHBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub25ibHVycGF0Y2hlZFwiXSxcIm5cIjpbXSxcImRcIjpbXX0iXSxbLTcsIi0iXSxbLTgsIi0iXSxbLTksIisiXSxbLTEwLCItIl0sWy0xMSwie1widFwiOlwiXCIsXCJtXCI6W119Il0sWy0xMiwiXCJ1bnNwZWNpZmllZFwiIl0sWy0xMywiLSJdLFstMTQsIi0iXSxbLTE1LCItIl0sWy0xNiwiMCJdLFstMTcsIjE2Il0sWy0xOCwiWzEsMCwwLDBdIl0sWy0xOSwiWzAsMCwwLDAsMCwwLDEsMjQsMjQsXCItXCIsMTI4MCwxMDAyLDEyODAsMTAyNCwxMjgwLDEwMjQsMTI4MCw5MzksMCwwLDAsMCxcIi1cIixcIi1cIl0iXSxbLTIwLCItIl0sWy0yMSwiLSJdLFstMjIsIltcIm5cIixcIm5cIl0iXSxbLTIzLCIrIl0sWy0yNCwiW10iXSxbLTI1LCItIl0sWy0yNiwiLSJdLFstMjcsIi0iXSxbLTI4LCJlbi1VUyxlbiJdLFstMjksIi0iXSxbLTMwLCJbXCJ2XCIsMF0iXSxbLTMxLCJmYWxzZSJdLFstMzIsIjAiXSxbLTMzLCItIl0sWy0zNCwiLSJdLFstMzUsIlsxNjcyOTYyOTk3OTc0LDBdIl0sWy0zNiwiW1wiNS80XCIsXCI1LzRcIl0iXSxbLTM3LCItIl0sWy0zOCwiaSwtMSwtMSwzMjcsMCwzMiwwLDAsMTA0LDgxLC0xLDAsLDE2NTQsMTc2NywxNzY1Il0sWy0zOSwiW1wiMjAxMDAxMDFcIiwwLFwiR2Vja29cIixcIk5ldHNjYXBlXCIsXCJNb3ppbGxhXCIsXCIyMDE4MTAwMTAwMDAwMFwiLG51bGwsZmFsc2UsbnVsbCxmYWxzZSxudWxsLDBdIl0sWy00MCwiMzciXSxbLTQxLCItIl0sWy00MiwiMTc3MDA1MDA4MSJdLFstNDMsIjAwMDAwMDAxMDAwMDAwMDAwMTExMTAwMTAwIl0sWy00NCwiMCw1LDAsNSJdLFstNDUsIjAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCJdLFstNDYsIjAiXSxbLTQ3LCJVVEMsZW4tVVMsbGF0bixncmVnb3J5Il0sWy00OCwiMCwwIl0sWy00OSwiLSJdLFstNTAsIi0iXSxbLTUxLCItIl0sWy01MiwiLSJdLFstNTMsIjAxMCJdLFstNTQsIntcImhcIjpbXCI0MTA0MzE2MjNcIixcIjI2MzkyMjI0NjhcIixcIl8zXCIsXCIyODcyODk5MzIwXCJdLFwiZFwiOltdLFwiYlwiOltcIl8xXCIsXCIxMDY0ODIyNjg3XCIsXCI0MTA0MzE2MjNcIixcIjI2MzkyMjI0NjhcIl0sXCJzXCI6MX0iXSxbLTU1LCIxIl0sWyJkZGIiLCIwLDgsMCwwLDEsMywwLDAsMCwxLDAsMCwwLDAsMSwwLDMsMCwwLDAsMCwwLDAsMCwxLDAsMCwwLDAsMCwwLDEsMCwwLDAsMiwwLDAsMCwwLDAsMiwwLDIsMywwLDE1LDAsMiwwLDAsMCwwLDEsMCJdLFsiYm5jaCIsODZdLFsiYWJuY2giLDg3XV0%3D&dep=0&pre=0&sdd=%7B%7D&cri=TiEVDkKnPK&pto=1798&ver=49&gac=-&mei=&ap=&duid=1.1672962998.YYIZYavX0G8cuQsv&suid=1.1672962998.Poo94Qb8cEqP92uz&tuid=1.1672962998.W0qQBDrMr45aOC8I&fbc=->m=W10%3D&it=63%2C1512%2C29&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
200 OK 942 B URL HTTP/2 paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F421193%2Fof2022%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1672962998003&hl=1&op=0&ag=1317291471&rand=745170282025070219165881779150021776988106107819158782027112917562662001910&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=TiEVDkKnPK&pto=1798&ver=49&gac=-&mei=&ap=&duid=1.1672962998.YYIZYavX0G8cuQsv&suid=1.1672962998.Poo94Qb8cEqP92uz&tuid=1.1672962998.W0qQBDrMr45aOC8I&fbc=->m=W10%3D&it=63%2C1512%2C29&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP
File type ASCII text, with very long lines (2633), with no line terminators
Hash e0058aed578a8fb08569c8160b674b5f
646700d7a0fb6da536cd56252728aebe6af63b00
4d382c8bc02859ab96d75814edc91a26b93149a416eb9fff88cce1197fe83ae7
GET /ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F421193%2Fof2022%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1672962998003&hl=1&op=0&ag=1317291471&rand=745170282025070219165881779150021776988106107819158782027112917562662001910&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=TiEVDkKnPK&pto=1798&ver=49&gac=-&mei=&ap=&duid=1.1672962998.YYIZYavX0G8cuQsv&suid=1.1672962998.Poo94Qb8cEqP92uz&tuid=1.1672962998.W0qQBDrMr45aOC8I&fbc=->m=W10%3D&it=63%2C1512%2C29&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Thu, 05 Jan 2023 23:56:48 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=f3092114220fda54fff622a953b09bf3; Max-Age=29030400; Path=/; Expires=Thu, 07 Dec 2023 23:56:48 GMT; HttpOnly; Secure; SameSite=None
content-length: 942
X-Firefox-Spdy: h2
js.chargebee.com/v2/135-7be6d9636e1a3d4046be.js
200 OK 1.1 kB URL HTTP/2 js.chargebee.com/v2/135-7be6d9636e1a3d4046be.js
IP
File type ASCII text, with very long lines (2788)
Hash d63ea891d9d5bc353c63eeb202e7fee7
fb7f044e6398dbadcb66d31cd4bac8c970c7f273
5e02283a7e98628cb50c7710f4a3474b5633a951035a01ad7c7516af59b0d464
GET /v2/135-7be6d9636e1a3d4046be.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-4bc76e806d82eef02ccbab51978cb5a1.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 04 Jan 2023 09:07:40 GMT
x-amz-version-id: 3pFyYWa1Hc6S9LRxvB5Q.ZDPdYryOLZr
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Thu, 05 Jan 2023 23:56:32 GMT
cache-control: max-age=300,public
etag: W/"2f88b448a99ecf497ad6cf6f26b47042"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rOGW4i_YYcw4tXaDIlXW2gv3pbkUvMycnlpKDDklygDCjYtofnu8eQ==
age: 19
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=PPrTRTmzaJB7l1hoZjHjN8E9eGbuuja2U8W3vQtq0ltQqFLKWXi1HuILPTGGChQh4ZBV&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
