| fast.wistia.com/assets/external/engines/hls_video.js |  151.101.2.132 | 200 OK | 655 kB |
URL GET fast.wistia.com/assets/external/engines/hls_video.js IP151.101.2.132:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99 ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size655 kB (655192 bytes) Hash46c2f6295cd22e31edf94db5a4e794b2 865a7743d9bdfd51789cdbe15f0713357e0f3927 f3f303a811873316a298cbef611f797b01f0d5eee42f23810a70d68407fa1ece
GET /assets/external/engines/hls_video.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Mon, 09 Jun 2025 19:55:49 GMT
etag: "d2544b550f0cb5c879d70f1af5deb847"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Mon, 09 Jun 2025 21:55:35 GMT
age: 3557
x-served-by: cache-iad-kjyo7100107-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 75, 349
x-timer: S1749506136.607013,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 2b27a77c3f0d052472aba51c7c44ec815f6cb001
content-length: 157251
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/destination?id=AW-757445324&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 | 142.250.74.136 | 200 OK | 346 kB |
URL GET www.googletagmanager.com/gtag/destination?id=AW-757445324&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 IP142.250.74.136:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (5359) Size346 kB (345688 bytes) Hash0c23ead2ebc8ac0c18799259903a0f4f 793be1387f7e6c9320a263b66c0283a184dfc3d8 ff3b5f57aadbe23e3704e299d904a54957be367678963944fcba8c1920c777bd
GET /gtag/destination?id=AW-757445324&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 09 Jun 2025 21:55:35 GMT
expires: Mon, 09 Jun 2025 21:55:35 GMT
cache-control: private, max-age=900
last-modified: Mon, 09 Jun 2025 21:03:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcysghrgc:42:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcysghrgc:42:0
report-to: {"group":"ascgcysghrgc:42:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcysghrgc:42:0"}],}
server: Google Tag Manager
content-length: 118372
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| c.lytics.io/c/9c32784e3cc4888a693a7988ad64c63d?gtm.start=1749506134367&event=gtm.js>m.uniqueEventId=3&_ts=1749506137769&_nmob=t&_device=desktop&url=pro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ga=GA1.1.659008633.1749506136&_uid=cabdc109-e48a-4570-8e4e-19a717f7f31f&_v=3.0.54 |  104.21.38.20 | 200 OK | 35 B |
URL GET c.lytics.io/c/9c32784e3cc4888a693a7988ad64c63d?gtm.start=1749506134367&event=gtm.js>m.uniqueEventId=3&_ts=1749506137769&_nmob=t&_device=desktop&url=pro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ga=GA1.1.659008633.1749506136&_uid=cabdc109-e48a-4570-8e4e-19a717f7f31f&_v=3.0.54 IP104.21.38.20:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectlytics.io Fingerprint0B:99:0F:A7:2A:CB:F4:2A:61:76:86:DA:9E:58:4E:B1:CC:B9:EB:19 ValiditySat, 03 May 2025 00:29:14 GMT - Fri, 01 Aug 2025 01:27:41 GMT
File typeGIF image data, version 89a, 1 x 1 Hashc2196de8ba412c60c22ab491af7b1409 5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /c/9c32784e3cc4888a693a7988ad64c63d?gtm.start=1749506134367&event=gtm.js>m.uniqueEventId=3&_ts=1749506137769&_nmob=t&_device=desktop&url=pro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ga=GA1.1.659008633.1749506136&_uid=cabdc109-e48a-4570-8e4e-19a717f7f31f&_v=3.0.54 HTTP/1.1
Host: c.lytics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 09 Jun 2025 21:55:37 GMT
content-type: image/gif
content-length: 35
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EG17vzXZEQA5Vvn6%2BnwzhRo%2BbgoWvCRXFB8Df442vSWxg9JlT1taZ6fx5QUXsswpdF0G91wzdTT3U3NuCy4nvBG20Gqe2aPpOyx17zyICkGXXt8u9yXqoBEFp5hgPA%3D%3D"}],"group":"cf-nel","max_age":604800}
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Cookie, *
access-control-allow-methods: GET, POST
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: seerid=cabdc109-e48a-4570-8e4e-19a717f7f31f; Path=/; Domain=lytics.io; Max-Age=77760000; Secure; SameSite=None
x-lytics-trace: 5181a6c081cf85416ef3e590a7a395f0
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
cf-ray: 94d3dfd15e331c0e-OSL
server: cloudflare
strict-transport-security: max-age=63072000;
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfL4;desc="?proto=QUIC&rtt=8715&min_rtt=3102&rtt_var=5339&sent=29&recv=36&lost=0&retrans=0&sent_bytes=4516&recv_bytes=6930&delivery_rate=277399&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=329724ba8b7cc335&ts=1440&inflight_dur=34&x=80"
|
|
| s.yimg.com/wi/config/10150636.json |  87.248.119.251 | 200 OK | 46 B |
URL GET s.yimg.com/wi/config/10150636.json IP87.248.119.251:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintFD:FE:D7:4F:F8:EB:90:1E:CB:07:88:69:62:5B:5C:83:52:B2:D0:18 ValidityWed, 04 Jun 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT
Hash19b8572021b9e0a07b89bf86a82652ee 44c278b022175472711a5571a8e6ee825cf435a2 49ab5900241048e3f52a32cf9cf405ec5403001dceef55eba1f128b7809cef2b
GET /wi/config/10150636.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: 7buraIoCskMFFmjvFT+9TRZx3xKNYBQR4D78WnDNPG2r4zqf/+lSesP14RizoE+KYKS8W07CnSQ=
x-amz-request-id: 13067YTW6YWM5JFK
date: Mon, 09 Jun 2025 21:55:39 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 0
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
last-modified: Mon, 09 Jun 2025 21:52:55 GMT
x-amz-expiration: expiry-date="Thu, 10 Jul 2025 00:00:00 GMT", rule-id="config_delete"
x-amz-server-side-encryption: AES256
x-amz-version-id: 2.rX82_UzqW.j98OklbCFMuGvfLGW05R
accept-ranges: bytes
content-type: application/json
content-length: 46
server: ATS
referrer-policy: no-referrer-when-downgrade
etag: "19b8572021b9e0a07b89bf86a82652ee"
age: 0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.3.1.min.js | 151.101.130.137 | 200 OK | 87 kB |
URL GET code.jquery.com/jquery-3.3.1.min.js IP151.101.130.137:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hasha09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /jquery-3.3.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-1538f"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 09 Jun 2025 21:55:34 GMT
age: 5892602
x-served-by: cache-lga13622-LGA, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 65, 519136
x-timer: S1749506134.055892,VS0,VE0
vary: Accept-Encoding
content-length: 30288
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/destination?id=AW-780296261&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 | 142.250.74.136 | 200 OK | 349 kB |
URL GET www.googletagmanager.com/gtag/destination?id=AW-780296261&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 IP142.250.74.136:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (5359) Size349 kB (348800 bytes) Hashe43a5f072042f610dd9d0cca5cc42f0b 48153627c7f261d99e87d5277a5d9b922d27b84d eee880c69b8d6f4ab03e3b26153af768e26736fdd0744decf3231b83f115ad06
GET /gtag/destination?id=AW-780296261&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 09 Jun 2025 21:55:35 GMT
expires: Mon, 09 Jun 2025 21:55:35 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcysghrgc:42:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcysghrgc:42:0
report-to: {"group":"ascgcysghrgc:42:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcysghrgc:42:0"}],}
server: Google Tag Manager
content-length: 118912
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| s.yimg.com/wi/ytc.js | 87.248.119.251 | 200 OK | 20 kB |
IP87.248.119.251:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintFD:FE:D7:4F:F8:EB:90:1E:CB:07:88:69:62:5B:5C:83:52:B2:D0:18 ValidityWed, 04 Jun 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (19829), with no line terminators Hashcca96295b6201a4ce80988bdae868775 bde2df3c3022bb932b0cf39d2e8fc5f622d6cd16 de25ff38288676dc79292a95d410944c2045e6e09c5e4563c40d08c615a20c54
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: 1+IjeSlHOvoFmVuOYehA18UvxvF1V/irj6HsG5+o9sbUOT7g/DCfJd8wkvD0B35W8GmR3fmdImXgRULNFzD8AyHZvwVptXI3
x-amz-request-id: X9T84ZC82WK6BFRS
date: Mon, 09 Jun 2025 21:15:00 GMT
last-modified: Mon, 10 Feb 2025 13:55:37 GMT
x-amz-expiration: expiry-date="Wed, 18 Mar 2026 00:00:00 GMT", rule-id="standard-lifecycle"
etag: "cca96295b6201a4ce80988bdae868775-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: S368G.On_HD5kCG8tTyFviJgJpLggMJN
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 2438
content-encoding: gzip
content-length: 6810
strict-transport-security: max-age=31536000
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=AW-330572055&cx=c>m=45He5641v832065993za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 | 142.250.74.136 | 200 OK | 350 kB |
URL GET www.googletagmanager.com/gtag/js?id=AW-330572055&cx=c>m=45He5641v832065993za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 IP142.250.74.136:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (5359) Size350 kB (350404 bytes) Hash3a44a3ba63c50efcd26af9a141c72ae0 31abd3f063624e71919be084f77b9ac83bc368b7 84cc922e8af74ac6485e4461556e535f65473158f65a9b6edeca3cf0028abb45
GET /gtag/js?id=AW-330572055&cx=c>m=45He5641v832065993za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 09 Jun 2025 21:55:36 GMT
expires: Mon, 09 Jun 2025 21:55:36 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 119098
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| bat.bing.com/p/action/15322609.js | 150.171.27.10 | 200 OK | 3.2 kB |
URL GET bat.bing.com/p/action/15322609.js IP150.171.27.10:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint8F:FE:D3:58:48:93:DF:0E:26:DA:5E:55:30:00:F2:14:BF:4B:AB:8E ValidityFri, 14 Mar 2025 18:35:35 GMT - Wed, 10 Sep 2025 18:35:35 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hasha398e3c6baee8af7166766716b7d995a 72a0078445404182de5860a02a2b1a3edcfa7d58 e9e475e5a9a7516f2f0dba6ce1fd054ee4a8791d4c8b6897c0d8a0b90e249e97
GET /p/action/15322609.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private,max-age=1800
content-type: application/javascript; charset=utf-8
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D84B262CDB44460BADD1CA7EBD35D874 Ref B: OSL30EDGE0314 Ref C: 2025-06-09T21:55:38Z
date: Mon, 09 Jun 2025 21:55:38 GMT
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-NKXCSCL | 142.250.74.136 | 200 OK | 584 kB |
URL GET www.googletagmanager.com/gtm.js?id=GTM-NKXCSCL IP142.250.74.136:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (63139) Size584 kB (584213 bytes) Hashf0622dc76d4df01890004f935327c442 b68d66c2910383ce56437000a714474709242457 e8e98d07fa2cde84a6350172359dfe2cb290f1ba728501a8a4630272cf13f83d
GET /gtm.js?id=GTM-NKXCSCL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: gzip
vary: Accept-Encoding
date: Mon, 09 Jun 2025 21:55:35 GMT
expires: Mon, 09 Jun 2025 21:55:35 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1319:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1319:0
report-to: {"group":"ascgcycc:1319:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1319:0"}],}
server: Google Tag Manager
content-length: 144575
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| s.yimg.com/wi/ytc.js | 87.248.119.251 | 200 OK | 20 kB |
IP87.248.119.251:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintFD:FE:D7:4F:F8:EB:90:1E:CB:07:88:69:62:5B:5C:83:52:B2:D0:18 ValidityWed, 04 Jun 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (19829), with no line terminators Hashcca96295b6201a4ce80988bdae868775 bde2df3c3022bb932b0cf39d2e8fc5f622d6cd16 de25ff38288676dc79292a95d410944c2045e6e09c5e4563c40d08c615a20c54
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: 1+IjeSlHOvoFmVuOYehA18UvxvF1V/irj6HsG5+o9sbUOT7g/DCfJd8wkvD0B35W8GmR3fmdImXgRULNFzD8AyHZvwVptXI3
x-amz-request-id: X9T84ZC82WK6BFRS
date: Mon, 09 Jun 2025 21:15:00 GMT
last-modified: Mon, 10 Feb 2025 13:55:37 GMT
x-amz-expiration: expiry-date="Wed, 18 Mar 2026 00:00:00 GMT", rule-id="standard-lifecycle"
etag: "cca96295b6201a4ce80988bdae868775-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: S368G.On_HD5kCG8tTyFviJgJpLggMJN
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 2438
content-encoding: gzip
content-length: 6810
strict-transport-security: max-age=31536000
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/destination?id=AW-665056240&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 | 142.250.74.136 | 200 OK | 319 kB |
URL GET www.googletagmanager.com/gtag/destination?id=AW-665056240&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 IP142.250.74.136:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (5359) Size319 kB (319249 bytes) Hashda486d107de9866cf9c063f989c0946f 47c32c9b62740037848c4f4394f0ab3722f826ee 60a0135c19500eb4d19fe0be1bcfc20e3694f256aa048489c8f5244cd607436b
GET /gtag/destination?id=AW-665056240&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 09 Jun 2025 21:55:35 GMT
expires: Mon, 09 Jun 2025 21:55:35 GMT
cache-control: private, max-age=900
last-modified: Mon, 09 Jun 2025 21:03:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcysghrgc:42:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcysghrgc:42:0
report-to: {"group":"ascgcysghrgc:42:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcysghrgc:42:0"}],}
server: Google Tag Manager
content-length: 111843
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| c.lytics.io/api/experience/candidate/9c32784e3cc4888a693a7988ad64c63d/config.js | 104.21.38.20 | 200 OK | 278 kB |
URL GET c.lytics.io/api/experience/candidate/9c32784e3cc4888a693a7988ad64c63d/config.js IP104.21.38.20:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectlytics.io Fingerprint0B:99:0F:A7:2A:CB:F4:2A:61:76:86:DA:9E:58:4E:B1:CC:B9:EB:19 ValiditySat, 03 May 2025 00:29:14 GMT - Fri, 01 Aug 2025 01:27:41 GMT
File typeUnicode text, UTF-8 text, with very long lines (65522), with no line terminators Size278 kB (278449 bytes) Hashdd67d4047e61ff01c11793f8ace836d3 7e63f57c97edfe55a435c28086b437d3059d42ce be1d53cc1be656c90650397e984803ac2149964b1ed24c44adb30cd05bba8582
GET /api/experience/candidate/9c32784e3cc4888a693a7988ad64c63d/config.js HTTP/1.1
Host: c.lytics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Cookie: seerid=cabdc109-e48a-4570-8e4e-19a717f7f31f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 09 Jun 2025 21:55:39 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dBXUikeDc8DJ%2Fd8PuURA55Lf5EczV9BnLh2f5s4KhPh6T0nXxU1U7JC%2FqsXI6GnzV1Kb0NQ7AlIfqVq6820W8%2BwvhmJmjIPzIrPr7p8khQAl38kSQzbT3dpUu8Pm4w%3D%3D"}],"group":"cf-nel","max_age":604800}
access-control-allow-origin: *
content-encoding: gzip
x-lytics-trace: 6e639d839a30a35a0b196d7ad05478c4
via: 1.1 google
alt-svc: h3=":443"; ma=86400
age: 3657
cache-control: max-age=7200
cf-cache-status: HIT
last-modified: Mon, 09 Jun 2025 20:54:41 GMT
vary: accept-encoding
cf-ray: 94d3dfdd4e761c0e-OSL
server: cloudflare
strict-transport-security: max-age=63072000;
server-timing: cfL4;desc="?proto=QUIC&rtt=6241&min_rtt=1659&rtt_var=6372&sent=94&recv=51&lost=0&retrans=0&sent_bytes=65133&recv_bytes=9532&delivery_rate=7232575&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=36000&unsent_bytes=0&cid=329724ba8b7cc335&ts=3213&inflight_dur=116&x=80"
|
|
| www.googletagmanager.com/gtag/js?id=AW-780296261&cx=c>m=45He5641v832065993za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 | 142.250.74.136 | 200 OK | 349 kB |
URL GET www.googletagmanager.com/gtag/js?id=AW-780296261&cx=c>m=45He5641v832065993za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 IP142.250.74.136:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (5359) Size349 kB (348800 bytes) Hash9a7892dfaf2dc4bd83cacec93640bca8 70a55f3a088e44ee39947f73f50ef3150b5fde14 b0d451c7bf5dc953c6c8bd34a13aa87f8fa5e4845a796ce1dfa0aaba026dbd66
GET /gtag/js?id=AW-780296261&cx=c>m=45He5641v832065993za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 09 Jun 2025 21:55:36 GMT
expires: Mon, 09 Jun 2025 21:55:36 GMT
cache-control: private, max-age=900
last-modified: Mon, 09 Jun 2025 21:03:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 118890
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.mediago.io/js/pixel.js | 54.240.174.31 | 200 OK | 103 kB |
URL GET cdn.mediago.io/js/pixel.js IP54.240.174.31:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subject*.mediago.io Fingerprint6E:EA:1D:99:49:14:FA:7E:3E:5F:E3:62:5D:B1:F1:3D:7A:71:86:07 ValidityFri, 06 Jun 2025 00:00:00 GMT - Sat, 04 Jul 2026 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators Size103 kB (103117 bytes) Hashc413cf1136a77baeb8f8b483da057908 67cc5dd09ada483e37264e82586cbfba09d09195 ab25fd750df69ed30fcfca8deef4a459b3d11b4a5ffd1708a95d47d070da02fa
GET /js/pixel.js HTTP/1.1
Host: cdn.mediago.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
content-length: 103117
date: Mon, 09 Jun 2025 09:55:11 GMT
last-modified: Mon, 09 Jun 2025 09:55:02 GMT
etag: "c413cf1136a77baeb8f8b483da057908"
x-amz-server-side-encryption: AES256
x-amz-version-id: gtDwWIQ7KMmdm7vIjV2OuIVAsCyw5.Ag
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KMCHy0ghG78oOsa-B6PQ8JMxdAXoRbl6y3I8_u-4e5l6GCq-JXZNhg==
age: 43226
vary: Origin
X-Firefox-Spdy: h2
|
|
| c.lytics.io/api/tag/9c32784e3cc4888a693a7988ad64c63d/latest.min.js | 104.21.38.20 | 200 OK | 77 kB |
URL GET c.lytics.io/api/tag/9c32784e3cc4888a693a7988ad64c63d/latest.min.js IP104.21.38.20:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectlytics.io Fingerprint0B:99:0F:A7:2A:CB:F4:2A:61:76:86:DA:9E:58:4E:B1:CC:B9:EB:19 ValiditySat, 03 May 2025 00:29:14 GMT - Fri, 01 Aug 2025 01:27:41 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash1eb0dbfcb89367ffca4f3ec447f0c4de 9959b8edea2b00b9cbbd0c7214c36007999ba515 f65eb8a22fc2d70ccc7a199e7d3472ba90550ccb9aac35bfb24fb49489067709
GET /api/tag/9c32784e3cc4888a693a7988ad64c63d/latest.min.js HTTP/1.1
Host: c.lytics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 09 Jun 2025 21:55:36 GMT
content-type: application/javascript
access-control-allow-origin: *
content-encoding: gzip
server: cloudflare
strict-transport-security: max-age=63072000;
x-lytics-trace: 7e659dc76f88cad6d0ac3fa024e0bfd6
via: 1.1 google
alt-svc: h3=":443"; ma=86400
age: 3657
cache-control: max-age=7200
cf-cache-status: HIT
last-modified: Mon, 09 Jun 2025 20:54:38 GMT
vary: accept-encoding
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=avB228t%2Fs%2B233JisqrIbdSiXSYc2qsBkEIOe3D9B5ecAgvD2nCBfCqTF3ICV0t4Dxg9wahsvisgbbZnBrx%2Bv5sl6Y77B6d7TIg%3D%3D"}]}
cf-ray: 94d3dfc929e21c12-OSL
X-Firefox-Spdy: h2
|
|
| api.getblueshift.com/unity.gif?t=1749506137&e=pageload&r=&z=494383&x=5475fa15fca6698857e67e2705849cfa&k=09b70597-498e-5168-20c2-25d8eca80434&u=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue | 52.11.147.84 | 200 OK | 42 B |
URL GET api.getblueshift.com/unity.gif?t=1749506137&e=pageload&r=&z=494383&x=5475fa15fca6698857e67e2705849cfa&k=09b70597-498e-5168-20c2-25d8eca80434&u=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue IP52.11.147.84:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subject*.getblueshift.com FingerprintD4:66:05:EE:E7:3B:52:A2:0C:DA:14:A3:C0:6B:A5:9C:45:6C:29:17 ValidityTue, 07 Jan 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /unity.gif?t=1749506137&e=pageload&r=&z=494383&x=5475fa15fca6698857e67e2705849cfa&k=09b70597-498e-5168-20c2-25d8eca80434&u=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue HTTP/1.1
Host: api.getblueshift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 09 Jun 2025 21:55:37 GMT
content-type: image/gif
content-length: 42
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://pro.oxfordclub.com
access-control-expose-headers: etag
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/a28b50/00000000000000000000e803/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3 |  184.31.15.74 | 200 OK | 17 kB |
URL GET use.typekit.net/af/a28b50/00000000000000000000e803/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3 IP184.31.15.74:443 ASN#20940 Akamai International B.V.
