Report - xyz.com

Report Overview

Submitted URL
xyz.com
IP
52.8.203.224
ASN
#16509 AMAZON-02
Submitted
2022-10-12 23:15:06
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	54.230.111.7
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.77.32
xyz.com	780258	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	327 B	475 B	52.8.203.224
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	72 kB	34.120.237.76
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356 B	38 kB	142.250.74.164
t.co	569	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	593 B	104.244.42.197
www.linkedin.com	608	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	543 B	2.8 kB	13.107.42.14
ws18.hotjar.com	65722	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	997 B	537 B	52.208.44.200
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	3.7 kB	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.0 kB	8.4 kB	142.250.74.3
static.hotjar.com	641	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	357 B	632 B	54.230.111.39
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.155.157.101
snap.licdn.com	1044	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	361 B	3.4 kB	23.36.76.210
vars.hotjar.com	1014	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	485 B	1.7 kB	143.204.55.20
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	363 B	48 kB	142.250.74.168
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	353 B	94 kB	31.13.72.12
script.hotjar.com	887	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	364 B	67 kB	54.230.111.73
analytics.twitter.com	526	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	699 B	613 B	104.244.42.195
gen.xyz	113365	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	425 B	2.0 kB	104.26.4.161
www.googleadservices.com	107	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	366 B	16 kB	216.58.207.194
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	835 B	874 B	142.250.74.3
px.ads.linkedin.com	522	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	890 B	2.2 kB	13.107.42.14
vc.hotjar.io	2334	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	368 B	54.230.111.8
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	1.0 kB	54.230.245.110
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	352 B	21 kB	142.250.74.174
static.ads-twitter.com	614	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	344 B	22 kB	151.101.84.157
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	3.4 kB	172.217.21.162
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	576 B	702 B	173.194.73.154
in.hotjar.com	1746	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	456 B	379 B	52.51.220.155

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2022-10-12	medium	xyz.com	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-12	medium	xyz.com	Sinkholed

JavaScript (44)

	URL	Size	First Seen	Last Seen
	gen.xyz/	1.4 kB	2023-03-08	2023-03-08
Pretty URL gen.xyz/ IP 104.26.4.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:49:59 Last Seen2023-03-08 13:49:59 Times Seen1 Hash 44c69a17034d753828d2a679feb66d02 3dc58907283aef4ed0090a8d36b27bf813adaf6f 4c60fcb8b5447efec5e0de615b7967edc585de94cd217b38aff88d51d81f1e5f Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1665616499984&cv=9&fst=1665616499984&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=1218234181.1665616498&hn=www.google.com&async=1&rfmt=3&fmt=4	2.3 kB	2023-03-08	2023-03-08
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1665616499984&cv=9&fst=1665616499984&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=1218234181.1665616498&hn=www.google.com&async=1&rfmt=3&fmt=4 IP 172.217.21.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:49:59 Last Seen2023-03-08 13:49:59 Times Seen1 Hash 5421b311f0907445d033a7468724752f 468601f9204a50311e04d0d445048c4198788648 6c44fcc64b1b421872697d7417ccb2901879ab629d12f7c8a591b29de1874614 Loading...

	www.googletagmanager.com/gtag/js?id=AW-939580661	118 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=AW-939580661 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:49:59 Last Seen2023-03-08 13:49:59 Times Seen1 Hash c39a2623b60e00b9b0c511ffc088c9fd 8b10470c36642bbea7f24d05cf10f065d89f48cf f0a6b783bb90c5d055ef9ebe13e78b79d6ef8fe2db5a817cc639ffa4d88ad328 Loading...

	connect.facebook.net/en_US/fbevents.js	103 kB	2023-03-08	2023-03-10
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:22:37 Last Seen2023-03-10 09:32:29 Times Seen1 Hash bb8db808bda1a39bb72283b15daa8f46 a22500ca4ee161771ed037221307c3d1d5ab5e69 b81cc6d28cbf3df9c6127a05a865bef0842d917507cce946712974e748110957 Loading...

	gen.xyz/wp-content/themes/xyz/js/punycode.js?cache=022	12 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/wp-content/themes/xyz/js/punycode.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 780cbb8b0cfebfe41d46a8c1fd5f2577 c41e1d416e32fb59087d04db55d65e5656131663 d0d94f52816ab288570a660d468d8f52b5c6cc9ec7521599d66d410996a66fef Loading...

	gen.xyz/app/bower_components/datatables/media/js/jquery.dataTables.js?cache=022	436 kB	2023-03-07	2023-05-11
Pretty URL gen.xyz/app/bower_components/datatables/media/js/jquery.dataTables.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-05-11 11:06:21 Times Seen3 Hash 89714e2311c98d375b09050e68e686df bad157c0fde8e982d1ef06d302c038d8a5ec21ed 25369dbf8cd6c54a553e0586a11376d371d73d71f66564ffd88a7c1b2a13ace9 Loading...

	gen.xyz/	403 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.4.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash e61943f932762294e78ee14f170f4fb2 4b353cfef080082c7c8ad1f2c45ad6d5b2bba2bc a4a194ec96e5a7781b169b2ab4ec8d42e3fa48399388f93e48de9cffa0b25e06 Loading...

	gen.xyz/app/js/gen.js?v=022	2.0 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/app/js/gen.js?v=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash a18909a76ea838afea6e6c726a6ac86e b12e41f4c136d7ecded8f86a2117fc84e2983a9b 274a39282ded9f2e5a9ef5426b4bcfbf7ecde1aab1507391c0df0a217a25005d Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-19
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-19 07:47:47 Times Seen1515 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	gen.xyz/	38 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.4.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash e2f501ee4e5881de31ae499ae0e23124 f0060a310de1abe21ea0d401802c9a273022cc6b a29812874f6701f428a116f11dba401a83fb55cad51b479289bf01db328b91c9 Loading...

	snap.licdn.com/li.lms-analytics/insight.min.js	7.8 kB	2023-03-07	2024-01-14
Pretty URL snap.licdn.com/li.lms-analytics/insight.min.js IP 23.36.76.210 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2024-01-14 12:48:17 Times Seen22 Hash 93e8a332e6a6de807c6ef9fdac9689ae 68a0ccb463d6abb247149a50e0a90ff32dd98ad0 b57839788686bf37d29f47bbe45ad8258085e3aebf54650ab389c0b515b977e1 Loading...

	vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html	2.3 kB	2023-03-07	2023-03-17
Pretty URL vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html IP 143.204.55.20 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:20:41 Last Seen2023-03-17 12:55:02 Times Seen1 Hash d92066afca578ed14865977d9feac035 2272d154325335dd33ffed8b26929039c6561771 fc200422a2125ba3391e529347524b6596dc8eb4cbb545e7db65ecde73f5bb28 Loading...

	gen.xyz/wp-content/themes/xyz/js/lib/slick.min.js?cache=022	37 kB	2023-03-07	2024-04-07
Pretty URL gen.xyz/wp-content/themes/xyz/js/lib/slick.min.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2024-04-07 22:25:49 Times Seen235 Hash e89ab0412e152eb33cba77569a88297a 213f9015e6302ab4950519647baa4a48bd01b5c4 f295ebe06fc74dd639fc1d926abdea188a4c960b17266e73da205d034ac37f0e Loading...