204 No Content 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=PPrTRTmzaJB7l1hoZjHjN8E9eGbuuja2U8W3vQtq0ltQqFLKWXi1HuILPTGGChQh4ZBV&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/validate-traffic?cheq_response=PPrTRTmzaJB7l1hoZjHjN8E9eGbuuja2U8W3vQtq0ltQqFLKWXi1HuILPTGGChQh4ZBV&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 05 Jan 2023 23:56:49 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=7OVsq4wGgJVYeyBqZ2rBhszelG9Sp4oaGOw53LEy; expires=Fri, 05-Jan-2024 23:56:49 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L43HK%2Bs25VYrrY9xEAPDCxYOQTCs7oM9bgSZYE2Ba%2B5hEn5gS9lpnqYA92k7BDEEqc2h0A%2F%2BLfr10wR01t87nBmmu6CNewL2W1hUWcVpwoPz6iNsAunECPpK%2FYuOEbEKBC8ziLBnxmyinUif"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 785027164a8571fe-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
linkvertise.chargebeestaticv2.com/api/internal/1672962300/retrieve_js_info
200 OK 451 B URL HTTP/2 linkvertise.chargebeestaticv2.com/api/internal/1672962300/retrieve_js_info
IP
File type JSON data\012- , ASCII text, with very long lines (451), with no line terminators
Hash 1fd29d64b65e4251fe961aa88ba6cbeb
a6da1c6ff5171f81765905047adf3d57503a8f17
54186a2b5565a22675a38c9feff6fa886631482135ecdcde5933c5d2009c9d76
GET /api/internal/1672962300/retrieve_js_info HTTP/1.1
Host: linkvertise.chargebeestaticv2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://js.chargebee.com
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=utf-8
content-length: 451
date: Thu, 05 Jan 2023 23:42:02 GMT
cache-control: max-age=0, must-revalidate, public, s-maxage=3600
expires: Thu, 01 Jan 1970 00:00:00 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: https://js.chargebee.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token
access-control-allow-methods: GET, OPTIONS, POST
server: ChargeBee
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Dihl9JPakwAKi9Kb7dkfeTDK4W8EFQjLno35e7AkdfOAoAMKTgQQbw==
age: 887
X-Firefox-Spdy: h2
paper.ostrichesica.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136decce33e9478a959225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5f15896a2417071a10acf9f29f671f818380052d3e1ffc7a7752d36ada6691526603219103095a36565fcfec3d4c77be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c224027030da58c28667452f2fd1f7189f8f47d99b452244b24aaaef1c0cc7eb6cfc248b5038e523c60cbe986a7b376cccee879cf774a91bac333074aae3f34eec55620b79bae6adc59a259b68619c346c8d020923a35949b38d9778cc0bca69de5e20538b47ae7f8a577433ebfd2608ca611a14f547fa84f469782c39091b2c527cb6a88c8fbc868e9787c24947f3bd4ccd10e6990e979eb59a792479164f96f504a148276b30ec8ccab7cae8c35cb5cbfcfd09b29ce5c474cf355135f68627887f423fb059a8c832484906efa9c3af184a9a63dc0f0a91f7670c8b1671595e65a0b4cbbb8b066b82799ec5882fc3ce639f9658759c615c9a93ac0182ee2ac9b6f3721096a53613546ec898c1bda51f2240d053be4a60c9ac14c1ef4aadea4bd6ac5efedfa84f1a6f9552f63a44e82d70b66d036247bde61183b7eea69eb334096f9cb718b7ed6238ca925cbba049073114620431d61e8829999387e04e56b4decc1c5a9f28a051794dbd061848d3722cad812207ba0d2a01653eb78d604c644b42d91448a9450adf7&cri=TiEVDkKnPK&ts=460&cb=1672962998463
200 OK 43 B URL HTTP/2 paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=TiEVDkKnPK&ts=460&cb=1672962998463
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=TiEVDkKnPK&ts=460&cb=1672962998463 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=f3092114220fda54fff622a953b09bf3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Thu, 05 Jan 2023 23:56:49 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F421193%2Fof2022%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1672962998555&hl=1&op=0&ag=1317291471&rand=031000598115927520981029115887950271168790561999122106551098159190022220025&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=eREzmdGjHM&pto=2347&ver=49&gac=1813285129.1672962998&mei=&ap=&duid=1.1672962998.YYIZYavX0G8cuQsv&suid=1.1672962998.Poo94Qb8cEqP92uz&tuid=1.1672962998.W0qQBDrMr45aOC8I&fbc=->m=W10%3D&it=82%2C1512%2C29&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
200 OK 966 B URL HTTP/2 paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F421193%2Fof2022%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1672962998555&hl=1&op=0&ag=1317291471&rand=031000598115927520981029115887950271168790561999122106551098159190022220025&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=eREzmdGjHM&pto=2347&ver=49&gac=1813285129.1672962998&mei=&ap=&duid=1.1672962998.YYIZYavX0G8cuQsv&suid=1.1672962998.Poo94Qb8cEqP92uz&tuid=1.1672962998.W0qQBDrMr45aOC8I&fbc=->m=W10%3D&it=82%2C1512%2C29&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP
File type ASCII text, with very long lines (2713), with no line terminators
Hash 80c7cf671eb7c774618189f8454e632a
38197674bcce32f7078022e03e50c64f393b95d6
b40f660ca4a9afcfdeeb464c82cc1c2142491c3e7ac4c95e8ff27f7037e59592
GET /ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F421193%2Fof2022%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1672962998555&hl=1&op=0&ag=1317291471&rand=031000598115927520981029115887950271168790561999122106551098159190022220025&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDc5OTVdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFsiY2IiLCIwLDAsMCwwLDMsMCwwLDAsMCwzLDEsMCwwLDEsMCwxLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDIsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDAsNCJdLFstMSwiTGludXggeDg2XzY0Il0sWy0yLCI2LElMSFlMQjlCTFRhMkpxUWczRm9lZWwyd1liRTJvZ0JJS0o2Y1IwMDBNSkhRd1lUREdZYWh2M3V0NzFWcFhSOU84K001clZTS3Mxa1BCZS8vOTlzblZKR3BVZFBmZHp6bjNPZmMiXSxbLTMsIltdIl0sWy00LCItIl0sWy01LCItIl0sWy02LCJ7XCJ3XCI6W1wiMFwiLFwiJFwiLFwialF1ZXJ5XCIsXCJib290c3RyYXBcIixcImpRdWVyeTM0MTAyNzI5MDUyMjI4MjcyMDg1MVwiLFwiZGF0YUxheWVyXCIsXCJmNzA1XCIsXCJjYkpzb25QXCIsXCJfX2NvcmUtanNfc2hhcmVkX19cIixcImNiX3dpbmRvd19sb2dnZXJcIixcIl9fU0VOVFJZX19cIixcIkNoYXJnZWJlZVwiLFwiaXNBZEJsb2NrQWN0aXZlXCIsXCJfbU5IYW5kbGVcIixcIm1lZGlhbmV0X3ZlcnNpb25JZFwiLFwibWVkaWFuZXRfY2hubVwiLFwibWVkaWFuZXRfY2hubTJcIixcIm1lZGlhbmV0X2Nobm0zXCIsXCJtZWRpYW5ldF9taXNjXCIsXCJNRDVcIixcIkNIRVFndWFyZFwiLFwiTm90aWZ5UGFpbnRFdmVudFwiLFwid2VicGFja0NodW5rbHZfd2ViXCIsXCIkbG9jYWxpemVcIixcIlpvbmVcIixcIl9fem9uZV9zeW1ib2xfX1Byb21pc2VcIixcIl9fem9uZV9zeW1ib2xfX2ZldGNoXCIsXCJfX3pvbmVfc3ltYm9sX19xdWV1ZU1pY3JvdGFza1wiLFwiX196b25lX3N5bWJvbF9fc2V0VGltZW91dFwiLFwiX196b25lX3N5bWJvbF9fY2xlYXJUaW1lb3V0XCIsXCJfX3pvbmVfc3ltYm9sX19zZXRJbnRlcnZhbFwiLFwiX196b25lX3N5bWJvbF9fY2xlYXJJbnRlcnZhbFwiLFwiX196b25lX3N5bWJvbF9fcmVxdWVzdEFuaW1hdGlvbkZyYW1lXCIsXCJfX3pvbmVfc3ltYm9sX19jYW5jZWxBbmltYXRpb25GcmFtZVwiLFwiX196b25lX3N5bWJvbF9fYWxlcnRcIixcIl9fem9uZV9zeW1ib2xfX3Byb21wdFwiLFwiX196b25lX3N5bWJvbF9fY29uZmlybVwiLFwiX196b25lX3N5bWJvbF9fTXV0YXRpb25PYnNlcnZlclwiLFwiX196b25lX3N5bWJvbF9fSW50ZXJzZWN0aW9uT2JzZXJ2ZXJcIixcIl9fem9uZV9zeW1ib2xfX0ZpbGVSZWFkZXJcIixcIl9fem9uZV9zeW1ib2xfX29ub25kZXZpY2Vtb3Rpb25wYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uZGV2aWNlb3JpZW50YXRpb25wYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uYWJzb2x1dGVkZXZpY2VvcmllbnRhdGlvbnBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXljb25uZWN0cGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheWRpc2Nvbm5lY3RwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5YWN0aXZhdGVwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5ZGVhY3RpdmF0ZXBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXlwcmVzZW50Y2hhbmdlcGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmFib3J0cGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmJsdXJwYXRjaGVkXCJdLFwiblwiOltdLFwiZFwiOltdfSJdLFstNywiLSJdLFstOCwiLSJdLFstOSwiKyJdLFstMTAsIi0iXSxbLTExLCJ7XCJ0XCI6XCJcIixcIm1cIjpbXCJEZXNjcmlwdGlvblwiXX0iXSxbLTEyLCJcInVuc3BlY2lmaWVkXCIiXSxbLTEzLCItIl0sWy0xNCwiLSJdLFstMTUsIi0iXSxbLTE2LCIwIl0sWy0xNywiMTYiXSxbLTE4LCJbMSwwLDAsMF0iXSxbLTE5LCJbMCwwLDAsMCwwLDAsMSwyNCwyNCxcIi1cIiwxMjgwLDEwMDIsMTI4MCwxMDI0LDEyODAsMTAyNCwxMjgwLDkzOSwwLDAsMCwwLFwiLVwiLFwiLVwiXSJdLFstMjAsIjE4MTMyODUxMjkuMTY3Mjk2Mjk5OCJdLFstMjEsIi0iXSxbLTIyLCJbXCJuXCIsXCJuXCJdIl0sWy0yMywiKyJdLFstMjQsIltdIl0sWy0yNSwiLSJdLFstMjYsIi0iXSxbLTI3LCItIl0sWy0yOCwiZW4tVVMsZW4iXSxbLTI5LCItIl0sWy0zMCwiW1widlwiLDBdIl0sWy0zMSwiZmFsc2UiXSxbLTMyLCIwIl0sWy0zMywiLSJdLFstMzQsIi0iXSxbLTM1LCJbMTY3Mjk2Mjk5ODU0NCwwXSJdLFstMzYsIltcIjUvNFwiLFwiNS80XCJdIl0sWy0zNywiLSJdLFstMzgsImksLTEsLTEsMzI3LDAsMzIsMCwwLDEwNCw4MSwtMSwwLCwxNjU0LDIzMzYsMjMzNCJdLFstMzksIltcIjIwMTAwMTAxXCIsMCxcIkdlY2tvXCIsXCJOZXRzY2FwZVwiLFwiTW96aWxsYVwiLFwiMjAxODEwMDEwMDAwMDBcIixudWxsLGZhbHNlLG51bGwsZmFsc2UsbnVsbCwwXSJdLFstNDAsIjM3Il0sWy00MSwiLSJdLFstNDIsIjE3NzAwNTAwODEiXSxbLTQzLCIwMDAwMDAwMTAwMDAwMDAwMDExMTEwMDEwMCJdLFstNDQsIjAsNSwwLDUiXSxbLTQ1LCIwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAiXSxbLTQ2LCIwIl0sWy00NywiVVRDLGVuLVVTLGxhdG4sZ3JlZ29yeSJdLFstNDgsIjAsMCJdLFstNDksIi0iXSxbLTUwLCItIl0sWy01MSwiLSJdLFstNTIsIi0iXSxbLTUzLCIwMTAiXSxbLTU0LCJ7XCJoXCI6W1wiNDEwNDMxNjIzXCIsXCIyNjM5MjIyNDY4XCIsXCJfM1wiLFwiMjg3Mjg5OTMyMFwiXSxcImRcIjpbXSxcImJcIjpbXCJfMVwiLFwiMTA2NDgyMjY4N1wiLFwiNDEwNDMxNjIzXCIsXCIyNjM5MjIyNDY4XCJdLFwic1wiOjF9Il0sWy01NSwiMSJdLFsiZGRiIiwiMCw2LDAsMCwxLDMsMCwwLDAsMCwxLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwzLDAsMCwwLDEsMCwwLDAsMCwwLDEsMCwyLDMsMCwwLDAsMSwwLDAsMCwxLDAsMCJdLFsiYm5jaCIsNDVdLFsiYWJuY2giLDQ1XV0%3D&dep=0&pre=0&sdd=%7B%7D&cri=eREzmdGjHM&pto=2347&ver=49&gac=1813285129.1672962998&mei=&ap=&duid=1.1672962998.YYIZYavX0G8cuQsv&suid=1.1672962998.Poo94Qb8cEqP92uz&tuid=1.1672962998.W0qQBDrMr45aOC8I&fbc=->m=W10%3D&it=82%2C1512%2C29&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=f3092114220fda54fff622a953b09bf3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Thu, 