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerDigiCert Inc Subjectuse.typekit.net FingerprintF3:36:2A:08:11:E8:8C:54:E5:3C:6A:03:53:BF:AA:D7:7A:84:8B:89 ValidityTue, 10 Dec 2024 00:00:00 GMT - Sat, 10 Jan 2026 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 16808, version 1.0 Hashe0ba364087ced101e98cb22c66a3de71 8a6fc598bf108239d94fabea4eb0fe686618a55a 09244974d9decf20f9cd3402621e4844a454f3ae43cdf509538f43c0456ba6c4
GET /af/a28b50/00000000000000000000e803/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 16808
etag: "a6c1fa20004e862da7c922781204c8a0ef8794a4"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 09 Jun 2025 21:55:34 GMT
akamai-grn: 0.240f1fb8.1749506134.c75fc6c
X-Firefox-Spdy: h2
|
|
| portrait-tracker.s3.amazonaws.com/promo.js | 52.216.205.243 | 200 OK | 27 kB |
URL GET portrait-tracker.s3.amazonaws.com/promo.js IP52.216.205.243:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subject*.s3.amazonaws.com Fingerprint2E:BA:63:64:95:A8:CE:55:DD:7E:EB:A9:98:83:14:B1:6F:6B:61:69 ValidityFri, 14 Feb 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT
File typeJavaScript source, ASCII text Hash86623d73070d6eaf193b4d753a1c6596 f72882c1af863015722ce34ff2f49ea789c96c90 513a829a4bf489406be998162925f357e40040b0846b03cd8481db719e97d923
GET /promo.js HTTP/1.1
Host: portrait-tracker.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 8Smk5NlA1IkjXfmiZh8SyYeYLyJp56w0qsncZVC8O3P9tHIFajiS45M/z2Ri06NLVPrT/15yx9Y=
x-amz-request-id: 0HZS6TYCGKJT97FT
Date: Mon, 09 Jun 2025 21:55:35 GMT
Last-Modified: Mon, 10 Mar 2025 10:33:50 GMT
ETag: "86623d73070d6eaf193b4d753a1c6596"
x-amz-server-side-encryption: AES256
x-amz-version-id: sdQO36Pwep1bP_kzIY57LUxYmG2TyhRi
Accept-Ranges: bytes
Content-Type: application/javascript
Content-Length: 26875
Server: AmazonS3
|
|
| distillery.wistia.com/x | 3.167.2.82 | 204 No Content | 0 B |
IP3.167.2.82:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subjectstats-tap-production-cloudfront-app-cname.wistia.com Fingerprint33:84:8E:BA:E0:87:C3:9E:A8:D7:D0:B5:50:73:A2:65:A9:A4:06:04 ValidityTue, 13 Aug 2024 00:00:00 GMT - Thu, 11 Sep 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1800
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Mon, 09 Jun 2025 21:55:37 GMT
x-envoy-upstream-service-time: 1
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
server: envoy
x-cache: Miss from cloudfront
via: 1.1 7bc180ff569f641823300f4c342cb63a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: eJJtDi5IiuXBbui2EiLZsJuyo83XMGI7lxB0EFdORGc9MwQJl_7Y_g==
X-Firefox-Spdy: h2
|
|
| portrait-tracker.s3.amazonaws.com/all.js | 52.216.205.243 | 200 OK | 40 kB |
URL GET portrait-tracker.s3.amazonaws.com/all.js IP52.216.205.243:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subject*.s3.amazonaws.com Fingerprint2E:BA:63:64:95:A8:CE:55:DD:7E:EB:A9:98:83:14:B1:6F:6B:61:69 ValidityFri, 14 Feb 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (39497), with no line terminators Hashf92233201da3645c411163ca63312ee0 9305e185e730672e33d4bcabd1036fa5ff4fe6c9 6d9417c007218ae78efdc26c7fb2f86bf313191581485c7c80d00cf7f1026eb1
GET /all.js HTTP/1.1
Host: portrait-tracker.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: DT/5Q/4noFWrQPc5FIr561v+1jgtPA2J5IIUyBmHXqS02kqvTC8b3DMVW0WRF3bstC1DJhdziRg=
x-amz-request-id: 0HZTMWYN3B152JQF
Date: Mon, 09 Jun 2025 21:55:35 GMT
Last-Modified: Wed, 21 May 2025 14:11:22 GMT
ETag: "f92233201da3645c411163ca63312ee0"
x-amz-server-side-encryption: AES256
x-amz-version-id: AASGUS9lALzh8.73Wh3qxo2.QHGbgTGj
Accept-Ranges: bytes
Content-Type: application/javascript
Content-Length: 39497
Server: AmazonS3
|
|
| dnzkifeab6.execute-api.us-east-1.amazonaws.com/Prod/GetLyticsUserData | 3.167.2.74 | 200 OK | 3 B |
URL OPTIONS dnzkifeab6.execute-api.us-east-1.amazonaws.com/Prod/GetLyticsUserData IP3.167.2.74:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subject*.execute-api.us-east-1.amazonaws.com FingerprintB2:59:FE:B9:DD:CC:3F:B0:0F:5A:D9:CD:7A:83:BC:A0:A0:28:07:65 ValiditySat, 07 Dec 2024 00:00:00 GMT - Sun, 04 Jan 2026 23:59:59 GMT
Hash8a80554c91d9fca8acb82f023de02f11 5f36b2ea290645ee34d943220a14b54ee5ea5be5 ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356
OPTIONS /Prod/GetLyticsUserData HTTP/1.1
Host: dnzkifeab6.execute-api.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pro.oxfordclub.com/
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
content-length: 3
date: Mon, 09 Jun 2025 21:55:35 GMT
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
x-amzn-requestid: 9aafbdb1-69f2-4e3c-91c3-af2c5fd0a7ff
access-control-allow-origin: *
access-control-allow-headers: Content-Type,X-Amz-Date,Authorization,X-Api-Key,X-Amz-Security-Token
x-amz-apigw-id: L6q9wGRBIAMEXOw=
x-cache: Miss from cloudfront
via: 1.1 331956c71b3e587b085083fed0bc8c3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: haB5jccszEUGRm_9SDstyqsDz6CnEQWV7dS6vjm0uh6CmRVIgSOBGQ==
X-Firefox-Spdy: h2
|
|
| c.lytics.io/c/9c32784e3cc4888a693a7988ad64c63d?gtm.start=1749506135399&event=gtm.js>m.uniqueEventId=13&_ts=1749506137769&_nmob=t&_device=desktop&url=pro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ga=GA1.1.659008633.1749506136&_uid=cabdc109-e48a-4570-8e4e-19a717f7f31f&_v=3.0.54 | 104.21.38.20 | 200 OK | 35 B |
URL GET c.lytics.io/c/9c32784e3cc4888a693a7988ad64c63d?gtm.start=1749506135399&event=gtm.js>m.uniqueEventId=13&_ts=1749506137769&_nmob=t&_device=desktop&url=pro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ga=GA1.1.659008633.1749506136&_uid=cabdc109-e48a-4570-8e4e-19a717f7f31f&_v=3.0.54 IP104.21.38.20:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectlytics.io Fingerprint0B:99:0F:A7:2A:CB:F4:2A:61:76:86:DA:9E:58:4E:B1:CC:B9:EB:19 ValiditySat, 03 May 2025 00:29:14 GMT - Fri, 01 Aug 2025 01:27:41 GMT
File typeGIF image data, version 89a, 1 x 1 Hashc2196de8ba412c60c22ab491af7b1409 5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /c/9c32784e3cc4888a693a7988ad64c63d?gtm.start=1749506135399&event=gtm.js>m.uniqueEventId=13&_ts=1749506137769&_nmob=t&_device=desktop&url=pro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ga=GA1.1.659008633.1749506136&_uid=cabdc109-e48a-4570-8e4e-19a717f7f31f&_v=3.0.54 HTTP/1.1
Host: c.lytics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 09 Jun 2025 21:55:37 GMT
content-type: image/gif
content-length: 35
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1mGh9UmWzRtiALt0J33LGOZtBnfJYQf6UiX1qh8Rk81JUygE%2F8BJho7dCUu5xEZ5i7BjNDT%2FlXPTow2Xou%2F9XuSOeSR0af7WHNxUMHEjRo3sQQToPD9iYDadMWSvZg%3D%3D"}],"group":"cf-nel","max_age":604800}
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Cookie, *
access-control-allow-methods: GET, POST
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: seerid=cabdc109-e48a-4570-8e4e-19a717f7f31f; Path=/; Domain=lytics.io; Max-Age=77760000; Secure; SameSite=None
x-lytics-trace: cf88f68e515fd6ee2771028296183887
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
cf-ray: 94d3dfd15e341c0e-OSL
server: cloudflare
strict-transport-security: max-age=63072000;
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfL4;desc="?proto=QUIC&rtt=8715&min_rtt=3102&rtt_var=5339&sent=30&recv=36&lost=0&retrans=0&sent_bytes=5445&recv_bytes=6930&delivery_rate=277399&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=329724ba8b7cc335&ts=1442&inflight_dur=34&x=80"
|
|
| pro.oxfordclub.com/p/Scripts/HideContent.js | 192.135.136.168 | 200 OK | 724 B |
URL GET pro.oxfordclub.com/p/Scripts/HideContent.js IP192.135.136.168:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerLet's Encrypt Subjectordertracking2.pubsvs.com FingerprintFA:B1:9C:7B:5F:8B:DE:2A:0F:6B:52:A7:2F:EC:A2:A8:E8:A9:06:D9 ValidityMon, 19 May 2025 13:51:27 GMT - Sun, 17 Aug 2025 13:51:26 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hash624fa8179cc49ca9e80737453a6b3367 226693fb4119bc204e4dd3b8d36da8587fd00bb0 809a6bdcc35b316bf93316955e29816c41204f9bcc5fefb53d8a075bba2ee6ac
GET /p/Scripts/HideContent.js HTTP/1.1
Host: pro.oxfordclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true
DNT: 1
Connection: keep-alive
Cookie: 2314530=2743372; BIGipServerQEX662zAURJQLrqleAP1SA=!BQj5TKJUYdoDrD9C6+h9tp1lrjN3ZUXL9u+30dzblmU3itmcLolZ4yb74P192WafbdmcvCA98H3Ycks=; NBRK4404=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 24 Jul 2023 13:39:44 GMT
Accept-Ranges: bytes
ETag: "bbcd814e34bed91:0"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Mon, 09 Jun 2025 21:55:33 GMT
Content-Length: 466
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| analytics.pmsrv.co/v2/track?&a=50bbcf39-5fab-4416-a13c-acc35b621b86&event=s004&weight=0&_ible=1&sid=undefined&ord=3676081257536807.5&_ii=0&pg=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&ppg=&_tk=%7B%7D | 34.144.246.130 | 204 No Content | 0 B |
URL GET analytics.pmsrv.co/v2/track?&a=50bbcf39-5fab-4416-a13c-acc35b621b86&event=s004&weight=0&_ible=1&sid=undefined&ord=3676081257536807.5&_ii=0&pg=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&ppg=&_tk=%7B%7D IP34.144.246.130:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectc.pmsrv.co Fingerprint9B:11:8E:59:49:0A:71:EB:5F:72:A5:12:7D:98:78:A9:9A:07:86:57 ValidityMon, 12 May 2025 19:40:47 GMT - Sun, 10 Aug 2025 20:34:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/track?&a=50bbcf39-5fab-4416-a13c-acc35b621b86&event=s004&weight=0&_ible=1&sid=undefined&ord=3676081257536807.5&_ii=0&pg=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&ppg=&_tk=%7B%7D HTTP/1.1
Host: analytics.pmsrv.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
x-powered-by: Express
cache-control: private, no-cache, no-store, must-revalidate
expires: -1
pragma: no-cache
access-control-allow-origin: *
date: Mon, 09 Jun 2025 21:55:47 GMT
x-envoy-upstream-service-time: 0
vary: Accept-Encoding
server: istio-envoy
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fast.wistia.com/assets/images/blank.gif | 151.101.2.132 | 200 OK | 1.2 kB |
URL GET fast.wistia.com/assets/images/blank.gif IP151.101.2.132:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99 ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT
File typeGIF image data, version 89a, 100 x 100 Hashfbdc4ed9a1e2ee4917a265306927bcf1 6d177725d8230df0457e72004080f712e26fe624 a78759ea185fd0fa42ca9be1fc5bca4d3167a2836dc6c85e479a19dbf57fe2c2
GET /assets/images/blank.gif HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 10 May 2023 19:48:54 GMT
etag: "fbdc4ed9a1e2ee4917a265306927bcf1"
x-amz-server-side-encryption: AES256
content-type: image/gif
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Mon, 09 Jun 2025 21:55:36 GMT
age: 2450
x-served-by: cache-iad-kcgs7200077-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 6060626, 231
x-timer: S1749506136.218453,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
content-length: 1214
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/allIntegrations.js | 151.101.2.132 | 200 OK | 62 kB |
URL GET fast.wistia.com/assets/external/allIntegrations.js IP151.101.2.132:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99 ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (61575) Hashad38eaefbd9fdf577ea8747cae2d3f90 e8006c812d09ce5641cc9a68c6dd102166dec2cc 1153be9c80f580468cf3ba58e7ba393253b978ac903dc355366b29b9539c57df
GET /assets/external/allIntegrations.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Mon, 09 Jun 2025 19:55:49 GMT
etag: "9d0f76c9db2f377eec189b3cd1ca8d7e"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Mon, 09 Jun 2025 21:55:37 GMT
age: 3560
x-served-by: cache-iad-kiad7000033-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 78, 46
x-timer: S1749506137.415232,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 2b27a77c3f0d052472aba51c7c44ec815f6cb001
content-length: 15282
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/destination?id=AW-780277278&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 | 142.250.74.136 | 200 OK | 345 kB |
URL GET www.googletagmanager.com/gtag/destination?id=AW-780277278&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 IP142.250.74.136:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (5359) Size345 kB (344945 bytes) Hash2f5291c46c408c642ed618187aac3d40 28fa8cfc295bacb1266d9a71199d773f8aa5386d a4813e26e7210071b55921ff3913ac42e5c2fba569f827db6df2d3516f911e7b
GET /gtag/destination?id=AW-780277278&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 09 Jun 2025 21:55:35 GMT
expires: Mon, 09 Jun 2025 21:55:35 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcysghrgc:42:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcysghrgc:42:0
report-to: {"group":"ascgcysghrgc:42:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcysghrgc:42:0"}],}
server: Google Tag Manager
content-length: 118229
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| bat.bing.com/bat.js | 150.171.27.10 | 200 OK | 53 kB |
IP150.171.27.10:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint8F:FE:D3:58:48:93:DF:0E:26:DA:5E:55:30:00:F2:14:BF:4B:AB:8E ValidityFri, 14 Mar 2025 18:35:35 GMT - Wed, 10 Sep 2025 18:35:35 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (52941), with no line terminators Hash8aa3621e078f553b342b105272dd45fc 7d0086d79b7ba961871becf1f55233d2cf9750cb c4e400da2b9e9a111a08457d1de07c9280c7233e4a305b967da320564a83eb0f
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 14978
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 08 May 2025 19:07:55 GMT
accept-ranges: bytes
etag: "8077e3804cc0db1:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D5597D0F206A4A7FADF7D8948BA3659D Ref B: OSL30EDGE0314 Ref C: 2025-06-09T21:55:36Z
date: Mon, 09 Jun 2025 21:55:36 GMT
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.5.0/css/bootstrap.min.css | 104.18.11.207 | 200 OK | 160 kB |
URL GET stackpath.bootstrapcdn.com/bootstrap/4.5.0/css/bootstrap.min.css IP104.18.11.207:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectbootstrapcdn.com Fingerprint73:3E:54:5A:E7:0A:B5:3C:11:79:4A:9F:FE:64:7B:38:B7:15:03:C0 ValidityWed, 14 May 2025 02:01:13 GMT - Tue, 12 Aug 2025 03:00:50 GMT
File typeASCII text, with very long lines (65324) Size160 kB (160403 bytes) Hash3afe15e976734d9daac26310110c4594 4f14a09a606c99a11f8fda15564ef66f70402826 680af6669abc319f9803f0fa26d443df1b6bc29133d88a8e4bea560ffed7288c
GET /bootstrap/4.5.0/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 09 Jun 2025 21:55:33 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: gzip
etag: W/"3afe15e976734d9daac26310110c4594"
last-modified: Mon, 25 Jan 2021 22:04:10 GMT
cdn-cachedat: 10/31/2023 18:50:52
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 865
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: c8fc23bbdd5ae140dc8cf7807c3ae033
cdn-cache: HIT
cf-cache-status: HIT
age: 1490364
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 94d3dfb91e47569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| p.typekit.net/p.css?s=1&k=myz0yns&ht=tk&f=2007.2008.2011.2012&a=87036888&app=typekit&e=css | 184.31.15.57 | 200 OK | 5 B |
URL GET p.typekit.net/p.css?s=1&k=myz0yns&ht=tk&f=2007.2008.2011.2012&a=87036888&app=typekit&e=css IP184.31.15.57:443 ASN#20940 Akamai International B.V.