	www.googleadservices.com/pagead/conversion_async.js	42 kB	2023-03-08	2023-03-10
Pretty URL www.googleadservices.com/pagead/conversion_async.js IP 216.58.207.194 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:14:45 Last Seen2023-03-10 12:04:35 Times Seen1 Hash 6b1e44d7f33db55b20cc445ef7a24ab5 24cafebc7ce5cefc025bc5cfce139afa7e7bfe10 f42283e0ca17a52688c5250e714ecd1b6a53af8b0f6e54ac64546499b0ec1b19 Loading...

	gen.xyz/	425 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.4.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 2fb3256ff4bc91dbbb18ce7ced45b563 1caa99b97dc244753613bd8236b67992c3ba2ef1 faf1ef5a1716e330c6980768327baa2b48a152007f3fec1c48d36fff352ec3ca Loading...

	gen.xyz/	515 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.4.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 7d5aa9a1dd78c7c847b222cf58f1a8f5 b126f92163bf1a49ef123fcd3a47146d732ceb1b 0ba1fce9cbe98b8bdd18b80cf55ef6f7e915102cf74e6978965b3c58c3ebcd7a Loading...

	gen.xyz/	426 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.4.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 2efc1378c9064381e764ab203b2704b5 883e5c9454d19c560b29f34638a4ca64d36613cf 2691d456011e71b4a7a0e2c2ed07dd55a086a2594c627b607ee9383ceac34c27 Loading...

	gen.xyz/	160 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.4.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash e7fc539bee0344fe0aa54476c514092e ac0ae8703b53f0d6be914d41d0d1c0a2bceebbaf 5008f8259e1f829a5f31a2bbc3ac7537ddf8a2347cf3d0e9e172e5cde0b72017 Loading...

	gen.xyz/app/bower_components/datatables-tabletools/js/dataTables.tableTools.js?cache=022	84 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/app/bower_components/datatables-tabletools/js/dataTables.tableTools.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 43fb31345ea1d10e0b056622e4fb6d48 b6e3f2eb48e93fee5b845f27c5a386b2010b978a 2b38d1e7dc3a292d38e1f9af7272aa3562fe70b54ef0b1f62a23090c40528963 Loading...

	static.hotjar.com/c/hotjar-2663986.js?sv=6	4.6 kB	2023-03-08	2023-03-08
Pretty URL static.hotjar.com/c/hotjar-2663986.js?sv=6 IP 54.230.111.39 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:49:59 Last Seen2023-03-08 13:49:59 Times Seen1 Hash 1189e11ef8975c318740d37d0d0bdab1 3a4488eeded62a5d40b137138ec96126944ca188 c4494bdf09e8c1232cad775144ae75b6adcbfb8418d7fd60c7b9fbd053fabab7 Loading...

	www.google.com/pagead/conversion_async.js	42 kB	2023-03-08	2023-03-10
Pretty URL www.google.com/pagead/conversion_async.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:10:58 Last Seen2023-03-10 12:05:33 Times Seen1 Hash 7ebf0fce2f7b7c5a547d76da320bd16f cf5575cac6328d1538893b09ddcc0e1d9ece0bd2 a355dc6fd53a94ca23cff781b3cf5f19d3851d899687b32bdfb4ecf6adb0ecb3 Loading...

	gen.xyz/wp-content/themes/xyz/js/modernizr.custom.min.js?ver=2.8.3	9.9 kB	2023-03-07	2023-11-06
Pretty URL gen.xyz/wp-content/themes/xyz/js/modernizr.custom.min.js?ver=2.8.3 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:32 Last Seen2023-11-06 00:36:04 Times Seen13 Hash 333ed17397abc1cb3f95a56bc99175ee 3bb7f2d314eb569db4c616fe2b7894e6fd8d156e e754195c8dda039e2163e1164d065c6eb4fdc7a6b87dd2c4c29c8c577ec10034 Loading...

	gen.xyz/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-19
Pretty URL gen.xyz/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 10:16:10 Times Seen31744 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	gen.xyz/	2.2 kB	2023-03-07	2023-03-08
Pretty URL gen.xyz/ IP 104.26.4.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-08 13:49:59 Times Seen1 Hash 2c3cae4f7ed895a2c4bb122ceac2b04b 2c363b2a10a87148f5f193991e67a7aa5ffa2a08 82ed1c716ac626b37218f121bd8976104a395241daec712bd612092491e4b1a6 Loading...

	gen.xyz/wp-content/plugins/gravityforms/js/gravityforms.js?cache=022	47 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/wp-content/plugins/gravityforms/js/gravityforms.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 97f5a84d21b6a9dcb2a8da1b3ad470fd 8c68c322dd935c668b0a459c67b148b88a0816cc 23775a2f8403312cd3521fd2dae3908faad9548397128fa260d480ebfdfbf34b Loading...

	gen.xyz/wp-content/themes/xyz/js/theme.min.js?cache=022	19 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/wp-content/themes/xyz/js/theme.min.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 54849f7c74a1a4f89beaf9cada1f9ee8 087550e99db3b67f87aa12234c2a80aaf74baef9 fc19f414db4faca747fa01c1acdfcd0a187080f727f29175d3857cb54ad3af30 Loading...

	gen.xyz/wp-includes/js/wp-emoji-release.min.js?ver=6.0.1	19 kB	2023-03-07	2024-04-19
Pretty URL gen.xyz/wp-includes/js/wp-emoji-release.min.js?ver=6.0.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 12:23:33 Times Seen37994 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	gen.xyz/wp-content/themes/xyz/js/jquery-ui.min.js?cache=022	240 kB	2023-03-07	2024-04-19
Pretty URL gen.xyz/wp-content/themes/xyz/js/jquery-ui.min.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:04:01 Last Seen2024-04-19 12:06:59 Times Seen4524 Hash d935d506ae9c8dd9e0f96706fbb91f65 7f650ee30c6a4d3eea04032039b20ff72997559b c4d8dbe77feb63e5a61bee0bead4e5f66e8fa6a927599bd1b74aced52467273c Loading...

	static.ads-twitter.com/uwt.js	57 kB	2023-03-07	2024-01-14
Pretty URL static.ads-twitter.com/uwt.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:30:10 Last Seen2024-01-14 12:48:17 Times Seen57 Hash d4de8398858246712016031c834bb061 49709126e0fcb914a62f3255ae3ffe45a3fbe0ae 41b758f84ab2dd5da6f7ba488813d17410ebb48bc2074d304c26d63c5ece003d Loading...

	gen.xyz/app/bower_components/jquery/dist/jquery.js?cache=022	272 kB	2023-03-07	2024-04-19
Pretty URL gen.xyz/app/bower_components/jquery/dist/jquery.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-19 15:08:30 Times Seen57936 Hash 6a07da9fae934baf3f749e876bbfdd96 46a436eba01c79acdb225757ed80bf54bad6416b d8aa24ecc6cecb1a60515bc093f1c9da38a0392612d9ab8ae0f7f36e6eee1fad Loading...