05 Jan 2023 23:56:49 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 966
X-Firefox-Spdy: h2
js.chargebee.com/v2/master-4be6ae49ada5a99f44f2.js
200 OK 73 kB URL HTTP/2 js.chargebee.com/v2/master-4be6ae49ada5a99f44f2.js
IP
Hash f5e9a1d4c51493b7438cefc29c0b62fc
e1af67f7dde4512a306bd7c03fb4c6e41e6efd56
78b4f6418e3e2416f9a7dcbcf650bcf4d7ed0be00156aa610b50daccfc80f5e0
GET /v2/master-4be6ae49ada5a99f44f2.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-4bc76e806d82eef02ccbab51978cb5a1.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 04 Jan 2023 09:07:40 GMT
x-amz-version-id: 637oXimGuV6SQRP68MR6S2yNdYqzR2vM
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Thu, 05 Jan 2023 23:52:46 GMT
cache-control: max-age=300,public
etag: W/"c010eb9df349bdeda1ecc5378cbe2318"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: g4ighGtV_7-SKXUA4ny0NSFB8YhYbtKqdaR7kxHFKGgIqfpDVFmOfQ==
age: 246
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=PPrTRTmzaJB7l1hoZjHjN8E9eGbuuja2U8W3vQtq0ltQqFLKWXi1HuILPTGGChQh4ZBV&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
200 OK 1.1 kB URL HTTP/2 publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=PPrTRTmzaJB7l1hoZjHjN8E9eGbuuja2U8W3vQtq0ltQqFLKWXi1HuILPTGGChQh4ZBV&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
IP
File type JSON data\012- , ASCII text, with very long lines (976), with no line terminators
Hash f45e7877e6dbbbbb0ac3d0538da529ee
631b563d020b5db00128ea89dea374b914fda2da
603b058be86b9c27791c503b8cadedafefd93b8476bd8acd5d7bfe0d85fc77ad
GET /api/v1/validate-traffic?cheq_response=PPrTRTmzaJB7l1hoZjHjN8E9eGbuuja2U8W3vQtq0ltQqFLKWXi1HuILPTGGChQh4ZBV&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:49 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=SRy56APrRqnw3Gxslqcg20pNfortOL8lI8CfNe7F; expires=Fri, 05-Jan-2024 23:56:49 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m0yJYSsjDJAfJgCcCT6xhH5HXC8WlgVQ3PxFvrsxJqtrhAQLVCC7hq1Mktyz%2FOz0w7m5SsLivcZjp92n1sTh0dHEdU1H3QMpKmQMZSLiUrKegzptluYC0Vp5r5J3MWXu2Ujm1QBoQ0pmHyg1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 78502716bae271fe-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/impl.20230105-3-RELEASE.js
200 OK 0 B URL HTTP/2 cdn.taboola.com/libtrc/impl.20230105-3-RELEASE.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /libtrc/impl.20230105-3-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: jtsOelsddE1Gxdpy/XgV+jpVR6VrcL75sgV5BWRBxedDqFh7kBsWuFfbqDs7/e3orrvLzCPc1M4=
x-amz-request-id: 220FA5RD3080XA3C
last-modified: Thu, 05 Jan 2023 09:38:26 GMT
etag: "ee3681757e301932a93752654015340c"
content-encoding: br
x-amz-version-id: hXHa26_sBbyEnu_DDR6oYE5rJwXXfDli
content-type: application/javascript
accept-ranges: bytes
date: Thu, 05 Jan 2023 23:56:48 GMT
via: 1.1 varnish
age: 22629
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 13220
x-timer: S1672963009.993198,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 55
server: AmazonS3-br
content-length: 150998
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash c89a60f64c9831a211470e4b4dc0cf27
8b889a2cb154cb630b5651f74afdc25196c91f68
31d62c650fecd5c67da4932d6a9e970c1824c5b41b961b0be8ffe01bb1d68a7c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5436
Cache-Control: max-age=134939
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 23:56:49 GMT
Etag: "63b6baa0-139"
Expires: Sat, 07 Jan 2023 13:25:48 GMT
Last-Modified: Thu, 05 Jan 2023 11:55:12 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 313
paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=eREzmdGjHM&ts=131&cb=1672962998686
200 OK 43 B URL HTTP/2 paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=eREzmdGjHM&ts=131&cb=1672962998686
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=eREzmdGjHM&ts=131&cb=1672962998686 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=f3092114220fda54fff622a953b09bf3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Thu, 05 Jan 2023 23:56:49 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ff3b4cd0aa28a61ef1a039c7ff73ce71