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerDigiCert Inc Subjectuse.typekit.net FingerprintF3:36:2A:08:11:E8:8C:54:E5:3C:6A:03:53:BF:AA:D7:7A:84:8B:89 ValidityTue, 10 Dec 2024 00:00:00 GMT - Sat, 10 Jan 2026 23:59:59 GMT
Hash83d24d4b43cc7eef2b61e66c95f3d158 f0cafc285ee23bb6c28c5166f305493c4331c84d 1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=myz0yns&ht=tk&f=2007.2008.2011.2012&a=87036888&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Sun, 24 Nov 2024 12:44:48 GMT
etag: "67431fc0-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Mon, 09 Jun 2025 21:55:34 GMT
X-Firefox-Spdy: h2
|
|
| portrait-tracker.s3.amazonaws.com/index.html | 52.216.205.243 | 200 OK | 2.4 kB |
URL GET portrait-tracker.s3.amazonaws.com/index.html IP52.216.205.243:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subject*.s3.amazonaws.com Fingerprint2E:BA:63:64:95:A8:CE:55:DD:7E:EB:A9:98:83:14:B1:6F:6B:61:69 ValidityFri, 14 Feb 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT
File typeHTML document, ASCII text Hashc029f674b13b082e9a03b16217c3f576 f8ac05a2a24d42c863275c8dfd7e94486a237d0b 9b6554e3dbe9e11702720eb95ef8808b4e1e307bbec908ab5e6d0e1da2294470
GET /index.html HTTP/1.1
Host: portrait-tracker.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 1t6RUWvvFUcyferWYl1dQHPX4IFVDGX0+kFRFvanwU+Xyff8MTlJL3G1QxiyLmy5XEnMbC+6o7Y=
x-amz-request-id: 0HZN4FPT66EHGGM2
Date: Mon, 09 Jun 2025 21:55:35 GMT
Last-Modified: Wed, 03 Nov 2021 21:10:09 GMT
ETag: "c029f674b13b082e9a03b16217c3f576"
x-amz-version-id: X1zblgbOV1d.Qkc55AyQidmgNGbabuW5
Accept-Ranges: bytes
Content-Type: text/html
Content-Length: 2371
Server: AmazonS3
|
|
| pro.oxfordclub.com/p/effortattributes/extractEffortattributes/NBRK4404 | 192.135.136.168 | 200 OK | 771 B |
URL GET pro.oxfordclub.com/p/effortattributes/extractEffortattributes/NBRK4404 IP192.135.136.168:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerLet's Encrypt Subjectordertracking2.pubsvs.com FingerprintFA:B1:9C:7B:5F:8B:DE:2A:0F:6B:52:A7:2F:EC:A2:A8:E8:A9:06:D9 ValidityMon, 19 May 2025 13:51:27 GMT - Sun, 17 Aug 2025 13:51:26 GMT
Hash6ba0e609f7bf4c7ae77630ca1442f163 c83eea31ebb06712e3a422757a778c146e8bfbbd 87806a128e1cfb32c55c63ffd02ea9c8ed8243eb7726964600ff7f4859a5f3f6
GET /p/effortattributes/extractEffortattributes/NBRK4404 HTTP/1.1
Host: pro.oxfordclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true
DNT: 1
Connection: keep-alive
Cookie: 2314530=2743372; BIGipServerQEX662zAURJQLrqleAP1SA=!BQj5TKJUYdoDrD9C6+h9tp1lrjN3ZUXL9u+30dzblmU3itmcLolZ4yb74P192WafbdmcvCA98H3Ycks=; NBRK4404=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: application/json; charset=utf-8
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Date: Mon, 09 Jun 2025 21:55:35 GMT
Content-Length: 771
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| fast.wistia.com/assets/external/playPauseLoadingControl.js | 151.101.2.132 | 200 OK | 88 kB |
URL GET fast.wistia.com/assets/external/playPauseLoadingControl.js IP151.101.2.132:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99 ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashd426764351f4788b2a37b3b86d3c1775 167c5cab3e07e7fbfb4d00820c71333ca27ea2c5 0fc387f1bd71d979610fcbef96921e4e3ef869b48c6bdf0d95053fa10c1df559
GET /assets/external/playPauseLoadingControl.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Mon, 09 Jun 2025 19:55:49 GMT
etag: "0c8ae1abc1962bf3dd8572bd6b99a767"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Mon, 09 Jun 2025 21:55:35 GMT
age: 3558
x-served-by: cache-iad-kjyo7100024-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 68, 355
x-timer: S1749506135.159681,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 2b27a77c3f0d052472aba51c7c44ec815f6cb001
content-length: 23317
X-Firefox-Spdy: h2
|
|
| c.lytics.io/static/pathfora.min.css | 104.21.38.20 | 200 OK | 24 kB |
URL GET c.lytics.io/static/pathfora.min.css IP104.21.38.20:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectlytics.io Fingerprint0B:99:0F:A7:2A:CB:F4:2A:61:76:86:DA:9E:58:4E:B1:CC:B9:EB:19 ValiditySat, 03 May 2025 00:29:14 GMT - Fri, 01 Aug 2025 01:27:41 GMT
File typeASCII text, with very long lines (23877), with no line terminators Hashf2f5302d3518e1c4da1d456d5ed2652e 45e92182d3e2aa0af95d02f25075d9dd38c2279f 9203fe0e6d9555e69a7018e3aa395eff948158a38a63440bbecfe5d7bee3a2ed
GET /static/pathfora.min.css HTTP/1.1
Host: c.lytics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Cookie: seerid=cabdc109-e48a-4570-8e4e-19a717f7f31f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 09 Jun 2025 21:55:38 GMT
content-type: text/css; charset=utf-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Aam7yfuFMNbbejz9Zr9XbuHWQDal4vZkN1chJ9fN1bbX7cpHmv6Fw22KDPWH1gpGgTZGfz%2F7DR5qhbo7LRVGmXY%2FPGCBmfMroqdEK4jm5V1JNYW9v32gO8XdXYD0pg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-lytics-trace: 39b9ec31cfe1a128a8a12d88c9ef40fb
via: 1.1 google
alt-svc: h3=":443"; ma=86400
age: 98
cache-control: max-age=3600
cf-cache-status: HIT
last-modified: Mon, 09 Jun 2025 21:54:00 GMT
content-encoding: br
cf-ray: 94d3dfd87e5f1c0e-OSL
server: cloudflare
strict-transport-security: max-age=63072000;
vary: Accept-Encoding
server-timing: cfL4;desc="?proto=QUIC&rtt=6883&min_rtt=1659&rtt_var=6785&sent=88&recv=49&lost=0&retrans=0&sent_bytes=60531&recv_bytes=9170&delivery_rate=7232575&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=36000&unsent_bytes=0&cid=329724ba8b7cc335&ts=2438&inflight_dur=114&x=80"
|
|
| protect-us.mimecast.com/s/d4IGCAD74Js25qJyi9o4Az?domain=cdn1.decide.dev | 205.139.111.12 | 307 Temporary Redirect | 3.4 kB |
URL GET protect-us.mimecast.com/s/d4IGCAD74Js25qJyi9o4Az?domain=cdn1.decide.dev IP205.139.111.12:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerDigiCert Inc Subject*.mimecast.com Fingerprint02:0B:A1:BE:54:40:F1:48:73:B1:0C:C2:7F:E8:40:52:6B:10:5B:8D ValidityFri, 24 Jan 2025 00:00:00 GMT - Tue, 24 Feb 2026 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/d4IGCAD74Js25qJyi9o4Az?domain=cdn1.decide.dev HTTP/1.1
Host: protect-us.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Date: Mon, 09 Jun 2025 21:55:37 GMT
Content-Length: 0
Connection: keep-alive
Location: https://protect-us.mimecast.com/r/KrpwNc6Py8pASOytvMygnBE9MffFobwEWKmoANEc65SV1F38LTJjnCdYFBmPWP8j90cqTpy1BAczii4-QaSgFIXSsSSnGXWWKiJ6ONSh6heBI2XXaIyq5x26b-P3z6T4Z1IbQ13gJ69ah44qU7nxdBd6lQ3oOLcIq2cjiuRSmK3J9tV7qVANn3ogy1xIzzc6qaFzxwRRtIHZjXS9Dkpzme8v76NeeXL3hqBIYtxZ-6zNR19NNT_WJ_8K86H7QisS8vhaz5WnhFQzWb4eceZOuQ06hAW2W0po4ebrwcUz4qppPIp33YE1nRFPVFt1Wi5Yqi9BtwdwKOgBQhEwFqz9Vgr1o2hbYm0lg23z5-odbHiZCtcyPxr7r7bpHHSBUrD3SM3t66Oh753YGC_QD70WRTDCb3abwCKSknJVDObbn3nefJxXPuFnY3Ca0p5OQ72CCMOXBQFkWvwTT6lbR5zk7LxHM0Qnm1tzG3O7Lbo5MvbLuFQMVCCOXfgrGOqV2wYzOFtJ7od56MKGvLRvLNhh__OLbMimfImKR1yvsgTIDRUAd9_6S5RWqNaZmdJDSgwkyBKPZnp23rlNWnFpTpp8HWdjlcvqg773fZtt22bEk-YAjEGXIXgZy7X-4EamZXuyErPnHneFaaQ8eXNZCf86tKu3m8MdDju_SjZmQ38E3iX9f0Hy3dgDymy6yeP0Gw2M3drWQ97C5VEsWKgHpyWdZyUjrwjJkOq-UrO4awNvP1F6_cxuz9QiQG-qDRSaOQTG-QDI9KOcsXSMrfqRYNgR0laQJbqjh-TpQgIEoHz1TIGcsBraiKaK3jdGuUXM2RL5B5EuHr5bbwpHcQ0g3slG4Yc0bnnTgpWepOcX7F2Sl21KArnLXlRBJVyJe3FsuoVWqydtVLxc2WaN4ePVq_SSN2qpY2SZNYPAgMD3EDX0AOzah1Veglj-AgZIgANipmfirrAq5ShOXGNJflB9ap71yjBeuKWb68kvHRcPKR2qGUfBvo9qYOx5DZhUm89itEJZ3B9ujF0GkGoSrEUn6xolk6hzKh_4nRXEVtI34PApRxrehlV7qSyFVTvkUVkbLCVZ401z_8JhoZ9owPOcYXXQwB_UF_o6jZVn9aVhJa4A6fv2R-uelzLFVC_wUQ9ZTASVLGRuClAki4UjLVt-4tHDLcXlV74eG4sZAf3VOk9xP2ijhwBPfcIetMdZ9gdaHJbtXIrJX4nVE60djABgziRlocFKDhmID2SGFgdXQwXE8YOFIKVIvEk_w_S0ynIqoaso7AI-XErnf2sCzYPGL1jfUsr3pdwN980zIQ5GqNnZvTIQ2zAvYOvZIza567Q9JjGEimypPZvh8vNyZmHdiBReFtk3UClq-HPtFX7TJqnN4D2YKK1_iVXgJoBusm_Z7sfJ2_jBVKBXEOpn9vCgd20lxpOd2LiNtnGdCFbbxiLdPxjVPVKbOJPUbbt4tvyYV7DGczCbLY-4qrGKnWzjqW9C62RWmh0mm13035O4uuLhCCKlwrfwvg7AMsum15FAaCvu8FO-ty1aUJXprUP3thWitKfavTS53t-EeXOsB9SkpH1W2b5flguMEXMZM6G04brDpVwB84TShq5R9kLR2MYdL7x0oumx6X8KXPkZwP046Szy0m4ZBKKqWGZK-PH6AabiaqgSfyyGO9FPzy8cIuExzvXW5T3DCDy-jzV5UeFZuaNVsPDWTeIGuJfKMIHnKdY46HiizbNXnigZq7GJoLCpziCl6sZlDr4WJBLA5YfWU7oNWs2LkQHJTGNm9D6Nh_wNyI1moEXoZzRc7R0p9HNZ9GVgRP5h8jNUqlkzbeT0fkcOSBOGvMMj-TbN-o-ocKQDX5f-hqXxATdsC7OHEdnxOVdyWO0z5vtW2IDRUi-UuWuGFtFjL1bTx5RGdvvNklG1qNSZvM39AvF452r9TKX0XrBbEpkDqN1zxP9Wr1f6JwjLEDU_8nxsWfYX7-32sEqOvezJhlvbA6EOVM_j1CHUuGUjzNJ9lxMWAoKakU5tcnlzjC4OSA-DfLuwdFnM3u5f7MsQsfzuwovzyBGmPCCVDY9dIh_yooJ9GOehtma76hI
Cache-control: no-store
Pragma: no-cache
X-Robots-Tag: noindex, nofollow
|
|
| s3.amazonaws.com/assets.oxfordclub.com/oxford-favicon.png | 52.217.67.230 | 200 OK | 1.5 kB |
URL GET s3.amazonaws.com/assets.oxfordclub.com/oxford-favicon.png IP52.217.67.230:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subjects3.amazonaws.com Fingerprint94:6E:24:DA:38:A4:1B:D7:08:C5:38:4D:E4:0F:23:5C:25:6C:07:22 ValidityTue, 20 May 2025 00:00:00 GMT - Fri, 15 May 2026 23:59:59 GMT
File typePNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced Hash5ac49ec01d1cac718b2c4a4832d194c4 82a729b99d1363e89def3ece50ea7c0c07109a7a 77b961c58d38a7ae54fbd422c6388169b3f8b3932991f874326203fb1704f79a
GET /assets.oxfordclub.com/oxford-favicon.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: cPLNuPulDzApFiWhDvW9ganMwIHP2Q8qVac3IJqflkV8EjwSIUkQ81KtFg0yIxkf/pR5MO7ngUU=
x-amz-request-id: 0HZYX1TRHNCA3CQA
Date: Mon, 09 Jun 2025 21:55:35 GMT
Last-Modified: Wed, 22 Aug 2018 16:04:30 GMT
ETag: "5ac49ec01d1cac718b2c4a4832d194c4"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/png
Content-Length: 1487
Server: AmazonS3
|
|
| go.mysmartprofit.com/brkoil0323/6708cc84dcd3aa836a9d6626c646d550/70/TA_FIN/[CAMPAIGN_ID]/148385/1ad7f5a7b6d990de6c7c6d5e74d293aa/sb | 104.21.96.1 | 302 Found | 8.3 kB |
URL User Request GET go.mysmartprofit.com/brkoil0323/6708cc84dcd3aa836a9d6626c646d550/70/TA_FIN/[CAMPAIGN_ID]/148385/1ad7f5a7b6d990de6c7c6d5e74d293aa/sb IP104.21.96.1:443
CertificateIssuerGoogle Trust Services Subjectmysmartprofit.com Fingerprint45:EF:90:A5:78:22:CA:2F:3F:2C:A3:5C:AB:8D:4F:17:91:B5:4A:27 ValidityWed, 04 Jun 2025 05:33:30 GMT - Tue, 02 Sep 2025 06:32:09 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /brkoil0323/6708cc84dcd3aa836a9d6626c646d550/70/TA_FIN/[CAMPAIGN_ID]/148385/1ad7f5a7b6d990de6c7c6d5e74d293aa/sb HTTP/1.1
Host: go.mysmartprofit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Mon, 09 Jun 2025 21:55:28 GMT
content-type: text/html; charset=UTF-8
location: https://verifiedlinks.org/go?ehash=6708cc84dcd3aa836a9d6626c646d550&product=22875&ar=70&cid=[CAMPAIGN_ID]&lid=148385&slhash=1ad7f5a7b6d990de6c7c6d5e74d293aa&mtaid=sb&cid2=[s8]
server: cloudflare
cache-control: max-age=600
expires: Mon, 09 Jun 2025 22:05:27 GMT
vary: User-Agent
cf-cache-status: DYNAMIC
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Kze45yqXS%2FcsuyLBNkQroZoncDpDz%2FpaxG5CvMubgvZTESi7Nob8UJUVuvAZ58AQKlJhY8A4EQ81AwccVLpMuIcWx4JgoK%2FPilCM8kp2Jo%2FGSg%3D%3D"}]}
cf-ray: 94d3df95de991c0e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pro.oxfordclub.com/m/2314530?s1=30c4281e43334229b55ccbd305e08284 | 192.135.136.168 | 301 Moved Permanently | 17 kB |
URL User Request GET pro.oxfordclub.com/m/2314530?s1=30c4281e43334229b55ccbd305e08284 IP192.135.136.168:443
CertificateIssuerLet's Encrypt Subjectordertracking2.pubsvs.com FingerprintFA:B1:9C:7B:5F:8B:DE:2A:0F:6B:52:A7:2F:EC:A2:A8:E8:A9:06:D9 ValidityMon, 19 May 2025 13:51:27 GMT - Sun, 17 Aug 2025 13:51:26 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m/2314530?s1=30c4281e43334229b55ccbd305e08284 HTTP/1.1
Host: pro.oxfordclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true
Date: Mon, 09 Jun 2025 21:55:32 GMT
Content-Length: 223
Set-Cookie: 2314530=2743372; expires=Sun, 29-Jun-2025 21:55:33 GMT; path=/; HttpOnly
BIGipServerQEX662zAURJQLrqleAP1SA=!BQj5TKJUYdoDrD9C6+h9tp1lrjN3ZUXL9u+30dzblmU3itmcLolZ4yb74P192WafbdmcvCA98H3Ycks=; path=/; Httponly; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| c.lytics.io/c/9c32784e3cc4888a693a7988ad64c63d?gtm.start=1749506135401&event=gtm.js>m.uniqueEventId=14&_ts=1749506137769&_nmob=t&_device=desktop&url=pro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ga=GA1.1.659008633.1749506136&_uid=cabdc109-e48a-4570-8e4e-19a717f7f31f&_v=3.0.54 | 104.21.38.20 | 200 OK | 35 B |
URL GET c.lytics.io/c/9c32784e3cc4888a693a7988ad64c63d?gtm.start=1749506135401&event=gtm.js>m.uniqueEventId=14&_ts=1749506137769&_nmob=t&_device=desktop&url=pro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ga=GA1.1.659008633.1749506136&_uid=cabdc109-e48a-4570-8e4e-19a717f7f31f&_v=3.0.54 IP104.21.38.20:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectlytics.io Fingerprint0B:99:0F:A7:2A:CB:F4:2A:61:76:86:DA:9E:58:4E:B1:CC:B9:EB:19 ValiditySat, 03 May 2025 00:29:14 GMT - Fri, 01 Aug 2025 01:27:41 GMT
File typeGIF image data, version 89a, 1 x 1 Hashc2196de8ba412c60c22ab491af7b1409 5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /c/9c32784e3cc4888a693a7988ad64c63d?gtm.start=1749506135401&event=gtm.js>m.uniqueEventId=14&_ts=1749506137769&_nmob=t&_device=desktop&url=pro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ga=GA1.1.659008633.1749506136&_uid=cabdc109-e48a-4570-8e4e-19a717f7f31f&_v=3.0.54 HTTP/1.1
Host: c.lytics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 09 Jun 2025 21:55:37 GMT
content-type: image/gif
content-length: 35
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=25lSBLi1UCMCYI3v2RwN6MoAwf67b1ZAKTVkKzO9YXoEn1JMmswlQ%2B1nYlT0JaJdZxO7vREtxbwxBOtEYFPdsXrIZETd8DT%2BDmCyo%2FfydL4ufrkhEiHrL5lz2iA5tg%3D%3D"}],"group":"cf-nel","max_age":604800}
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Cookie, *
access-control-allow-methods: GET, POST
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: seerid=cabdc109-e48a-4570-8e4e-19a717f7f31f; Path=/; Domain=lytics.io; Max-Age=77760000; Secure; SameSite=None
x-lytics-trace: b2bf80bd3bdb609044fce2ebaaeaff10
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
cf-ray: 94d3dfd15e351c0e-OSL
server: cloudflare
strict-transport-security: max-age=63072000;
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfL4;desc="?proto=QUIC&rtt=8017&min_rtt=3102&rtt_var=5399&sent=31&recv=37&lost=0&retrans=0&sent_bytes=6339&recv_bytes=6974&delivery_rate=472149&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=329724ba8b7cc335&ts=1444&inflight_dur=38&x=80"
|
|
| www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=781851839.1749506136&dt=The%20Oxford%20Club&auid=545976000.1749506136&navt=n&npa=1>m=45He5641v78253552za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&tft=1749506135873&tfd=3498&apve=1&apvf=f&img=1 | 142.250.178.100 | 200 OK | 0 B |
URL GET www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=781851839.1749506136&dt=The%20Oxford%20Club&auid=545976000.1749506136&navt=n&npa=1>m=45He5641v78253552za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&tft=1749506135873&tfd=3498&apve=1&apvf=f&img=1 IP142.250.178.100:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint7B:D2:02:FC:58:D9:E6:6C:DB:4E:0A:85:10:91:65:A5:9A:9C:5D:12 ValidityMon, 12 May 2025 08:42:58 GMT - Mon, 04 Aug 2025 08:42:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ccm/collect?en=page_view&dl=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=781851839.1749506136&dt=The%20Oxford%20Club&auid=545976000.1749506136&navt=n&npa=1>m=45He5641v78253552za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&tft=1749506135873&tfd=3498&apve=1&apvf=f&img=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
date: Mon, 09 Jun 2025 21:55:38 GMT
content-type: text/plain
cache-control: no-cache, no-store, must-revalidate
vary: Origin, X-Origin, Referer
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| bat.bing.net/actionp/0?ti=15322609&Ver=2&mid=2789e569-2d06-48c8-b656-eca172ce4923&bo=2&evt=consent&src=enforced&cdb=AQAY&asc=D | 150.171.27.10 | 204 No Content | 0 B |
URL POST bat.bing.net/actionp/0?ti=15322609&Ver=2&mid=2789e569-2d06-48c8-b656-eca172ce4923&bo=2&evt=consent&src=enforced&cdb=AQAY&asc=D IP150.171.27.10:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerMicrosoft Corporation Subjectbat.bing.net Fingerprint36:B0:89:87:47:4A:B0:8A:1F:A8:EB:71:A6:13:8A:FF:CD:94:46:23 ValidityThu, 24 Apr 2025 22:29:23 GMT - Tue, 21 Oct 2025 22:29:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /actionp/0?ti=15322609&Ver=2&mid=2789e569-2d06-48c8-b656-eca172ce4923&bo=2&evt=consent&src=enforced&cdb=AQAY&asc=D HTTP/1.1