	connect.facebook.net/signals/config/1729164704043487?v=2.9.84&r=stable	300 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/signals/config/1729164704043487?v=2.9.84&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:12:00 Last Seen2023-03-08 13:49:59 Times Seen1 Hash 9e0433e56694bdb9af847ce5675d05cf 0b2502f924f4f572de424f03967caa2a12f9fbd9 65089820efadd82ee0df6636e7d8479db35014893f1199c0fb82088f254856ad Loading...

	gen.xyz/wp-content/themes/xyz/js/lib/datatables.local.js?ver=6.0.1	437 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/wp-content/themes/xyz/js/lib/datatables.local.js?ver=6.0.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 8d7f3f40d460d72615bb6311b0bb3ede e484b8feee6b982438a1e7cf199610f39e65e4e8 aad2385045abd7a0d542d55d0338369ecb7955198283baea2cec5ab8a28d4a7b Loading...

	gen.xyz/	254 B	2023-03-07	2024-04-18
Pretty URL gen.xyz/ IP 104.26.4.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2024-04-18 15:36:01 Times Seen1578 Hash 38d526d4f322e3a550fe39e8206c36d5 f3a2c9e4f91a094f51c4499ad2d8aaa29dd791d5 eb9084d853891411ee7b809cca094411a91190f54f9bbf6adfad39ffaa6cbe49 Loading...

	http:blank	580 B	2023-03-08	2023-03-08
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:49:59 Last Seen2023-03-08 13:49:59 Times Seen1 Hash 8724f6c048f400759a46540167f532a8 593d2827fb2dabad942f2bf5201cd02518a78974 35b8034d392c56cb133b87111239cf261fbf3e7006ce14ca6f6319f354d4a22a Loading...

	gen.xyz/	104 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.4.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash bed1bd3c3c8c36ecdd483d44e3222fa4 29aebfbb0ab91fdebf10e3b7936ec38224e2235b 61f59eff26bd9b08c056e9c1aa043055d7849eb3e0b46e6aaf430a4eeb141c8d Loading...

	gen.xyz/	3.2 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.4.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash bec938113199108723728a7dd956e313 44150726fac87607d61930de52ff0f736d09b1dc 0ed5b71269fe8ed889fbb841eeca5762bd2708626c835e548f6f13fd240be348 Loading...

	gen.xyz/wp-content/plugins/gravityforms/js/jquery.json-1.3.js?cache=022	4.9 kB	2023-03-07	2023-10-30
Pretty URL gen.xyz/wp-content/plugins/gravityforms/js/jquery.json-1.3.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-10-30 14:35:36 Times Seen7 Hash 6f1069afb41ed83274a60c2b17089c51 2ca09363c33ff1375bc8bc78577c2f2cfb1c0661 386089cf121ec8525a1d38e4a3663eb9ecb321f25cc5acc8b97a6a87b6ead070 Loading...

	www.google.com/pagead/1p-conversion/939580661/?random=1665616499986&cv=9&fst=1665616499986&num=1&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=1218234181.1665616498&gtm_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4	43 B	2023-03-07	2024-04-08
Pretty URL www.google.com/pagead/1p-conversion/939580661/?random=1665616499986&cv=9&fst=1665616499986&num=1&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=1218234181.1665616498&gtm_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2024-04-08 20:17:10 Times Seen63935 Hash ad8b6f08655797587cdec719a94efe59 182adf5a140796f81e930649d05654dbf22fd5b7 77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6 Loading...

	gen.xyz/wp-content/themes/xyz/js/lib/countUp.js	8.1 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/wp-content/themes/xyz/js/lib/countUp.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 630b91f2f82777e44cea801a6d2fed28 f834a9d4fa517d58a50ce2c9f007b7df816662fb 1eb30085d1419ea37123d5a7fb1b5cf4ccbf5be4a14389972460185d02e1ea3c Loading...

	gen.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-19
Pretty URL gen.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 13:36:01 Times Seen68495 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	gen.xyz/app/bower_components/requirejs/require.js	83 kB	2023-03-07	2023-11-27
Pretty URL gen.xyz/app/bower_components/requirejs/require.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-11-27 05:52:19 Times Seen7 Hash 640929dac3c23a448d2eebc37bc32062 bb053e41b1df0fe25058666f5055154860df9bae cba8e7dbd7b7289150954fbce84d7b1213e4d7ba50e602c78aff3be8a10606c1 Loading...

	gen.xyz/	384 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.4.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 836671b24b63c2f221bdf5a21fb40148 16fa940d6f9e9de3a444ad99fd7b7f688a5ce352 a502abed5c17ddc6a2a4b5132a38ad8ed35646e446b08872092a49da30b5fdc0 Loading...

	gen.xyz/	84 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.4.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash ee44fd63b47a5702de5e3de88230d6a2 9dff9764da87aa9fc6d268f69005d512b186bf6f 01851f22d81181abf5be23e3264d711f8026ed90023b4420406652e3fb88f257 Loading...

	gen.xyz/app/bower_components/jquery-migrate-official/dist/jquery-migrate.js?cache=022	18 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/app/bower_components/jquery-migrate-official/dist/jquery-migrate.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash b9a677088bc014840e05844b481dd835 5321b828654198d3a75374b9a529f38bab996889 67b010c8e18b0bafb1c2ded6b2101abcd5e4e6300990ef58000047f8f280f69b Loading...

HTTP Transactions (60)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

54.230.111.7

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
54.230.111.7:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
3f17af4e8a1739eda4a518039f4892f9
c3feba08ae7e8f57e0fe9bcd2ebedea6bda67cbb
c485b09cad08b5233fe8753682faf59219fe0d18fcc34d90dc88fb0971295f5f

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 12 Oct 2022 22:49:24 GMT
Expires: Wed, 12 Oct 2022 23:33:18 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: sA8QQGnj0m5ak8Mi2-Taef_sf0nixpfDnfVz0mK3V-GSrwdsWBXpSg==
Age: 1531

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0602913f3d432ffbfaa654440972ee1
e5aaf31749e65875fd840091f9a3bba641de413d
5495ad212166703dcd1d17d7aa6ff4d1c40e73dfad703d24f00f60f35bc7d56c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5495AD212166703DCD1D17D7AA6FF4D1C40E73DFAD703D24F00F60F35BC7D56C"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8089
Expires: Thu, 13 Oct 2022 01:29:44 GMT
Date: Wed, 12 Oct 2022 23:14:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c5afb6d2acaf66af4c3fd458a0b70e17
ae58844d8753fe1b62240067b7c0efba86a858d0
42b37d16055f0f3ec52cbb45b4af4900baac4352e87c662811cdb377eb2d3c3e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "42B37D16055F0F3EC52CBB45B4AF4900BAAC4352E87C662811CDB377EB2D3C3E"
Last-Modified: Wed, 12 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13871
Expires: Thu, 13 Oct 2022 03:06:06 GMT
Date: Wed, 12 Oct 2022 23:14:55 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: niKVN2q+ocGH2DZD1oFIIYjDZg5UkQY6w6ZZZ+jhsYXVq/ms8m2WZgcKOvwdOtfpdpL+VkeuWj0=
x-amz-request-id: 9DYSRSHWTXXDHSNY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 12 Oct 2022 22:33:31 GMT
age: 2484
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

xyz.com/

52.8.203.224

301 Moved Permanently

241 B

URL HTTP/1.1
xyz.com/
IP
52.8.203.224:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
241 B (241 bytes)
Hash
37a3e84f855ce249326aee6a924cc82a
90102b83b36dd44688aa8d6bc352deb64de03169
67eb2485441493c49d7dfbbea1ab68027e7b1f68f03b482e0f5e99f30460388e