1081a41936a63ccdf3e9ebc021835a19c4125a87
367f96729ad2d9dbe57a5881a37c0bc7893ad0858af6fff7f8b565204eae3a1f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 23:56:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
200 OK 165 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
IP
File type ASCII text, with very long lines (658)
Size 165 kB (164706 bytes)
Hash 0b7fccb24ee065a01fdde10928c03c3f
9b198014f81844820588c202cc24bf5e03bf3dd7
68756de8f0d6742525ddaca56ab350e34d822777e86939fea27eb704ae013280
GET /recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://js.chargebee.com
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164706
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 04 Jan 2023 23:45:50 GMT
expires: Thu, 04 Jan 2024 23:45:50 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Dec 2022 05:24:10 GMT
content-type: text/javascript
age: 87059
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
trc-events.taboola.com/linkvertise-link-to/log/2/debug?tim=23%3A56%3A38.598&type=usage&msg=rtus&llvl=2&id=5680&cv=20230105-3-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/linkvertise-link-to/log/2/debug?tim=23%3A56%3A38.598&type=usage&msg=rtus&llvl=2&id=5680&cv=20230105-3-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /linkvertise-link-to/log/2/debug?tim=23%3A56%3A38.598&type=usage&msg=rtus&llvl=2&id=5680&cv=20230105-3-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 05 Jan 2023 23:56:49 GMT
x-fastly-to-nlb-rtt: 22583
access-control-allow-credentials: true
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16059
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Date: Thu, 05 Jan 2023 23:56:49 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16059
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Date: Thu, 05 Jan 2023 23:56:49 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16059
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Date: Thu, 05 Jan 2023 23:56:49 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16059
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Date: Thu, 05 Jan 2023 23:56:49 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16059
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Date: Thu, 05 Jan 2023 23:56:49 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e9b2480-67ce-4247-9d95-8e03d4ea893a.jpeg
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e9b2480-67ce-4247-9d95-8e03d4ea893a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a651a6052d9f980978b9872daf24f447
ce2c94232835dbe5aee99dd436f68f94ce42a7cb
263835059464a3085a3152436ef45140e29c917c30f7f238c442bb54e022003a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e9b2480-67ce-4247-9d95-8e03d4ea893a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4930
x-amzn-requestid: 75be345e-998b-474b-884e-d0e5d501f3c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eSdrpHqzIAMF52Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b74317-5bf56aaf6a6c96f10e75c5dd;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 21:37:27 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1jKsMbem-EgE9IEqUINZESinhqOIEv9T5QkIkyF7iIcql1UBJiZTvw==
via: 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 21:46:51 GMT
age: 7798
etag: "ce2c94232835dbe5aee99dd436f68f94ce42a7cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfafa34a-3362-480e-ade6-9a8924a58ec1.jpeg
200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfafa34a-3362-480e-ade6-9a8924a58ec1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4ce7ae00540381c93d88044ed5934c9
82e68f4c0d14816b43f54060eb9f89be7c080fd7
fdbd447a3752fcb96ce6db366df38aad63fea19649d61a36b16df519e962dc33
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfafa34a-3362-480e-ade6-9a8924a58ec1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6894
x-amzn-requestid: 4559d792-12b6-426a-ae13-a2d382c09f7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eScvCE2VIAMFq4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b74193-35258007160136ef45ede80f;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 21:30:59 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C9qTLS0O-Qm5CmIXJMixiOi4Ki3BICu1ng4dMwGkLYZuvbIOK1VAxQ==
via: 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 21:46:53 GMT
age: 7796
etag: "82e68f4c0d14816b43f54060eb9f89be7c080fd7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fb1a6c7-1739-4b4c-ae46-a2d718fb6c34.jpeg