Host: bat.bing.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 65153F364B6D4DA5880F9EE96A3C87A3 Ref B: OSL30EDGE0320 Ref C: 2025-06-09T21:55:38Z
date: Mon, 09 Jun 2025 21:55:38 GMT
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BBMPM3EJHQ>m=45je5650h2v9106739609z8813057436za200zb813057436&_p=1749506134367&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&cid=659008633.1749506136&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1749506135&sct=1&seg=0&dl=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&dt=The%20Oxford%20Club&en=page_view&_fv=1&_nsi=1&_ss=1&ep.promocode=NBRK4404&ep.device_width=large&ep.iris_campaign_name=BRK%20Oil&ep.media_channel=N%20-%20Agora%20Swap%20Website&ep.placement_name=Dedicated&ep.acquisition_method=UX%20-%20Web%2FEmail%20Promo%20External&ep.list_name=8020%20Publishing&ep.item_type=Subscription&ep.page_type=promo%20page&ep.iris_tree_name=NLOilAltLeadNoBookTO99%20(Video)%20No%20Abandon&ep.iris_page_1=NLOilAltLeadNoBookTO49%20(Video)&ep.template_type=video&ep.effort_type=Dedicated&ep.item_code=BRK&ep.item_subscription_type=FrontEnd&tfd=3376 | 216.239.32.36 | 204 No Content | 0 B |
URL POST region1.analytics.google.com/g/collect?v=2&tid=G-BBMPM3EJHQ>m=45je5650h2v9106739609z8813057436za200zb813057436&_p=1749506134367&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&cid=659008633.1749506136&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1749506135&sct=1&seg=0&dl=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&dt=The%20Oxford%20Club&en=page_view&_fv=1&_nsi=1&_ss=1&ep.promocode=NBRK4404&ep.device_width=large&ep.iris_campaign_name=BRK%20Oil&ep.media_channel=N%20-%20Agora%20Swap%20Website&ep.placement_name=Dedicated&ep.acquisition_method=UX%20-%20Web%2FEmail%20Promo%20External&ep.list_name=8020%20Publishing&ep.item_type=Subscription&ep.page_type=promo%20page&ep.iris_tree_name=NLOilAltLeadNoBookTO99%20(Video)%20No%20Abandon&ep.iris_page_1=NLOilAltLeadNoBookTO49%20(Video)&ep.template_type=video&ep.effort_type=Dedicated&ep.item_code=BRK&ep.item_subscription_type=FrontEnd&tfd=3376 IP216.239.32.36:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BBMPM3EJHQ>m=45je5650h2v9106739609z8813057436za200zb813057436&_p=1749506134367&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&cid=659008633.1749506136&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1749506135&sct=1&seg=0&dl=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&dt=The%20Oxford%20Club&en=page_view&_fv=1&_nsi=1&_ss=1&ep.promocode=NBRK4404&ep.device_width=large&ep.iris_campaign_name=BRK%20Oil&ep.media_channel=N%20-%20Agora%20Swap%20Website&ep.placement_name=Dedicated&ep.acquisition_method=UX%20-%20Web%2FEmail%20Promo%20External&ep.list_name=8020%20Publishing&ep.item_type=Subscription&ep.page_type=promo%20page&ep.iris_tree_name=NLOilAltLeadNoBookTO99%20(Video)%20No%20Abandon&ep.iris_page_1=NLOilAltLeadNoBookTO49%20(Video)&ep.template_type=video&ep.effort_type=Dedicated&ep.item_code=BRK&ep.item_subscription_type=FrontEnd&tfd=3376 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://pro.oxfordclub.com
date: Mon, 09 Jun 2025 21:55:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:158:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:158:0
report-to: {"group":"ascnsrsggc:158:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:158:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| c.pmsrv.co/v1/analytics.js?d=pro.oxfordclub.com | 34.144.246.130 | 200 OK | 7.8 kB |
URL GET c.pmsrv.co/v1/analytics.js?d=pro.oxfordclub.com IP34.144.246.130:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectc.pmsrv.co Fingerprint9B:11:8E:59:49:0A:71:EB:5F:72:A5:12:7D:98:78:A9:9A:07:86:57 ValidityMon, 12 May 2025 19:40:47 GMT - Sun, 10 Aug 2025 20:34:40 GMT
File typeJavaScript source, ASCII text, with very long lines (7784), with no line terminators Hash5609abb4be020a7c772da583efd6e793 f82a89b641922fe11e09be485566e1a91f6dbbde 56861168a10ac9489b24c05e862de59cab520096ce6ca83e1b8428df8760e61e
GET /v1/analytics.js?d=pro.oxfordclub.com HTTP/1.1
Host: c.pmsrv.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: Express
content-type: text/javascript; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate
expires: -1
pragma: no-cache
etag: W/"1e68-+CqJtkGSL+EeCb5IVWbhqR9tu94"
date: Mon, 09 Jun 2025 21:55:36 GMT
x-envoy-upstream-service-time: 1
content-encoding: gzip
vary: Accept-Encoding
server: istio-envoy
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.getblueshift.com/blueshift.js | 54.240.174.71 | 200 OK | 7.7 kB |
URL GET cdn.getblueshift.com/blueshift.js IP54.240.174.71:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subject*.getblueshift.com FingerprintDC:03:F0:B3:98:3C:48:D2:6E:04:8C:63:1A:D8:02:FD:D9:FF:40:80 ValiditySat, 08 Jun 2024 00:00:00 GMT - Sun, 06 Jul 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (7670), with no line terminators Hash69aed804d3b4dad95e723decde1f0a07 8c3187111ded3aaeba466c641cbdb3d990c3221f 6ce8ac8b78cf44196bba21111c6b2e41d52c7f92b9a8d840f1b27c2b04214996
GET /blueshift.js HTTP/1.1
Host: cdn.getblueshift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 3229
Connection: keep-alive
Last-Modified: Fri, 06 Jun 2025 07:15:31 GMT
x-amz-server-side-encryption: AES256
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 09 Jun 2025 21:52:48 GMT
Cache-Control: max-age=3600
ETag: "55a46b021d535a9d62116d5a9b515d0a"
Vary: accept-encoding
X-Cache: Hit from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: u5M7Ckmc6wwBEwyz4C5x0FGVP-lxnxF_kMpnezYEMl_sh-HLryxQXw==
Age: 167
|
|
| www.googletagmanager.com/gtag/js?id=G-BBMPM3EJHQ&cx=c>m=45He5650h2v813057436za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 | 142.250.74.136 | 200 OK | 403 kB |
URL GET www.googletagmanager.com/gtag/js?id=G-BBMPM3EJHQ&cx=c>m=45He5650h2v813057436za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 IP142.250.74.136:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (7993) Size403 kB (403014 bytes) Hashc63f7385dc4abc6edf05786ba4c2bdc5 c5832e10884250cdd30c8550b9e7fb0f7f215e93 4ccc7e242ed56b9d646909b5d74ec75db273e45f3b033b07666fbb02625a9c59
GET /gtag/js?id=G-BBMPM3EJHQ&cx=c>m=45He5650h2v813057436za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 09 Jun 2025 21:55:35 GMT
expires: Mon, 09 Jun 2025 21:55:35 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 132808
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BBMPM3EJHQ>m=45je5650h2v9106739609za200zb813057436&_p=1749506134367&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&cid=659008633.1749506136&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AEAAAAQ&_s=2&sid=1749506135&sct=1&seg=0&dl=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&dt=The%20Oxford%20Club&en=scroll&ep.promocode=NBRK4404&ep.device_width=large&ep.iris_campaign_name=BRK%20Oil&ep.media_channel=N%20-%20Agora%20Swap%20Website&ep.placement_name=Dedicated&ep.acquisition_method=UX%20-%20Web%2FEmail%20Promo%20External&ep.list_name=8020%20Publishing&ep.item_type=Subscription&ep.page_type=promo%20page&ep.iris_tree_name=NLOilAltLeadNoBookTO99%20(Video)%20No%20Abandon&ep.iris_page_1=NLOilAltLeadNoBookTO49%20(Video)&ep.template_type=video&ep.effort_type=Dedicated&ep.item_code=BRK&ep.item_subscription_type=FrontEnd&epn.percent_scrolled=90&tfd=8429 | 216.239.32.36 | 204 No Content | 0 B |
URL POST region1.analytics.google.com/g/collect?v=2&tid=G-BBMPM3EJHQ>m=45je5650h2v9106739609za200zb813057436&_p=1749506134367&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&cid=659008633.1749506136&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AEAAAAQ&_s=2&sid=1749506135&sct=1&seg=0&dl=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&dt=The%20Oxford%20Club&en=scroll&ep.promocode=NBRK4404&ep.device_width=large&ep.iris_campaign_name=BRK%20Oil&ep.media_channel=N%20-%20Agora%20Swap%20Website&ep.placement_name=Dedicated&ep.acquisition_method=UX%20-%20Web%2FEmail%20Promo%20External&ep.list_name=8020%20Publishing&ep.item_type=Subscription&ep.page_type=promo%20page&ep.iris_tree_name=NLOilAltLeadNoBookTO99%20(Video)%20No%20Abandon&ep.iris_page_1=NLOilAltLeadNoBookTO49%20(Video)&ep.template_type=video&ep.effort_type=Dedicated&ep.item_code=BRK&ep.item_subscription_type=FrontEnd&epn.percent_scrolled=90&tfd=8429 IP216.239.32.36:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BBMPM3EJHQ>m=45je5650h2v9106739609za200zb813057436&_p=1749506134367&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&cid=659008633.1749506136&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AEAAAAQ&_s=2&sid=1749506135&sct=1&seg=0&dl=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&dt=The%20Oxford%20Club&en=scroll&ep.promocode=NBRK4404&ep.device_width=large&ep.iris_campaign_name=BRK%20Oil&ep.media_channel=N%20-%20Agora%20Swap%20Website&ep.placement_name=Dedicated&ep.acquisition_method=UX%20-%20Web%2FEmail%20Promo%20External&ep.list_name=8020%20Publishing&ep.item_type=Subscription&ep.page_type=promo%20page&ep.iris_tree_name=NLOilAltLeadNoBookTO99%20(Video)%20No%20Abandon&ep.iris_page_1=NLOilAltLeadNoBookTO49%20(Video)&ep.template_type=video&ep.effort_type=Dedicated&ep.item_code=BRK&ep.item_subscription_type=FrontEnd&epn.percent_scrolled=90&tfd=8429 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 204 No Content
access-control-allow-origin: https://pro.oxfordclub.com
date: Mon, 09 Jun 2025 21:55:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:158:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:158:0
report-to: {"group":"ascnsrsggc:158:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:158:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| storage.googleapis.com/lioservices/2470-oxford-club/lytics_overrides.min.css | 142.250.178.123 | 404 Not Found | 0 B |
URL GET storage.googleapis.com/lioservices/2470-oxford-club/lytics_overrides.min.css IP142.250.178.123:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectstorage.googleapis.com FingerprintE6:19:2A:54:2B:10:FA:7F:D1:05:6C:BB:F0:95:A7:BC:6F:29:25:69 ValidityMon, 12 May 2025 08:46:48 GMT - Mon, 04 Aug 2025 08:46:47 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /lioservices/2470-oxford-club/lytics_overrides.min.css HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: application/xml; charset=UTF-8
x-guploader-uploadid: ABgVH88KdpSFiXevuFFCQiHCJ1IqQvUVNmGyIkaQpcCMLA0SMjboAApVRIavtEUKI6hIv58T7qQ73g
content-length: 133
date: Mon, 09 Jun 2025 21:55:39 GMT
expires: Mon, 09 Jun 2025 21:55:39 GMT
cache-control: private, max-age=0
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BBMPM3EJHQ&cid=659008633.1749506136>m=45je5650h2v9106739609z8813057436za200zb813057436&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&z=1922385682 | 142.250.178.67 | 200 OK | 42 B |
URL GET www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BBMPM3EJHQ&cid=659008633.1749506136>m=45je5650h2v9106739609z8813057436za200zb813057436&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&z=1922385682 IP142.250.178.67:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google.no FingerprintF5:F3:C1:C0:97:D6:3B:FC:0B:FD:36:B3:3B:83:88:FF:EA:FE:D1:1E ValidityMon, 12 May 2025 08:45:40 GMT - Mon, 04 Aug 2025 08:45:39 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BBMPM3EJHQ&cid=659008633.1749506136>m=45je5650h2v9106739609z8813057436za200zb813057436&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&z=1922385682 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 09 Jun 2025 21:55:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/destination?id=AW-707706541&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 | 142.250.74.136 | 200 OK | 306 kB |
URL GET www.googletagmanager.com/gtag/destination?id=AW-707706541&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 IP142.250.74.136:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (4947) Size306 kB (305943 bytes) Hashc0403bc452950ad1b4fa7fcb8b8ea8e1 dd8fa73943ab0805815ce8cc2ddc87b160568b7d 47c3f86fcc9c51f79717c3dcd76b6782b8d759d0454e3e24c231aa00025865b2
GET /gtag/destination?id=AW-707706541&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 09 Jun 2025 21:55:35 GMT
expires: Mon, 09 Jun 2025 21:55:35 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcysghrgc:42:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcysghrgc:42:0
report-to: {"group":"ascgcysghrgc:42:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcysghrgc:42:0"}],}
server: Google Tag Manager
content-length: 108509
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| embed-cloudfront.wistia.com/deliveries/fe16e5d8a394621ad0d9ddef5424ebfc59654246.m3u8/seg-1-v1-a1.ts | 3.167.2.63 | 200 OK | 283 kB |
URL GET embed-cloudfront.wistia.com/deliveries/fe16e5d8a394621ad0d9ddef5424ebfc59654246.m3u8/seg-1-v1-a1.ts IP3.167.2.63:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subject*.wistia.com FingerprintC8:77:67:66:9E:3C:31:F7:1C:8E:9A:18:6E:53:3A:44:CD:C7:4F:EA ValiditySat, 30 Nov 2024 00:00:00 GMT - Sun, 28 Dec 2025 23:59:59 GMT
File typeMPEG transport stream data Size283 kB (283128 bytes) Hashd248ceae216b5683146554f40b6a50f5 51fc268df55ffa81ff78299cddef6041a6fc9116 33ae1117355971f9c82b92648909daa7d24450bb6683ada88b22a9aec6809fc3
GET /deliveries/fe16e5d8a394621ad0d9ddef5424ebfc59654246.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: video/MP2T
content-length: 283128
server: envoy
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: fe16e5d8a394621ad0d9ddef5424ebfc59654246-hls-segment
surrogate-key: fe16e5d8a394621ad0d9ddef5424ebfc59654246-hls-segment
x-envoy-upstream-service-time: 90
date: Wed, 04 Jun 2025 17:05:53 GMT
expires: Thu, 04 Jun 2026 17:05:53 GMT
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 42b1b4c2d68cc43ab5019609cede1d92.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: pRiVJwaYuD7tGpcfmshAlNCrB4uRzOManQaXplTYlEZ_GD9eYGDn4g==
age: 449384
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| c.lytics.io/c/9c32784e3cc4888a693a7988ad64c63d?event=gtm.scrollDepth>m.scrollThreshold=90>m.scrollUnits=percent>m.scrollDirection=vertical>m.triggers=18>m.uniqueEventId=20&_ts=1749506137769&_nmob=t&_device=desktop&url=pro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ga=GA1.1.659008633.1749506136&_uid=cabdc109-e48a-4570-8e4e-19a717f7f31f&_v=3.0.54 | 104.21.38.20 | 200 OK | 35 B |
URL GET c.lytics.io/c/9c32784e3cc4888a693a7988ad64c63d?event=gtm.scrollDepth>m.scrollThreshold=90>m.scrollUnits=percent>m.scrollDirection=vertical>m.triggers=18>m.uniqueEventId=20&_ts=1749506137769&_nmob=t&_device=desktop&url=pro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ga=GA1.1.659008633.1749506136&_uid=cabdc109-e48a-4570-8e4e-19a717f7f31f&_v=3.0.54 IP104.21.38.20:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectlytics.io Fingerprint0B:99:0F:A7:2A:CB:F4:2A:61:76:86:DA:9E:58:4E:B1:CC:B9:EB:19 ValiditySat, 03 May 2025 00:29:14 GMT - Fri, 01 Aug 2025 01:27:41 GMT
File typeGIF image data, version 89a, 1 x 1 Hashc2196de8ba412c60c22ab491af7b1409 5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /c/9c32784e3cc4888a693a7988ad64c63d?event=gtm.scrollDepth>m.scrollThreshold=90>m.scrollUnits=percent>m.scrollDirection=vertical>m.triggers=18>m.uniqueEventId=20&_ts=1749506137769&_nmob=t&_device=desktop&url=pro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ga=GA1.1.659008633.1749506136&_uid=cabdc109-e48a-4570-8e4e-19a717f7f31f&_v=3.0.54 HTTP/1.1
Host: c.lytics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 09 Jun 2025 21:55:37 GMT
content-type: image/gif
content-length: 35
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2s9VMsnA6ONjRPfvFKD%2FEvn82SbNMOz1e8H%2BWYiSNe%2FjqAY3lE4YVRIOW7%2FZCKBcnxZbYrnslMERX9LXUCGmX0zcTZmVu3Ddnr690aI1u69JdSLY3UAsdaVV%2BIWh4g%3D%3D"}],"group":"cf-nel","max_age":604800}
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Cookie, *
access-control-allow-methods: GET, POST
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: seerid=cabdc109-e48a-4570-8e4e-19a717f7f31f; Path=/; Domain=lytics.io; Max-Age=77760000; Secure; SameSite=None