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: xyz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx/1.15.12
Date: Wed, 12 Oct 2022 23:14:55 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.5.9-1ubuntu4.29
Location: https://gen.xyz/

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 12 Oct 2022 23:14:55 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

54.230.111.7

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
54.230.111.7:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Wed, 12 Oct 2022 22:45:05 GMT
Cache-Control: max-age=3600
Expires: Wed, 12 Oct 2022 22:45:27 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: utZ5FlW-IIVhfQABYJA-Cv0hcPimmbAR3SZaoZEJ4PEnJbRDNS0wFQ==
Age: 2715

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
63604bda613d148120c491e2f095255f
0fc63ecaff8a0f36dc2a82f3fb187725d0064d69
8478a84e8513fb9afb0d1c369b668bd37ca98943a624ac3a3a69165536bd1748

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6107
Cache-Control: max-age=124420
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:14:56 GMT
Etag: "63467599-1d7"
Expires: Fri, 14 Oct 2022 09:48:36 GMT
Last-Modified: Wed, 12 Oct 2022 08:06:49 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.155.157.101

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.155.157.101:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uU4BIKLAQN4F3N1oUwpPhg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dOg+6jQypkTLQqGri7LKvTNKbHY=

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
1dc3d11c376bcea0f0666725430177f7
10fbfa3d331cbf0b786fd3e0d1003700f300dd88
09db61756115b127336bf1ba803d03fff5b9c4c7ac55df221a0fb174b483761d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:14:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a0be97524cdc754f69f304728143b07b
2c044809e411415e4b8b29b1b31b74e9d8f2eb0b
8a3b0d14c698fe5e60612ab0340a3b1bb0b86a86840d1ff3b0f5064e4e2e3995

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:14:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=AW-939580661

142.250.74.168

200 OK

47 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=AW-939580661
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1934)
Size
47 kB (46754 bytes)
Hash
1e34f1d5be3dc60e5568fea64215b3ed
a31288f462cca294a41c6aeedf54d81b731a152f
4377ec12a0850ec14a5f907ef966958858024f2d0388e5ce0d06852e1b7f22d8

HTTP Headers

GET /gtag/js?id=AW-939580661 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 12 Oct 2022 23:14:56 GMT
expires: Wed, 12 Oct 2022 23:14:56 GMT
cache-control: private, max-age=900
last-modified: Wed, 12 Oct 2022 21:52:49 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46754
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googleadservices.com/pagead/conversion_async.js

216.58.207.194

200 OK

15 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion_async.js
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1654)
Size
15 kB (15192 bytes)
Hash
3f6af00987331c2127d76c53ad1e07cb
4cd4976eb4921e3bd9a96b6a2a29b17251de939b
4ea0a9748c3e5fe15fc2ae185f43e6928db62b8b2250c3b4df092737938168c1

HTTP Headers

GET /pagead/conversion_async.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 12 Oct 2022 23:14:56 GMT
expires: Wed, 12 Oct 2022 23:14:56 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 699633608045481581
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15192
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
befa75dbbe9d5dfa501f9c1f03b7cdfa
73814c47bdcd6bebffc963b71d0a20fb361fad50
76b8f843416709a64e030343fbea3e04b9ee9faf2872ddba29f7c8ea28041e28

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:14:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
facc2d9d5b28ef7bec2815acf2c93c05
4c859a1c25b19fa51417fc9a5b80ad8c3d8f3893
b29cfbf748429bf5a0e68759aaff29d024c88f261a3919b3d7deb39b92627716

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:14:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2489
Expires: Wed, 12 Oct 2022 23:56:26 GMT
Date: Wed, 12 Oct 2022 23:14:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2489
Expires: Wed, 12 Oct 2022 23:56:26 GMT
Date: Wed, 12 Oct 2022 23:14:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2489
Expires: Wed, 12 Oct 2022 23:56:26 GMT
Date: Wed, 12 Oct 2022 23:14:57 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fc8e71c-ad38-40c0-aa1c-62d0543b412e.jpeg

34.120.237.76

200 OK

3.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fc8e71c-ad38-40c0-aa1c-62d0543b412e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.6 kB (3621 bytes)
Hash
d7c910df57ddbb4c965a2368ecd0b7c0
3c43ed5bf8ebd3e103a6b8f4736ccb414353937e
bfe79d8edb1e729797ca5a044b425a50e17402a8e02f7aa46d196c4717940995

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fc8e71c-ad38-40c0-aa1c-62d0543b412e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3621
x-amzn-requestid: 331206f5-c205-42f7-b4ec-33cda2fb63b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZxutmHYYoAMFW9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6343c4bd-40c2f12833e077be52ca770c;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 07:07:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: m0UA1qs-Ea9UjOtLqAwh7WEhU3OJAwvBKEuyn7iUUweXAHdFDYpjMQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 11:52:24 GMT
age: 40953
etag: "3c43ed5bf8ebd3e103a6b8f4736ccb414353937e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F553262ae-b30b-43f9-b6f4-0bb35e7dad9e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11489 bytes)
Hash
4a60aeffcc92c4b0d0860c67a0f9bcf1
192653edcfe273506a3ec6b7c84d5c617b06f273
dc51532afe8089033b252753a2fcf8080840bbf066005fc83779dbbe34146983

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F553262ae-b30b-43f9-b6f4-0bb35e7dad9e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11489
x-amzn-requestid: 6f736cf6-a06e-45f5-9ea7-19e4df12b3ce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqVBGqToAMFp3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8a86-32c61ab13ab4312e3e93513f;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:08:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: v-nPLi3VtT48B2d9aHQZOH4iO1LeJbBXIlA0q5gKboX4Q5Z61u4eNQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 22:00:12 GMT
age: 4485
etag: "192653edcfe273506a3ec6b7c84d5c617b06f273"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea5e4230-8a2e-4b3f-9715-0b8e37731446.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10403 bytes)
Hash
fc1cec286dd64514d2863d296be2a291
c71c23851d298fb5271dfceff7b5034dabc68653
18e3aff4077f966ba9d851a84137b2913e78dacaaceec91b2ebd15115a7e2886