200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fb1a6c7-1739-4b4c-ae46-a2d718fb6c34.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e628ac1e25757ac0177f4a392d6b7ddb
d457e65190f24dce30af852e07b2d55f1fe5d808
b51790825ceb10ba7d5ec69081c098b7c82e72e4128dc1c23fa4f45495fbfa65
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fb1a6c7-1739-4b4c-ae46-a2d718fb6c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5684
x-amzn-requestid: 7c54347b-9e0f-4f2e-99f1-80f438bbbbcc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eNlXGEThoAMFj-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b54f60-4025ab2e5e877d826b96e1fa;Sampled=0
x-amzn-remapped-date: Wed, 04 Jan 2023 10:05:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: F33EVcO1v4IdTdmWDJ-wJI49UrtQWPTqVuw0zxuOlh0u6qs2eFAAzw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 15:25:03 GMT
age: 30706
etag: "d457e65190f24dce30af852e07b2d55f1fe5d808"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd28f69e6-ae09-4dc7-b1d9-271e486fa4ce.jpeg
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd28f69e6-ae09-4dc7-b1d9-271e486fa4ce.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cb5c550b1ef40a5d473e27e7c2abbdd9
e90c4c32a3bb420d36d1ccede7bec5f0e6322287
598187a532b0bc79642b7eedf9da7278e884b900fc6586b9554f4986f6f37b94
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd28f69e6-ae09-4dc7-b1d9-271e486fa4ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4942
x-amzn-requestid: 5e1a2066-3cdd-4382-ae54-b8812b0178f4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eRieJFcVIAMFrNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b6e45a-1eb561645026c93a5c7e6c5c;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 14:53:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RUrBDjE_-gQMygzB0fRpcXFKksaHO9flQxWZR_cAiWZOXKMXSFk3Lg==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 14:56:10 GMT
age: 32439
etag: "e90c4c32a3bb420d36d1ccede7bec5f0e6322287"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F667dbeef-e2f8-4a6d-9ed9-ccee5288cdff.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F667dbeef-e2f8-4a6d-9ed9-ccee5288cdff.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60ff96278b641fbe1cf935cf0c7a4ced
53908a559a45ca4cc3fed8fa60e21a0bb1a28efc
3f8f9ed5a01116cdba17f365c9ad249e823d38a211253b329f7173a04f613a2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F667dbeef-e2f8-4a6d-9ed9-ccee5288cdff.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10343
x-amzn-requestid: b18f9104-de9c-4e39-ae3f-1119e368c1a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eRieKHb4IAMF8wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b6e45a-3f3b46a228d476621439cf8c;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 14:53:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: q76sfYHqjq6JBmqbv_SHJZWYpTWTtt8vo90pqb_PElt4F1bZHFxHJw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 14:56:10 GMT
age: 32439
etag: "53908a559a45ca4cc3fed8fa60e21a0bb1a28efc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83c301b0-878d-4f64-90ed-6cf9fd57b2e4.jpeg
200 OK 37 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83c301b0-878d-4f64-90ed-6cf9fd57b2e4.jpeg
IP
Hash 3e13e2809da18568679418fea1995d43
663b9f661c039f52ee8022599b11750f201c1f90
427a724bfc43ca4110bdc55dda780ebdd26a109eeae2e55bf1d2fa80260edee9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83c301b0-878d-4f64-90ed-6cf9fd57b2e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7383
x-amzn-requestid: d5b4de2c-167a-4ce8-ab59-b1e682f368fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eSpgsGAHoAMFbcA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b75604-1fd3c5b75c563939727b56fc;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 22:58:12 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XapNDO8wup6FeCoPRNNpq_0SIxlNyiMqONByd5-QOxT1gCTJQWL9DA==
via: 1.1 1949caaabae48a894fcd770a3e1384f6.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 23:03:38 GMT
age: 3191
etag: "5dedbb760abe86d6fdb3edcfd568f8e425c51997"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 23:56:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 313 B IP
Hash 6fe4192b70f962520942ae822473190d
8f074f1fbb8ee73369b9277721e653914230eac0
48c686f04cb32080696b6ba03dc4092961cdf2774188161d0bef9bcf162be931
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4710
Cache-Control: max-age=140301
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 23:56:49 GMT
Etag: "63b6d268-139"
Expires: Sat, 07 Jan 2023 14:55:10 GMT
Last-Modified: Thu, 05 Jan 2023 13:36:40 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:49 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=dUIvaV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czl0ZWNFWW1tVzl5amFTTSUyRlNKeXRqZ0FZblFtUFU3aTVWUHNFa2xyZFJRTg; expires=Tue, 30 Jan 2024 23:56:49 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 245746
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 312 B IP
Hash 101b272013342582d0eb4a4066fb9122
7233ea413fce7ffda7d893c46bcb7fb9f9961197
eb9ce13df6ef5c534288de3d39c3092734ccb2e9aadc91f5748a8919d4a84144
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3882
Cache-Control: max-age=106397
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 23:56:49 GMT
Etag: "63b65134-138"
Expires: Sat, 07 Jan 2023 05:30:06 GMT
Last-Modified: Thu, 05 Jan 2023 04:25:24 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
200 OK 312 B IP
Hash 101b272013342582d0eb4a4066fb9122
7233ea413fce7ffda7d893c46bcb7fb9f9961197
eb9ce13df6ef5c534288de3d39c3092734ccb2e9aadc91f5748a8919d4a84144
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3882
Cache-Control: max-age=106397
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 23:56:49 GMT
Etag: "63b65134-138"
Expires: Sat, 07 Jan 2023 05:30:06 GMT
Last-Modified: Thu, 05 Jan 2023 04:25:24 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 312
gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com
200 OK 170 kB URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Size 170 kB (169790 bytes)
Hash 80ae505773ac2e6bfbb4dd8191956dd1
108f3d2b437e183da37b3881cfe0bf1a843db8e3
aea93880e884fe037c0d05a1714fdabd644f2e7d76167490d25d4d4b9c82b10e
GET /syncframe?origin=rtus&topUrl=linkvertise.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:48 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
uid=b188d81e-c944-49fb-9e9b-011c59ba3a00; expires=Tue, 30 Jan 2024 23:56:48 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 718416
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-crto-bundle
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:49 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE
access-control-allow-origin: https://linkvertise.com
server-processing-duration-in-ticks: 533371
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
200 OK 8.9 kB URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP
File type C source, ASCII text, with very long lines (29462)
Hash 219e3ec3921fc3ad57a58318ecaa234f
a67ee0575872a773b94ef1a02a5c5795316cbf04
f6e09c5d4219a1c8f74a6d2c82ba89ce4fecd9b5da6e14bbb79afaa12cb151f1
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-crto-bundle: gQvxCl9NJTJGekdoWnExUXF4MkRvTEJxQjZOdm83MkxaQWNzMmdXeGp6S3RFT0dXVnJLeFJFUXVETllyb0FlN1NTTmtRdGZzWHRQamlOSGQ4OEpaNlNZdldoWHJCVVZYbjUlMkY0MWtOVEVOJTJGRkhPbWp5TUF3eW1ZVFlNTWNzcE5ZaGZGciUyRncxYXIlMkZ1dDFXdXlEJTJCeDFzVXQ2UXclMkJGZyUzRCUzRA
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:49 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://linkvertise.com
server-processing-duration-in-ticks: 1816341
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash f928573eb0482dee3c9c65387b12efa3
1c57002f63be7525d5d867815cbf2d745335e7c0
3c96183f25c4dec7baa2d50b3f0c680ecb48df6e8fe3a1e6bd7616c1e086d527
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1064
Cache-Control: max-age=167263
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 23:56:50 GMT
Etag: "63b749f9-139"
Expires: Sat, 07 Jan 2023 22:24:33 GMT
Last-Modified: Thu, 05 Jan 2023 22:06:49 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 313
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:49 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
js.chargebee.com/v2/chargebee.js
200 OK 0 B URL HTTP/2 js.chargebee.com/v2/chargebee.js
IP
GET /v2/chargebee.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 04 Jan 2023 09:07:40 GMT
x-amz-version-id: JK1EtZ02H9P7PmgktPzQ24tSkOmFQBI6
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Thu, 05 Jan 2023 23:56:21 GMT
cache-control: max-age=300,public
etag: W/"0206b534a027d670907ff1b6bfcb05e4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ShFqejsmefBTgptLIekDWyaQ55t1Xe8mZWDQZGBgCvxWyUzdAn7MGw==
age: 27
X-Firefox-Spdy: h2
maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css
200 OK 0 B URL HTTP/2 maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css
IP
ASN #60068 Datacamp Limited
GET /vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css HTTP/1.1
Host: maxst.icons8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:47 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"15e81-wb0UGHttyzbvrSHlFxH4lBgB3g8"
last-modified: 2022-05-16T12:30:47.897Z
server-timing: -;dur=0;desc="Generate"
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
x-accel-expires: @1968663886
server: CDN77-Turbo
x-77-nzt: AblMCQ0tHkD/cfkrAQ
x-77-nzt-ray: c0a4cc2835f2e4c5bf63b763de1dda21
x-cache: HIT
x-age: 19659121
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
js.chargebee.com/v2/119-979485a5943d70aa3279.js
200 OK 0 B URL HTTP/2 js.chargebee.com/v2/119-979485a5943d70aa3279.js
IP
GET /v2/119-979485a5943d70aa3279.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 04 Jan 2023 09:07:40 GMT
x-amz-version-id: SeD8cMG.v6lWHNLdiGg9Ota9I3.d8IG0
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Thu, 05 Jan 2023 23:54:42 GMT
cache-control: max-age=300,public
etag: W/"aaa8741f45656cfb838ca785104c5290"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dH7-pHyPOjt634ww2XhSL5GjylHB2z18UXUr98jKacHYmVMP4nm_Uw==
age: 135
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:49 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 127494
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/redirect/link/421193/of2022/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
200 OK 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/421193/of2022/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
IP
POST /api/v1/redirect/link/421193/of2022/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Content-Length: 92
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:49 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=6chnyNwFFwnfqZYdebsb9wKDoGgh0stzTmPiwCRq; expires=Fri, 05-Jan-2024 23:56:49 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j%2FDPdVH2%2FO9FcfWApx%2BBakqmYp8UENHGjAjO2t24f3FdM7hfK2lG%2FRnuD9leNP7kV48Ix1XJruD7hcFryG6a5GMnuzU5rhvMxWF4DyhNO5aj97zB%2BD%2BtsXeVkPW4t4937ATZyuCfttK7tH7o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 785027182c0d71fe-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/redirect/link/static/421193/of2022?origin=
200 OK 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/421193/of2022?origin=
IP
GET /api/v1/redirect/link/static/421193/of2022?origin= HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:48 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=rVrzY5RTH8KHTQ8J3fWjmq6Bnz6AycQLx1FqQQb3; expires=Fri, 05-Jan-2024 23:56:48 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QxAfKxDpsGc5f73PVvV%2FQTTEI71dikb0QSx9MSNYnzXp%2Fe5BgWcm2v4M%2Bb4gk4ka%2FbJY%2FrlNbbhoi337nn%2BRoQX64IYL8GUQM7VpV0MrJnK38yd2gxSyCfPMEAzd3URBrYEseBwGdBIahIRx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 78502712ef9071fe-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.chargebee.com/v2/131-8c7776ecc7c9b90c28c0.js
200 OK 0 B URL HTTP/2 js.chargebee.com/v2/131-8c7776ecc7c9b90c28c0.js
IP
GET /v2/131-8c7776ecc7c9b90c28c0.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-4bc76e806d82eef02ccbab51978cb5a1.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 04 Jan 2023 09:07:40 GMT
x-amz-version-id: 3Q3oDIclGhLTr2EqW3TvpSPcldrTMmt.
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Thu, 05 Jan 2023 23:53:41 GMT
cache-control: max-age=300,public
etag: W/"c7d1c21361671678316b0cb4ee7cff8d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: urp4psl_zOIXix9MVC5rur2f9HCRUd-d3WVDSAeoarzha0Vei18UZw==
age: 194
X-Firefox-Spdy: h2
linkvertise.com/421193/of2022/1
200 OK 0 B URL HTTP/2 linkvertise.com/421193/of2022/1
IP
GET /421193/of2022/1 HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:47 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WoQrhy%2FeCWHedtpcaXo%2FDPL39Z0Pgetuhz77k67u9tbqewhVXA1vezqJZLy%2BCX1Ji9hxirexFTr1Li0xVZDdaxre%2FAM%2FWKClu1Nnpbs%2BA9IEIcFwOYNDI6So%2FKqala1bSOQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 7850270b19a124e3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
IP
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:47 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: ed8d946baeeb2ee38f4aebce8d84f641
cdn-cache: HIT
cf-cache-status: HIT
age: 16006297
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7850270ccdd40b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 23:56:49 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 104371
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
172.64.101.34
176.9.175.232
178.250.0.157
104.18.10.207
93.184.220.29
23.36.76.226
141.226.228.48
185.76.9.19