x-lytics-trace: bcdabc10263c23bcbd003a3aed48a5e7
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
cf-ray: 94d3dfd15e361c0e-OSL
server: cloudflare
strict-transport-security: max-age=63072000;
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfL4;desc="?proto=QUIC&rtt=8017&min_rtt=3102&rtt_var=5399&sent=33&recv=38&lost=0&retrans=0&sent_bytes=7259&recv_bytes=7509&delivery_rate=472149&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=329724ba8b7cc335&ts=1444&inflight_dur=38&x=80"
|
|
| c.lytics.io/c/9c32784e3cc4888a693a7988ad64c63d?_sesstart=1&_tz=0&_ul=en-US&_sz=1280x1024&_ts=1749506137855&_nmob=t&_device=desktop&url=pro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ga=GA1.1.659008633.1749506136&_uid=cabdc109-e48a-4570-8e4e-19a717f7f31f&_v=3.0.54&_uido=cabdc109-e48a-4570-8e4e-19a717f7f31f | 104.21.38.20 | 200 OK | 35 B |
URL GET c.lytics.io/c/9c32784e3cc4888a693a7988ad64c63d?_sesstart=1&_tz=0&_ul=en-US&_sz=1280x1024&_ts=1749506137855&_nmob=t&_device=desktop&url=pro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ga=GA1.1.659008633.1749506136&_uid=cabdc109-e48a-4570-8e4e-19a717f7f31f&_v=3.0.54&_uido=cabdc109-e48a-4570-8e4e-19a717f7f31f IP104.21.38.20:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectlytics.io Fingerprint0B:99:0F:A7:2A:CB:F4:2A:61:76:86:DA:9E:58:4E:B1:CC:B9:EB:19 ValiditySat, 03 May 2025 00:29:14 GMT - Fri, 01 Aug 2025 01:27:41 GMT
File typeGIF image data, version 89a, 1 x 1 Hashc2196de8ba412c60c22ab491af7b1409 5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /c/9c32784e3cc4888a693a7988ad64c63d?_sesstart=1&_tz=0&_ul=en-US&_sz=1280x1024&_ts=1749506137855&_nmob=t&_device=desktop&url=pro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ga=GA1.1.659008633.1749506136&_uid=cabdc109-e48a-4570-8e4e-19a717f7f31f&_v=3.0.54&_uido=cabdc109-e48a-4570-8e4e-19a717f7f31f HTTP/1.1
Host: c.lytics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 09 Jun 2025 21:55:38 GMT
content-type: image/gif
content-length: 35
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EvyWfFgA2BLIFICdYdVtRhw297vPP81ZQLbi%2BvVee7ervkt1rzhCKWGVkjCXqtjZdReC7pCeEkqC2S5%2FzDLSxuY%2FvtCXEs9O%2FkLsmIsgw51WsNBKmGH7LV9xT6DNBw%3D%3D"}],"group":"cf-nel","max_age":604800}
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Cookie, *
access-control-allow-methods: GET, POST
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: seerid=cabdc109-e48a-4570-8e4e-19a717f7f31f; Path=/; Domain=lytics.io; Max-Age=77760000; Secure; SameSite=None
x-lytics-trace: ed9f09abda402b49f019011e5feff679
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
cf-ray: 94d3dfd25e3d1c0e-OSL
server: cloudflare
strict-transport-security: max-age=63072000;
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfL4;desc="?proto=QUIC&rtt=9518&min_rtt=3102&rtt_var=7072&sent=36&recv=41&lost=0&retrans=0&sent_bytes=9046&recv_bytes=8306&delivery_rate=472149&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=329724ba8b7cc335&ts=1590&inflight_dur=63&x=80"
|
|
| verifiedlinks.org/go?ehash=6708cc84dcd3aa836a9d6626c646d550&product=22875&ar=70&cid=[CAMPAIGN_ID]&lid=148385&slhash=1ad7f5a7b6d990de6c7c6d5e74d293aa&mtaid=sb&cid2=[s8] | 172.67.27.192 | 403 Forbidden | 8.3 kB |
URL User Request GET verifiedlinks.org/go?ehash=6708cc84dcd3aa836a9d6626c646d550&product=22875&ar=70&cid=[CAMPAIGN_ID]&lid=148385&slhash=1ad7f5a7b6d990de6c7c6d5e74d293aa&mtaid=sb&cid2=[s8] IP172.67.27.192:443
CertificateIssuerGoogle Trust Services Subjectverifiedlinks.org Fingerprint83:83:27:6B:AE:C3:0B:9B:C5:72:1E:A2:16:92:0C:37:C5:A3:26:81 ValiditySun, 20 Apr 2025 20:50:50 GMT - Sat, 19 Jul 2025 21:50:38 GMT
File typeHTML document, ASCII text, with very long lines (8277), with no line terminators Hash75c6c7429d8d73187a97ecf01f0c09b1 11a7637fba9561d2f14bda7bdd347ccf528eab27 37faa276cb18ba58fec8c5cb507fb3f1de2ef53fc41e862745ba76870a23057a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /go?ehash=6708cc84dcd3aa836a9d6626c646d550&product=22875&ar=70&cid=[CAMPAIGN_ID]&lid=148385&slhash=1ad7f5a7b6d990de6c7c6d5e74d293aa&mtaid=sb&cid2=[s8] HTTP/1.1
Host: verifiedlinks.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Mon, 09 Jun 2025 21:55:29 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server-timing: chlray;desc="94d3df9a6f815694"
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
set-cookie: __cf_bm=OTr1sZE9EHOaLTB6JKxUBTSoUAPmYYurDc8Qh_dNzbs-1749506129-1.0.1.1-MKjdCYrN_ipEg0OJRdnYmkjeOa26GlgN6W4eRGV69sf10dc1CHmueEIbBEwEFmN0si7k2TNCAP.Igmawg80gLnWETD6Zo_FShnaBtC_R0v8; path=/; expires=Mon, 09-Jun-25 22:25:29 GMT; domain=.verifiedlinks.org; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 94d3df9a6f815694-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| pro.oxfordclub.com/p/Scripts/Common.js | 192.135.136.168 | 200 OK | 2.5 kB |
URL GET pro.oxfordclub.com/p/Scripts/Common.js IP192.135.136.168:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerLet's Encrypt Subjectordertracking2.pubsvs.com FingerprintFA:B1:9C:7B:5F:8B:DE:2A:0F:6B:52:A7:2F:EC:A2:A8:E8:A9:06:D9 ValidityMon, 19 May 2025 13:51:27 GMT - Sun, 17 Aug 2025 13:51:26 GMT
File typeASCII text, with CRLF line terminators Hashef9b6f612e89926fa10830ad89a7f3b6 faa8fbf56e4834534455c46ba2753118eb554c2e 86034bbe69eebb0c08660ff7f0128dd0bd1d852176489ca3a3da7b49bd647cbd
GET /p/Scripts/Common.js HTTP/1.1
Host: pro.oxfordclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true
DNT: 1
Connection: keep-alive
Cookie: 2314530=2743372; BIGipServerQEX662zAURJQLrqleAP1SA=!BQj5TKJUYdoDrD9C6+h9tp1lrjN3ZUXL9u+30dzblmU3itmcLolZ4yb74P192WafbdmcvCA98H3Ycks=; NBRK4404=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 24 Jul 2023 13:39:44 GMT
Accept-Ranges: bytes
ETag: "a37f814e34bed91:0"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Mon, 09 Jun 2025 21:55:33 GMT
Content-Length: 1140
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| cdnjs.cloudflare.com/ajax/libs/animate.css/4.0.0/animate.min.css | 104.17.25.14 | 200 OK | 72 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/animate.css/4.0.0/animate.min.css IP104.17.25.14:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77 ValidityThu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT
File typeASCII text, with very long lines (65346) Hash39aca93cfd689b19cc6241e859642a92 5022a36b3d077c80b0b4a550ddfb280aae28dafe eb2798553d86c6b1806d208320f645bd79eab0cebcf22176bddbc648e8f3ccd4
GET /ajax/libs/animate.css/4.0.0/animate.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 09 Jun 2025 21:55:33 GMT
content-type: text/css; charset=utf-8
content-length: 4216
cf-ray: 94d3dfb91dc956b9-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb436a8-11848"
last-modified: Thu, 07 May 2020 16:26:16 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2256572
expires: Sat, 30 May 2026 21:55:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Eu06cuExUBEA%2FVQS6pIM%2B%2Fck5m00ysjMmffI%2BxkMmZhg%2B1G5YZ3LSxTT%2B11tE%2B7cxIgLluR5Cn8d9%2F1%2Bchb2TF2QTKW0lQS43sPn8zTVOlf0i8h0A1efuj1E%2FMgL%2FPyuxl6UXDtb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=AW-665059360&cx=c>m=45He5641v832065993za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 | 142.250.74.136 | 200 OK | 318 kB |
URL GET www.googletagmanager.com/gtag/js?id=AW-665059360&cx=c>m=45He5641v832065993za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 IP142.250.74.136:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (5359) Size318 kB (317577 bytes) Hasha5a9e6c50e2ac1d3b0a4b02db62947eb 2b0bb15b84348d98a5b6a84ecd72b8ae06bc4569 41bd1d8815b6776473778bc71eb0777acfe4ec8f1300f41ea8e2c47d5d1eef82
GET /gtag/js?id=AW-665059360&cx=c>m=45He5641v832065993za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 09 Jun 2025 21:55:36 GMT
expires: Mon, 09 Jun 2025 21:55:36 GMT
cache-control: private, max-age=900
last-modified: Mon, 09 Jun 2025 21:03:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 111398
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| c.pmsrv.co/v2/acvr3?a=50bbcf39-5fab-4416-a13c-acc35b621b86&event=page-land&weight=0&dnt=false&_ible=1&ej=%7B%22dnt%22%3Afalse%7D&ord=6177083307114627&pg=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ii=0&ppg=&_tk=%7B%7D | 34.144.246.130 | 204 No Content | 0 B |
URL GET c.pmsrv.co/v2/acvr3?a=50bbcf39-5fab-4416-a13c-acc35b621b86&event=page-land&weight=0&dnt=false&_ible=1&ej=%7B%22dnt%22%3Afalse%7D&ord=6177083307114627&pg=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ii=0&ppg=&_tk=%7B%7D IP34.144.246.130:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectc.pmsrv.co Fingerprint9B:11:8E:59:49:0A:71:EB:5F:72:A5:12:7D:98:78:A9:9A:07:86:57 ValidityMon, 12 May 2025 19:40:47 GMT - Sun, 10 Aug 2025 20:34:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/acvr3?a=50bbcf39-5fab-4416-a13c-acc35b621b86&event=page-land&weight=0&dnt=false&_ible=1&ej=%7B%22dnt%22%3Afalse%7D&ord=6177083307114627&pg=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&_ii=0&ppg=&_tk=%7B%7D HTTP/1.1
Host: c.pmsrv.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
x-powered-by: Express
cache-control: private, no-cache, no-store, must-revalidate
expires: -1
pragma: no-cache
access-control-allow-origin: *
etag: W/"0-2jmj7l5rSw0yVb/vlWAYkK/YBwk"
date: Mon, 09 Jun 2025 21:55:37 GMT
x-envoy-upstream-service-time: 0
vary: Accept-Encoding
server: istio-envoy
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=AW-746840473&cx=c>m=45He5641v832065993za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 | 142.250.74.136 | 200 OK | 358 kB |
URL GET www.googletagmanager.com/gtag/js?id=AW-746840473&cx=c>m=45He5641v832065993za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 IP142.250.74.136:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (5359) Size358 kB (357661 bytes) Hashc25f1d8f93390bdf1f8c33a70630e529 b19af974890d50a995768d64ae919cbb20928142 c898991df3b32c2ce0bf352cbb22f008952d4b99ba6fd7b6ee8579ef444d7128
GET /gtag/js?id=AW-746840473&cx=c>m=45He5641v832065993za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 09 Jun 2025 21:55:36 GMT
expires: Mon, 09 Jun 2025 21:55:36 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 120688
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.mediago.io/js/h/val.html?postM=1&trackingid=&acid=26359 | 54.240.174.31 | 200 OK | 10 kB |
URL GET cdn.mediago.io/js/h/val.html?postM=1&trackingid=&acid=26359 IP54.240.174.31:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subject*.mediago.io Fingerprint6E:EA:1D:99:49:14:FA:7E:3E:5F:E3:62:5D:B1:F1:3D:7A:71:86:07 ValidityFri, 06 Jun 2025 00:00:00 GMT - Sat, 04 Jul 2026 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (10528), with no line terminators Hashedeff58c83874f47ccab9d40f3bd20c8 2735b25663624646f63b160bf870e26a75935ebb 025e0432cd05131c056f2f14e3116f6373f7d0fa002726a9f6fe932e2cd59945
GET /js/h/val.html?postM=1&trackingid=&acid=26359 HTTP/1.1
Host: cdn.mediago.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 10528
last-modified: Mon, 02 Dec 2024 05:01:57 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 6wKHYPsRSVWbI1Ixii7bPVaO1oX8dg2B
accept-ranges: bytes
server: AmazonS3
date: Mon, 09 Jun 2025 08:22:12 GMT
etag: "edeff58c83874f47ccab9d40f3bd20c8"
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rqb725KMNaGSCmn19iX95GEbHJ4V8cmPFHhY_ztqIxo5bpJJCsdyag==
age: 48969
vary: Origin
X-Firefox-Spdy: h2
|
|
| pipedream.wistia.com/mput?topic=metrics | 3.167.2.18 | 200 OK | 2 B |
URL POST pipedream.wistia.com/mput?topic=metrics IP3.167.2.18:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subjectpipedream-production-cloudfront-app-cname.wistia.com Fingerprint84:37:78:5C:F1:DB:9E:23:64:62:0A:29:ED:CC:50:61:C3:3D:80:68 ValiditySun, 11 Aug 2024 00:00:00 GMT - Tue, 09 Sep 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1167
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Mon, 09 Jun 2025 21:55:37 GMT
server: envoy
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 3da6f6abdf7146387ea7a7f42136c780.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: oQiBB7jsKghaar7Wvpp8KpbfeCB2J2GmI1ks9aJEe2glchRuWpnzyA==
X-Firefox-Spdy: h2
|
|
| protect-us.mimecast.com/r/KrpwNc6Py8pASOytvMygnBE9MffFobwEWKmoANEc65SV1F38LTJjnCdYFBmPWP8j90cqTpy1BAczii4-QaSgFIXSsSSnGXWWKiJ6ONSh6heBI2XXaIyq5x26b-P3z6T4Z1IbQ13gJ69ah44qU7nxdBd6lQ3oOLcIq2cjiuRSmK3J9tV7qVANn3ogy1xIzzc6qaFzxwRRtIHZjXS9Dkpzme8v76NeeXL3hqBIYtxZ-6zNR19NNT_WJ_8K86H7QisS8vhaz5WnhFQzWb4eceZOuQ06hAW2W0po4ebrwcUz4qppPIp33YE1nRFPVFt1Wi5Yqi9BtwdwKOgBQhEwFqz9Vgr1o2hbYm0lg23z5-odbHiZCtcyPxr7r7bpHHSBUrD3SM3t66Oh753YGC_QD70WRTDCb3abwCKSknJVDObbn3nefJxXPuFnY3Ca0p5OQ72CCMOXBQFkWvwTT6lbR5zk7LxHM0Qnm1tzG3O7Lbo5MvbLuFQMVCCOXfgrGOqV2wYzOFtJ7od56MKGvLRvLNhh__OLbMimfImKR1yvsgTIDRUAd9_6S5RWqNaZmdJDSgwkyBKPZnp23rlNWnFpTpp8HWdjlcvqg773fZtt22bEk-YAjEGXIXgZy7X-4EamZXuyErPnHneFaaQ8eXNZCf86tKu3m8MdDju_SjZmQ38E3iX9f0Hy3dgDymy6yeP0Gw2M3drWQ97C5VEsWKgHpyWdZyUjrwjJkOq-UrO4awNvP1F6_cxuz9QiQG-qDRSaOQTG-QDI9KOcsXSMrfqRYNgR0laQJbqjh-TpQgIEoHz1TIGcsBraiKaK3jdGuUXM2RL5B5EuHr5bbwpHcQ0g3slG4Yc0bnnTgpWepOcX7F2Sl21KArnLXlRBJVyJe3FsuoVWqydtVLxc2WaN4ePVq_SSN2qpY2SZNYPAgMD3EDX0AOzah1Veglj-AgZIgANipmfirrAq5ShOXGNJflB9ap71yjBeuKWb68kvHRcPKR2qGUfBvo9qYOx5DZhUm89itEJZ3B9ujF0GkGoSrEUn6xolk6hzKh_4nRXEVtI34PApRxrehlV7qSyFVTvkUVkbLCVZ401z_8JhoZ9owPOcYXXQwB_UF_o6jZVn9aVhJa4A6fv2R-uelzLFVC_wUQ9ZTASVLGRuClAki4UjLVt-4tHDLcXlV74eG4sZAf3VOk9xP2ijhwBPfcIetMdZ9gdaHJbtXIrJX4nVE60djABgziRlocFKDhmID2SGFgdXQwXE8YOFIKVIvEk_w_S0ynIqoaso7AI-XErnf2sCzYPGL1jfUsr3pdwN980zIQ5GqNnZvTIQ2zAvYOvZIza567Q9JjGEimypPZvh8vNyZmHdiBReFtk3UClq-HPtFX7TJqnN4D2YKK1_iVXgJoBusm_Z7sfJ2_jBVKBXEOpn9vCgd20lxpOd2LiNtnGdCFbbxiLdPxjVPVKbOJPUbbt4tvyYV7DGczCbLY-4qrGKnWzjqW9C62RWmh0mm13035O4uuLhCCKlwrfwvg7AMsum15FAaCvu8FO-ty1aUJXprUP3thWitKfavTS53t-EeXOsB9SkpH1W2b5flguMEXMZM6G04brDpVwB84TShq5R9kLR2MYdL7x0oumx6X8KXPkZwP046Szy0m4ZBKKqWGZK-PH6AabiaqgSfyyGO9FPzy8cIuExzvXW5T3DCDy-jzV5UeFZuaNVsPDWTeIGuJfKMIHnKdY46HiizbNXnigZq7GJoLCpziCl6sZlDr4WJBLA5YfWU7oNWs2LkQHJTGNm9D6Nh_wNyI1moEXoZzRc7R0p9HNZ9GVgRP5h8jNUqlkzbeT0fkcOSBOGvMMj-TbN-o-ocKQDX5f-hqXxATdsC7OHEdnxOVdyWO0z5vtW2IDRUi-UuWuGFtFjL1bTx5RGdvvNklG1qNSZvM39AvF452r9TKX0XrBbEpkDqN1zxP9Wr1f6JwjLEDU_8nxsWfYX7-32sEqOvezJhlvbA6EOVM_j1CHUuGUjzNJ9lxMWAoKakU5tcnlzjC4OSA-DfLuwdFnM3u5f7MsQsfzuwovzyBGmPCCVDY9dIh_yooJ9GOehtma76hI | 205.139.111.12 | 307 Temporary Redirect | 3.4 kB |