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea5e4230-8a2e-4b3f-9715-0b8e37731446.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10403
x-amzn-requestid: b791bd84-2750-44c9-90e1-e2489737a344
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z0WFoEjnIAMFV0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6344d08a-43345eaf7dee15b052a5adca;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 02:10:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MiWRqSt38ls48siADU8bxz3-Cd4KOyWGo-1j7_h3qz3092al1hOaKg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 21:46:26 GMT
age: 5311
etag: "c71c23851d298fb5271dfceff7b5034dabc68653"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601dddd7-f022-4702-bac3-f92bfef5f042.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7863 bytes)
Hash
0048874f97f0965b4591d89576136f07
e32bb263c8bda87ed9d0c4068b290156cc973ba9
32f6d4932f5db94915be93c0bce2a514b0ed35425a6b2175104435e7982f12d7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601dddd7-f022-4702-bac3-f92bfef5f042.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7863
x-amzn-requestid: 57346991-3866-4f4b-aac7-3411869802e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zn20-EL4IAMFvQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633fd1b9-5bb12cbc095061fa6a6420a3;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 07:14:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: O0k8ffHjS-JM1uRIEAuAwAmU6QY5pg38Ef2NHDESTcnOM514f3x_xw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 22:47:47 GMT
age: 1630
etag: "e32bb263c8bda87ed9d0c4068b290156cc973ba9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87c3b83e-ab1b-415f-87e8-75fbe6a8804e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7580 bytes)
Hash
4428a41f1c63e0c32664bc1b7d6b65a0
325484ea6c2653483019d85d690b4a697f8dde9f
7a8e1afc1f987dbd6275617db2655d7f92f2ead75ce6cbe924bf572e1b2567d0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87c3b83e-ab1b-415f-87e8-75fbe6a8804e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7580
x-amzn-requestid: 6a320517-254f-40f6-b7cd-b87317d2177d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z6Tq9HkqoAMFVcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63473312-13af2ea55b9d524d37b1dd46;Sampled=0
x-amzn-remapped-date: Wed, 12 Oct 2022 21:35:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WaYmkULE2Gb48Ep1NuF98M6D9nbo54L1-tyAqzbSWKUQ0S4jQeiORA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 21:45:44 GMT
age: 5353
etag: "325484ea6c2653483019d85d690b4a697f8dde9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd38e46c-1252-4a62-b18c-fa49d9d76841.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5994 bytes)
Hash
7411df7da53e98c4988663b3338ac449
cd5518eff668619efbf3b821306d651fcb30a712
b87d92eef134e1378d51aac8503545949596c982b53fbda75ccbec71dbff6d7b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd38e46c-1252-4a62-b18c-fa49d9d76841.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5994
x-amzn-requestid: b2681b02-7095-4fe5-83cd-aac9f08ba8ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z4erJFq1IAMFtNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634677e0-4a000af8739bd4115d01835c;Sampled=0
x-amzn-remapped-date: Wed, 12 Oct 2022 08:16:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ZTUx0jGqhpb1rXzb_JXDWdubqddPiU5IeTjnxpmMjcOJoiIwU_p7ZQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 21:59:14 GMT
age: 4543
etag: "cd5518eff668619efbf3b821306d651fcb30a712"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

snap.licdn.com/li.lms-analytics/insight.min.js

23.36.76.210

200 OK

3.1 kB

URL HTTP/2
snap.licdn.com/li.lms-analytics/insight.min.js
IP
23.36.76.210:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (7751)
Size
3.1 kB (3063 bytes)
Hash
57efbbeb3e1d23c82b677511c67c8b0e
f927ba115ef4be362694c22850ddbdd1c1b054d1
873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6

HTTP Headers

GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 20:23:36 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=37206
date: Wed, 12 Oct 2022 23:14:59 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4f6313a1417b096fb092f3d28a765787
8513b2f92ca42a7487bbbebb14c1db2c4b0ee836
5f6a80401a2ab3ba5c41facff4135f7a1d6b4bbba10ea5bb39634ada50fb1fd9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2267
Cache-Control: max-age=154059
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:14:59 GMT
Etag: "6346f863-1d7"
Expires: Fri, 14 Oct 2022 18:02:38 GMT
Last-Modified: Wed, 12 Oct 2022 17:24:51 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 12 Oct 2022 22:41:09 GMT
expires: Thu, 13 Oct 2022 00:41:09 GMT
cache-control: public, max-age=7200
age: 2030
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static.ads-twitter.com/uwt.js

151.101.84.157

200 OK

21 kB

URL HTTP/2
static.ads-twitter.com/uwt.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
data
Size
21 kB (21283 bytes)
Hash
4fb8bffc10da9ac43d6ab4588a2f32e4
64f632820da8324c33e00a898ba322143ee2bff1
21ddb746a2b6991b62a667d7c88b6d66bb6c73a91a09d66cc0b3b81eb33dd67d

HTTP Headers

GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Wed, 12 Oct 2022 23:14:59 GMT
x-served-by: cache-iad-kcgs7200165-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ec8c3be288c030a2f21f77da38609a2c
5dce231ac91002054bbdbc6b19f6d1aa0d6c32bc
fa3abfefbd26a9339066ee03360614fc68312aefd2aa7e47e291589f426a7265

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:14:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

92 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
data
Size
92 kB (92208 bytes)
Hash
f9c9c9828b4ea111bd2bb4a85957ac28
cfb5c2794e012126388fcbf094526bdcfb8623e7
c26836659c13dcec6a0c62608067020851c2e8dda66a0768f2b1320a0ac005fb

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: HrVluEOExYGHOJTkJG0oND9susyKOG7EmTmf6AH5tDjecEJjXPTVkGz6Gt9vygcEq6GRw39nY7kSVobTdOcjUw==
content-length: 26852
x-fb-trip-id: 1904183273
date: Wed, 12 Oct 2022 23:14:59 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4f6313a1417b096fb092f3d28a765787
8513b2f92ca42a7487bbbebb14c1db2c4b0ee836
5f6a80401a2ab3ba5c41facff4135f7a1d6b4bbba10ea5bb39634ada50fb1fd9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2268
Cache-Control: max-age=154059
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:15:00 GMT
Etag: "6346f863-1d7"
Expires: Fri, 14 Oct 2022 18:02:39 GMT
Last-Modified: Wed, 12 Oct 2022 17:24:51 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

www.google.com/pagead/conversion_async.js

142.250.74.164

200 OK

37 kB

URL HTTP/2
www.google.com/pagead/conversion_async.js
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (659)
Size
37 kB (37441 bytes)
Hash
c072813b6235de3ca404b20aa7b740a2
babf20c2db43e0076550db32d9ebbf1e113d7029
e0dae380e172b127eb086434237bcccdb3b8046646d875461b484c931a29afcf

HTTP Headers

GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 12 Oct 2022 23:15:00 GMT
expires: Wed, 12 Oct 2022 23:15:00 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 17557423932572341828
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15187
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7c009ebc7f8428a2b42bfded02ce064b
aacd16236c8c8522b789e7f1a719ddd4221e9e09
de21ff625e09b453b11b74ab831ea1ecdc36b84cf3dec26d2074ed097f74bdc3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:15:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

314 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
314 B (314 bytes)
Hash
350fddd0c75852482ce2dead9e07368a
87ca280e9242247f10f203f8d6b59e819097644c
cb18e0a0eea8cc36dde497585ff2ef3b0e0a18acd76e3182bd0a81c9a55e55ad