URL GET protect-us.mimecast.com/r/KrpwNc6Py8pASOytvMygnBE9MffFobwEWKmoANEc65SV1F38LTJjnCdYFBmPWP8j90cqTpy1BAczii4-QaSgFIXSsSSnGXWWKiJ6ONSh6heBI2XXaIyq5x26b-P3z6T4Z1IbQ13gJ69ah44qU7nxdBd6lQ3oOLcIq2cjiuRSmK3J9tV7qVANn3ogy1xIzzc6qaFzxwRRtIHZjXS9Dkpzme8v76NeeXL3hqBIYtxZ-6zNR19NNT_WJ_8K86H7QisS8vhaz5WnhFQzWb4eceZOuQ06hAW2W0po4ebrwcUz4qppPIp33YE1nRFPVFt1Wi5Yqi9BtwdwKOgBQhEwFqz9Vgr1o2hbYm0lg23z5-odbHiZCtcyPxr7r7bpHHSBUrD3SM3t66Oh753YGC_QD70WRTDCb3abwCKSknJVDObbn3nefJxXPuFnY3Ca0p5OQ72CCMOXBQFkWvwTT6lbR5zk7LxHM0Qnm1tzG3O7Lbo5MvbLuFQMVCCOXfgrGOqV2wYzOFtJ7od56MKGvLRvLNhh__OLbMimfImKR1yvsgTIDRUAd9_6S5RWqNaZmdJDSgwkyBKPZnp23rlNWnFpTpp8HWdjlcvqg773fZtt22bEk-YAjEGXIXgZy7X-4EamZXuyErPnHneFaaQ8eXNZCf86tKu3m8MdDju_SjZmQ38E3iX9f0Hy3dgDymy6yeP0Gw2M3drWQ97C5VEsWKgHpyWdZyUjrwjJkOq-UrO4awNvP1F6_cxuz9QiQG-qDRSaOQTG-QDI9KOcsXSMrfqRYNgR0laQJbqjh-TpQgIEoHz1TIGcsBraiKaK3jdGuUXM2RL5B5EuHr5bbwpHcQ0g3slG4Yc0bnnTgpWepOcX7F2Sl21KArnLXlRBJVyJe3FsuoVWqydtVLxc2WaN4ePVq_SSN2qpY2SZNYPAgMD3EDX0AOzah1Veglj-AgZIgANipmfirrAq5ShOXGNJflB9ap71yjBeuKWb68kvHRcPKR2qGUfBvo9qYOx5DZhUm89itEJZ3B9ujF0GkGoSrEUn6xolk6hzKh_4nRXEVtI34PApRxrehlV7qSyFVTvkUVkbLCVZ401z_8JhoZ9owPOcYXXQwB_UF_o6jZVn9aVhJa4A6fv2R-uelzLFVC_wUQ9ZTASVLGRuClAki4UjLVt-4tHDLcXlV74eG4sZAf3VOk9xP2ijhwBPfcIetMdZ9gdaHJbtXIrJX4nVE60djABgziRlocFKDhmID2SGFgdXQwXE8YOFIKVIvEk_w_S0ynIqoaso7AI-XErnf2sCzYPGL1jfUsr3pdwN980zIQ5GqNnZvTIQ2zAvYOvZIza567Q9JjGEimypPZvh8vNyZmHdiBReFtk3UClq-HPtFX7TJqnN4D2YKK1_iVXgJoBusm_Z7sfJ2_jBVKBXEOpn9vCgd20lxpOd2LiNtnGdCFbbxiLdPxjVPVKbOJPUbbt4tvyYV7DGczCbLY-4qrGKnWzjqW9C62RWmh0mm13035O4uuLhCCKlwrfwvg7AMsum15FAaCvu8FO-ty1aUJXprUP3thWitKfavTS53t-EeXOsB9SkpH1W2b5flguMEXMZM6G04brDpVwB84TShq5R9kLR2MYdL7x0oumx6X8KXPkZwP046Szy0m4ZBKKqWGZK-PH6AabiaqgSfyyGO9FPzy8cIuExzvXW5T3DCDy-jzV5UeFZuaNVsPDWTeIGuJfKMIHnKdY46HiizbNXnigZq7GJoLCpziCl6sZlDr4WJBLA5YfWU7oNWs2LkQHJTGNm9D6Nh_wNyI1moEXoZzRc7R0p9HNZ9GVgRP5h8jNUqlkzbeT0fkcOSBOGvMMj-TbN-o-ocKQDX5f-hqXxATdsC7OHEdnxOVdyWO0z5vtW2IDRUi-UuWuGFtFjL1bTx5RGdvvNklG1qNSZvM39AvF452r9TKX0XrBbEpkDqN1zxP9Wr1f6JwjLEDU_8nxsWfYX7-32sEqOvezJhlvbA6EOVM_j1CHUuGUjzNJ9lxMWAoKakU5tcnlzjC4OSA-DfLuwdFnM3u5f7MsQsfzuwovzyBGmPCCVDY9dIh_yooJ9GOehtma76hI IP205.139.111.12:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerDigiCert Inc Subject*.mimecast.com Fingerprint02:0B:A1:BE:54:40:F1:48:73:B1:0C:C2:7F:E8:40:52:6B:10:5B:8D ValidityFri, 24 Jan 2025 00:00:00 GMT - Tue, 24 Feb 2026 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/KrpwNc6Py8pASOytvMygnBE9MffFobwEWKmoANEc65SV1F38LTJjnCdYFBmPWP8j90cqTpy1BAczii4-QaSgFIXSsSSnGXWWKiJ6ONSh6heBI2XXaIyq5x26b-P3z6T4Z1IbQ13gJ69ah44qU7nxdBd6lQ3oOLcIq2cjiuRSmK3J9tV7qVANn3ogy1xIzzc6qaFzxwRRtIHZjXS9Dkpzme8v76NeeXL3hqBIYtxZ-6zNR19NNT_WJ_8K86H7QisS8vhaz5WnhFQzWb4eceZOuQ06hAW2W0po4ebrwcUz4qppPIp33YE1nRFPVFt1Wi5Yqi9BtwdwKOgBQhEwFqz9Vgr1o2hbYm0lg23z5-odbHiZCtcyPxr7r7bpHHSBUrD3SM3t66Oh753YGC_QD70WRTDCb3abwCKSknJVDObbn3nefJxXPuFnY3Ca0p5OQ72CCMOXBQFkWvwTT6lbR5zk7LxHM0Qnm1tzG3O7Lbo5MvbLuFQMVCCOXfgrGOqV2wYzOFtJ7od56MKGvLRvLNhh__OLbMimfImKR1yvsgTIDRUAd9_6S5RWqNaZmdJDSgwkyBKPZnp23rlNWnFpTpp8HWdjlcvqg773fZtt22bEk-YAjEGXIXgZy7X-4EamZXuyErPnHneFaaQ8eXNZCf86tKu3m8MdDju_SjZmQ38E3iX9f0Hy3dgDymy6yeP0Gw2M3drWQ97C5VEsWKgHpyWdZyUjrwjJkOq-UrO4awNvP1F6_cxuz9QiQG-qDRSaOQTG-QDI9KOcsXSMrfqRYNgR0laQJbqjh-TpQgIEoHz1TIGcsBraiKaK3jdGuUXM2RL5B5EuHr5bbwpHcQ0g3slG4Yc0bnnTgpWepOcX7F2Sl21KArnLXlRBJVyJe3FsuoVWqydtVLxc2WaN4ePVq_SSN2qpY2SZNYPAgMD3EDX0AOzah1Veglj-AgZIgANipmfirrAq5ShOXGNJflB9ap71yjBeuKWb68kvHRcPKR2qGUfBvo9qYOx5DZhUm89itEJZ3B9ujF0GkGoSrEUn6xolk6hzKh_4nRXEVtI34PApRxrehlV7qSyFVTvkUVkbLCVZ401z_8JhoZ9owPOcYXXQwB_UF_o6jZVn9aVhJa4A6fv2R-uelzLFVC_wUQ9ZTASVLGRuClAki4UjLVt-4tHDLcXlV74eG4sZAf3VOk9xP2ijhwBPfcIetMdZ9gdaHJbtXIrJX4nVE60djABgziRlocFKDhmID2SGFgdXQwXE8YOFIKVIvEk_w_S0ynIqoaso7AI-XErnf2sCzYPGL1jfUsr3pdwN980zIQ5GqNnZvTIQ2zAvYOvZIza567Q9JjGEimypPZvh8vNyZmHdiBReFtk3UClq-HPtFX7TJqnN4D2YKK1_iVXgJoBusm_Z7sfJ2_jBVKBXEOpn9vCgd20lxpOd2LiNtnGdCFbbxiLdPxjVPVKbOJPUbbt4tvyYV7DGczCbLY-4qrGKnWzjqW9C62RWmh0mm13035O4uuLhCCKlwrfwvg7AMsum15FAaCvu8FO-ty1aUJXprUP3thWitKfavTS53t-EeXOsB9SkpH1W2b5flguMEXMZM6G04brDpVwB84TShq5R9kLR2MYdL7x0oumx6X8KXPkZwP046Szy0m4ZBKKqWGZK-PH6AabiaqgSfyyGO9FPzy8cIuExzvXW5T3DCDy-jzV5UeFZuaNVsPDWTeIGuJfKMIHnKdY46HiizbNXnigZq7GJoLCpziCl6sZlDr4WJBLA5YfWU7oNWs2LkQHJTGNm9D6Nh_wNyI1moEXoZzRc7R0p9HNZ9GVgRP5h8jNUqlkzbeT0fkcOSBOGvMMj-TbN-o-ocKQDX5f-hqXxATdsC7OHEdnxOVdyWO0z5vtW2IDRUi-UuWuGFtFjL1bTx5RGdvvNklG1qNSZvM39AvF452r9TKX0XrBbEpkDqN1zxP9Wr1f6JwjLEDU_8nxsWfYX7-32sEqOvezJhlvbA6EOVM_j1CHUuGUjzNJ9lxMWAoKakU5tcnlzjC4OSA-DfLuwdFnM3u5f7MsQsfzuwovzyBGmPCCVDY9dIh_yooJ9GOehtma76hI HTTP/1.1
Host: protect-us.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Date: Mon, 09 Jun 2025 21:55:37 GMT
Content-Length: 0
Connection: keep-alive
Location: https://cdn1.decide.dev/tracking/theoxfordclub_lander.js
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Cache-control: no-store
Pragma: no-cache
X-Robots-Tag: noindex, nofollow
|
|
| fast.wistia.com/assets/external/E-v1.js | 151.101.2.132 | 200 OK | 928 kB |
URL GET fast.wistia.com/assets/external/E-v1.js IP151.101.2.132:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99 ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size928 kB (927471 bytes) Hash64f2753fc47e7383e02a627e2f6936ae d51abf7bf51185d82b79f4d1cf1bacaca59b9e16 ff69514fe5d9f02e6d6d6329159050d3426abf5f3e6d799476895546558adbdc
GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Mon, 09 Jun 2025 19:55:49 GMT
etag: "17df967088115f94c0db195ffea6c093"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Mon, 09 Jun 2025 21:55:33 GMT
age: 3557
x-served-by: cache-iad-kjyo7100027-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 45, 474
x-timer: S1749506134.979848,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 2b27a77c3f0d052472aba51c7c44ec815f6cb001
content-length: 155791
X-Firefox-Spdy: h2
|
|
| gtrace.mediago.io/api/bidder/track/pixel/pageview?tn=f9f2b1ef23fe2759c2cad0953029a94b&spd=&mgd=98c1eeee142c415baf4c0925052513bd&ptd=&tkd=&acd=26359&cpid=&v=206583391 |  35.214.168.80 | 200 OK | 2 B |
URL POST gtrace.mediago.io/api/bidder/track/pixel/pageview?tn=f9f2b1ef23fe2759c2cad0953029a94b&spd=&mgd=98c1eeee142c415baf4c0925052513bd&ptd=&tkd=&acd=26359&cpid=&v=206583391 IP35.214.168.80:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerDigiCert Inc Subject*.mediago.io FingerprintE8:D8:F0:D9:12:11:16:0B:C9:77:5A:7E:40:61:4C:EA:DB:33:AB:A6 ValidityTue, 17 Dec 2024 00:00:00 GMT - Tue, 16 Dec 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hash9d4568c009d203ab10e33ea9953a0264 dd29ecf524b030a65261e3059c48ab9e1ecb2585 12ae32cb1ec02d01eda3581b127c1fee3b0dc53572ed6baf239721a03d82e126
POST /api/bidder/track/pixel/pageview?tn=f9f2b1ef23fe2759c2cad0953029a94b&spd=&mgd=98c1eeee142c415baf4c0925052513bd&ptd=&tkd=&acd=26359&cpid=&v=206583391 HTTP/1.1
Host: gtrace.mediago.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Cookie: dv0qai26lg6v2y6kl7yyc36brextdn8e507mm7j=dgt0qpenzgq; dv0qai26lg6v2y6kl7yyc36brextdubxp5vucauf=wr6lxbbrxh; dv0qai26lg6v2y6kl7yyc36brextd7kslq18ckb8=izevokh757q; __mgSsd_=651b45d21c7044c9bd74b435fea9350c; __mguid_=98c1eeee142c415baf4c0925052513bd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
content-length: 2
content-type: application/json; charset=utf-8
date: Mon, 09 Jun 2025 21:55:38 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| c.lytics.io/c/9c32784e3cc4888a693a7988ad64c63d/portrait | 104.21.38.20 | 200 OK | 0 B |
URL POST c.lytics.io/c/9c32784e3cc4888a693a7988ad64c63d/portrait IP104.21.38.20:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectlytics.io Fingerprint0B:99:0F:A7:2A:CB:F4:2A:61:76:86:DA:9E:58:4E:B1:CC:B9:EB:19 ValiditySat, 03 May 2025 00:29:14 GMT - Fri, 01 Aug 2025 01:27:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /c/9c32784e3cc4888a693a7988ad64c63d/portrait HTTP/1.1
Host: c.lytics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2323
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 09 Jun 2025 21:55:38 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=54wiM1ikC7rLIm%2BH2yV6Dm%2B1BuZMBTDve7PIPbqxFNhp7T57H1VvxL6cPiaoltV2sJg405JQhYMUKIfSwUwGyrpy6F%2ButzmggsawYqqT7dv5z8QKzFRhe6ZGx3yxuA%3D%3D"}],"group":"cf-nel","max_age":604800}
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Cookie, *
access-control-allow-methods: GET, POST
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: seerid=cabdc109-e48a-4570-8e4e-19a717f7f31f; Path=/; Domain=lytics.io; Max-Age=77760000; Secure; SameSite=None
x-lytics-trace: 2d83687efcc3d8958a000cb1111392b8
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 94d3dfd1fe3b1c0e-OSL
server: cloudflare
strict-transport-security: max-age=63072000;
server-timing: cfL4;desc="?proto=QUIC&rtt=7722&min_rtt=3102&rtt_var=4641&sent=35&recv=40&lost=0&retrans=0&sent_bytes=8181&recv_bytes=8262&delivery_rate=472149&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=329724ba8b7cc335&ts=1525&inflight_dur=41&x=80"
|
|
| pipedream.wistia.com/mput?topic=metrics | 3.167.2.18 | 200 OK | 2 B |
URL POST pipedream.wistia.com/mput?topic=metrics IP3.167.2.18:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subjectpipedream-production-cloudfront-app-cname.wistia.com Fingerprint84:37:78:5C:F1:DB:9E:23:64:62:0A:29:ED:CC:50:61:C3:3D:80:68 ValiditySun, 11 Aug 2024 00:00:00 GMT - Tue, 09 Sep 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2234
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Mon, 09 Jun 2025 21:55:38 GMT
server: envoy
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
x-cache: Miss from cloudfront
via: 1.1 3da6f6abdf7146387ea7a7f42136c780.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: hf2dw9nShyfJaidM8fBpRmwCKNIcrS1LKbHyL3SP2B2M8hoEiYPs0g==
X-Firefox-Spdy: h2
|
|
| pipedream.wistia.com/mput?topic=metrics | 3.167.2.18 | 200 OK | 2 B |
URL POST pipedream.wistia.com/mput?topic=metrics IP3.167.2.18:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subjectpipedream-production-cloudfront-app-cname.wistia.com Fingerprint84:37:78:5C:F1:DB:9E:23:64:62:0A:29:ED:CC:50:61:C3:3D:80:68 ValiditySun, 11 Aug 2024 00:00:00 GMT - Tue, 09 Sep 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 0
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Mon, 09 Jun 2025 21:55:38 GMT
server: envoy
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 3da6f6abdf7146387ea7a7f42136c780.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: Z3qb_6_mBIY6_mIj3uwxbA1rTjCJiqASgAlWPPqs3UH16L7UwtfZ6w==
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/4c968074a7dc3a35ced1d879f40cef7259002a31.m3u8 | 3.167.2.63 | 200 OK | 75 kB |
URL GET embed-cloudfront.wistia.com/deliveries/4c968074a7dc3a35ced1d879f40cef7259002a31.m3u8 IP3.167.2.63:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subject*.wistia.com FingerprintC8:77:67:66:9E:3C:31:F7:1C:8E:9A:18:6E:53:3A:44:CD:C7:4F:EA ValiditySat, 30 Nov 2024 00:00:00 GMT - Sun, 28 Dec 2025 23:59:59 GMT
Hash9f017e4c3e19ff3a5910429c2a55be9b 63b5919116ee2a6d59b4a142033a0683353e1c0f 8c834a46a9ea0cb0e2f540ec51632dc6aa60c2764f314a3b1d876ad413b986ca
GET /deliveries/4c968074a7dc3a35ced1d879f40cef7259002a31.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 74908
server: envoy
date: Thu, 05 Jun 2025 05:54:10 GMT
expires: Fri, 05 Jun 2026 05:54:10 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 4c968074a7dc3a35ced1d879f40cef7259002a31-hls-segment
surrogate-key: 4c968074a7dc3a35ced1d879f40cef7259002a31-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 297
x-cache: Hit from cloudfront
via: 1.1 42b1b4c2d68cc43ab5019609cede1d92.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 6VbFFeJtBG0HzMtgqmQ0wIsHuI_l8cZ8ekXpULNhR1_OpUwW-RfVMA==
age: 403287
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| www.p3lstrk.com/2MGNK7T/CXW7M6/?sub1=3415984047573345319 | 34.117.245.133 | 302 Found | 17 kB |
URL User Request GET www.p3lstrk.com/2MGNK7T/CXW7M6/?sub1=3415984047573345319 IP34.117.245.133:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
CertificateIssuerGoogle Trust Services Subjectwww.p3lstrk.com FingerprintE2:AB:A7:CD:9A:2F:AD:C2:11:BC:89:81:2D:49:86:D0:EF:9F:10:6E ValidityFri, 16 May 2025 20:53:50 GMT - Thu, 14 Aug 2025 21:49:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2MGNK7T/CXW7M6/?sub1=3415984047573345319 HTTP/1.1
Host: www.p3lstrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Mon, 09 Jun 2025 21:55:32 GMT
content-type: text/html; charset=utf-8
content-length: 95
accept-ch: Sec-Ch-Ua-Platform-Version,Sec-Ch-Ua-Model
location: https://pro.oxfordclub.com/m/2314530?s1=30c4281e43334229b55ccbd305e08284
set-cookie: uniqueClick_CXW7M6=12cc0266-abe0-42b1-b506-2d629a49bf37:1749506132; Path=/; Expires=Mon, 07 Jul 2025 21:55:32 GMT; Secure; SameSite=None
transaction_id=30c4281e43334229b55ccbd305e08284; Path=/; Expires=Sun, 07 Sep 2025 21:55:32 GMT; Secure; SameSite=None
vary: Origin
x-eflow-request-id: ee0090ca-c83c-4eec-b036-d90454d01759
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| s3.amazonaws.com/assets.oxfordclub.com/promo/brk/oil/bkgd.jpg | 52.217.67.230 | 200 OK | 100 kB |
URL GET s3.amazonaws.com/assets.oxfordclub.com/promo/brk/oil/bkgd.jpg IP52.217.67.230:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subjects3.amazonaws.com Fingerprint94:6E:24:DA:38:A4:1B:D7:08:C5:38:4D:E4:0F:23:5C:25:6C:07:22 ValidityTue, 20 May 2025 00:00:00 GMT - Fri, 15 May 2026 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 1276x1134, components 3 Size100 kB (100140 bytes) Hash9b7b924d709aa47fdcbd499da85125ff 6d43cb6f3c9588055fb731d1925d3b0e3a713ef8 32968cead2c39de5de18fdf6483cd1032dce114ae4b060947bd7824b4d1eb9f9
GET /assets.oxfordclub.com/promo/brk/oil/bkgd.jpg HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s3.amazonaws.com/assets.oxfordclub.com/promo/brk/oil/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: eCTtOK5WgpyZZwW85Mbf+TIBKd2Z80qC7Q3PeKuO4R0O2+XkzCrda7+Ea5U9SRv3Wuu/g7uT+9o=
x-amz-request-id: 0HZM4CKY9T2R6K31
Date: Mon, 09 Jun 2025 21:55:35 GMT
Last-Modified: Mon, 27 Feb 2023 22:17:15 GMT
ETag: "9b7b924d709aa47fdcbd499da85125ff"
x-amz-server-side-encryption: AES256
x-amz-version-id: CMlw7Lt3Rmny.r9msJHmKS9CHFdIc7iV
Accept-Ranges: bytes
Content-Type: image/jpeg
Content-Length: 100140
Server: AmazonS3
|
|
| libertythroughwealthnews.com/split-test-for-elementor/v1/tests/56/track-conversion/ | 18.233.27.104 | 200 OK | 43 B |
URL GET libertythroughwealthnews.com/split-test-for-elementor/v1/tests/56/track-conversion/ IP18.233.27.104:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerLet's Encrypt Subjectleadgen.oxfordclub.com Fingerprint9F:9D:E5:6D:B4:83:06:E1:8D:96:AF:F4:86:42:FD:5F:D3:F4:C2:9B ValidityThu, 05 Jun 2025 12:53:50 GMT - Wed, 03 Sep 2025 12:53:49 GMT
File typeGIF image data, version 89a, 1 x 1 Hash57f187c7a868faeac558007a8eb6cb2e 11ab10ab109fdb53d91d444ac781101f5a6360c6 aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /split-test-for-elementor/v1/tests/56/track-conversion/ HTTP/1.1
Host: libertythroughwealthnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 09 Jun 2025 21:55:37 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Set-Cookie: elementor_split_test_client_id=e58f613e3-c599c83d-362e-42ee-b339-93af69c95126; expires=Tue, 09-Jun-2026 21:55:37 GMT; Max-Age=31536000; path=/; domain=libertythroughwealthnews.com
Referrer-Policy: unsafe-url
|
|
| gtrace.mediago.io/api/bidder/track/pixel/pageview?tn=f9f2b1ef23fe2759c2cad0953029a94b&spd=&mgd=98c1eeee142c415baf4c0925052513bd&ptd=&tkd=&acd=&cpid=&v=206583391 | 35.214.168.80 | 200 OK | 2 B |
URL POST gtrace.mediago.io/api/bidder/track/pixel/pageview?tn=f9f2b1ef23fe2759c2cad0953029a94b&spd=&mgd=98c1eeee142c415baf4c0925052513bd&ptd=&tkd=&acd=&cpid=&v=206583391 IP35.214.168.80:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerDigiCert Inc Subject*.mediago.io FingerprintE8:D8:F0:D9:12:11:16:0B:C9:77:5A:7E:40:61:4C:EA:DB:33:AB:A6 ValidityTue, 17 Dec 2024 00:00:00 GMT - Tue, 16 Dec 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hash9d4568c009d203ab10e33ea9953a0264 dd29ecf524b030a65261e3059c48ab9e1ecb2585 12ae32cb1ec02d01eda3581b127c1fee3b0dc53572ed6baf239721a03d82e126
POST /api/bidder/track/pixel/pageview?tn=f9f2b1ef23fe2759c2cad0953029a94b&spd=&mgd=98c1eeee142c415baf4c0925052513bd&ptd=&tkd=&acd=&cpid=&v=206583391 HTTP/1.1
Host: gtrace.mediago.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Cookie: dv0qai26lg6v2y6kl7yyc36brextdn8e507mm7j=dgt0qpenzgq; dv0qai26lg6v2y6kl7yyc36brextdubxp5vucauf=wr6lxbbrxh; dv0qai26lg6v2y6kl7yyc36brextd7kslq18ckb8=izevokh757q; __mgSsd_=651b45d21c7044c9bd74b435fea9350c; __mguid_=98c1eeee142c415baf4c0925052513bd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
content-length: 2
content-type: application/json; charset=utf-8
date: Mon, 09 Jun 2025 21:55:38 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true | 192.135.136.168 | 200 OK | 17 kB |
URL User Request GET pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true IP192.135.136.168:443
CertificateIssuerLet's Encrypt Subjectordertracking2.pubsvs.com FingerprintFA:B1:9C:7B:5F:8B:DE:2A:0F:6B:52:A7:2F:EC:A2:A8:E8:A9:06:D9 ValidityMon, 19 May 2025 13:51:27 GMT - Sun, 17 Aug 2025 13:51:26 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1213), with CRLF, LF line terminators Hash55a322ff68361f87744139da13fcc454 f8a09b30e987d2c47093421a9d88dbeb0694a290 3996e0b99999c512f41766094188f8944ff1d184d042462505169b41e7c697c0
GET /p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true HTTP/1.1
Host: pro.oxfordclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: 2314530=2743372; BIGipServerQEX662zAURJQLrqleAP1SA=!BQj5TKJUYdoDrD9C6+h9tp1lrjN3ZUXL9u+30dzblmU3itmcLolZ4yb74P192WafbdmcvCA98H3Ycks=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Set-Cookie: NBRK4404=; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; HttpOnly
Referrer-Policy: no-referrer-when-downgrade
Date: Mon, 09 Jun 2025 21:55:32 GMT
Content-Length: 7172
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| use.typekit.net/myz0yns.css | 184.31.15.74 | 200 OK | 3.3 kB |
URL GET use.typekit.net/myz0yns.css IP184.31.15.74:443 ASN#20940 Akamai International B.V.