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4585
Cache-Control: max-age=132964
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:15:00 GMT
Etag: "63469cef-13a"
Expires: Fri, 14 Oct 2022 12:11:04 GMT
Last-Modified: Wed, 12 Oct 2022 10:54:39 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 314

vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html

143.204.55.20

200 OK

1.0 kB

URL HTTP/2
vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html
IP
143.204.55.20:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Size
1.0 kB (1044 bytes)
Hash
f6a9ca04b0687ea3c0d98e8430c8c77b
35503b2deb23091a9a9c6c68d4020dbdf879588e
8e4328ecb6b395499567369e3c227231dbdaf361f43ce315934d7a2a3abbed41

HTTP Headers

GET /box-69edcc3187336f9b0a3fbb4c73be9fe6.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Tue, 04 Oct 2022 09:28:08 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "f6a9ca04b0687ea3c0d98e8430c8c77b"
last-modified: Tue, 04 Oct 2022 07:09:34 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TJmMOALgk_dtubOflde9UNWmJZe46GWJw1sPAuTbCOkXmr9NyRrrBA==
age: 740812
X-Firefox-Spdy: h2

t.co/i/adsct?bci=3&eci=2&event_id=cf95d6f0-5bce-417a-8495-95c6ab467935&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5767f8c3-aca6-465e-bdab-3c48cef2d3c7&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.27

104.244.42.197

200 OK

43 B

URL HTTP/2
t.co/i/adsct?bci=3&eci=2&event_id=cf95d6f0-5bce-417a-8495-95c6ab467935&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5767f8c3-aca6-465e-bdab-3c48cef2d3c7&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.27
IP
104.244.42.197:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=cf95d6f0-5bce-417a-8495-95c6ab467935&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5767f8c3-aca6-465e-bdab-3c48cef2d3c7&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.27 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 12 Oct 2022 23:14:59 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=2ee96165-5a55-4e99-b104-392843ffad9a; Max-Age=63072000; Expires=Fri, 11 Oct 2024 23:15:00 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: ccf998b59af5a6ae
strict-transport-security: max-age=0
x-response-time: 109
x-connection-hash: 2f24a2a0b94c9260bd92b7ee188edca685e04383215571e57c6869c3e627acd1
X-Firefox-Spdy: h2

script.hotjar.com/modules.bcd9ade6b0bb9bdd0789.js

54.230.111.73

200 OK

66 kB

URL HTTP/2
script.hotjar.com/modules.bcd9ade6b0bb9bdd0789.js
IP
54.230.111.73:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (48714)
Size
66 kB (66262 bytes)
Hash
c874db56accb04836744269ac062cb73
72035a9ae3559bbf0365906021d27793e5ef1795
1d454467a78ed78b8a75996f94f4fece5035f4e900bc29f87262d5ca1ab93a9e

HTTP Headers

GET /modules.bcd9ade6b0bb9bdd0789.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 66262
date: Tue, 11 Oct 2022 12:28:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "c874db56accb04836744269ac062cb73"
last-modified: Tue, 11 Oct 2022 12:27:49 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nrbay15Ho_L_RmpTkohzmO8hn1gEOttUYa1lQ5NbXRyo3l8Trjb2Iw==
age: 125214
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b328dd45b340d747021ad1da23ede95d
92811e18e93271b7b7fc75b2e0ff9d3617f0417e
8e3a7c1a63d37d561dc08f9cec0863582709bb8248214c0f08586bbf3040cad2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:15:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b328dd45b340d747021ad1da23ede95d
92811e18e93271b7b7fc75b2e0ff9d3617f0417e
8e3a7c1a63d37d561dc08f9cec0863582709bb8248214c0f08586bbf3040cad2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:15:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b328dd45b340d747021ad1da23ede95d
92811e18e93271b7b7fc75b2e0ff9d3617f0417e
8e3a7c1a63d37d561dc08f9cec0863582709bb8248214c0f08586bbf3040cad2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:15:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
fadea3cfe562b664d8671576ea3c6f5b
d7a3fda387f835905567801302394f7cb730770b
baf9280027055f591d71ecd324172b8054c4af4a60526824ac48974d977f0a01

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5693
Cache-Control: max-age=88709
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:15:00 GMT
Etag: "6345ebbc-139"
Expires: Thu, 13 Oct 2022 23:53:29 GMT
Last-Modified: Tue, 11 Oct 2022 22:18:36 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313

googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1665616499984&cv=9&fst=1665616499984&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=1218234181.1665616498&hn=www.google.com&async=1&rfmt=3&fmt=4

172.217.21.162

200 OK

1.0 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1665616499984&cv=9&fst=1665616499984&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=1218234181.1665616498&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
172.217.21.162:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2286), with no line terminators
Size
1.0 kB (1049 bytes)
Hash
19268be290111e7fec81ed54784c6118
c3fb2f75ca9eb89c2132dd82f0ea1dbde6dac090
4c0090be2297cf01562d9039a79459df52055ab6ac4a9131a4550c5ee8563cb7

HTTP Headers

GET /pagead/viewthroughconversion/939580661/?random=1665616499984&cv=9&fst=1665616499984&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=1218234181.1665616498&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 12 Oct 2022 23:15:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1049
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 12-Oct-2022 23:30:00 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-51822516-1&cid=295031446.1665616500&jid=1547633131&gjid=501882386&_gid=1779487618.1665616500&_u=IGBAgEABAAAAAEAAI~&z=954148256

173.194.73.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-51822516-1&cid=295031446.1665616500&jid=1547633131&gjid=501882386&_gid=1779487618.1665616500&_u=IGBAgEABAAAAAEAAI~&z=954148256
IP
173.194.73.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-51822516-1&cid=295031446.1665616500&jid=1547633131&gjid=501882386&_gid=1779487618.1665616500&_u=IGBAgEABAAAAAEAAI~&z=954148256 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://gen.xyz
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://gen.xyz
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 12 Oct 2022 23:15:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5d0a0ed90364e0eea045f6e6cbc6521d
f76cac3b64a0310a0f5dc859cd2310802c024426
26caffaa8fc4b28a0fbe229d64d4f14c621178610521c58881b5cc5b39102382

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:15:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1665616499986&cv=9&fst=1665616499986&num=1&fmt=3&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=1218234181.1665616498&gtm_ee=1&hn=www.google.com&gcp=1&ct_cookie_present=1&async=1

172.217.21.162

200 OK

621 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1665616499986&cv=9&fst=1665616499986&num=1&fmt=3&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=1218234181.1665616498&gtm_ee=1&hn=www.google.com&gcp=1&ct_cookie_present=1&async=1
IP
172.217.21.162:0
ASN
#15169 GOOGLE

File type
data
Size
621 B (621 bytes)
Hash
42f71ba250f61e0ff9ee377151ddae5a
cada03ee36e0ac28dfd7d85b33e9e16d5e213fe1
b8d05118e07624dd0c1c1dbab2569e27ebe296e1b6cb1bcc418bb0478a0d29df