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerDigiCert Inc Subjectuse.typekit.net FingerprintF3:36:2A:08:11:E8:8C:54:E5:3C:6A:03:53:BF:AA:D7:7A:84:8B:89 ValidityTue, 10 Dec 2024 00:00:00 GMT - Sat, 10 Jan 2026 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (516) Hash14f7f8767e53f250cb75b83383f0e458 bba322208f6bf0cdd712a6d95febffcbf9ced75b 66a7697eb9e93e64185019d55ca34b04d3f370be4347de83adcb6deb7fc28b00
GET /myz0yns.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 723
date: Mon, 09 Jun 2025 21:55:34 GMT
akamai-grn: 0.240f1fb8.1749506133.c75f900
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/embed/medias/qapf4xte8r.m3u8 | 151.101.2.132 | 200 OK | 764 B |
URL GET fast.wistia.com/embed/medias/qapf4xte8r.m3u8 IP151.101.2.132:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99 ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT
Hasha085e971a53715dcb589e83c5c04d1c2 da1be4a873e89a3864c5edd15216d18b93e60630 f347034bf070460c8d2989fcac2f94e2cdc38480a19e7784ebc252093bb2bddd
GET /embed/medias/qapf4xte8r.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-mpegURL
x-envoy-upstream-service-time: 37
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"f347034bf070460c8d2989fcac2f94e2"
x-request-id: ac303747-38d6-4867-97f2-de36d2908f8d
x-runtime: 0.035857
via: 1.1 c09e1ee371c0b677b7724c2a52462928.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD61-P4
x-amz-cf-id: q-Vzp2Yc9DsliMs8Segm9czqTfzeQvmJqD1pdWfdPpzlxzCyBVqgVw==
accept-ranges: bytes
date: Mon, 09 Jun 2025 21:55:36 GMT
age: 1675
x-served-by: cache-iad-kiad7000131-IAD, cache-hel1410034-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 9662, 231
x-timer: S1749506136.218172,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
content-length: 764
X-Firefox-Spdy: h2
|
|
| www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=781851839.1749506136&dt=The%20Oxford%20Club&auid=545976000.1749506136&navt=n&npa=1>m=45He5641v78253552za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&tft=1749506135873&tfd=3498&apve=1&apvf=f | 142.250.178.100 | 200 OK | 0 B |
URL POST www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=781851839.1749506136&dt=The%20Oxford%20Club&auid=545976000.1749506136&navt=n&npa=1>m=45He5641v78253552za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&tft=1749506135873&tfd=3498&apve=1&apvf=f IP142.250.178.100:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectwww.google.com Fingerprint84:BD:0D:9A:51:CC:86:3E:E9:2F:6E:7C:2D:58:AC:4C:FB:B5:3D:8C ValidityMon, 12 May 2025 08:44:44 GMT - Mon, 04 Aug 2025 08:44:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ccm/collect?en=page_view&dl=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=781851839.1749506136&dt=The%20Oxford%20Club&auid=545976000.1749506136&navt=n&npa=1>m=45He5641v78253552za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129&tft=1749506135873&tfd=3498&apve=1&apvf=f HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 200 OK
date: Mon, 09 Jun 2025 21:55:36 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
content-type: text/plain
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
vary: Origin, X-Origin, Referer
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://pro.oxfordclub.com
access-control-expose-headers: date,vary,vary,vary,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/E-v1.js | 151.101.2.132 | 200 OK | 928 kB |
URL GET fast.wistia.com/assets/external/E-v1.js IP151.101.2.132:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99 ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size928 kB (927471 bytes) Hash64f2753fc47e7383e02a627e2f6936ae d51abf7bf51185d82b79f4d1cf1bacaca59b9e16 ff69514fe5d9f02e6d6d6329159050d3426abf5f3e6d799476895546558adbdc
GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Mon, 09 Jun 2025 19:55:49 GMT
etag: "17df967088115f94c0db195ffea6c093"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Mon, 09 Jun 2025 21:55:34 GMT
age: 3557
x-served-by: cache-iad-kjyo7100027-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 45, 475
x-timer: S1749506134.481172,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 2b27a77c3f0d052472aba51c7c44ec815f6cb001
content-length: 155791
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/E-v1.js | 151.101.2.132 | 200 OK | 928 kB |
URL GET fast.wistia.com/assets/external/E-v1.js IP151.101.2.132:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99 ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size928 kB (927471 bytes) Hash64f2753fc47e7383e02a627e2f6936ae d51abf7bf51185d82b79f4d1cf1bacaca59b9e16 ff69514fe5d9f02e6d6d6329159050d3426abf5f3e6d799476895546558adbdc
GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Mon, 09 Jun 2025 19:55:49 GMT
etag: "17df967088115f94c0db195ffea6c093"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Mon, 09 Jun 2025 21:55:35 GMT
age: 3559
x-served-by: cache-iad-kjyo7100027-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 45, 476
x-timer: S1749506136.978965,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 2b27a77c3f0d052472aba51c7c44ec815f6cb001
content-length: 155791
X-Firefox-Spdy: h2
|
|
| c.lytics.io/static/pathfora.min.js | 104.21.38.20 | 200 OK | 107 kB |
URL GET c.lytics.io/static/pathfora.min.js IP104.21.38.20:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectlytics.io Fingerprint0B:99:0F:A7:2A:CB:F4:2A:61:76:86:DA:9E:58:4E:B1:CC:B9:EB:19 ValiditySat, 03 May 2025 00:29:14 GMT - Fri, 01 Aug 2025 01:27:41 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size107 kB (106952 bytes) Hash3e5f74b39de9e477cf9d958815ba4194 5b0bde9eb7990447b3dcf71ec107fc9d4d3f01ea c6c69915ceabd59752744bfa82ffc6b5276c798d134342640e7f9d7ddd26b8b0
GET /static/pathfora.min.js HTTP/1.1
Host: c.lytics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Cookie: seerid=cabdc109-e48a-4570-8e4e-19a717f7f31f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 09 Jun 2025 21:55:38 GMT
content-type: text/javascript; charset=utf-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q2N1rbT%2FmAW%2FmIE08ObaYGhQfsxOzUZIulvfGiGtQgz0QABx3VNDT2Xl0rId%2B%2Bkyhpz3Vj9ELE2ritp2vrwjTFK2ZI1kCahxYCBLNIC7e8QVPtIYIK2ua2G5N9UX0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-lytics-trace: 72a01330253a0d3a7ffa0f7847b0288f
via: 1.1 google
alt-svc: h3=":443"; ma=86400
age: 865
cache-control: max-age=3600
cf-cache-status: HIT
last-modified: Mon, 09 Jun 2025 21:41:13 GMT
content-encoding: br
cf-ray: 94d3dfd80e5c1c0e-OSL
server: cloudflare
strict-transport-security: max-age=63072000;
vary: Accept-Encoding
server-timing: cfL4;desc="?proto=QUIC&rtt=9166&min_rtt=1659&rtt_var=7910&sent=63&recv=45&lost=0&retrans=0&sent_bytes=36213&recv_bytes=8723&delivery_rate=7232575&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=24000&unsent_bytes=0&cid=329724ba8b7cc335&ts=2360&inflight_dur=90&x=80"
|
|
| pro.oxfordclub.com/p/Scripts/exitsplash.js | 192.135.136.168 | 200 OK | 10 kB |
URL GET pro.oxfordclub.com/p/Scripts/exitsplash.js IP192.135.136.168:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerLet's Encrypt Subjectordertracking2.pubsvs.com FingerprintFA:B1:9C:7B:5F:8B:DE:2A:0F:6B:52:A7:2F:EC:A2:A8:E8:A9:06:D9 ValidityMon, 19 May 2025 13:51:27 GMT - Sun, 17 Aug 2025 13:51:26 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hashba7bf437a29f3a70110f1c0b40b9603a 4996db29505749d85a8ebaf551ced30bc0ff109a cab51291c3797b31c3cb218aec5aefc9523739136bab7bb63c2899f7f387f985
GET /p/Scripts/exitsplash.js HTTP/1.1
Host: pro.oxfordclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true
DNT: 1
Connection: keep-alive
Cookie: 2314530=2743372; BIGipServerQEX662zAURJQLrqleAP1SA=!BQj5TKJUYdoDrD9C6+h9tp1lrjN3ZUXL9u+30dzblmU3itmcLolZ4yb74P192WafbdmcvCA98H3Ycks=; NBRK4404=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 24 Jul 2023 13:39:44 GMT
Accept-Ranges: bytes
ETag: "bbcd814e34bed91:0"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Mon, 09 Jun 2025 21:55:33 GMT
Content-Length: 3383
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| www.googletagmanager.com/gtag/destination?id=AW-780266039&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 | 142.250.74.136 | 200 OK | 306 kB |
URL GET www.googletagmanager.com/gtag/destination?id=AW-780266039&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 IP142.250.74.136:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (4947) Size306 kB (305933 bytes) Hash264e1f484ca3b7552941c1df24993eae 51076c0a9477acf84b9a18aade80a703f80ecfe8 a4cc187330c92fa2b727fbe9a54ef32197926aec1550fd528f74bbc7d3dcf778
GET /gtag/destination?id=AW-780266039&cx=c>m=45He5641v78253552za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104617979~104617981~104653070~104653072~104661466~104661468~104698127~104698129 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 09 Jun 2025 21:55:35 GMT
expires: Mon, 09 Jun 2025 21:55:35 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcysghrgc:42:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcysghrgc:42:0
report-to: {"group":"ascgcysghrgc:42:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcysghrgc:42:0"}],}
server: Google Tag Manager
content-length: 108531
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| analytics.pmsrv.co/v1/tracking.js?d=pro.oxfordclub.com&a=50bbcf39-5fab-4416-a13c-acc35b621b86 | 34.144.246.130 | 200 OK | 3.0 kB |
URL GET analytics.pmsrv.co/v1/tracking.js?d=pro.oxfordclub.com&a=50bbcf39-5fab-4416-a13c-acc35b621b86 IP34.144.246.130:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectc.pmsrv.co Fingerprint9B:11:8E:59:49:0A:71:EB:5F:72:A5:12:7D:98:78:A9:9A:07:86:57 ValidityMon, 12 May 2025 19:40:47 GMT - Sun, 10 Aug 2025 20:34:40 GMT
File typeJavaScript source, ASCII text, with very long lines (3015) Hashfad20eb8e941eab88130a37297e48327 0b08e513264c7894f64f881dcf2b37f43f5f826b 31969a9254d2e57b3a58d33f19c2247cc20e4cd982e79eb8d2eb05f5f94682a3
GET /v1/tracking.js?d=pro.oxfordclub.com&a=50bbcf39-5fab-4416-a13c-acc35b621b86 HTTP/1.1
Host: analytics.pmsrv.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
x-powered-by: Express
content-type: text/javascript; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate
expires: -1
pragma: no-cache
etag: W/"bc8-CwjlEyZMeJT2T4gdzys39D9fgms"
date: Mon, 09 Jun 2025 21:55:37 GMT
x-envoy-upstream-service-time: 1
content-encoding: gzip
vary: Accept-Encoding
server: istio-envoy
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| a.mgid.com/1x1.gif?id=444673&type=c&tg=&r=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&nv=1&clid=&d=1749506138258 | 104.17.198.65 | 200 OK | 43 B |
URL GET a.mgid.com/1x1.gif?id=444673&type=c&tg=&r=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&nv=1&clid=&d=1749506138258 IP104.17.198.65:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectmgid.com FingerprintA4:77:28:56:3D:B9:7B:24:26:51:DE:A6:D0:EA:FE:84:9B:83:A6:68 ValidityMon, 28 Apr 2025 02:54:55 GMT - Sun, 27 Jul 2025 03:54:51 GMT
File typeGIF image data, version 89a, 1 x 1 Hash57f187c7a868faeac558007a8eb6cb2e 11ab10ab109fdb53d91d444ac781101f5a6360c6 aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /1x1.gif?id=444673&type=c&tg=&r=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&nv=1&clid=&d=1749506138258 HTTP/1.1
Host: a.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 09 Jun 2025 21:55:38 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
priority: u=4,i=?0
server: cloudflare
cf-ray: 94d3dfd49a8f56b4-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| verifiedlinks.org/go?ehash=6708cc84dcd3aa836a9d6626c646d550&product=22875&ar=70&cid=[CAMPAIGN_ID]&lid=148385&slhash=1ad7f5a7b6d990de6c7c6d5e74d293aa&mtaid=sb&cid2=[s8] | 104.22.70.139 | 302 Found | 0 B |
URL User Request GET verifiedlinks.org/go?ehash=6708cc84dcd3aa836a9d6626c646d550&product=22875&ar=70&cid=[CAMPAIGN_ID]&lid=148385&slhash=1ad7f5a7b6d990de6c7c6d5e74d293aa&mtaid=sb&cid2=[s8] IP104.22.70.139:80
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /go?ehash=6708cc84dcd3aa836a9d6626c646d550&product=22875&ar=70&cid=[CAMPAIGN_ID]&lid=148385&slhash=1ad7f5a7b6d990de6c7c6d5e74d293aa&mtaid=sb&cid2=[s8] HTTP/1.1
Host: verifiedlinks.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Mon, 09 Jun 2025 21:55:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Ray: 94d3df9bc80b10b9-CPH
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=e27e5da73eac8b6bd7e788ada2fa2ce2; path=/
pixel_session_hash_22875=3415984047573345319; expires=Wed, 09-Jul-2025 21:55:30 GMT; Max-Age=2592000; path=/; secure; HttpOnly; SameSite=None
bt_tracking_product_22875=8386db8614732c1a1766e8ed0248929d043fc1fc7fef8a1948f6ef839e81d83f; expires=Wed, 11-Jun-2025 21:55:30 GMT; Max-Age=172800
__cf_bm=SSBpB0rcj9g_S88oN6xe00xyc5W2ssHMcuQepmfB58s-1749506130-1.0.1.1-_yOcvy3EQ_gF.bWaCZumnHuUu1gvuJPi1rmfnNjuv54qwjqmU2jD2vLYSvWwcdvvPPz94dUSXvQ1ClQ60txD74dfehkvdTnrkmUK7Fu4xd4; path=/; expires=Mon, 09-Jun-25 22:25:30 GMT; domain=.verifiedlinks.org; HttpOnly
Location: https://verifiedlinks.org/c/3415984047573345319
Vary: User-Agent
Cf-Cache-Status: DYNAMIC
Server: cloudflare
|
|
| www.googletagmanager.com/gtm.js?id=GTM-WP5R8BX | 142.250.74.136 | 200 OK | 399 kB |
URL GET www.googletagmanager.com/gtm.js?id=GTM-WP5R8BX IP142.250.74.136:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (30186) Size399 kB (398858 bytes) Hash9b5ed28110f93299621f3121f2698abf a048022db3ff4732a471fccb82c4a857593936ed 58cae7c12b97be619bf57bab196a0ba0e3ca64c8836b002874a5374c7d2a74fd
GET /gtm.js?id=GTM-WP5R8BX HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 09 Jun 2025 21:55:35 GMT
expires: Mon, 09 Jun 2025 21:55:35 GMT
cache-control: private, max-age=900
last-modified: Mon, 09 Jun 2025 21:03:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1319:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1319:0
report-to: {"group":"ascgcycc:1319:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1319:0"}],}
server: Google Tag Manager
content-length: 130849
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| a.mgid.com/mgsensor.js?d=1749506135909&source=gtm | 104.17.198.65 | 200 OK | 17 kB |
URL GET a.mgid.com/mgsensor.js?d=1749506135909&source=gtm IP104.17.198.65:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectmgid.com FingerprintA4:77:28:56:3D:B9:7B:24:26:51:DE:A6:D0:EA:FE:84:9B:83:A6:68 ValidityMon, 28 Apr 2025 02:54:55 GMT - Sun, 27 Jul 2025 03:54:51 GMT
File typeJavaScript source, ASCII text, with very long lines (17067), with no line terminators Hash0ce70f3ba285bdc7ed99d95a5c60af1d 0212d85a8640d127b903fea703208beeb4daed07 50717873101f479c7173074a285d6d1037bb55493e044b26f079a723bcfb425f
GET /mgsensor.js?d=1749506135909&source=gtm HTTP/1.1
Host: a.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 09 Jun 2025 21:55:36 GMT
content-type: application/javascript
vary: Accept-Encoding
x-mg-request-uuid: 5eb8fb7d-80d1-40c3-bd47-ae03173d46c2
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 94d3dfc62b4e0b41-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| at-api.tribeos.io/a/5e554fee6b742527f85286135595/setup.js | 172.67.144.160 | 522 No Reason Phrase | 0 B |
URL GET at-api.tribeos.io/a/5e554fee6b742527f85286135595/setup.js IP172.67.144.160:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerLet's Encrypt Subjecttribeos.io FingerprintB4:5B:77:E1:67:BB:7E:9E:5E:D4:E1:6C:97:76:4B:F5:61:2B:53:8F ValiditySun, 20 Apr 2025 22:40:07 GMT - Sat, 19 Jul 2025 22:40:06 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /a/5e554fee6b742527f85286135595/setup.js HTTP/1.1
Host: at-api.tribeos.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 522 No Reason Phrase
date: Mon, 09 Jun 2025 21:55:55 GMT
content-length: 0
server: cloudflare
cache-control: private, max-age=14400
cf-cache-status: MISS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=5ocm5H8HfaaQERLdgwAAwjBGL2mB0icjU2WbAAa5YYjHa57qjDk1aPSMvA4CP%2F5uqmcsKywtra0KM1Bj7duiN5BgR77AxE5LKQ0jxfw%2Feg%3D%3D"}]}
cf-ray: 94d3dfc66bd75693-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| gtrace.mediago.io/api/bidder/track/pixel/pageview?tn=f9f2b1ef23fe2759c2cad0953029a94b&spd=&mgd=98c1eeee142c415baf4c0925052513bd&ptd=&tkd=&acd=&cpid=&v=206583391 | 35.214.168.80 | 200 OK | 2 B |
URL POST gtrace.mediago.io/api/bidder/track/pixel/pageview?tn=f9f2b1ef23fe2759c2cad0953029a94b&spd=&mgd=98c1eeee142c415baf4c0925052513bd&ptd=&tkd=&acd=&cpid=&v=206583391 IP35.214.168.80:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerDigiCert Inc Subject*.mediago.io FingerprintE8:D8:F0:D9:12:11:16:0B:C9:77:5A:7E:40:61:4C:EA:DB:33:AB:A6 ValidityTue, 17 Dec 2024 00:00:00 GMT - Tue, 16 Dec 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hash9d4568c009d203ab10e33ea9953a0264 dd29ecf524b030a65261e3059c48ab9e1ecb2585 12ae32cb1ec02d01eda3581b127c1fee3b0dc53572ed6baf239721a03d82e126
POST /api/bidder/track/pixel/pageview?tn=f9f2b1ef23fe2759c2cad0953029a94b&spd=&mgd=98c1eeee142c415baf4c0925052513bd&ptd=&tkd=&acd=&cpid=&v=206583391 HTTP/1.1
Host: gtrace.mediago.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Cookie: dv0qai26lg6v2y6kl7yyc36brextdn8e507mm7j=dgt0qpenzgq; dv0qai26lg6v2y6kl7yyc36brextdubxp5vucauf=wr6lxbbrxh; dv0qai26lg6v2y6kl7yyc36brextd7kslq18ckb8=izevokh757q; __mgSsd_=651b45d21c7044c9bd74b435fea9350c; __mguid_=98c1eeee142c415baf4c0925052513bd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
content-length: 2
content-type: application/json; charset=utf-8
date: Mon, 09 Jun 2025 21:55:38 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| s3.amazonaws.com/assets.oxfordclub.com/promo/brk/oil/styles.css | 52.217.67.230 | 200 OK | 26 kB |
URL GET s3.amazonaws.com/assets.oxfordclub.com/promo/brk/oil/styles.css IP52.217.67.230:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subjects3.amazonaws.com Fingerprint94:6E:24:DA:38:A4:1B:D7:08:C5:38:4D:E4:0F:23:5C:25:6C:07:22 ValidityTue, 20 May 2025 00:00:00 GMT - Fri, 15 May 2026 23:59:59 GMT
Hashe71d71fbc4d8e51d698b57d0dd41b842 118f4b902f7d32a4a9f80f62922076011ebfbebf a319b34cf9e0c2d8489ad5534bda2083f0672a05a89562fb72ece762940fa560
GET /assets.oxfordclub.com/promo/brk/oil/styles.css HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: QeDkFqaVhmmAQVljJ5pqV4pK+HdrR+mAQQu9oddrW87aQsel3iq04ebrUsIdf/me5E5/urewTn0=
x-amz-request-id: 0HZGM94GQ4CVAM87
Date: Mon, 09 Jun 2025 21:55:35 GMT
Last-Modified: Tue, 10 Dec 2024 16:51:06 GMT
ETag: "e71d71fbc4d8e51d698b57d0dd41b842"
x-amz-server-side-encryption: AES256
x-amz-version-id: VdgSlhRyx6fRGMGLx60t7B8YT7ZW_QDU
Accept-Ranges: bytes
Content-Type: text/css
Content-Length: 26489
Server: AmazonS3
|
|
| browser.sentry-cdn.com/9.6.1/bundle.min.js | 151.101.66.217 | 200 OK | 74 kB |
URL GET browser.sentry-cdn.com/9.6.1/bundle.min.js IP151.101.66.217:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGlobalSign nv-sa Subject*.sentry-cdn.com Fingerprint00:4D:2B:16:F6:29:29:D8:2F:20:48:BD:32:13:96:5D:37:EB:F8:25 ValidityMon, 07 Apr 2025 18:50:27 GMT - Sat, 09 May 2026 18:50:26 GMT
File typeJavaScript source, ASCII text, with very long lines (65448) Hashba2c607c01b95e9d2187276e3b22e0ee f99b748f42b43af113dd1d051d8b1f65680669a1 d0cda1cf41f5e74dcefb718dedd1890eb9d4717a7bf6e9262715c958518b02af
GET /9.6.1/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Thu, 19 Mar 2026 10:42:19 GMT
last-modified: Wed, 19 Mar 2025 10:04:57 GMT
etag: "a2ce4ee15b70ec14c3c98b8f168a2ff4"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Mon, 09 Jun 2025 21:55:35 GMT
age: 5405263
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 25178
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/fe16e5d8a394621ad0d9ddef5424ebfc59654246.m3u8 | 3.167.2.63 | 200 OK | 75 kB |
URL GET embed-cloudfront.wistia.com/deliveries/fe16e5d8a394621ad0d9ddef5424ebfc59654246.m3u8 IP3.167.2.63:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subject*.wistia.com FingerprintC8:77:67:66:9E:3C:31:F7:1C:8E:9A:18:6E:53:3A:44:CD:C7:4F:EA ValiditySat, 30 Nov 2024 00:00:00 GMT - Sun, 28 Dec 2025 23:59:59 GMT
Hash1f8b44fae2d1c9e4770f3aa9509ba668 4d93fd185616e9d8e47b2b90eb8963bfa9fea692 c8ab5b5e1577e8f28fc38fd60593cfe04550420ee42e431cf6d0729487171555
GET /deliveries/fe16e5d8a394621ad0d9ddef5424ebfc59654246.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 74908
server: envoy
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: fe16e5d8a394621ad0d9ddef5424ebfc59654246-hls-segment
surrogate-key: fe16e5d8a394621ad0d9ddef5424ebfc59654246-hls-segment
x-envoy-upstream-service-time: 125
date: Wed, 04 Jun 2025 17:05:52 GMT
expires: Thu, 04 Jun 2026 17:05:52 GMT
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 42b1b4c2d68cc43ab5019609cede1d92.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: BEt89APQ1z_-Bwh9Zs3v2T_XQTxFO-yApA8cEL8oEL73TjwJXOtMrw==
age: 449384
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| bat.bing.com/action/0?ti=15322609&Ver=2&mid=2789e569-2d06-48c8-b656-eca172ce4923&bo=1&sid=7a63a540457c11f09f9b894cbb01a701&vid=7a63a9a0457c11f0973ddfca226a1a18&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=The%20Oxford%20Club&p=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&r=<=2706&evt=pageLoad&sv=1&cdb=AQAA&rn=162504 | 150.171.27.10 | 204 No Content | 0 B |
URL GET bat.bing.com/action/0?ti=15322609&Ver=2&mid=2789e569-2d06-48c8-b656-eca172ce4923&bo=1&sid=7a63a540457c11f09f9b894cbb01a701&vid=7a63a9a0457c11f0973ddfca226a1a18&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=The%20Oxford%20Club&p=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&r=<=2706&evt=pageLoad&sv=1&cdb=AQAA&rn=162504 IP150.171.27.10:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint8F:FE:D3:58:48:93:DF:0E:26:DA:5E:55:30:00:F2:14:BF:4B:AB:8E ValidityFri, 14 Mar 2025 18:35:35 GMT - Wed, 10 Sep 2025 18:35:35 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=15322609&Ver=2&mid=2789e569-2d06-48c8-b656-eca172ce4923&bo=1&sid=7a63a540457c11f09f9b894cbb01a701&vid=7a63a9a0457c11f0973ddfca226a1a18&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=The%20Oxford%20Club&p=https%3A%2F%2Fpro.oxfordclub.com%2Fp%2FOILTO99BRKLT2YRDSTOT%2FNBRK4404%2F%3Fs1%3D30c4281e43334229b55ccbd305e08284%26h%3Dtrue&r=<=2706&evt=pageLoad&sv=1&cdb=AQAA&rn=162504 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0310F7517F66603604BFE1577E316137; domain=.bing.com; expires=Sat, 04-Jul-2026 21:55:38 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F0FE1E51D0F44BE2BE858BC55FD8822A Ref B: OSL30EDGE0314 Ref C: 2025-06-09T21:55:38Z
date: Mon, 09 Jun 2025 21:55:38 GMT
X-Firefox-Spdy: h2
|
|
| verifiedlinks.org/c/3415984047573345319 | 172.67.27.192 | 200 OK | 0 B |
URL User Request GET verifiedlinks.org/c/3415984047573345319 IP172.67.27.192:443
CertificateIssuerGoogle Trust Services Subjectverifiedlinks.org Fingerprint83:83:27:6B:AE:C3:0B:9B:C5:72:1E:A2:16:92:0C:37:C5:A3:26:81 ValiditySun, 20 Apr 2025 20:50:50 GMT - Sat, 19 Jul 2025 21:50:38 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /c/3415984047573345319 HTTP/1.1
Host: verifiedlinks.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=OTr1sZE9EHOaLTB6JKxUBTSoUAPmYYurDc8Qh_dNzbs-1749506129-1.0.1.1-MKjdCYrN_ipEg0OJRdnYmkjeOa26GlgN6W4eRGV69sf10dc1CHmueEIbBEwEFmN0si7k2TNCAP.Igmawg80gLnWETD6Zo_FShnaBtC_R0v8; PHPSESSID=e27e5da73eac8b6bd7e788ada2fa2ce2; bt_tracking_product_22875=8386db8614732c1a1766e8ed0248929d043fc1fc7fef8a1948f6ef839e81d83f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 09 Jun 2025 21:55:31 GMT
content-type: text/html; charset=UTF-8
content-encoding: br
p3p: CP="NOI ADM DEV PSAi NAV OUR STP IND DEM"
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
refresh: 1; url=https://www.p3lstrk.com/2MGNK7T/CXW7M6/?sub1=3415984047573345319
vary: Accept-Encoding,User-Agent
set-cookie: pixel_session_hash_22875=3415984047573345319; expires=Fri, 08-Aug-2025 21:55:30 GMT; Max-Age=5184000; path=/
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 94d3dfa4ebe65694-OSL
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10090329.json | 87.248.119.251 | 200 OK | 2 B |
URL GET s.yimg.com/wi/config/10090329.json IP87.248.119.251:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintFD:FE:D7:4F:F8:EB:90:1E:CB:07:88:69:62:5B:5C:83:52:B2:D0:18 ValidityWed, 04 Jun 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10090329.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 0
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: 130D4SQJ4EBS0SK5
x-amz-id-2: FYfh8xiDuIKSE/0Y8NKySPETQEgWtoMYkntiKFRDVLMf8KlqZrPKftfY2GHdwN2H+9d9vP9ESEs=
content-type: application/json
date: Mon, 09 Jun 2025 21:55:38 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
age: 0
content-encoding: gzip
content-length: 22
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-KTM4C7C | 142.250.74.136 | 200 OK | 457 kB |
URL GET www.googletagmanager.com/gtm.js?id=GTM-KTM4C7C IP142.250.74.136:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subject*.google-analytics.com Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07 ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (41730) Size457 kB (457285 bytes) Hashe0ac99dd33677b11babbbdc63a4d02ae c609427bca0d4232f4b913e83e1030c649e90c9a 28c770f9e820944daeedc5184a9b91d32f50e0458099ca87e87ee6e6b0b243f7
GET /gtm.js?id=GTM-KTM4C7C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 09 Jun 2025 21:55:34 GMT
expires: Mon, 09 Jun 2025 21:55:34 GMT
cache-control: private, max-age=900
last-modified: Mon, 09 Jun 2025 21:03:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1319:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1319:0
report-to: {"group":"ascgcycc:1319:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1319:0"}],}
server: Google Tag Manager
content-length: 137981
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| bat.bing.com/bat.js | 150.171.27.10 | 200 OK | 53 kB |
IP150.171.27.10:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint8F:FE:D3:58:48:93:DF:0E:26:DA:5E:55:30:00:F2:14:BF:4B:AB:8E ValidityFri, 14 Mar 2025 18:35:35 GMT - Wed, 10 Sep 2025 18:35:35 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (52941), with no line terminators Hash8aa3621e078f553b342b105272dd45fc 7d0086d79b7ba961871becf1f55233d2cf9750cb c4e400da2b9e9a111a08457d1de07c9280c7233e4a305b967da320564a83eb0f
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 14978
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 08 May 2025 19:07:55 GMT
accept-ranges: bytes
etag: "8077e3804cc0db1:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 7B2D5E2AFFAE42CC9EDABA6976706602 Ref B: OSL30EDGE0314 Ref C: 2025-06-09T21:55:35Z
date: Mon, 09 Jun 2025 21:55:35 GMT
X-Firefox-Spdy: h2
|
|
| cdn1.decide.dev/tracking/theoxfordclub_lander.js | 54.240.174.63 | 200 OK | 3.4 kB |
URL GET cdn1.decide.dev/tracking/theoxfordclub_lander.js IP54.240.174.63:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subject*.decide.dev Fingerprint15:8F:E2:75:97:E1:13:EC:5C:DB:DB:33:20:B0:13:F2:4E:D4:88:A6 ValiditySun, 27 Oct 2024 00:00:00 GMT - Tue, 25 Nov 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (946) Hash286889b56d330084881a7e74f8b90933 f91415616348e930dfa57f6fe626bf6758b51981 b09fb0e23cb4921d4755154eeea0aed6063a097681efbb00b44c0ce69a90f153
GET /tracking/theoxfordclub_lander.js HTTP/1.1
Host: cdn1.decide.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 09 Jun 2025 06:56:26 GMT
last-modified: Wed, 04 Sep 2024 17:48:31 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: aOq1znt3jRSfMYb6RM_apSOGNRzIKPUm
server: AmazonS3
etag: W/"286889b56d330084881a7e74f8b90933"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: l8JCR__XL5GsfyMosPBqQfU7etuJGRiHEqamKzRl2xIzY_ZsiLgsLg==
age: 53953
X-Firefox-Spdy: h2
|
|
| verifiedlinks.org/favicon.ico | 172.67.27.192 | 403 Forbidden | 7.1 kB |
URL GET verifiedlinks.org/favicon.ico IP172.67.27.192:443
Requested byhttps://verifiedlinks.org/c/3415984047573345319 CertificateIssuerGoogle Trust Services Subjectverifiedlinks.org Fingerprint83:83:27:6B:AE:C3:0B:9B:C5:72:1E:A2:16:92:0C:37:C5:A3:26:81 ValiditySun, 20 Apr 2025 20:50:50 GMT - Sat, 19 Jul 2025 21:50:38 GMT
File typeHTML document, ASCII text, with very long lines (7137), with no line terminators Hasha47bb5ce6cb6a767cde279db50c0b577 93ec3ec3f0b6583fb51fb37af3c2a71fb4c19246 ec11ae0041a6911761d7db6ed45bb3077b62f5df8c132d393ea2d4fdadeb4916
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: verifiedlinks.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://verifiedlinks.org/c/3415984047573345319
Cookie: __cf_bm=OTr1sZE9EHOaLTB6JKxUBTSoUAPmYYurDc8Qh_dNzbs-1749506129-1.0.1.1-MKjdCYrN_ipEg0OJRdnYmkjeOa26GlgN6W4eRGV69sf10dc1CHmueEIbBEwEFmN0si7k2TNCAP.Igmawg80gLnWETD6Zo_FShnaBtC_R0v8; PHPSESSID=e27e5da73eac8b6bd7e788ada2fa2ce2; bt_tracking_product_22875=8386db8614732c1a1766e8ed0248929d043fc1fc7fef8a1948f6ef839e81d83f; pixel_session_hash_22875=3415984047573345319
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Mon, 09 Jun 2025 21:55:31 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server-timing: chlray;desc="94d3dfa928b95694"
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 94d3dfa928b95694-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/embed/medias/qapf4xte8r.json | 151.101.2.132 | 200 OK | 8.1 kB |
URL GET fast.wistia.com/embed/medias/qapf4xte8r.json IP151.101.2.132:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99 ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT
Hash4446cbb72f70f5d1f81af7b56d47aec5 dacaec765c90cd8f943e043f74b2e47502f91c2d 704a8ea8a5f528d605e3fdf0cad8e4c3d07c3c20788255a0cb4a25294eb641de
GET /embed/medias/qapf4xte8r.json HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-encoding: br
x-envoy-upstream-service-time: 61
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"704a8ea8a5f528d605e3fdf0cad8e4c3"
x-request-id: 7a7dee56-d8e4-46b8-bb35-3b7848081819
x-runtime: 0.059620
via: 1.1 ec0c03792167c1faa09ce29d408be53a.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: JFK52-P2
x-amz-cf-id: mwjvipYjpqZAh2mR9R7bfG62kUbtTKJa1CR4L6BoQ_8eBOTlYk2Cbg==
accept-ranges: bytes
date: Mon, 09 Jun 2025 21:55:35 GMT
age: 80685
x-served-by: cache-iad-kjyo7100106-IAD, cache-hel1410034-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 7, 7
x-timer: S1749506135.093920,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
content-length: 2092
X-Firefox-Spdy: h2
|
|
| embed-ssl.wistia.com/deliveries/8921e03309c18c84c309a06562b9a26a.webp?image_crop_resized=1280x720 | 3.167.2.60 | 200 OK | 54 kB |
URL GET embed-ssl.wistia.com/deliveries/8921e03309c18c84c309a06562b9a26a.webp?image_crop_resized=1280x720 IP3.167.2.60:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subject*.wistia.com FingerprintC8:77:67:66:9E:3C:31:F7:1C:8E:9A:18:6E:53:3A:44:CD:C7:4F:EA ValiditySat, 30 Nov 2024 00:00:00 GMT - Sun, 28 Dec 2025 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp Hashb9a4c28a08292016647210b642b4b454 c3e26044d75539279b1e8fcdb22430758d753633 2156d9f017881cce64c07374c57e7984de81dc473afe49ac975949a4c13785b4
GET /deliveries/8921e03309c18c84c309a06562b9a26a.webp?image_crop_resized=1280x720 HTTP/1.1
Host: embed-ssl.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
accept-ranges: none
access-control-request-method: *
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: 8921e03309c18c84c309a06562b9a26a
etag: GUTN2c5PtOtRXsw7KEdd2JMypa8=
last-modified: Thu, 14 Nov 2024 20:00:38 UTC
surrogate-key: 8921e03309c18c84c309a06562b9a26a thumbnail-delivery
date: Tue, 03 Jun 2025 11:37:01 GMT
x-envoy-upstream-service-time: 238
server: envoy
x-cache: Hit from cloudfront
via: 1.1 0bc6ea800eda1e813056323cb53f8c70.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: pRZRFi9b1tKOE2lujuvhvC781uzIwV4z3Qed_F_3LCTxE9e_s-FaXA==
age: 555514
x-cdn: cloudfront
vary: Origin
X-Firefox-Spdy: h2
|
|
| dnzkifeab6.execute-api.us-east-1.amazonaws.com/Prod/GetLyticsUserData | 3.167.2.74 | 200 OK | 76 B |
URL POST dnzkifeab6.execute-api.us-east-1.amazonaws.com/Prod/GetLyticsUserData IP3.167.2.74:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerAmazon Subject*.execute-api.us-east-1.amazonaws.com FingerprintB2:59:FE:B9:DD:CC:3F:B0:0F:5A:D9:CD:7A:83:BC:A0:A0:28:07:65 ValiditySat, 07 Dec 2024 00:00:00 GMT - Sun, 04 Jan 2026 23:59:59 GMT
Hash74cd2ce4def6577d2db4502c943c3289 c5ac742f41f7052834573a7f11ec085cc8506d55 674d1ff7419bdf7f1dafd4a41db01a4feb1d802122213ecc456dd43f72791984
POST /Prod/GetLyticsUserData HTTP/1.1
Host: dnzkifeab6.execute-api.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 22
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
content-length: 76
date: Mon, 09 Jun 2025 21:55:36 GMT
x-amzn-trace-id: Root=1-68475857-6151ba775f1d787a1f987497;Parent=7c634bbc3dccba21;Sampled=0;Lineage=1:17be0e8a:0
x-amzn-requestid: 572667a9-c48b-4889-a78c-334694a0b8f2
access-control-allow-origin: *
access-control-allow-headers: Content-Type,X-Amz-Date,Authorization,X-Api-Key,X-Amz-Security-Token
x-amz-apigw-id: L6q9zEjOIAMETgQ=
access-control-allow-methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, PUT
x-cache: Miss from cloudfront
via: 1.1 331956c71b3e587b085083fed0bc8c3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 3GQUmAHv7kl7Ovfv9wY5WNcBUN8GBqZmb10djj8-S3vif8RVL7Ufdw==
X-Firefox-Spdy: h2
|
|
| siteimproveanalytics.com/js/siteanalyze_6255350.js | 104.21.48.1 | 200 OK | 48 B |
URL GET siteimproveanalytics.com/js/siteanalyze_6255350.js IP104.21.48.1:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerGoogle Trust Services Subjectsiteimproveanalytics.com Fingerprint27:85:D3:FA:9D:77:F2:38:DF:74:0D:85:56:D8:B3:1B:18:36:33:B2 ValiditySun, 13 Apr 2025 02:03:52 GMT - Sat, 12 Jul 2025 03:02:10 GMT
File typeASCII text, with no line terminators Hash8452ae713340916635198c94e9c13359 8f8bd309c51274fcbc6eb1b99805f947cdd50a69 8708150ed307463ea1670f6644f73ec82e3b6e8d6ff95be629b1ba4727f31ac7
GET /js/siteanalyze_6255350.js HTTP/1.1
Host: siteimproveanalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 09 Jun 2025 21:55:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 68
x-amz-id-2: /bBa0O+9Tm0PnTjmiNoJol6wHfg0BQ5bK+wHJav+RQOroKKL7/tp3XBu2K335Uj/5tEKOHlEl9GjsbP+nEklJw==
x-amz-request-id: PV5JV9GFSBW7AA8A
cache-control: max-age=86400, no-transform
content-encoding: gzip
last-modified: Fri, 23 Aug 2019 22:14:39 GMT
etag: "6ef42917cbd55a82896411683d106194"
server: cloudflare
age: 4244
cf-cache-status: HIT
vary: accept-encoding
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=sQ6paZ8SoAzdJTMWScIU2DqnNmpvRUpYuFy51FoNX16eeKZXTX2dFmj03rH57Gx2u8jP4hRrDF4JJLd3WyaGXzKIltJlPGwKrLto8hVDEjz%2BIw2FIgY%3D"}]}
cf-ray: 94d3dfc66d555691-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/9cf49e/00000000000000000000e807/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3 | 184.31.15.74 | 200 OK | 17 kB |
URL GET use.typekit.net/af/9cf49e/00000000000000000000e807/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3 IP184.31.15.74:443 ASN#20940 Akamai International B.V.
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerDigiCert Inc Subjectuse.typekit.net FingerprintF3:36:2A:08:11:E8:8C:54:E5:3C:6A:03:53:BF:AA:D7:7A:84:8B:89 ValidityTue, 10 Dec 2024 00:00:00 GMT - Sat, 10 Jan 2026 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 16728, version 1.0 Hash994cc140824e4f41167b6a8f671c66b3 87410c73b2e269b136638b46eb888286ff93fdd2 c965b7e3bd43eceaf5c91309885ba7ee7bcb3b3d018a19c997faea37e30b3306
GET /af/9cf49e/00000000000000000000e807/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.oxfordclub.com
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 16728
etag: "913296c9ffe9c1f97e163e531cc2022a12d91b5a"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 09 Jun 2025 21:55:34 GMT
akamai-grn: 0.240f1fb8.1749506134.c75fc45
X-Firefox-Spdy: h2
|
|
| gtrace.mediago.io/ju/cs/eplist?acid=&gdpr_consent=&gdpr=0&dm=https%253A%252F%252Fpro.oxfordclub.com&mcb=mmgg_1749506137817_859 | 35.214.168.80 | 200 OK | 44 B |
URL GET gtrace.mediago.io/ju/cs/eplist?acid=&gdpr_consent=&gdpr=0&dm=https%253A%252F%252Fpro.oxfordclub.com&mcb=mmgg_1749506137817_859 IP35.214.168.80:443
Requested byhttps://pro.oxfordclub.com/p/OILTO99BRKLT2YRDSTOT/NBRK4404/?s1=30c4281e43334229b55ccbd305e08284&h=true CertificateIssuerDigiCert Inc Subject*.mediago.io FingerprintE8:D8:F0:D9:12:11:16:0B:C9:77:5A:7E:40:61:4C:EA:DB:33:AB:A6 ValidityTue, 17 Dec 2024 00:00:00 GMT - Tue, 16 Dec 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hash5f6501acd62eaaf2afa2632edcb306ea a98526283cdb058355f44774d573fa9129447d87 0dccb7d834ba31d3ffa5c9554c20a4cd234007fdab8198cd7701a94dfa27916d
GET /ju/cs/eplist?acid=&gdpr_consent=&gdpr=0&dm=https%253A%252F%252Fpro.oxfordclub.com&mcb=mmgg_1749506137817_859 HTTP/1.1
Host: gtrace.mediago.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.oxfordclub.com/
Cookie: dv0qai26lg6v2y6kl7yyc36brextdn8e507mm7j=dgt0qpenzgq; dv0qai26lg6v2y6kl7yyc36brextdubxp5vucauf=wr6lxbbrxh; dv0qai26lg6v2y6kl7yyc36brextd7kslq18ckb8=izevokh757q; __mgSsd_=651b45d21c7044c9bd74b435fea9350c; __mguid_=98c1eeee142c415baf4c0925052513bd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: https%3A%2F%2Fpro.oxfordclub.com
content-length: 44
content-type: application/javascript; charset=utf-8
date: Mon, 09 Jun 2025 21:55:38 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
0.0.0.0