HTTP Headers

GET /pagead/viewthroughconversion/939580661/?random=1665616499986&cv=9&fst=1665616499986&num=1&fmt=3&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=1218234181.1665616498&gtm_ee=1&hn=www.google.com&gcp=1&ct_cookie_present=1&async=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 12 Oct 2022 23:15:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 12-Oct-2022 23:30:00 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/pagead/1p-conversion/939580661/?random=1665616499986&cv=9&fst=1665616499986&num=1&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=1218234181.1665616498&gtm_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0

142.250.74.3

200 OK

63 B

URL HTTP/2
www.google.no/pagead/1p-conversion/939580661/?random=1665616499986&cv=9&fst=1665616499986&num=1&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=1218234181.1665616498&gtm_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26

HTTP Headers

GET /pagead/1p-conversion/939580661/?random=1665616499986&cv=9&fst=1665616499986&num=1&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=1218234181.1665616498&gtm_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gen.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 12 Oct 2022 23:15:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b328dd45b340d747021ad1da23ede95d
92811e18e93271b7b7fc75b2e0ff9d3617f0417e
8e3a7c1a63d37d561dc08f9cec0863582709bb8248214c0f08586bbf3040cad2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:15:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5d0a0ed90364e0eea045f6e6cbc6521d
f76cac3b64a0310a0f5dc859cd2310802c024426
26caffaa8fc4b28a0fbe229d64d4f14c621178610521c58881b5cc5b39102382

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 23:15:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

px.ads.linkedin.com/collect?v=2&fmt=js&pid=50162&time=1665616499923&url=https%3A%2F%2Fgen.xyz%2F

13.107.42.14

302 Found

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=50162&time=1665616499923&url=https%3A%2F%2Fgen.xyz%2F
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=50162&time=1665616499923&url=https%3A%2F%2Fgen.xyz%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D50162%26time%3D1665616499923%26url%3Dhttps%253A%252F%252Fgen.xyz%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQIKfPFyXLzmZAAAAYPOetfswrv6DEQNTsbW_xTXrsQEoUj7lRKN5pXcWlqFN5YtvLvJNeiHBzAiTw; Max-Age=2592000; Expires=Fri, 11 Nov 2022 23:15:00 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQLccvzFO20UHAAAAYPOetfsyLNl0R-UTHjLatri00WyMmyZqkR8UaeL6tRToqW4YKPrKJaK2EsECptEkKbQ_w; Max-Age=2592000; Expires=Fri, 11 Nov 2022 23:15:00 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&374c7d4f-87fa-4480-8227-c12845aec5c6"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 12-Oct-2023 23:15:00 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2359:u=1:x=1:i=1665616500:t=1665702900:v=2:sig=AQGahHG5QoeNN8D1Jo_azDM-KpRwBKAm"; Expires=Thu, 13 Oct 2022 23:15:00 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXq3o/bVeri3lT6dlmP7A==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 5738FB2D376A4191A66F75A6ABC1F6CF Ref B: OSL30EDGE0118 Ref C: 2022-10-12T23:15:00Z
date: Wed, 12 Oct 2022 23:15:00 GMT
content-length: 0
X-Firefox-Spdy: h2

analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=cf95d6f0-5bce-417a-8495-95c6ab467935&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5767f8c3-aca6-465e-bdab-3c48cef2d3c7&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.27

104.244.42.195

200 OK

43 B

URL HTTP/2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=cf95d6f0-5bce-417a-8495-95c6ab467935&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5767f8c3-aca6-465e-bdab-3c48cef2d3c7&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.27
IP
104.244.42.195:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=cf95d6f0-5bce-417a-8495-95c6ab467935&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5767f8c3-aca6-465e-bdab-3c48cef2d3c7&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.27 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 12 Oct 2022 23:14:59 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_/Q6L6j5I4O52jRix4D07SA=="; Max-Age=63072000; Expires=Fri, 11 Oct 2024 23:15:00 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: dc0c6c89b1ffe027
strict-transport-security: max-age=631138519
x-response-time: 103
x-connection-hash: 56d6aa95ed731f23a680325b32a2701b24c518fe25aea8a8000d88a0a2185c0c
X-Firefox-Spdy: h2

vc.hotjar.io/sessions/2663986?s=0.25&r=0.2173576756755683

54.230.111.8

204 No Content

0 B

URL HTTP/2
vc.hotjar.io/sessions/2663986?s=0.25&r=0.2173576756755683
IP
54.230.111.8:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sessions/2663986?s=0.25&r=0.2173576756755683 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gen.xyz
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Wed, 12 Oct 2022 23:15:01 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: X5AWTtY9w061n04-X2bX-GPODjY82vzHiryVKJ2pUR6qnWotmUJL0w==
X-Firefox-Spdy: h2

www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D50162%26time%3D1665616499923%26url%3Dhttps%253A%252F%252Fgen.xyz%252F%26liSync%3Dtrue

13.107.42.14

302 Found

0 B

URL HTTP/2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D50162%26time%3D1665616499923%26url%3Dhttps%253A%252F%252Fgen.xyz%252F%26liSync%3Dtrue
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D50162%26time%3D1665616499923%26url%3Dhttps%253A%252F%252Fgen.xyz%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gen.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=50162&time=1665616499923&url=https%3A%2F%2Fgen.xyz%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&1005031f-5897-4fcc-83f2-ca982d7f4e6f"; Domain=.linkedin.com; Expires=Thu, 12-Oct-2023 23:15:01 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20221012231501c5c4851f-dd12-4779-8535-e506e1cd6c84AQEbhGkUaSiyThu1dhK87mT_JdNSsqUQ"; Domain=.www.linkedin.com; Expires=Thu, 12-Oct-2023 23:15:01 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjU2MTY1MDE7MjswMjHPDEcAVhqyaaJqkCHh2D6sXBleTh1VdSkU5lMwjWZdcg==; Domain=.linkedin.com; Expires=Mon, 10 Apr 2023 23:15:01 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2407:u=1:x=1:i=1665616501:t=1665702901:v=2:sig=AQE4NX-n8SxjL6R1CntjOQUmjcyxCNw-"; Expires=Thu, 13 Oct 2022 23:15:01 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXq3o/gg3SQYoxHvjoUtA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 7F3253D074BB41759273E438139CDCC7 Ref B: OSL30EDGE0118 Ref C: 2022-10-12T23:15:00Z
date: Wed, 12 Oct 2022 23:15:00 GMT
content-length: 0
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
72240e0d8c719b1f2d0d5a9fe8565eeb
cc905a15fc3fcd1b1ea2cb521f25f49e9c7eca82
cf31c70f373701878c5c9345d75d1d7bc3544e03fda99c5f44e22d597c836bc9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=147170
Date: Wed, 12 Oct 2022 23:15:01 GMT
Etag: "6346ce4c-1d7"
Expires: Fri, 14 Oct 2022 16:07:51 GMT
Last-Modified: Wed, 12 Oct 2022 14:25:16 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EjDGSR2CCTRckZw84CtUOzeSbi4k1cjNXKUn4WcZeDO7kkczTlqUWg==
Age: 6155

in.hotjar.com/api/v2/client/sites/2663986/visit-data?sv=6

52.51.220.155

200 OK

92 B

URL HTTP/2
in.hotjar.com/api/v2/client/sites/2663986/visit-data?sv=6
IP
52.51.220.155:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
92 B (92 bytes)
Hash
e03464b4f14a1d296cb59883ae134e96
67e8cfe5f193093e715f15ed21b071dc13c8ee3d
51f23e4ba6b1a83ad7e297301a89147870b4c73952c3ae44d9ca7babb77d9955

HTTP Headers

POST /api/v2/client/sites/2663986/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 146
Origin: https://gen.xyz
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 12 Oct 2022 23:15:01 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2

px.ads.linkedin.com/collect?v=2&fmt=js&pid=50162&time=1665616499923&url=https%3A%2F%2Fgen.xyz%2F&liSync=true

13.107.42.14

200 OK

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=50162&time=1665616499923&url=https%3A%2F%2Fgen.xyz%2F&liSync=true
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=50162&time=1665616499923&url=https%3A%2F%2Fgen.xyz%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gen.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&1560f4be-69d2-4f4b-85eb-2d0dc77e3bd6"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 12-Oct-2023 23:15:01 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2359:u=1:x=1:i=1665616501:t=1665702901:v=2:sig=AQFSb3L8fs2cpaXom84rtelQy7f4baOC"; Expires=Thu, 13 Oct 2022 23:15:01 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXq3o/lIgs7ODhtAg0k4g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 5FB2871F45A04F72AACF3409C75395A2 Ref B: OSL30EDGE0118 Ref C: 2022-10-12T23:15:01Z
date: Wed, 12 Oct 2022 23:15:00 GMT
content-length: 0
X-Firefox-Spdy: h2

ws18.hotjar.com/api/v2/client/ws

52.208.44.200

101 Switching Protocols

0 B

URL HTTP/1.1
ws18.hotjar.com/api/v2/client/ws
IP
52.208.44.200:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /api/v2/client/ws HTTP/1.1
Host: ws18.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://gen.xyz
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2MVSSh2mvUbKlPAe7gcqbQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Wed, 12 Oct 2022 23:15:01 GMT
Content-Type: application/octet-stream
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7C/mq0BTsuiMgSJVpx3cQj1GdOE=
Sec-WebSocket-Extensions: permessage-deflate

34.120.237.76

200 OK

17 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b96c25d-8376-4904-bba2-502beb880242.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
data
Size
17 kB (17237 bytes)
Hash
bbca419e832fe757d22a829f7fe62145
c1382e7be2d3a3ff7149d38945350bbd47912b52
3bcde5cd6b09e9d1bf65ce7c77e3c8051ee04a8603ac86ef1190c63e4638dd58

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b96c25d-8376-4904-bba2-502beb880242.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7955
x-amzn-requestid: 17c19d33-1d7a-4e56-b02c-c2a329088a01
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z6Tu9GWKoAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6347332c-345daca622ed275709163780;Sampled=0
x-amzn-remapped-date: Wed, 12 Oct 2022 21:35:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: q-2HeleJOBewqdauXNuRWriG8tqjNpNNlb31bYfaOzWAe84CtqQmWg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 21:45:44 GMT
age: 5360
etag: "23734a158f7461d0b4ec5544043ff72632a3eecc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

gen.xyz/

104.26.4.161

200 OK

0 B

URL HTTP/2
gen.xyz/
IP
104.26.4.161:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: gen.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Wed, 12 Oct 2022 23:14:56 GMT
content-type: text/html; charset=UTF-8
set-cookie: AWSALBTG=2wnTWybOwxC+A9oMwa/nbmNdJ1NObBXQ6MkmJlc15bpuTNElve7pRPpNAEFd89W8xnyG66kxOBmD+m6vZ6gzDo8Owqv2mRghpxjPLSIiVY7Rvn8T26IwjOf/uNv/csbNhmWvdvt+eUVo7paqZit/2X5DqO5Q2FM2bXqorAljLODlC/6QIEk=; Expires=Wed, 19 Oct 2022 23:14:56 GMT; Path=/
AWSALBTGCORS=2wnTWybOwxC+A9oMwa/nbmNdJ1NObBXQ6MkmJlc15bpuTNElve7pRPpNAEFd89W8xnyG66kxOBmD+m6vZ6gzDo8Owqv2mRghpxjPLSIiVY7Rvn8T26IwjOf/uNv/csbNhmWvdvt+eUVo7paqZit/2X5DqO5Q2FM2bXqorAljLODlC/6QIEk=; Expires=Wed, 19 Oct 2022 23:14:56 GMT; Path=/; SameSite=None; Secure
AWSALB=9lDO0YiUbTlYr2gi79FO43ajS2QRgcuaB3u5mft+Ps0QG1GBhvRwwZ72fTYJgi/w/4Jyu2CootWyIJTUinqOoYsiqb+2lBcyAhCX1bIlumS431QzPluOjRqCwvuk; Expires=Wed, 19 Oct 2022 23:14:56 GMT; Path=/
AWSALBCORS=9lDO0YiUbTlYr2gi79FO43ajS2QRgcuaB3u5mft+Ps0QG1GBhvRwwZ72fTYJgi/w/4Jyu2CootWyIJTUinqOoYsiqb+2lBcyAhCX1bIlumS431QzPluOjRqCwvuk; Expires=Wed, 19 Oct 2022 23:14:56 GMT; Path=/; SameSite=None; Secure
PHPSESSID=ouv5l6o434q9d333ccbk5s7dtm; path=/; secure; HttpOnly
x-pingback: https://gen.xyz/xmlrpc.php
link: <https://gen.xyz/wp-json/>; rel="https://api.w.org/", <https://gen.xyz/wp-json/wp/v2/pages/4>; rel="alternate"; type="application/json", <https://gen.xyz/>; rel=shortlink
vary: Accept-Encoding
x-xyz-server: web3.gen.xyz
x-xyz-runtime: D=166785
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AOrstbNw1joDDZuxDAyKjf3YUCK5AgRUeYsCVm2R3seJMOg7hcXchtv9m9LDHnwGnEPmxcdFyvqsYs3WHBSCX5ujCrZ9RQopmFs4GGizhSYQQhXjR9b%2BQ%2FI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 759388da9d5f1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-2663986.js?sv=6

54.230.111.39

200 OK

0 B

URL HTTP/2
static.hotjar.com/c/hotjar-2663986.js?sv=6
IP
54.230.111.39:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/hotjar-2663986.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 12 Oct 2022 23:14:25 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/1189e11ef8975c318740d37d0d0bdab1
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Oqnmz944Ur7TfJg1sly0hGyJbQCJohluWKnVrbPVs4munXV75RqWoQ==
age: 34
X-Firefox-Spdy: h2

ws18.hotjar.com/api/v2/sites/2663986/recordings/content

52.208.44.200

200 OK

0 B

URL HTTP/2
ws18.hotjar.com/api/v2/sites/2663986/recordings/content
IP
52.208.44.200:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /api/v2/sites/2663986/recordings/content HTTP/1.1
Host: ws18.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 129371
Origin: https://gen.xyz
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 12 Oct 2022 23:15:01 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (44)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations