Report - linkvertise.com/416384/leg223?o=sharing

Report Overview

Submitted URL
linkvertise.com/416384/leg223?o=sharing
IP
172.64.139.5
ASN
#13335 CLOUDFLARENET
Submitted
2023-03-18 20:03:25
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
stackpath.bootstrapcdn.com	2467	2018-06-15T22:36:43Z	2023-03-26T05:16:31Z	870 B	1.8 kB	104.18.10.207
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-25T18:12:03Z	3.0 kB	8.0 kB	23.36.76.226
ocsp.r2m02.amazontrust.com	unknown	2022-10-12T16:01:39Z	2023-03-26T05:09:33Z	700 B	1.9 kB	54.230.80.227
linkvertise.chargebeestaticv2.com	unknown	2022-07-28T19:58:24Z	2023-03-25T08:01:07Z	518 B	1.3 kB	54.230.111.21
gum.criteo.com	381	2015-01-22T11:58:57Z	2023-03-26T06:31:37Z	2.8 kB	13 kB	178.250.0.157
linkvertise.com	57422	2015-12-18T22:49:10Z	2023-03-25T06:37:33Z	838 B	43 kB	172.64.138.5
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-25T18:14:26Z	782 B	2.4 kB	35.241.9.150
contextual.media.net	513	2012-05-21T09:20:31Z	2023-03-25T09:31:04Z	382 B	372 B	23.38.200.22
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-26T05:09:44Z	803 B	40 kB	104.17.25.14
ocsp.r2m01.amazontrust.com	unknown	2022-10-12T22:43:53Z	2023-03-26T05:22:59Z	350 B	946 B	54.230.80.227
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-26T05:10:41Z	2.1 kB	4.2 kB	142.250.74.3
cdn.taboola.com	1040	2013-07-20T01:48:03Z	2023-03-26T05:16:36Z	785 B	44 kB	151.101.1.44
paper.ostrichesica.com	183841	2021-06-07T16:37:44Z	2023-03-25T11:25:54Z	6.9 kB	33 kB	52.45.196.192
csm.fr.eu.criteo.net	6845	2017-01-30T06:18:06Z	2023-03-25T18:23:21Z	467 B	358 B	178.250.0.162
ag.gbc.criteo.com	5925	2018-12-17T14:17:41Z	2023-03-26T08:49:39Z	386 B	16 kB	185.235.84.251
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-26T05:11:12Z	413 B	5.9 kB	34.160.144.191
p.typekit.net	620	2012-05-23T16:28:57Z	2023-03-26T05:09:02Z	443 B	338 B	23.36.76.184
js.chargebee.com	23733	2019-05-23T14:12:40Z	2023-03-25T09:06:47Z	3.2 kB	76 kB	54.230.111.20
sand.ostrichesica.com	193385	2021-06-07T04:00:13Z	2023-03-24T08:03:16Z	389 B	33 kB	54.230.111.63
dnacdn.net	3760	2019-09-02T17:07:45Z	2023-03-26T05:32:06Z	887 B	1.3 kB	178.250.1.11
gem.gbc.criteo.com	6039	2019-01-31T11:05:09Z	2023-03-26T09:00:07Z	387 B	493 B	185.235.84.137
www.thinksuggest.org	298123	2018-11-05T13:16:52Z	2023-03-25T08:01:07Z	386 B	52 kB	176.9.175.232
www.google.com	7	2015-05-10T13:11:19Z	2023-03-25T21:05:45Z	415 B	1.1 kB	216.58.211.4
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-26T05:15:01Z	674 B	446 B	216.239.32.36
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-26T05:09:08Z	3.2 kB	140 kB	34.120.237.76
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-26T05:11:59Z	333 B	391 B	34.117.237.239
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-25T22:19:37Z	990 B	141 kB	216.58.207.227
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-26T05:56:25Z	443 B	166 kB	216.58.211.3
script.hotjar.com	887	2020-11-05T17:23:46Z	2023-03-26T05:09:02Z	384 B	69 kB	54.230.111.44
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-26T05:18:47Z	1.7 kB	3.4 kB	192.229.221.95
static.hotjar.com	641	2014-11-01T06:14:27Z	2023-03-26T05:09:01Z	377 B	631 B	54.230.111.39
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-26T05:35:01Z	381 B	65 kB	142.250.74.136
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-26T05:10:29Z	606 B	127 B	52.24.53.237
publisher.linkvertise.com	230086	2020-08-12T09:42:03Z	2023-03-25T08:01:07Z	4.3 kB	21 kB	172.64.139.5

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-18 20:03:15	low	52.45.196.192	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (56)

	URL	Size	First Seen	Last Seen
	www.thinksuggest.org/simple/suggest-min-unpacked.js	52 kB	2023-03-07	2024-04-22
Pretty URL www.thinksuggest.org/simple/suggest-min-unpacked.js IP 176.9.175.232 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-04-22 04:36:12 Times Seen11809 Hash cd2f3074326840d55a3c3ea1e99e83fe 3a2e1d1a93506526ae3ed2b44d584af7771ff8d0 9ec9f50ac6a5dfdf7ace0a047ab4e86a7f8ff297030f93f9b8b4e27c57fdaa51 Loading...

	linkvertise.com/assets/vendor/thinksuggest	2.4 kB	2023-03-07	2023-04-05
Pretty URL linkvertise.com/assets/vendor/thinksuggest IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-04-05 01:40:49 Times Seen138 Hash d4fc14d8e50c4da7f4cdbb209c346b20 5d525ba24f01f8342c3e64b44f519ce246283f0a 84d63fa8eee330eb27272ba4eae1f934923a5f5ff5d2d070d49dfab5dbb9f2dc Loading...

	www.google.com/recaptcha/api2/bframe?hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&k=6LcEr_UUAAAAAHXt5wx-k9P_m8Z1JY-Ck9Mxrhxo	181 B	2023-03-13	2023-03-26
Pretty URL www.google.com/recaptcha/api2/bframe?hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&k=6LcEr_UUAAAAAHXt5wx-k9P_m8Z1JY-Ck9Mxrhxo IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:10:39 Last Seen2023-03-26 10:36:26 Times Seen19 Hash 1b9bbd1f6373b5523d386e172cf3048f 4c707a1451db60537fdb5adbbe1bf008d3b86c93 33fe59a57a918a9b39abe0e71262f3a2a99ea132e0c2e695677ba56206355c66 Loading...

	linkvertise.com/assets/ads.js	53 B	2023-03-07	2024-04-22
Pretty URL linkvertise.com/assets/ads.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:21 Last Seen2024-04-22 04:36:12 Times Seen7571 Hash 6505cd57ceee4ca43442ca3a639bc9fb fba759aae1fba98c65c0f7530e11dcf9db64f6bd b1af735cf017f07c82e88c4e7ae104eb140ebec0882691bdc68ad6c1a6e3449f Loading...

	linkvertise.com/416384/leg223?o=sharing	61 B	2023-03-07	2024-02-21
Pretty URL linkvertise.com/416384/leg223?o=sharing IP 172.64.138.5 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5600 Hash 5f1530f7c9d5ec10db5f85900397c9ea 457927ecea448848df6ae8f7a6cbb21535f6db85 624b2f08c18a4c6bef49e112548529dcf6bae01c03549213482a0ec60335e63c Loading...

	linkvertise.com/assets/vendor/thinksuggest	237 B	2023-03-07	2023-04-05
Pretty URL linkvertise.com/assets/vendor/thinksuggest IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-04-05 01:40:49 Times Seen138 Hash c006251d7a981892bfb1c09758a35776 7b3062cd0324e31386b8cea52c2552277a8531cf 3973b0e8cfafd23c7285066509370038cd98c3820bd6bddf818328212d8eb562 Loading...

	js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/154-0724759dd12ed5978218.js	2.8 kB	2023-03-26	2023-03-26
Pretty URL js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/154-0724759dd12ed5978218.js IP 54.230.111.20 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 05:47:01 Last Seen2023-03-26 10:46:22 Times Seen14 Hash f4ce0e5db85f1fb4e0d3e60b74dfcc31 07daf2618815e1bbc6b005c12dfdbb9be3e51a63 e417abd58de7306c387aed794d18f23272e18e1b9ebd3f58a4c9b30f5c34f588 Loading...

	linkvertise.com/assets/vendor/thinksuggest	1.7 kB	2023-03-07	2023-04-05
Pretty URL linkvertise.com/assets/vendor/thinksuggest IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-04-05 01:40:49 Times Seen138 Hash 8551296584a94f00128790678e219118 096f7341f14c5f474f6b8d5ed84694244843ab08 8a5a3c8d45b113fbe4e9e07bad27b404ed620c8a3735ee9ba9de9247b309303d Loading...

	linkvertise.com/main.9ef369df40496d98.js	2.9 MB	2023-03-26	2023-03-26
Pretty URL linkvertise.com/main.9ef369df40496d98.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 08:46:21 Last Seen2023-03-26 10:46:22 Times Seen5 Hash ff5b001892cde6b2d1b58e8de67f6aa7 3c9b2306a346a6d04506ffee80c1cbb6a78b0001 c1b60e4deeb15e32a3ee447bc20a9c3974faa358fa2a237c25f46f2603e83674 Loading...

	linkvertise.com/scripts.bb45bf3dd1a0af98.js	223 kB	2023-03-14	2023-09-10
Pretty URL linkvertise.com/scripts.bb45bf3dd1a0af98.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 16:40:23 Last Seen2023-09-10 18:25:22 Times Seen3511 Hash b25ce3f9983ade5cc103f4081e286d99 50d3bbbda1759c0c76b7b049105bdf41e339ae91 a53cf228e9d09fdb94d3cb53f29e3da850ff8049ffe22a4d9cf139340a3e4007 Loading...

	js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/master-c8c7b04ae6cd57f0b0fe.js	240 kB	2023-03-26	2023-03-26
Pretty URL js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/master-c8c7b04ae6cd57f0b0fe.js IP 54.230.111.20 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 05:47:00 Last Seen2023-03-26 10:46:22 Times Seen14 Hash a7bde2965821618b72d5532ca317b40a 79b0c3f50cb936fa19ffd5bfd581c4ce536f17ce 4354a8f78f558aef80dee1578e3fa200b7c1e1e53513611bf2db4b379e32c65a Loading...

	js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/150-8060a0eea0ecd5394e33.js	3.3 kB	2023-03-26	2023-03-26
Pretty URL js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/150-8060a0eea0ecd5394e33.js IP 54.230.111.20 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 05:47:01 Last Seen2023-03-26 10:46:22 Times Seen14 Hash 8d411d7c51b1a7c7e2df89c190330bd4 fcac22c4936973c07fae80f31d9eeb50665cce13 a7d3f50126c4b233ea1cb1628bbb2d0b1bb798a821838c8ee572f8c6f3df67b7 Loading...

	www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-	884 B	2023-03-26	2023-03-29
Pretty URL www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- IP 216.58.211.4 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 07:51:10 Last Seen2023-03-29 21:37:10 Times Seen30 Hash a2e0958be0e4c8f60061cd053ea8aff9 b61769f1f3cf6e2dbf11665baad389df9d743a31 089ea9d5acf7a0eb319d43ae885bc0f68d05dc0f728ed30f8948057999b30d24 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	88 kB	2023-03-07	2024-04-24
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-04-24 01:31:28 Times Seen95357 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG	191 kB	2023-03-26	2023-03-26
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:00:56 Last Seen2023-03-26 10:00:56 Times Seen1 Hash faa5332d043263adae5997195efe18db 8e0b6290ffddcaf3ff078c2314cfd83b8fff5e68 059903b617559b1eab2d10053adf735612f52fa86f1a20f3016b2382706f9f88 Loading...

	paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F416384%2Fleg223%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1679169795127&hl=1&op=0&ag=1317291471&rand=938287902011080100719090717265209716297712100601158687769059280505175282691&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDYyM10sWzEyLCJ7XCJlXCI6MCxcIndnbFwiOjF9Il0sWyJjYiIsIjAsMCwwLDAsMywwLDAsMCwwLDIsMCwwLDEsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMywwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDEsMCwzIl0sWy0xLCJMaW51eCB4ODZfNjQiXSxbLTIsIjUsSUxIWUxCOUJMVGEySnFRZzNGb2VlbDJ3WWJFMm9nQklLSjZjUjAwME1KSFF3WVRER1lhaHYzdXQ3MVZwWFI5TzgrTTVyVlNLczFrUEJlLy85OXNuVkpHcFVkUGZkenpuM09mYyJdLFstMywiW10iXSxbLTQsIi0iXSxbLTUsIi0iXSxbLTYsIntcIndcIjpbXCIwXCIsXCIkXCIsXCJqUXVlcnlcIixcImJvb3RzdHJhcFwiLFwialF1ZXJ5MzQxMDE2NzEwMDY4ODIzMzQ3MjgxXCIsXCJkYXRhTGF5ZXJcIixcImY3MDVcIixcIk5vdGlmeVBhaW50RXZlbnRcIixcImNiSnNvblBcIixcIl9fY29yZS1qc19zaGFyZWRfX1wiLFwiY2Jfd2luZG93X2xvZ2dlclwiLFwiX19TRU5UUllfX1wiLFwiQ2hhcmdlYmVlXCIsXCJpc0FkQmxvY2tBY3RpdmVcIixcIl9tTkhhbmRsZVwiLFwibWVkaWFuZXRfdmVyc2lvbklkXCIsXCJtZWRpYW5ldF9jaG5tXCIsXCJtZWRpYW5ldF9jaG5tMlwiLFwibWVkaWFuZXRfY2hubTNcIixcIm1lZGlhbmV0X21pc2NcIixcIk1ENVwiLFwiQ0hFUWd1YXJkXCIsXCJ3ZWJwYWNrQ2h1bmtsdl93ZWJcIixcIiRsb2NhbGl6ZVwiLFwiWm9uZVwiLFwiX196b25lX3N5bWJvbF9fUHJvbWlzZVwiLFwiX196b25lX3N5bWJvbF9fZmV0Y2hcIixcIl9fem9uZV9zeW1ib2xfX3F1ZXVlTWljcm90YXNrXCIsXCJfX3pvbmVfc3ltYm9sX19zZXRUaW1lb3V0XCIsXCJfX3pvbmVfc3ltYm9sX19jbGVhclRpbWVvdXRcIixcIl9fem9uZV9zeW1ib2xfX3NldEludGVydmFsXCIsXCJfX3pvbmVfc3ltYm9sX19jbGVhckludGVydmFsXCIsXCJfX3pvbmVfc3ltYm9sX19yZXF1ZXN0QW5pbWF0aW9uRnJhbWVcIixcIl9fem9uZV9zeW1ib2xfX2NhbmNlbEFuaW1hdGlvbkZyYW1lXCIsXCJfX3pvbmVfc3ltYm9sX19hbGVydFwiLFwiX196b25lX3N5bWJvbF9fcHJvbXB0XCIsXCJfX3pvbmVfc3ltYm9sX19jb25maXJtXCIsXCJfX3pvbmVfc3ltYm9sX19NdXRhdGlvbk9ic2VydmVyXCIsXCJfX3pvbmVfc3ltYm9sX19JbnRlcnNlY3Rpb25PYnNlcnZlclwiLFwiX196b25lX3N5bWJvbF9fRmlsZVJlYWRlclwiLFwiX196b25lX3N5bWJvbF9fb25vbmRldmljZW1vdGlvbnBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub25kZXZpY2VvcmllbnRhdGlvbnBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub25hYnNvbHV0ZWRldmljZW9yaWVudGF0aW9ucGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheWNvbm5lY3RwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5ZGlzY29ubmVjdHBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXlhY3RpdmF0ZXBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXlkZWFjdGl2YXRlcGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheXByZXNlbnRjaGFuZ2VwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uYWJvcnRwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uYmx1cnBhdGNoZWRcIl0sXCJuXCI6W10sXCJkXCI6W119Il0sWy03LCItIl0sWy04LCItIl0sWy05LCIrIl0sWy0xMCwiLSJdLFstMTEsIntcInRcIjpcIlwiLFwibVwiOltcIkRlc2NyaXB0aW9uXCJdfSJdLFstMTIsIlwidW5zcGVjaWZpZWRcIiJdLFstMTMsIi0iXSxbLTE0LCItIl0sWy0xNSwiLSJdLFstMTYsIjAiXSxbLTE3LCIxNiJdLFstMTgsIlsxLDAsMCwwXSJdLFstMTksIlswLDAsMCwwLDAsMCwxLDI0LDI0LFwiLVwiLDEyODAsMTAwMiwxMjgwLDEwMjQsMTI4MCwxMDI0LDEyODAsOTM5LDAsMCwwLDAsXCItXCIsXCItXCJdIl0sWy0yMCwiMTE0MzE0MTg5MC4xNjc5MTY5Nzk1Il0sWy0yMSwiLSJdLFstMjIsIltcIm5cIixcIm5cIl0iXSxbLTIzLCIrIl0sWy0yNCwiW10iXSxbLTI1LCItIl0sWy0yNiwiLSJdLFstMjcsIi0iXSxbLTI4LCJlbi1VUyxlbiJdLFstMjksIi0iXSxbLTMwLCJbXCJ2XCIsMF0iXSxbLTMxLCJmYWxzZSJdLFstMzIsIjAiXSxbLTMzLCItIl0sWy0zNCwiLSJdLFstMzUsIlsxNjc5MTY5Nzk1MTE0LDBdIl0sWy0zNiwiW1wiNS80XCIsXCI1LzRcIl0iXSxbLTM3LCItIl0sWy0zOCwiaSwtMSwtMSwzMjAsMCwxMiwwLDAsNzgsODcsLTEsMCwsMTQ5NiwyMTAyLDIxMDIiXSxbLTM5LCJbXCIyMDEwMDEwMVwiLDAsXCJHZWNrb1wiLFwiTmV0c2NhcGVcIixcIk1vemlsbGFcIixcIjIwMTgxMDAxMDAwMDAwXCIsbnVsbCxmYWxzZSxudWxsLGZhbHNlLG51bGwsMF0iXSxbLTQwLCIzNyJdLFstNDEsIi0iXSxbLTQyLCIxNzcwMDUwMDgxIl0sWy00MywiMDAwMDAwMDEwMDAwMDAwMDAxMTExMDAxMDAiXSxbLTQ0LCIwLDUsMCw1Il0sWy00NSwiMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwIl0sWy00NiwiMCJdLFstNDcsIlVUQyxlbi1VUyxsYXRuLGdyZWdvcnkiXSxbLTQ4LCIwLDAiXSxbLTQ5LCItIl0sWy01MCwiaHR0cHM6Ly9saW5rdmVydGlzZS5jb20vNDE2Mzg0L2xlZzIyMz9vPXNoYXJpbmciXSxbLTUxLCItIl0sWy01MiwiLSJdLFstNTMsIjAxMCJdLFstNTQsIntcImhcIjpbXCI0MTA0MzE2MjNcIixcIjI2MzkyMjI0NjhcIixcIl8zXCIsXCIyODcyODk5MzIwXCJdLFwiZFwiOltdLFwiYlwiOltcIl8xXCIsXCIxMDY0ODIyNjg3XCIsXCI0MTA0MzE2MjNcIixcIjI2MzkyMjI0NjhcIl0sXCJzXCI6MX0iXSxbLTU1LCIxIl0sWyJkZGIiLCIwLDYsMCwwLDEsMiwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDIsMCwwLDAsMiwwLDAsMCwwLDAsMSwwLDIsNCwwLDEsMCwxLDAsMCwwLDAsMCwxIl0sWyJibmNoIiw0MV0sWyJhYm5jaCIsNDJdXQ%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=4SngYw8psc&pto=2114&ver=50&gac=1143141890.1679169795&mei=&ap=&duid=1.1679169794.lJXEN6jdJcpJen5V&suid=1.1679169794.KrG12d2ZUIAR7alx&tuid=1.1679169794.qCPMQagpB3DcCNTz&fbc=-&gtm=W10%3D&it=74%2C1385%2C202&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0	3.0 kB	2023-03-26	2023-03-26
Pretty URL paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F416384%2Fleg223%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1679169795127&hl=1&op=0&ag=1317291471&rand=938287902011080100719090717265209716297712100601158687769059280505175282691&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=4SngYw8psc&pto=2114&ver=50&gac=1143141890.1679169795&mei=&ap=&duid=1.1679169794.lJXEN6jdJcpJen5V&suid=1.1679169794.KrG12d2ZUIAR7alx&tuid=1.1679169794.qCPMQagpB3DcCNTz&fbc=-&gtm=W10%3D&it=74%2C1385%2C202&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 IP 52.45.196.192 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:00:56 Last Seen2023-03-26 10:00:56 Times Seen1 Hash 4fa48e38fbcd359dad88ccea2d31e2d6 65745663bc2c5f464238cf62068590241ec1fe38 2d400bb4b5418b829845d2a2c7f60e043c89495a5c0a9bd7846da9e3eff77bde Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=invisible&cb=r6p6a6rvkq2r	69 B	2023-03-07	2024-04-24
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=invisible&cb=r6p6a6rvkq2r IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-24 01:30:37 Times Seen99287 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.8769325706053399%22%7D	14 kB	2023-03-07	2023-05-06
Pretty URL gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.8769325706053399%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:51:36 Last Seen2023-05-06 00:14:31 Times Seen2035 Hash 49e65b540d43d40997ce3844d41b2dd0 b7331c5edc086ee2c7731b1b36e937e7c44450a7 f185c1b78d87a007d9492a85c6ce64c06cc851ef9f13ca3caf8aaafe243b0ac2 Loading...

	linkvertise.com/416384/leg223?o=sharing	7.2 kB	2023-03-07	2024-02-21
Pretty URL linkvertise.com/416384/leg223?o=sharing IP 172.64.138.5 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5600 Hash f21cce266449773cd5d82853b5a4e84a 503db95d21644bbcff48373abd04dc1c31186853 fbd8cabfc3161779b15b164e3b5c6a50f7311851471046cb25bc82b957ae692b Loading...

	linkvertise.com/416384/leg223?o=sharing	5.2 kB	2023-03-07	2023-09-10
Pretty URL linkvertise.com/416384/leg223?o=sharing IP 172.64.138.5 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-09-10 18:25:21 Times Seen325 Hash e8bce5239d8470b5056d43aaef157627 d5d141c9dd3783c3615218b91872eef8814b2f1c 7fe578c7d294d467782839ab32ab7abef8e15434758214fc5bf0a3b050e48c18 Loading...

	paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F416384%2Fleg223%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1679169794699&hl=1&op=0&ag=1317291471&rand=149009929107111557875551959202261657510110060199598205960610100296822128852&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=FyA5rNHrvN&pto=1685&ver=50&gac=-&mei=&ap=&duid=1.1679169794.lJXEN6jdJcpJen5V&suid=1.1679169794.KrG12d2ZUIAR7alx&tuid=1.1679169794.qCPMQagpB3DcCNTz&fbc=-&gtm=W10%3D&it=66%2C1385%2C202&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0	2.9 kB	2023-03-26	2023-03-26
Pretty URL paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F416384%2Fleg223%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1679169794699&hl=1&op=0&ag=1317291471&rand=149009929107111557875551959202261657510110060199598205960610100296822128852&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=FyA5rNHrvN&pto=1685&ver=50&gac=-&mei=&ap=&duid=1.1679169794.lJXEN6jdJcpJen5V&suid=1.1679169794.KrG12d2ZUIAR7alx&tuid=1.1679169794.qCPMQagpB3DcCNTz&fbc=-&gtm=W10%3D&it=66%2C1385%2C202&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:00:56 Last Seen2023-03-26 10:00:56 Times Seen1 Hash 923ec92b9b9759340a37d41f0857b5b9 7a255bd74ba4ebf9b0e772102ff3d1e45ca3d5a8 4b9616f7bd93daf804e34dfb68788c224a7a09123149a10233bea687fbf03f57 Loading...

	cdn.taboola.com/libtrc/impl.20230316-6-RELEASE.js	755 kB	2023-03-26	2023-03-26
Pretty URL cdn.taboola.com/libtrc/impl.20230316-6-RELEASE.js IP 151.101.1.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 07:51:10 Last Seen2023-03-26 10:37:14 Times Seen17 Hash 85e1562cccafc13d43c7fa757f0e8e01 f66ca2b79d68a0ed5977efa3f41ebfb8462abac2 c5c0349bd96187c7c0fbcd0beeae79b54b08f772cd0b346bf927223fd6365967 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=invisible&cb=r6p6a6rvkq2r	37 kB	2023-03-26	2023-03-26
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=invisible&cb=r6p6a6rvkq2r IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:00:56 Last Seen2023-03-26 10:00:56 Times Seen1 Hash db7f4733cbbcdf6368f7fca7e1c94ecb 241a7654c4dd13bc6e6c6dc7794ee52eeb9e7a40 0f3a8959c4f3895800f503ee64ee31689865172a8298a5a94232ec81c0b9cdd8 Loading...

	linkvertise.com/416384/leg223?o=sharing	343 B	2023-03-07	2024-02-21
Pretty URL linkvertise.com/416384/leg223?o=sharing IP 172.64.138.5 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5593 Hash 5815651c777ca9749f394ca8f86f70a7 e5d105ec2b6bc5b6be141e82b7678954c1cb2fb0 8a57f0ee2b5df3cb5a3ff340cfe4e55611629b7c053a132ee686c5fd3736033f Loading...

	linkvertise.com/416384/leg223?o=sharing	357 B	2023-03-07	2024-02-21
Pretty URL linkvertise.com/416384/leg223?o=sharing IP 172.64.138.5 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5601 Hash 7cb6df65dfbbc68a028c262cea708528 797bfa66ea86998e5481c7e9431158030f2a798f f30ba21714ececd6939cfb1db7d6cd0cf9f0d885b58716e4a0f33f556feccf1b Loading...

	static.hotjar.com/c/hotjar-3321028.js?sv=7	8.7 kB	2023-03-26	2023-03-26
Pretty URL static.hotjar.com/c/hotjar-3321028.js?sv=7 IP 54.230.111.39 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:00:56 Last Seen2023-03-26 10:00:56 Times Seen1 Hash 26c96dfd8e1def2a8cda5263790f1b78 1455889a145170c18d87ac4e52c55d4bcc4631e6 4a28cc3a8f19e3f8729dc25cda40f1cfadb2defaa2ae5aff2dcb71b971136680 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LcEr_UUAAAAAHXt5wx-k9P_m8Z1JY-Ck9Mxrhxo&co=aHR0cHM6Ly9saW5rdmVydGlzZS5jb206NDQz&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=normal&cb=un1svq1p75ic	41 kB	2023-03-26	2023-03-26
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LcEr_UUAAAAAHXt5wx-k9P_m8Z1JY-Ck9Mxrhxo&co=aHR0cHM6Ly9saW5rdmVydGlzZS5jb206NDQz&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=normal&cb=un1svq1p75ic IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:00:56 Last Seen2023-03-26 10:00:56 Times Seen1 Hash 69676c8c62274538c1285e8d027d0c59 64cfe39a3b530faada387c0f57b9837759c9df83 21724bb7d0259ea390a5417abf4783951566fcd3c9d8d3c2c8ed3f2552d697fd Loading...

	linkvertise.com/runtime.9028a2ff6641236d.js	3.6 kB	2023-03-07	2023-09-10
Pretty URL linkvertise.com/runtime.9028a2ff6641236d.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-09-10 18:25:21 Times Seen2415 Hash 0270ef93354cd4a2eb1df53f143e2537 4b895eee6513d5e1509992c528b6343418d8546a d8f17fc17786ac0acc2dd2d47f24827e89cce8c72f1ce83eb764e475decb9970 Loading...

	linkvertise.com/416384/leg223?o=sharing	384 B	2023-03-07	2023-09-10
Pretty URL linkvertise.com/416384/leg223?o=sharing IP 172.64.138.5 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-09-10 18:25:21 Times Seen384 Hash 1b542721063834c7497013710c32ae68 eae295b9d949477cbd14deb382507fad6b159650 982369c09d990814aa5e0b323a005064bbc77748027b30318afafc3c678a53ea Loading...

	gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.8769325706053399%22%7D	418 B	2023-03-07	2023-04-01
Pretty URL gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.8769325706053399%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:51:37 Last Seen2023-04-01 10:34:33 Times Seen447 Hash 755b312976dc0edb23fa08bed999c482 6685710ba04dc63e4122ec3ce89f3adfe479adf4 663197a6a8353d989cdc65d4f3112e425a00839c85a3fde99bbe451a9c604a6f Loading...

	js.chargebee.com/v2/chargebee.js	257 kB	2023-03-26	2023-03-26
Pretty URL js.chargebee.com/v2/chargebee.js IP 54.230.111.20 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 05:47:01 Last Seen2023-03-26 10:46:22 Times Seen12 Hash 45d256d753902746715a954c7ca4ad47 1830c6506275a79c169bdb4f04d4e9326737e3c6 251cd490236d6341cf3dd1c9c58bec4da1f8853adf5a175534bce2be98c0a2f8 Loading...

	linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js	9.1 kB	2023-03-07	2023-12-14
Pretty URL linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:44:21 Last Seen2023-12-14 06:55:00 Times Seen6681 Hash a260e7ad8d02f2ec2470e211d97871ec 6e7061c207a5356c4ae9d040af2aea5d82d07b67 4d5206ee58438a808f3f4a09910fbbe126a1019c04649343de9b7ad38a690f6e Loading...

	linkvertise.com/polyfills.bd3b6746195e9466.js	35 kB	2023-03-14	2024-04-22
Pretty URL linkvertise.com/polyfills.bd3b6746195e9466.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 16:40:23 Last Seen2024-04-22 04:36:13 Times Seen11145 Hash 70861480978e1a3305ba895d593cbdbe 4d82f1b0ee8a88bc58f997b60d8b44add0495985 08b25c4d3b49bd0d17a443cd2a009f58355b5eea6094112e27916e10e606d5a6 Loading...

	js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/138-c405cd2cebef4d812dde.js	12 kB	2023-03-26	2023-03-26
Pretty URL js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/138-c405cd2cebef4d812dde.js IP 54.230.111.20 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 05:47:01 Last Seen2023-03-26 10:46:22 Times Seen14 Hash 3be5b9675aa76bac83033c98abeba93b e838415d7e79165be5946a166a22f2fcf5f2e648 2fe01f502903092bf749532f8b0a93ba37cfe33b1f1d0aa7046f35b4f5fb9bd2 Loading...

	www.googletagmanager.com/gtag/js?id=G-7DRMH8RP03&l=dataLayer&cx=c	223 kB	2023-03-26	2023-03-26
Pretty URL www.googletagmanager.com/gtag/js?id=G-7DRMH8RP03&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:00:56 Last Seen2023-03-26 10:00:56 Times Seen1 Hash f4fa5e289410fdf46ef44a2a0366cb4a c7a9a502d211ce30fd7168b0169ab08ccdadff19 219b910e0a43d4d2eb0827e541c6909136ebd39f6c353314a0118d54fee0fef7 Loading...

	www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js	414 kB	2023-03-26	2023-05-26
Pretty URL www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 07:49:14 Last Seen2023-05-26 08:52:16 Times Seen2778 Hash 3e73dbef941895dfc538a9d6a69ed927 dac57a54b2635c1d5e1e6ae44e95d12d0a547ad3 d9d91ff5b9a775b5ce8c6c81e51e71c27194d11ac8690353727d23c91f7b317c Loading...

	contextual.media.net/dmedianet.js?cid=8CUG57U1V	143 kB	2023-03-26	2023-03-26
Pretty URL contextual.media.net/dmedianet.js?cid=8CUG57U1V IP 23.38.200.22 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:00:56 Last Seen2023-03-26 10:00:56 Times Seen1 Hash be591eaac44a3bd8305467ab80bf63f2 bbfae8dc2ad807fede992c69c6e57f29cfe97c0c 2d6971ab954cccc9f9840d330e7286a89a55bcf88a7132327f04a990ea2759d6 Loading...

	stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js	51 kB	2023-03-07	2024-04-24
Pretty URL stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP 104.18.10.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-24 01:45:28 Times Seen243700 Hash 67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4 Loading...

	gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS	30 kB	2023-03-26	2023-04-05
Pretty URL gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS IP 178.250.0.157 ASN #44788 Criteo SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 05:06:51 Last Seen2023-04-05 14:52:05 Times Seen140 Hash d5c432a267f0c22d469cfd0f49aed716 5c03a83714daad2c09a3885d5185554c34e23880 5dcbb0ae1eebcecef00e01e065c802806ab453ff2f5e6f9f54bc436032eb5a8d Loading...

	www.google.com/recaptcha/api.js?render=explicit&onload=ng2recaptchaloaded	913 B	2023-03-26	2023-03-29
Pretty URL www.google.com/recaptcha/api.js?render=explicit&onload=ng2recaptchaloaded IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:00:56 Last Seen2023-03-29 20:54:11 Times Seen9 Hash e75d35c3b383fb62ccff613993cc5387 71f21c1be71791cdb43d8cb62c1da9eea42e850e 70a4e2c363bf2c2121eb7e0dd219f6c86c5a33a72af536b61597f38ab15ef2b4 Loading...

	cdn.taboola.com/libtrc/linkvertise-link-to/loader.js	203 kB	2023-03-26	2023-03-26
Pretty URL cdn.taboola.com/libtrc/linkvertise-link-to/loader.js IP 151.101.1.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:00:56 Last Seen2023-03-26 10:23:05 Times Seen3 Hash 3faca3d9d14ad67bf993b78cd9ccad94 cbc74283482227ea18ce26a76ee2d4722d31f918 80fac50b0056f32a3f668ab7d2c38ad4ec76f5779ed30d0f5791358730eebd79 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 9cded30f7bcf402987ca1fcdf6c5f3d3	16 kB	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 08:07:32 Last Seen2023-03-29 23:21:19 Times Seen1123 Hash 9cded30f7bcf402987ca1fcdf6c5f3d3 ff05bc7e4b0e386acd1a16802984c805c8b35d59 50b06f3d6f2b666357bd52d6c71e869d4ddb33713d8f70cce47161f24725406d Loading...

	#2 Eval - 889ca9e2c79a3ce7aaadbcdfd0ce4ef5	62 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:20:41 Last Seen2024-04-23 20:49:03 Times Seen14148 Hash 889ca9e2c79a3ce7aaadbcdfd0ce4ef5 b05c2c051bae71f80cb8c289e5a42d4f96d323fa 6477acf082d26199b6ce8346b93149b1b999233d9fe76b0340ebf43317cf98f8 Loading...

	#3 Eval - e5d8c139688b25ef77b263d88ea99150	7 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:20:41 Last Seen2024-04-23 20:49:03 Times Seen14183 Hash e5d8c139688b25ef77b263d88ea99150 7abc9c61c4966543f66d150c0155bfac575f86a7 53e5f34ac520035c7f124076d1e68c70a85c83cf68a339fa713b872b54126148 Loading...

	#4 Eval - 6559111e4eae643ce013ce0821e91a02	25 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:20:41 Last Seen2024-04-23 20:49:03 Times Seen13653 Hash 6559111e4eae643ce013ce0821e91a02 fa1086c9aa2cb2d14f5c13bceefe21511bcdae5a d72255f7e5ea4dfdf9821df800356367d0bc7df07ecd103bb660018cb1e4f400 Loading...

	#5 Eval - 37cd3bd2adbd29e7fafaf20f77f4bf43	18 B	2023-03-07	2024-04-15
Pretty Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-15 12:57:44 Times Seen656 Hash 37cd3bd2adbd29e7fafaf20f77f4bf43 d4a665f4bf3dc9a6f3ea3a55c50c5a37c6bd05f5 0f3342bc14063d9ed7a669eb067b50ea17b2cb7dcb51968939b72fa9ac862d91 Loading...

	#6 Eval - 5b9656ba0fdb0134047277f51a294ff7	16 kB	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 00:33:53 Last Seen2023-03-29 21:29:45 Times Seen959 Hash 5b9656ba0fdb0134047277f51a294ff7 b63916c29413ef9e2a65098c77314323218f811c 9561e20ff167522afc4c296268ce912367a0e46dc80876ce6503286d16db49b6 Loading...

	#7 Eval - fa7137d7e9c27a5f68c615884c2e32b3	62 B	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 00:33:53 Last Seen2023-03-29 21:29:45 Times Seen958 Hash fa7137d7e9c27a5f68c615884c2e32b3 4a55d55066201dd9d1ef7c492acb80c62720975d f2964a7ecc3af98401c78cab258c0abf06390d0b238cfe05735210a96ce05e8f Loading...

	#8 Eval - b326b5062b2f0e69046810717534cb09	4 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-24 01:41:44 Times Seen23285 Hash b326b5062b2f0e69046810717534cb09 5ffe533b830f08a0326348a9160afafc8ada44db b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b Loading...

	#9 Eval - 672dd79f2aee917d139b85dff81b07ac	22 B	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 08:07:33 Last Seen2023-03-29 23:21:19 Times Seen1123 Hash 672dd79f2aee917d139b85dff81b07ac 0983b5c27c8dbcef2a34bb3aea5d535724169732 194de1f71672078704902b1d6b90f127b88defefba37f18a3aac0b2b507d1e6a Loading...

	#10 Eval - c9f3fb5cdf3373f06e330e6a87ce04ce	22 B	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 08:07:32 Last Seen2023-03-29 23:21:19 Times Seen1123 Hash c9f3fb5cdf3373f06e330e6a87ce04ce df99edfbb22db4736d72c3682cc5100ac6cc3d0f 7e31eb44219eea12f907946968f8b66102cb2d68650c6a93d64198f6a83fc927 Loading...

	#11 Eval - cee7ba24ee0d509127c018e3c0c72945	22 kB	2023-03-26	2023-03-26
Pretty Observations First Seen2023-03-26 10:00:56 Last Seen2023-03-26 10:00:56 Times Seen1 Hash cee7ba24ee0d509127c018e3c0c72945 c3de595c344eba362f20dfff0915b5edff27f959 2c64b553a99593285f9a0fb783f4d1f7850854d0e9307db780ca95554f8af84e Loading...

	#12 Eval - e20ad662320d79b91077ba97fcf22ecc	20 kB	2023-03-26	2023-03-26
Pretty Observations First Seen2023-03-26 10:00:56 Last Seen2023-03-26 10:00:56 Times Seen1 Hash e20ad662320d79b91077ba97fcf22ecc ee3b80762d87f0c69e26c5a60f909633a677b2f8 62333dd3f122f1cd752faededa50906869e7cab0ea5bbe261f8cb582d502da29 Loading...

	#13 Eval - ac02bfffaab57fcfb6d172fb20b1a121	64 B	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 08:07:32 Last Seen2023-03-29 23:21:19 Times Seen1123 Hash ac02bfffaab57fcfb6d172fb20b1a121 2f1dd7383fc846e49abf52215068d02a26e72cb8 3c12ab11c3e192f3e727d70aff57b655169d57c5b3e6bd30c73381c11acb93e4 Loading...

	#14 Eval - 0953b735f2deb2362317bea83dfa5dbc	22 B	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 00:33:53 Last Seen2023-03-29 21:29:45 Times Seen958 Hash 0953b735f2deb2362317bea83dfa5dbc 086ee4d34e2e5b73a6e79594cfda98ec8e609d1d afbb7c77972444094833196bcd32991fd88419b52ab33cbcd127cc9f09c255f5 Loading...

	#15 Eval - d01018517fbed17f64e2643a74e5dabb	22 B	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 00:33:53 Last Seen2023-03-29 21:29:45 Times Seen958 Hash d01018517fbed17f64e2643a74e5dabb 34268404d60d410cbfdb33c9625ae59a770fd105 65417db3c128e1929ec48f5cf133ceb50dc16e7f156a124b41be6ee1781ef848 Loading...

HTTP Transactions (82)

	URL	IP	Response	Size
	linkvertise.com/416384/leg223?o=sharing	172.64.138.5	301 Moved Permanently	0 B
URL HTTP/1.1 linkvertise.com/416384/leg223?o=sharing IP 172.64.138.5:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /416384/leg223?o=sharing HTTP/1.1 Host: linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Sat, 18 Mar 2023 20:03:13 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Sat, 18 Mar 2023 21:03:13 GMT Location: https://linkvertise.com/416384/leg223?o=sharing Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J1%2BiPU4p7RxQOn0tolz0ymtDIPnim%2BioSH%2FVqCk9OOV2W%2F%2F4%2FTvtYkgxEYXwF6GMRct3AJU7EAC2JCtbwggaFKMvGl%2BBFDvohlST1J6scynTmpGy%2B%2FfzPLgNXS0wZbcZPDM%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding X-Frame-Options: sameorigin Server: cloudflare CF-RAY: 7aa013eaa9834887-LHR alt-svc: h2=":443"; ma=60

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2857be6f18459c7a4a7f00f6cd6076f1 570609086d72a9be57cde7bfefd25663c1035fba bd8abb8f420d1e31462fca1d6a7caadf1e2bba6fc7db05684b5811e00e84107f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BD8ABB8F420D1E31462FCA1D6A7CAADF1E2BBA6FC7DB05684B5811E00E84107F" Last-Modified: Fri, 17 Mar 2023 14:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2625 Expires: Sat, 18 Mar 2023 20:46:58 GMT Date: Sat, 18 Mar 2023 20:03:13 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 443a700f85619f4fd8a548421c5c23e2 a58764a07feafb2bb4b340c020b5104c55b35195 0bc80613f3d493ea081bf5672ab76f6f33a1dcc0710fe1431de83c46d7e8d31d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0BC80613F3D493EA081BF5672AB76F6F33A1DCC0710FE1431DE83C46D7E8D31D" Last-Modified: Fri, 17 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5170 Expires: Sat, 18 Mar 2023 21:29:23 GMT Date: Sat, 18 Mar 2023 20:03:13 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash bc86ef2a0cee04915bc360f5821adc8f 3658f9028cce204d38f7f48fcfaa2a8e4f54383a aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sat, 18 Mar 2023 19:26:58 GMT content-type: application/json age: 2175 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash eddc2a353d39e5ce5c30d7e90b3ed6a5 305e86e4b966344c135c50af9a6509ffd3a83e9e bd775c38c2e11f1baedde5d92ab17ceaf4c2067f8ea996595a66801758a71813 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BD775C38C2E11F1BAEDDE5D92AB17CEAF4C2067F8EA996595A66801758A71813" Last-Modified: Fri, 17 Mar 2023 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5487 Expires: Sat, 18 Mar 2023 21:34:40 GMT Date: Sat, 18 Mar 2023 20:03:13 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: JNZK/gdhodMHGrqEqATgPV4jsXqnlbm3P76PxsJVZmmkfILU5nUVTCPsi6GlSX+KGS0NH513W+I= x-amz-request-id: 6NFPHP1ZNEY5XASJ x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sat, 18 Mar 2023 19:57:59 GMT age: 314 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Sat, 18 Mar 2023 20:03:13 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	104.17.25.14	200 OK	28 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65451) Size 28 kB (27748 bytes) Hash 638a4990025383a0f83ebf29bdb84a68 153e8818dc42f598e47fde8cf398f1447649a4d0 878e34b89800bb271d3588e526eb3598eb3822e263f3bdaf53645847d39d0ad6 HTTP Headers `GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:14 GMT content-type: application/javascript; charset=utf-8 content-length: 27748 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03ec4-15851" last-modified: Mon, 04 May 2020 16:11:48 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 784148 expires: Thu, 07 Mar 2024 20:03:14 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EMnbTcj2%2B%2BHaU4Q%2FRQy8s6pwDvq6imn%2FARaiQWpzuiFfyKmt%2FRjvZrJ5HDmCnNpgBNDmXAmjO1byVh1Nn8cRxtAH1y7k0aZVg7ODQn6kWWprcN1yucXzp9JJwdHRR7P6%2By2s7Nxc"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 7aa013ee1953b51b-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css	23.36.76.184	200 OK	5 B
URL HTTP/2 p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css IP 23.36.76.184:0 ASN #20940 Akamai International B.V. File type ASCII text Size 5 B (5 bytes) Hash 83d24d4b43cc7eef2b61e66c95f3d158 f0cafc285ee23bb6c28c5166f305493c4331c84d 1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb HTTP Headers `GET /p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css HTTP/1.1 Host: p.typekit.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx content-type: text/css content-length: 5 last-modified: Thu, 28 Jul 2022 22:24:50 GMT etag: "62e30cb2-5" cache-control: public, max-age=604800 access-control-allow-origin: * cross-origin-resource-policy: cross-origin accept-ranges: bytes date: Sat, 18 Mar 2023 20:03:14 GMT X-Firefox-Spdy: h2`

	cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css	104.17.25.14	200 OK	10 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type ASCII text Size 10 kB (10228 bytes) Hash 9f8ae150e614ee49febe1ac6088202e6 5f5d1a1a96289a0fa1d052d8dd59d5a236e5227e c931e5cbd1bbd7e7e6802ce040c35ce7c1d7425988b767c6a29bedbfa2eb496f HTTP Headers `GET /ajax/libs/font-awesome/5.10.2/css/all.css HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:14 GMT content-type: text/css; charset=utf-8 content-length: 10228 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03e60-111e5" last-modified: Mon, 04 May 2020 16:10:08 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 785295 expires: Thu, 07 Mar 2024 20:03:14 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pTqZc4pxKqg5x5b6ajIBKIZg35tniTJJmdynj9jVADznCDIlLh3xspnv1ii%2BI%2BBITprUsmibe7lUu6021UN1OARtEzI2Zj%2FawWZXxj95blbiH5pagHp3y0urJSJDzDOCLV%2BhGyob"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 7aa013ee398eb51b-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.r2m01.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m01.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash fc35cceac28a6f24afe897ff5ccfd021 4ba7edb286037a0c18ca325c6eb10595f2094748 e00da00c07b7c0388a86ac40972d833e6c56bb2dae7910d8a8d62633781f6be1 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Sat, 18 Mar 2023 20:03:14 GMT Last-Modified: Sat, 18 Mar 2023 18:13:19 GMT Server: ECAcc (nya/79F3) X-Cache: Miss from cloudfront Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: zv1asUWqY36y_qjQj-PzDg4rs3QFTIPlASefiPDWd4MNVn5GZYhQ_Q== Age: 6595`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 5a2f6d953f946b542f1145cdcae9946e 00184b28856db5a12858eab98f97dc01c1471449 7f32b4afd160b8ecff360fc0e83e582cf49918a379c6c73f2a837c48439aab00 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 18 Mar 2023 20:03:14 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG	142.250.74.136	200 OK	64 kB
URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG IP 142.250.74.136:0 ASN #15169 GOOGLE File type Unicode text, UTF-8 text, with very long lines (12213) Size 64 kB (64146 bytes) Hash c48db941ad4947ed30b4dcde88b563a8 885459ff86a1eadab446ed33dc7daa25b9657b13 de63a6b943ee67c7503ef8af697f89be283800c77489408b9820cecb1bb288ad HTTP Headers `GET /gtm.js?id=GTM-TZ69NZG HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sat, 18 Mar 2023 20:03:14 GMT expires: Sat, 18 Mar 2023 20:03:14 GMT cache-control: private, max-age=900 last-modified: Sat, 18 Mar 2023 18:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 64146 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash db7a51fe853d91ea7990bb3c41ba3cb4 f416e7ea87e2ac443e81afac853a3d05071d88e4 a928e7cde6f4fc75660068bfb5e8ac2270f43f8ae58ccb8f4f63a3ca6a376141 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 18 Mar 2023 20:03:14 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, ETag, Pragma, Content-Type, Content-Length, Cache-Control, Expires, Backoff, Alert, Last-Modified content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sat, 18 Mar 2023 19:14:32 GMT age: 2922 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 657e225fbd809f16e51b4997847e5710 28b88c58a006257deb72f43ea236d0a513081847 f37f7d971e2f36b0d260965c8ab09863cffc87cfc3d561c40c3d72c9c207eae5 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 18 Mar 2023 20:03:14 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2	216.58.207.227	200 OK	11 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data Size 11 kB (11028 bytes) Hash 1f6d3cf6d38f25d83d95f5a800b8cac3 279f300ca2cbbdf9f5036ef2f438607fbf377daa 796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f HTTP Headers `GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 11028 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 13 Mar 2023 00:48:21 GMT expires: Tue, 12 Mar 2024 00:48:21 GMT cache-control: public, max-age=31536000 age: 501293 last-modified: Wed, 11 May 2022 19:24:50 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash a4fe1012a4d75c602aab58bcff2d9c28 b079e7b9e4da4d67ecdc3e11bff33462bd026899 f7e4c8251356329744c989f9194354f78b9d142a69db8cc5d92ade3d70efcc01 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 18 Mar 2023 20:03:14 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 70f795f7a73fb087a4b08eebe6e2a970 faaa9283e766256900f3c3e00dee00973e7da2a6 4f7e4813f82f60ebf9c536d9342726307686931df7309a4c367f3b658602efde HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "4F7E4813F82F60EBF9C536D9342726307686931DF7309A4C367F3B658602EFDE" Last-Modified: Fri, 17 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8018 Expires: Sat, 18 Mar 2023 22:16:52 GMT Date: Sat, 18 Mar 2023 20:03:14 GMT Connection: keep-alive`

	js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/animation.css	54.230.111.20	200 OK	758 B
URL HTTP/2 js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/animation.css IP 54.230.111.20:0 ASN #16509 AMAZON-02 File type ASCII text Size 758 B (758 bytes) Hash f8a79fc47c28375628855b4c78ff6f85 b2fb79a766c233408a6e0dd38a169dee2e88d4b0 e3b7f54cf81a0ff1f16662abce7b1970ed6a8a8191da96cf05dcf6644d203df3 HTTP Headers `GET /assets/cbjs-2023.03.14-07.25/v2/animation.css HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: text/css content-length: 758 last-modified: Tue, 14 Mar 2023 07:35:22 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: 2BGRWovxXUNV0AUuZ1WUFXeir1S1xrcV accept-ranges: bytes server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload date: Sat, 18 Mar 2023 19:59:52 GMT cache-control: max-age=300,public etag: "f8a79fc47c28375628855b4c78ff6f85" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: WjZzZrKKnR-ALBluwqWuTKPvUhbfN7t6eZfXfINknRRC5ir147taaw== age: 203 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2	216.58.207.227	200 OK	129 kB
URL HTTP/2 fonts.gstatic.com/s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 128616, version 1.0\012- data Size 129 kB (128616 bytes) Hash a4160421d2605545f69a4cd6cd642902 aaae93b146d97737fabe87a6bc741113e6899ad3 4a4dbc62fa335e411b94a532be091c58c0c0c4fa731339f11722577d3cf6443b HTTP Headers `GET /s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 128616 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 15 Mar 2023 20:38:44 GMT expires: Thu, 14 Mar 2024 20:38:44 GMT cache-control: public, max-age=31536000 last-modified: Tue, 07 Mar 2023 19:52:07 GMT content-type: font/woff2 age: 257071 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/master.html	54.230.111.20	200 OK	234 B
URL HTTP/2 js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/master.html IP 54.230.111.20:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 234 B (234 bytes) Hash 0700bad8d09540ffaaf56b873c1ecfd0 6cd4ff39b54f2719f62a888270fbc18f210ed294 4ebef73a3b7a24d1ef3ee2692a48d09a55ec737a27a4029d878f9909b5f4b404 HTTP Headers GET /assets/cbjs-2023.03.14-07.25/v2/master.html HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK content-type: text/html content-length: 234 last-modified: Tue, 14 Mar 2023 07:35:22 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: fdKF56MMNNx3bktmrJA2.jQxHPpuTMWX accept-ranges: bytes server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload date: Sat, 18 Mar 2023 20:00:38 GMT cache-control: max-age=300,public etag: "0700bad8d09540ffaaf56b873c1ecfd0" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 2lIZMhM0fxemJ8uRxXnwz4CETZJjcG5ga-pPNVKSWCC0wGMIW65mfg== age: 157 X-Firefox-Spdy: h2

	push.services.mozilla.com/	52.24.53.237	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.24.53.237:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: SHt1P0T4DvkH/C6RHC70bA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: zEbr6WRKxj0w/B5RuaQsWt95Apk=`

	ocsp.r2m02.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash efa0bac2a967d9e5d8a4c7227aa265f6 34d38ff8565b8ae449878197565c16ff89958dc9 bc8a49f9d5658a569d24d1ec655198b64582fa4c1612b88984367dfca92822d8 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Sat, 18 Mar 2023 20:03:15 GMT Etag: "6415485c-1d7" Last-Modified: Sat, 18 Mar 2023 19:26:54 GMT Server: ECAcc (bsa/EB2E) X-Cache: Miss from cloudfront Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 2sADSfp7BTuqtZUtKxzxuS4xS15E4LaLabZgllLMY05DDCdqxESISg== Age: 2182`

	sand.ostrichesica.com/clicktrue_invocation.js?id=14473	54.230.111.63	200 OK	32 kB
URL HTTP/2 sand.ostrichesica.com/clicktrue_invocation.js?id=14473 IP 54.230.111.63:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators Size 32 kB (32075 bytes) Hash 75cf31520ba4cd64504835284094e2a3 d28454d5a9a8a7bc60189775d9e94e03524b55f7 b0f51086c7de0a1afa3c12bc23f8bc61fabfd1f9b65c301f65d5736542accee5 HTTP Headers `GET /clicktrue_invocation.js?id=14473 HTTP/1.1 Host: sand.ostrichesica.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/javascript; charset=utf-8 content-length: 32075 content-encoding: gzip server: Caddy date: Sat, 18 Mar 2023 08:15:19 GMT cache-control: max-age=43200 expires: Sat, 18 Mar 2023 20:15:19 GMT etag: "15960-4z1e6z0VzqJM8XA5lhVoyap+mBI" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: -aIAkEFxZxheLzggGM_CnWA5Pk5D9Jlk9uWSlKMaYkdfqeKkbbGagA== age: 42476 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/redirect/link/static/416384/leg223?origin=	172.64.139.5	204 No Content	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/416384/leg223?origin= IP 172.64.139.5:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/v1/redirect/link/static/416384/leg223?origin= HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Sat, 18 Mar 2023 20:03:15 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-headers: content-type access-control-max-age: 0 set-cookie: laravel_session=QEt55WOLRXbxTiAhtzpvIibl11ofFoX1Rwcvswys; expires=Sun, 17 Mar 2024 20:03:15 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=izdimjG%2F7dMy%2Fl2H5faTDcrpRLcTKJDnyJUVV%2FjV3sLKG5GTblAdxaRUX%2BnDSBiMVFsIskKLRsP7BbjI5n5MgcVPxZDkJMxBPyvu8C06e2OcxnT%2BaddqSRO02xHfbOch4FY03pOEcv0Rxh38"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7aa013f37b3d35db-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/account	172.64.139.5	204 No Content	700 B
URL HTTP/2 publisher.linkvertise.com/api/v1/account IP 172.64.139.5:0 ASN #13335 CLOUDFLARENET File type data Size 700 B (700 bytes) Hash d211c55713bd6e102ab8d6aaeaeca548 bcf1258635860f403a8c26399336ae98a2904136 4595b62949141dbc70b91d1afe5637c951db27be995f0dc1bd51d9fd291f1858 HTTP Headers `OPTIONS /api/v1/account HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` HTTP/2 204 No Content date: Sat, 18 Mar 2023 20:03:15 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-headers: content-type access-control-max-age: 0 set-cookie: laravel_session=PN6gTfV9yK59WwtsG03yjfduamGfwh1l05n3wZBU; expires=Sun, 17 Mar 2024 20:03:15 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LmkBOnFZpKO1WuVizd%2BuXwJaKtWH0i4NqYZEdh3lQZVYSR2AUaWUn7%2FWTOwX6fjeePS7qVi8DEzBHEIzo3ROfvojg3c0M%2Bby0m63l3C83bjinTXyzpNwUZbXpMEhZiVpZg54PWripn29eSrf"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7aa013f37b3935db-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/redirect/link/static/416384/leg223?origin=	172.64.139.5	204 No Content	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/416384/leg223?origin= IP 172.64.139.5:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/v1/redirect/link/static/416384/leg223?origin= HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Sat, 18 Mar 2023 20:03:15 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-headers: content-type access-control-max-age: 0 set-cookie: laravel_session=P9pCNy6dVxLaXBHRZuPTPaJNplkcL8LxeqWZ2cNz; expires=Sun, 17 Mar 2024 20:03:15 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UJHPK6tRpatoUTgQRIlAq15MT2QBbiwTALFCIKXEh2QXTUv%2F3nuGNaHiPJV%2BZDFs0U5TSrJ9CqyCj03fbdFstJjowrM%2BE4VoDSz5pR7hgyqnwt5yFlrywhU38N26vm6WorVbajgWY5vj4mWs"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7aa013f37b4335db-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 99fab706a94afb5d6aebbcb1de675409 ea02424dd96c40f23543ca31f82e357397606811 cf289e47320d12db340f4d76da296c36b27264ab692a717fa5fe2b891abdb4ef HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "CF289E47320D12DB340F4D76DA296C36B27264AB692A717FA5FE2B891ABDB4EF" Last-Modified: Fri, 17 Mar 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=362 Expires: Sat, 18 Mar 2023 20:09:17 GMT Date: Sat, 18 Mar 2023 20:03:15 GMT Connection: keep-alive`

	publisher.linkvertise.com/api/v1/redirect/link/static/416384/leg223?origin=	172.64.139.5	200 OK	6.4 kB
URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/416384/leg223?origin= IP 172.64.139.5:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (23036), with no line terminators Size 6.4 kB (6444 bytes) Hash 492301ed89c17b827db8cf930571285f 0f96a59b011ab140e45394c0030d54b9598274a9 b20e0295aaddbfcf71506df2d6372ec295b4c814ec63c6d3a9b0c13969dcf4cb HTTP Headers `GET /api/v1/redirect/link/static/416384/leg223?origin= HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Content-Type: application/json Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:15 GMT content-type: application/json cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin access-control-allow-credentials: true set-cookie: laravel_session=wQ1iWmOkue7MbXsXlnQMoEW6o1zI5REM7aYKtTqg; expires=Sun, 17 Mar 2024 20:03:15 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x3RjJWKgGTEakuhlwrY7c%2FFo%2BL7cj%2FtMQ4%2FlbmSXE9bxIwCNLpLknoGcJ57DFSF%2Bds%2Fq3tYAeNyf8esY5VLMaogjSzw4uzb96pdic3ggj922aPg4eTar8av4fGXUtpkdGC4cs9VHy3O0H8TZ"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7aa013f41c9935db-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.r2m02.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash add0196c746c1f09ae32a1df42747320 d7d5d833374777d2fe0cc0605cb2df4f34007d5e 7260a0fb60aed52146f012d9906dce0000d45caf5bea293b89c80a7435f2c1f6 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Sat, 18 Mar 2023 20:03:15 GMT Last-Modified: Sat, 18 Mar 2023 18:54:09 GMT Server: ECAcc (bsa/EA8F) X-Cache: Miss from cloudfront Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 0H5SsVwBvR3blGu-PhpPsMs7gIbm-HsH-ovgH7jlNZBgo1KgdgtMPw== Age: 4146`

	www.thinksuggest.org/simple/suggest-min-unpacked.js	176.9.175.232	200 OK	52 kB
URL HTTP/1.1 www.thinksuggest.org/simple/suggest-min-unpacked.js IP 176.9.175.232:0 ASN #24940 Hetzner Online GmbH File type Unicode text, UTF-8 text, with very long lines (51479), with no line terminators Size 52 kB (51487 bytes) Hash cd2f3074326840d55a3c3ea1e99e83fe 3a2e1d1a93506526ae3ed2b44d584af7771ff8d0 9ec9f50ac6a5dfdf7ace0a047ab4e86a7f8ff297030f93f9b8b4e27c57fdaa51 HTTP Headers `GET /simple/suggest-min-unpacked.js HTTP/1.1 Host: www.thinksuggest.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Server: nginx Date: Sat, 18 Mar 2023 20:03:15 GMT Content-Type: application/javascript Content-Length: 51487 Last-Modified: Fri, 05 Jun 2020 12:39:04 GMT Connection: keep-alive ETag: "5eda3ce8-c91f" Accept-Ranges: bytes`

	js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/master-c8c7b04ae6cd57f0b0fe.js	54.230.111.20	200 OK	71 kB
URL HTTP/2 js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/master-c8c7b04ae6cd57f0b0fe.js IP 54.230.111.20:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (65330), with no line terminators Size 71 kB (70858 bytes) Hash eaf9dfc56fa9ce5cae12bddeab0fa986 46b84d2906953d04212e13845dff99c55898e37c cfabcf537e1b26aa8fc5014fcb586d3820faad365e2e20168cf0e2a62a9580f7 HTTP Headers `GET /assets/cbjs-2023.03.14-07.25/v2/master-c8c7b04ae6cd57f0b0fe.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/master.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Tue, 14 Mar 2023 07:35:22 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: kc7NyVQX05gnF6C10qVL6K7saxlCRWyB server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Sat, 18 Mar 2023 20:02:31 GMT cache-control: max-age=300,public etag: W/"a7bde2965821618b72d5532ca317b40a" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 6QVWMXHGoyEzsJ3TiYShfU_b96JODaknItRZNFDHLHLmL6QRZAPSYw== age: 46 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/redirect/link/static/416384/leg223?origin=	172.64.139.5	200 OK	5.9 kB
URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/416384/leg223?origin= IP 172.64.139.5:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (23036), with no line terminators Size 5.9 kB (5941 bytes) Hash a3a4be91f2abd1eebedce2777aec678b acf31cadca6447ffbf7f42827208fa96c9f4099e ed408cc85ad8421e69e8b9dbaa8ffa0c78f12b01e33e071d25283b031d25b6c7 HTTP Headers `GET /api/v1/redirect/link/static/416384/leg223?origin= HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Content-Type: application/json Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:15 GMT content-type: application/json cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin access-control-allow-credentials: true set-cookie: laravel_session=9aZ05VrPSv22UYbY6QYKofpTHt2wGXb1kVxwYyM8; expires=Sun, 17 Mar 2024 20:03:15 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mSLppSGiKRM0pk1d0kDQomH%2BQZ4uwUwzSsfSorHAcGHXnwqTBxMQnJJDbeEC%2FlfN3%2FHIODxE6eLOT0Ui5tvNb6yTe3h8eouDgpSSZJiyPwXf5Yp5ZCa6U%2Fi8hUZKkpXS7T58qMmWPfJma1uQ"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7aa013f42ca635db-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	linkvertise.chargebeestaticv2.com/api/internal/1679169600/retrieve_js_info	54.230.111.21	200 OK	451 B
URL HTTP/2 linkvertise.chargebeestaticv2.com/api/internal/1679169600/retrieve_js_info IP 54.230.111.21:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (451), with no line terminators Size 451 B (451 bytes) Hash 53e8a4bad15d11a2df3eb6a44e64734b 9681853dd64480d24c5482edfe9ddbc138008f19 6cb113617c09dcd449abccfe4341acc4ba667bce0ca54f92b95ffc0f03b16a79 HTTP Headers GET /api/internal/1679169600/retrieve_js_info HTTP/1.1 Host: linkvertise.chargebeestaticv2.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-Requested-With: XMLHttpRequest Origin: https://js.chargebee.com Connection: keep-alive Referer: https://js.chargebee.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK content-type: application/json;charset=utf-8 content-length: 451 date: Sat, 18 Mar 2023 19:04:52 GMT cache-control: max-age=0, must-revalidate, public, s-maxage=3600 expires: Thu, 01 Jan 1970 00:00:00 UTC strict-transport-security: max-age=31536000; includeSubDomains; preload access-control-allow-origin: https://js.chargebee.com access-control-allow-credentials: true access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token access-control-allow-methods: GET, OPTIONS, POST server: ChargeBee x-cache: Hit from cloudfront via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: Kcx3kKc1sk6A8TuojC0KKZXnWhp-S-LpWgGne0EPbaq6y7LsIADApg== age: 3503 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=3E39d9rtkeRNfLOHOPj1oTBSf7ZIno%2BmULbA68ClMKoiqoNO3gt7QiBewPQLjZbKMMcc&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd	172.64.139.5	204 No Content	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=3E39d9rtkeRNfLOHOPj1oTBSf7ZIno%2BmULbA68ClMKoiqoNO3gt7QiBewPQLjZbKMMcc&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd IP 172.64.139.5:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/v1/validate-traffic?cheq_response=3E39d9rtkeRNfLOHOPj1oTBSf7ZIno%2BmULbA68ClMKoiqoNO3gt7QiBewPQLjZbKMMcc&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Sat, 18 Mar 2023 20:03:15 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-headers: content-type access-control-max-age: 0 set-cookie: laravel_session=V2g2ybsmlN6tRvg0uE1URrmQNyNdB5jQA4VbZwpv; expires=Sun, 17 Mar 2024 20:03:15 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wL1JChxNwLXubrvpwxk8i1vm8OZ9K8TeQ84xfz2aCDhmJ0%2BpVHvpCdTx5aMIf4sZ59zEnXYTcHmojPSZXao1iBUKIe8KSMv6tsgN1e3e6WhqKzpgnNdmkSoVfN7kqDpT8UI4zYjS3oSubf4X"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7aa013f78a2235db-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F416384%2Fleg223%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1679169795127&hl=1&op=0&ag=1317291471&rand=938287902011080100719090717265209716297712100601158687769059280505175282691&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=4SngYw8psc&pto=2114&ver=50&gac=1143141890.1679169795&mei=&ap=&duid=1.1679169794.lJXEN6jdJcpJen5V&suid=1.1679169794.KrG12d2ZUIAR7alx&tuid=1.1679169794.qCPMQagpB3DcCNTz&fbc=-&gtm=W10%3D&it=74%2C1385%2C202&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0	52.45.196.192	200 OK	31 kB
URL HTTP/2 paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F416384%2Fleg223%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1679169795127&hl=1&op=0&ag=1317291471&rand=938287902011080100719090717265209716297712100601158687769059280505175282691&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=4SngYw8psc&pto=2114&ver=50&gac=1143141890.1679169795&mei=&ap=&duid=1.1679169794.lJXEN6jdJcpJen5V&suid=1.1679169794.KrG12d2ZUIAR7alx&tuid=1.1679169794.qCPMQagpB3DcCNTz&fbc=-&gtm=W10%3D&it=74%2C1385%2C202&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 IP 52.45.196.192:0 ASN #14618 AMAZON-AES File type data Size 31 kB (31347 bytes) Hash fffdbbcb7ecd056bd225bbe64593c840 645233e96169fe1b8db31894fc5df468abc492af aaae0d71da8cc4e1ca9def217ffbb98aaba34104a302588425f11edcb869e8f0 HTTP Headers GET /ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F416384%2Fleg223%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1679169795127&hl=1&op=0&ag=1317291471&rand=938287902011080100719090717265209716297712100601158687769059280505175282691&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=4SngYw8psc&pto=2114&ver=50&gac=1143141890.1679169795&mei=&ap=&duid=1.1679169794.lJXEN6jdJcpJen5V&suid=1.1679169794.KrG12d2ZUIAR7alx&tuid=1.1679169794.qCPMQagpB3DcCNTz&fbc=-&gtm=W10%3D&it=74%2C1385%2C202&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1 Host: paper.ostrichesica.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK cache-control: no-cache, no-store, must-revalidate content-encoding: gzip content-type: text/javascript date: Sat, 18 Mar 2023 20:03:15 GMT expires: Fri, 01 Jan 1990 00:00:00 GMT pragma: no-cache set-cookie: cg_uuid=088996b23533fb5caa3dd0ef2205c090; Max-Age=29030400; Path=/; Expires=Sat, 17 Feb 2024 20:03:15 GMT; HttpOnly; Secure; SameSite=None content-length: 1043 X-Firefox-Spdy: h2`

	paper.ostrichesica.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136de7c633e34083989225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5f15896a2417071a10acf9f29f671c838a8a037a361bf67b72558e3ede6792573904769504010966030b93ba694777be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c7b4577075da0df2f647e01aca8182f89aca62996e25e7a4e7affa0ac94cd71ebcfc248b5038e523c60cbe986a7b376cccee879cf774a91bac333074aae3f34eec55620b79bae6adc59a259b6851ec147cfd023916f37949a38d9778cc0bca69de5e20538b47ae7f8a577433ebfd2608ca611a14f547fa84f469782c39091b2c527cb6a88c8fbc868e9787c24947f3bd4ccd10e6990e979eb59a792479164f96f504a148276b30ec8ccab7cae8c35cb5cbfcfd09b29ce5c474cf355135f68627887f423fb059a8c832484906efa9c3af184a9a63dc0f0a91f7670c8b1671295e65a0b4cbbb8b066b82799ec5882fc3ce639f9658759c615c9a93ac01326e2a7956f3b213c79427e2211f0b5f63f9278e21b4b253be4a60c9ac14c1ef4aadea4bd6ac5e4e5fa8fffa6f555347e8c4684e25b04e63a1479d03201397eea69eb334096f9cb718b7ed6238ca22dcbb10a907f116053620172cd97a4a93f0f06e96621dfc1c5a9f28a051794dbd061848d3722cad813207badc09d075de874d41bc645bd5dce4582974deab033fe89dc87da5568ece1387f9036fbdca2a117807e744b4786621d15edff439db35799c889c255d195d8705d7555b463ee59f649a0d82aef72317d1e692626bf0d9c8b6504e52c95ea&cri=4SngYw8psc&ts=38&cb=1679169795165	52.45.196.192	200 OK	721 B
URL HTTP/2 paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=4SngYw8psc&ts=38&cb=1679169795165 IP 52.45.196.192:0 ASN #14618 AMAZON-AES File type data Size 721 B (721 bytes) Hash d25117b7ab8733708a32a1a0a2786a94 82c6242106fc3309e7015f2e908a1d7ef1f48901 a3f423adec141e15cb09ce3d70d1854e0af1aa51c39d4f86b7b763865c18de38 HTTP Headers GET /tracker/tc_imp.gif?e=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&cri=4SngYw8psc&ts=38&cb=1679169795165 HTTP/1.1 Host: paper.ostrichesica.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Cookie: cg_uuid=e1934f90835a9515ec91e6f1fc7de428 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK cache-control: no-cache, no-store, must-revalidate content-type: image/gif date: Sat, 18 Mar 2023 20:03:15 GMT expires: Fri, 01 Jan 1990 00:00:00 GMT pragma: no-cache content-length: 43 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 19c14f58184c7e690016123d3ef7a534 2c72fde2182255e717fb88abf38f3d4cdfdefafd cdac56c85e414c7934436cc5347cdf356ad82b3fbfd2e6bac40a4156382442ad HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 18 Mar 2023 20:03:15 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-	216.58.211.4	200 OK	586 B
URL HTTP/2 www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- IP 216.58.211.4:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (884), with no line terminators Size 586 B (586 bytes) Hash a351a811415e1563df30c2c67155e938 fafb85fc84b679298a0c0c885b68c1e1415c1374 862f677482d654f69283ddb46e859acb32b819a31689e73ac8f4f82bf60d0331 HTTP Headers `GET /recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://js.chargebee.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK expires: Sat, 18 Mar 2023 20:03:15 GMT date: Sat, 18 Mar 2023 20:03:15 GMT cache-control: private, max-age=300 content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block content-length: 586 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	publisher.linkvertise.com/api/v1/redirect/link/416384/leg223/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd	172.64.139.5	204 No Content	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/416384/leg223/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd IP 172.64.139.5:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/v1/redirect/link/416384/leg223/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,cqreferrer Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Sat, 18 Mar 2023 20:03:15 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: POST access-control-allow-headers: content-type,cqreferrer access-control-max-age: 0 set-cookie: laravel_session=Jj3etjdbKxkqefByTxUoa7cYGGwjw6rxu5LsrfXM; expires=Sun, 17 Mar 2024 20:03:15 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SJdqiXl5wZqIzX8vADogo8R3XsYaWF5%2BMNkIbz3J2K3Zgq9Vncsx1EgCxUdYSq5xhWoASTZD5YxQxYLYbh%2Fdp0a4TMFyKHEe4Nr%2Fx3%2FVP0LwSme10vYUVh7VW%2FaxsnZQLbuNFsbuer5c%2FuNo"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7aa013f7ca9535db-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 10bb1da74cabb050bb1f1af5989d201a a28a2ce1097c2bbbbd42869df64551a01d2c7de4 180b15454b4cd4d39194bee9ce00122c7cffb85decddb8083d3f1361ea01eb13 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 18 Mar 2023 20:03:15 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js	216.58.211.3	200 OK	165 kB
URL HTTP/2 www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js IP 216.58.211.3:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (576) Size 165 kB (164678 bytes) Hash f22f07ee02fbeed3958345c90b52b818 2aa44ea19d580589c06c2170103b4d0505e18cdb dc1eadf37f70bef92766d0c316d1da7af283b84e5c309a4732d8ed35d7bbfb84 HTTP Headers `GET /recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://js.chargebee.com Connection: keep-alive Referer: https://js.chargebee.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 164678 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 15 Mar 2023 11:44:52 GMT expires: Thu, 14 Mar 2024 11:44:52 GMT cache-control: public, max-age=31536000 last-modified: Mon, 13 Mar 2023 02:02:14 GMT content-type: text/javascript vary: Accept-Encoding age: 289103 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cdn.taboola.com/libtrc/linkvertise-link-to/loader.js	151.101.1.44	200 OK	43 kB
URL HTTP/2 cdn.taboola.com/libtrc/linkvertise-link-to/loader.js IP 151.101.1.44:0 ASN #54113 FASTLY File type Unicode text, UTF-8 text, with very long lines (28418) Size 43 kB (42572 bytes) Hash f016c57f7bc23d4a1f711bb0849864c2 eefdcd04d0d057681d01461fb64afef4b744e9b5 f90ca7cf5c80e85d5068c4994bcdc9462b5f0dc5cfea00403c45475a6a004039 HTTP Headers `GET /libtrc/linkvertise-link-to/loader.js HTTP/1.1 Host: cdn.taboola.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: TztzMIDavutBoXlgo4u7OmhRQ4QVzSOE+a6AYZ7pp6Lu4E5z9j2BfPCdPWgjbz+cSwfZOxkDc0Q= x-amz-request-id: SD867X04NZAT0SZE x-amz-replication-status: PENDING last-modified: Thu, 16 Mar 2023 10:17:04 GMT etag: "3faca3d9d14ad67bf993b78cd9ccad94" x-amz-server-side-encryption: AES256 x-amz-version-id: KpdkBEHEyvvL4Cd4ycIFZ4uacqs523ai content-type: application/javascript; charset=utf-8 server: AmazonS3 content-encoding: gzip accept-ranges: bytes date: Sat, 18 Mar 2023 20:03:16 GMT via: 1.1 varnish age: 22 x-served-by: cache-bma1666-BMA x-cache: HIT x-cache-hits: 2 x-timer: S1679169796.083939,VS0,VE0 cache-control: private,max-age=14401 vary: Accept-Encoding abp: 64 access-control-allow-origin: * content-length: 42572 X-Firefox-Spdy: h2

	linkvertise.com/416384/leg223?o=sharing	172.64.138.5	200 OK	42 kB
URL HTTP/2 linkvertise.com/416384/leg223?o=sharing IP 172.64.138.5:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11491) Size 42 kB (41812 bytes) Hash ff6f4fe65c4db38375021244a6c06e8a 5881660c9ada9b540e743978d18ebc1b54f92d9b 45291afebfa7fbf6b58353b5447e0ac4861d3d93fc8df17486b30b48a0ea1de8 HTTP Headers `GET /416384/leg223?o=sharing HTTP/1.1 Host: linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:14 GMT content-type: text/html; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A%2F8DBVMKrd4E6SdtMe5pORLw6n%2Bvqo1HN2IbaL88JBjzqjSbNcM2qKZuXrKICqpvaZ28u5VWhadcp4X8cCO8796GJCeuRzsI%2FgFy1A7npikFTdNIFIcYzWY5IH%2F7coJR11s%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-cache-status: DYNAMIC x-frame-options: sameorigin server: cloudflare cf-ray: 7aa013ec9abb76a4-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	region1.google-analytics.com/g/collect?v=2&tid=G-7DRMH8RP03&gtm=45je33f0&_p=1823597331&cid=1143141890.1679169795&ul=en-us&sr=1280x1024&_s=1&sid=1679169794&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F416384%2Fleg223%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1	216.239.32.36	204 No Content	0 B
URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-7DRMH8RP03&gtm=45je33f0&_p=1823597331&cid=1143141890.1679169795&ul=en-us&sr=1280x1024&_s=1&sid=1679169794&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F416384%2Fleg223%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1 IP 216.239.32.36:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-7DRMH8RP03&gtm=45je33f0&_p=1823597331&cid=1143141890.1679169795&ul=en-us&sr=1280x1024&_s=1&sid=1679169794&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F416384%2Fleg223%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 Host: region1.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: https://linkvertise.com date: Sat, 18 Mar 2023 20:03:16 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	script.hotjar.com/modules.e8a3d1a16d3ae98012cf.js	54.230.111.44	200 OK	69 kB
URL HTTP/2 script.hotjar.com/modules.e8a3d1a16d3ae98012cf.js IP 54.230.111.44:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (50842) Size 69 kB (68657 bytes) Hash dcf3a7ce85da1a4b1e561e0ffdaada66 4962d86ef0ad6965f791d0ded4bce07658bd4be2 56e3d41fae7cd8cf239dafbee15237a13c3e8375357ac64c84902b322bf10a48 HTTP Headers `GET /modules.e8a3d1a16d3ae98012cf.js HTTP/1.1 Host: script.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript content-length: 68657 date: Fri, 17 Mar 2023 11:28:07 GMT accept-ranges: bytes access-control-allow-origin: * cache-control: max-age=31536000 content-encoding: br cross-origin-resource-policy: cross-origin etag: "dcf3a7ce85da1a4b1e561e0ffdaada66" last-modified: Fri, 17 Mar 2023 11:27:53 GMT strict-transport-security: max-age=2592000; includeSubDomains x-content-type-options: nosniff x-robots-tag: none vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: V6D98GJCqp2Igm-Ntft8m-ru2_mxKcaehh46qVmuaPu3Cdw5IptAyw== age: 117309 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 84762efcb2e1535ae49fca6c1523df33 93e7f138a491d4276a793c2e5b947195ae69a88c 920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F" Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8081 Expires: Sat, 18 Mar 2023 22:17:57 GMT Date: Sat, 18 Mar 2023 20:03:16 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 84762efcb2e1535ae49fca6c1523df33 93e7f138a491d4276a793c2e5b947195ae69a88c 920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F" Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8081 Expires: Sat, 18 Mar 2023 22:17:57 GMT Date: Sat, 18 Mar 2023 20:03:16 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 84762efcb2e1535ae49fca6c1523df33 93e7f138a491d4276a793c2e5b947195ae69a88c 920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F" Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8081 Expires: Sat, 18 Mar 2023 22:17:57 GMT Date: Sat, 18 Mar 2023 20:03:16 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 84762efcb2e1535ae49fca6c1523df33 93e7f138a491d4276a793c2e5b947195ae69a88c 920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F" Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8081 Expires: Sat, 18 Mar 2023 22:17:57 GMT Date: Sat, 18 Mar 2023 20:03:16 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a465734-2031-4538-bcbc-9d828ea81250.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a465734-2031-4538-bcbc-9d828ea81250.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11673 bytes) Hash 7f53bb1fb90c97461035e7f9f7f7837e 961b5fcbca5b49ca9136e74931253bb300aa1985 dad960991444a4cbd8841e5c673b0e4337bdeb8c18672b5cfadb93d4ac70e8d2 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a465734-2031-4538-bcbc-9d828ea81250.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11673 x-amzn-requestid: 3675d2d9-47ab-4712-9511-0ad7570dd3cd x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: B8eNfFXSIAMFbhQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6414dd89-53c9817044fda17b212f0237;Sampled=0 x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:13 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: RYqMTTPdmeDjKu7jhuuUFEn4Y420mbCQcZ8LN-vI9oBJ8LBkZEv0Ig== via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ef8f66c83aecd87910ce2e1153544a20.cloudfront.net (CloudFront), 1.1 google date: Fri, 17 Mar 2023 22:05:35 GMT age: 79061 etag: "961b5fcbca5b49ca9136e74931253bb300aa1985" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f030924-26fe-4a36-bf48-11d8ccfe470b.png	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f030924-26fe-4a36-bf48-11d8ccfe470b.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 772-769, spot sensor temperature 0.000000, unit celsius, color scheme 0, minimum point enabled, calibration: offset 0.000000, slope 1115717714480204991250653249536.000000\012- data Size 13 kB (12699 bytes) Hash 7c6233f649c3f84fcba3d244b3e5c35d 2820939892ab0d9b7c995043dc0f38642ac1e415 1ff87957f29a41db7bcbfcbc644cd434705b046b32e8d01467ec6b8c9f75c77b HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f030924-26fe-4a36-bf48-11d8ccfe470b.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12699 x-amzn-requestid: ebcd4e4c-f214-463e-a2c9-1392f278d6d9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: B8eSgGFOIAMFt8A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6414dda9-5ec892ee018fe3d118df30d6;Sampled=0 x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:45 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: Xm-KvGwI47UAZpwvXtnkLrSo18bFGJIdPrSvw3AayrUqyWVHlgbkqA== via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google date: Fri, 17 Mar 2023 21:55:54 GMT age: 79642 etag: "2820939892ab0d9b7c995043dc0f38642ac1e415" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png	34.120.237.76	200 OK	83 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type data Size 83 kB (82860 bytes) Hash 7945319e5c0a8a5b3590c713743caf47 4eafd995701e872f519d7aa19e44aab4800d2552 b869c698af389accffffdb68e4feb86f6b87f4bd532f7e601c46db4352dcac0f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10338 x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BvSgFGENoAMFuVw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0 x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: bka10YWXvoKBRkwgvJNMzm1SSv_J1USzdugO9lPduHxe2uYFYkXh4w== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e11ee4e3208082d534c251b36bbee268.cloudfront.net (CloudFront), 1.1 google date: Sat, 18 Mar 2023 04:25:40 GMT age: 56256 etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261ec986-2f8d-4ff1-a532-841fb845618b.jpeg	34.120.237.76	200 OK	6.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261ec986-2f8d-4ff1-a532-841fb845618b.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.2 kB (6151 bytes) Hash ae34f2fd5c842d15f05edef4c8b71dec 7e0306e3aa1b415cf9cae33b07da9f3303216a33 a5c1d1c217f6ebae09bbcb3c7ca6261e75773fdf32c1be4fedc29695f3233bf4 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261ec986-2f8d-4ff1-a532-841fb845618b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6151 x-amzn-requestid: 3df3d28e-80d9-40ff-a524-1c8d07c5b5f5 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: B8eWhHeBIAMF2pA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6414ddc3-023ab8d94bf6b98a5c0b4260;Sampled=0 x-amzn-remapped-date: Fri, 17 Mar 2023 21:38:11 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: Sf-LgGpKI-9JPfurhJ_S6vfH-mT0jEl77QDUUWeOE1jzGS6OU47QpA== via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 de2dd11312f7d5ad3bcd0cb112c7fd0e.cloudfront.net (CloudFront), 1.1 google date: Fri, 17 Mar 2023 21:48:47 GMT age: 80069 etag: "7e0306e3aa1b415cf9cae33b07da9f3303216a33" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a34f4ab-d2e4-48aa-b1d4-ba1513efdd5c.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a34f4ab-d2e4-48aa-b1d4-ba1513efdd5c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10029 bytes) Hash 58ae9b9d874dd977b79bd6f8ad3829f9 070ba3e08796862f511f3313c99d863539696313 ef4738171c6cc5a2c2f725e5a32d65b3de38ba8bbbed72a52f724476ba764a42 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a34f4ab-d2e4-48aa-b1d4-ba1513efdd5c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10029 x-amzn-requestid: ee521485-7d70-46d3-b7e6-7f38e1ca0f01 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: B8eR6GiMIAMFjUg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6414dda5-3d5d5d5d37b1ed8e250d2146;Sampled=0 x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:41 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: qqVri7BrFPm419PBmAnW-QQpwBf99IMBD8R1zLTvJzpNUJrXCJf2cg== via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google date: Fri, 17 Mar 2023 21:44:56 GMT age: 80300 etag: "070ba3e08796862f511f3313c99d863539696313" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F666540c7-8fcc-4d9e-95cc-493f063f11c6.webp	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F666540c7-8fcc-4d9e-95cc-493f063f11c6.webp IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10531 bytes) Hash d212de894f514eafa8a4e23e62280b70 b20a7f2b27c085f47a4d6ddaf7f1971876f11885 1ba6c03f75b3aa49d0636fca0007d0365c8db744ae8fb769f5c7e04991711fd6 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F666540c7-8fcc-4d9e-95cc-493f063f11c6.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10531 x-amzn-requestid: b03ec37f-181a-450e-8b8b-42e1ddbd2372 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: B8eOlENToAMF02A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6414dd90-4ed78f345679ff700e5a0e99;Sampled=0 x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:20 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: thbvnsI_Ezwk-Gtqk654INjkVN55KLTlUeW-lL-t114v9AMxOMy75Q== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 0ec9ddba08fcd99386924593dbdbd44a.cloudfront.net (CloudFront), 1.1 google date: Fri, 17 Mar 2023 22:05:32 GMT age: 79064 etag: "b20a7f2b27c085f47a4d6ddaf7f1971876f11885" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	192.229.221.95	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 7e5063820a7eeac760f93fa7b08c459e 206d0449437fe2948e98b42b806ff3a99b099a9a e438147b16b5682ebd17444f2817eb983552040618719704bf244cd7e54f1b1b HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4337 Cache-Control: max-age=159005 Content-Type: application/ocsp-response Date: Sat, 18 Mar 2023 20:03:16 GMT Etag: "6415d230-1d7" Expires: Mon, 20 Mar 2023 16:13:21 GMT Last-Modified: Sat, 18 Mar 2023 15:01:04 GMT Server: ECAcc (ska/F77E) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	192.229.221.95	200 OK	313 B
URL HTTP/1.1 ocsp.digicert.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 313 B (313 bytes) Hash 4baee93f23dc7456129f63e45a94aa14 3fb6eaa679ed8260cd203a7a721a9ab723c08db3 99d8d60b47f8af46ed2af70942439158b0a85e41552dae481726c127dbb3c1db HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6442 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sat, 18 Mar 2023 20:03:16 GMT Last-Modified: Sat, 18 Mar 2023 18:15:54 GMT Server: ECAcc (ska/F775) X-Cache: HIT Content-Length: 313`

	csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1	178.250.0.162	200 OK	43 B
URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1 IP 178.250.0.162:0 ASN #44788 Criteo SA File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash b4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 HTTP Headers `GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1 HTTP/1.1 Host: csm.fr.eu.criteo.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:16 GMT pragma: no-cache server: Finatra expires: 0 content-type: image/gif cache-control: no-cache, no-store, must-revalidate content-length: 43 cross-origin-resource-policy: cross-origin strict-transport-security: max-age=31536000; preload; X-Firefox-Spdy: h2`

	ocsp.digicert.com/	192.229.221.95	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 246d0b0fc3efccd10e11b56848b4f63d 7a1eec39f8e0f262b500f87620585e5dd262c432 683c74566230498330ba9a9e84ce987b3f9f04cb83433bad1b2b27951eec595e HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6144 Cache-Control: max-age=169069 Content-Type: application/ocsp-response Date: Sat, 18 Mar 2023 20:03:16 GMT Etag: "6415f271-1d7" Expires: Mon, 20 Mar 2023 19:01:05 GMT Last-Modified: Sat, 18 Mar 2023 17:18:41 GMT Server: ECAcc (ska/F756) X-Cache: HIT Content-Length: 471`

	dnacdn.net/dna	178.250.1.11	200 OK	0 B
URL HTTP/2 dnacdn.net/dna IP 178.250.1.11:0 ASN #0 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /dna HTTP/1.1 Host: dnacdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/ Origin: https://gum.criteo.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:16 GMT server: Kestrel content-length: 0 cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 set-cookie: browser_data=5IWOB180M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlpONzlISzh3WEdldTFmekFLS0NUNTZNU3B5dFJvR25VS24wa0QzQjM2Mg; expires=Thu, 11 Apr 2024 20:03:17 GMT; domain=dnacdn.net; path=/; secure; samesite=none access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-origin: https://gum.criteo.com server-processing-duration-in-ticks: 182654 strict-transport-security: max-age=31536000; preload; X-Firefox-Spdy: h2

	ocsp.digicert.com/	192.229.221.95	200 OK	313 B
URL HTTP/1.1 ocsp.digicert.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 313 B (313 bytes) Hash df3b4fcdc703c2e10e8288b5b83d21bc 48403e0a44aebc32bfbd9f271d3ac7d2a02f6347 dc5d67832bb9a6b7960c3c8f86dc8b870ed7773b135242c927da8ebacb512042 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3786 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sat, 18 Mar 2023 20:03:17 GMT Last-Modified: Sat, 18 Mar 2023 19:00:11 GMT Server: ECAcc (ska/F6AF) X-Cache: HIT Content-Length: 313`

	ocsp.digicert.com/	192.229.221.95	200 OK	313 B
URL HTTP/1.1 ocsp.digicert.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 313 B (313 bytes) Hash df3b4fcdc703c2e10e8288b5b83d21bc 48403e0a44aebc32bfbd9f271d3ac7d2a02f6347 dc5d67832bb9a6b7960c3c8f86dc8b870ed7773b135242c927da8ebacb512042 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3786 Cache-Control: max-age=126033 Content-Type: application/ocsp-response Date: Sat, 18 Mar 2023 20:03:17 GMT Etag: "6415538c-139" Expires: Mon, 20 Mar 2023 07:03:50 GMT Last-Modified: Sat, 18 Mar 2023 06:00:44 GMT Server: ECAcc (ska/F7A5) X-Cache: HIT Content-Length: 313`

	ag.gbc.criteo.com/newidsd	185.235.84.251	200 OK	15 kB
URL HTTP/2 ag.gbc.criteo.com/newidsd IP 185.235.84.251:0 ASN #44788 Criteo SA File type data Size 15 kB (15384 bytes) Hash a3e06e3fdd14cddcd9c70b7ee6abcf2d 21f39faee727edc928aa954e838d161da362df2b 05844c9454be232e324b294531c41b089d3eb68f20b22684e57230a6af963de7 HTTP Headers `GET /newidsd HTTP/1.1 Host: ag.gbc.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/ Origin: https://gum.criteo.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:16 GMT content-type: application/json; charset=utf-8 server: Kestrel cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-origin: https://gum.criteo.com server-processing-duration-in-ticks: 97756 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	gum.criteo.com/sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=jd5hvF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlpONzlISzh3WEdldTFmekFLS0NUNnpMVGFDSk1PbnBhWVRTRmE5T2Ridg&idsd=-2133898848,852414166&cw=1&rtusCallerId=72&lsw=1	178.250.0.157	200 OK	1.4 kB
URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=jd5hvF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlpONzlISzh3WEdldTFmekFLS0NUNnpMVGFDSk1PbnBhWVRTRmE5T2Ridg&idsd=-2133898848,852414166&cw=1&rtusCallerId=72&lsw=1 IP 178.250.0.157:0 ASN #44788 Criteo SA File type JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (523) Size 1.4 kB (1443 bytes) Hash af8e79b3cce923c30c02c83d90b912fa 2ec04bab468aecc223b6b4e5e434f1fb7e97c331 0a09c4ab4ade4c789fb11189c99669a54fb4f618537ee4ed0fd9eb82995cfeac HTTP Headers GET /sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=jd5hvF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlpONzlISzh3WEdldTFmekFLS0NUNnpMVGFDSk1PbnBhWVRTRmE5T2Ridg&idsd=-2133898848,852414166&cw=1&rtusCallerId=72&lsw=1 HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:16 GMT content-type: application/json; charset=utf-8 server: Kestrel cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 server-processing-duration-in-ticks: 1325957 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS	178.250.0.157	200 OK	0 B
URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS IP 178.250.0.157:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: x-crto-bundle Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:17 GMT server: Kestrel content-length: 0 cache-control: private, max-age=3600 expires: 60 access-control-allow-credentials: true access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE access-control-allow-origin: https://linkvertise.com server-processing-duration-in-ticks: 396789 strict-transport-security: max-age=31536000; preload; X-Firefox-Spdy: h2`

	gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS	178.250.0.157	200 OK	9.0 kB
URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS IP 178.250.0.157:0 ASN #44788 Criteo SA File type data Size 9.0 kB (9020 bytes) Hash ba1dac9b8dfd4f60f13bccb8d9eeb6c2 4700b336e686e360d1d5dc39f0df8135db03633e edd6e40172f126cc758b3562dd1bafb36d24e4d819c2104cf57d6b3195862e50 HTTP Headers GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br x-crto-bundle: IDd5XV81JTJGZHRyMzZLNU0xMFNQaDR5MGNkJTJCSSUyRmRFUkpha092NEhOOGl5SFolMkJmbXhkck1TZkk2eTk4bVNwbUZuMHMlMkJJUDBTckpzc3BrMWJnSEVtWlp5bFdPeHd4Z2gySzNhT25HJTJGRGZHd2dsRTN5Z2xZbE03JTJGUjNnWTRVOXMwUiUyRkZzOCUyRkslMkY3VVlJZm1LOGhMQU1oc3pXcW9MdyUzRCUzRA Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:17 GMT content-type: text/javascript; charset=utf-8 server: Kestrel cache-control: private, max-age=3600 expires: 60 access-control-allow-credentials: true access-control-allow-origin: https://linkvertise.com server-processing-duration-in-ticks: 8388654 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js	104.18.10.207	200 OK	0 B
URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP 104.18.10.207:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1 Host: stackpath.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:14 GMT content-type: application/javascript; charset=utf-8 vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE access-control-allow-origin: * cache-control: public, max-age=31919000 last-modified: Mon, 25 Jan 2021 22:04:06 GMT cdn-cachedat: 11/15/2021 23:30:00 cdn-proxyver: 1.0 cdn-requestpullcode: 200 cdn-requestpullsuccess: True cdn-edgestorageid: 723 cdn-status: 200 timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-requestid: ed8d946baeeb2ee38f4aebce8d84f641 cdn-cache: HIT cf-cache-status: HIT age: 22213084 strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 7aa013ee38350b02-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css	104.18.10.207	200 OK	0 B
URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css IP 104.18.10.207:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /bootstrap/4.1.3/css/bootstrap.min.css HTTP/1.1 Host: stackpath.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:14 GMT content-type: text/css; charset=utf-8 vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE access-control-allow-origin: * cache-control: public, max-age=31919000 last-modified: Mon, 25 Jan 2021 22:04:06 GMT cdn-cachedat: 12/11/2021 23:51:22 cdn-proxyver: 1.02 cdn-requestpullcode: 200 cdn-requestpullsuccess: True cdn-edgestorageid: 601 cdn-status: 200 timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-requestid: 873d47ad8054cd5f5d4a8793d245560e cdn-cache: HIT cf-cache-status: HIT age: 5065086 strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 7aa013ee38460b02-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/account	172.64.139.5	200 OK	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/account IP 172.64.139.5:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /api/v1/account HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Content-Type: application/json Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:15 GMT content-type: application/json cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin access-control-allow-credentials: true set-cookie: laravel_session=XKW3im6vqIsJMrjTo3Xo28xzFC2OIdeIuxV2S7kj; expires=Sun, 17 Mar 2024 20:03:15 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CaDt0tMzpGQSwRT%2BHj7D4RxGBhr1VXEwpzEG26u8c8VmhO9Q2PrPygkIr3%2BG3GTrthnv0VCDPbSPjQi28mHYr%2BJNolFtD9qPDnu2GLa17TLmXeh32Bu7r6WmontcvfQKMNpbss3L6IjLXZ5B"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 7aa013f42ca335db-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS	178.250.0.157	200 OK	0 B
URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS IP 178.250.0.157:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash HTTP Headers `GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:16 GMT content-type: text/javascript; charset=utf-8 server: Kestrel cache-control: private, max-age=3600 expires: 60 server-processing-duration-in-ticks: 755807 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	gem.gbc.criteo.com/newidsd	185.235.84.137	200 OK	0 B
URL HTTP/2 gem.gbc.criteo.com/newidsd IP 185.235.84.137:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash HTTP Headers `GET /newidsd HTTP/1.1 Host: gem.gbc.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/ Origin: https://gum.criteo.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:16 GMT content-type: application/json; charset=utf-8 server: Kestrel cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-origin: https://gum.criteo.com server-processing-duration-in-ticks: 132810 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	js.chargebee.com/v2/chargebee.js	54.230.111.20	200 OK	0 B
URL HTTP/2 js.chargebee.com/v2/chargebee.js IP 54.230.111.20:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /v2/chargebee.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/x-javascript last-modified: Tue, 14 Mar 2023 07:35:21 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: C28Xd2nJU4zDr6rnqauKaG8dbmfoDarn server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Sat, 18 Mar 2023 20:01:02 GMT cache-control: max-age=300,public etag: W/"45d256d753902746715a954c7ca4ad47" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: V5jHktD4OPYFVjo04LFf_6RWuPUxXP2RbhhAdzo-cUatlXdjIc8WKw== age: 134 X-Firefox-Spdy: h2

	static.hotjar.com/c/hotjar-3321028.js?sv=7	54.230.111.39	200 OK	0 B
URL HTTP/2 static.hotjar.com/c/hotjar-3321028.js?sv=7 IP 54.230.111.39:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /c/hotjar-3321028.js?sv=7 HTTP/1.1 Host: static.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * content-encoding: br cross-origin-resource-policy: cross-origin strict-transport-security: max-age=2592000; includeSubDomains x-cache-hit: 1 x-content-type-options: nosniff date: Sat, 18 Mar 2023 20:03:16 GMT cache-control: max-age=60 etag: W/26c96dfd8e1def2a8cda5263790f1b78 vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: _e7zZDcJyfYa9k-nhfYdtMVXPX-6_d6qxhKp__B8vP1rA4_4Q93FGA== age: 4 X-Firefox-Spdy: h2

	js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/154-0724759dd12ed5978218.js	54.230.111.20	200 OK	0 B
URL HTTP/2 js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/154-0724759dd12ed5978218.js IP 54.230.111.20:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/cbjs-2023.03.14-07.25/v2/154-0724759dd12ed5978218.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/master.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Tue, 14 Mar 2023 07:35:22 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: 7BXVTyW1.aZ6awid0ohp_aZ.L0MzWZaW server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Sat, 18 Mar 2023 19:59:03 GMT cache-control: max-age=300,public etag: W/"f4ce0e5db85f1fb4e0d3e60b74dfcc31" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 8_AE3drGKZzhMJ475CRIbAS1k4wltt1u60ZovdNS7F8IeIqhtgFrgQ== age: 253 X-Firefox-Spdy: h2

	dnacdn.net/dna	178.250.1.11	200 OK	0 B
URL HTTP/2 dnacdn.net/dna IP 178.250.1.11:0 ASN #0 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /dna HTTP/1.1 Host: dnacdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/ Origin: https://gum.criteo.com Connection: keep-alive Cookie: browser_data=5IWOB180M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlpONzlISzh3WEdldTFmekFLS0NUNTZNU3B5dFJvR25VS24wa0QzQjM2Mg Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:16 GMT content-type: application/json; charset=utf-8 server: Kestrel cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 set-cookie: browser_data=jd5hvF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlpONzlISzh3WEdldTFmekFLS0NUNnpMVGFDSk1PbnBhWVRTRmE5T2Ridg; expires=Thu, 11 Apr 2024 20:03:17 GMT; domain=dnacdn.net; path=/; secure; samesite=none access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-origin: https://gum.criteo.com server-processing-duration-in-ticks: 227207 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2

	gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com	178.250.0.157	200 OK	0 B
URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com IP 178.250.0.157:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash HTTP Headers GET /syncframe?origin=rtus&topUrl=linkvertise.com HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK date: Sat, 18 Mar 2023 20:03:16 GMT content-type: text/html; charset=utf-8 server: Kestrel cache-control: private, max-age=3600 set-cookie: uid=afdbedbd-7b6d-4bfd-a97c-0b508ea53fdf; expires=Thu, 11 Apr 2024 20:03:16 GMT; domain=.criteo.com; path=/; secure; samesite=none optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/ cross-origin-resource-policy: cross-origin cross-origin-embedder-policy: require-corp server-processing-duration-in-ticks: 392756 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2

	cdn.taboola.com/libtrc/impl.20230316-6-RELEASE.js	151.101.1.44	200 OK	0 B
URL HTTP/2 cdn.taboola.com/libtrc/impl.20230316-6-RELEASE.js IP 151.101.1.44:0 ASN #54113 FASTLY File type Size 0 B (0 bytes) Hash HTTP Headers `GET /libtrc/impl.20230316-6-RELEASE.js HTTP/1.1 Host: cdn.taboola.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: eVRj+2S6567p0NjikbCBwxBSCYwynfplbbazkKfcJKb8GzaUKLdP2xtIcqUgq3PE2X7OjiLygtU= x-amz-request-id: 486V96WJ16KXHNMY last-modified: Thu, 16 Mar 2023 10:07:24 GMT etag: "749b69d6fcefe0bc70db00110df59ae3" x-amz-server-side-encryption: AES256 content-encoding: br x-amz-version-id: YzYu_gCQdsVD7Qa2pLKnMp7ud_GqQu_B content-type: application/javascript accept-ranges: bytes date: Sat, 18 Mar 2023 20:03:16 GMT via: 1.1 varnish age: 6741 x-served-by: cache-bma1666-BMA x-cache: HIT x-cache-hits: 3859 x-timer: S1679169796.261014,VS0,VE0 cache-control: private,max-age=31536000 vary: Accept-Encoding abp: 2 server: AmazonS3-br access-control-allow-origin: * content-length: 157186 X-Firefox-Spdy: h2

	js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/138-c405cd2cebef4d812dde.js	54.230.111.20	200 OK	0 B
URL HTTP/2 js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/138-c405cd2cebef4d812dde.js IP 54.230.111.20:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/cbjs-2023.03.14-07.25/v2/138-c405cd2cebef4d812dde.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Tue, 14 Mar 2023 07:35:22 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: wuZjnURDg2mUeTqUu2Y2_vrG.PWLM.1Z server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Sat, 18 Mar 2023 20:02:12 GMT cache-control: max-age=300,public etag: W/"3be5b9675aa76bac83033c98abeba93b" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: OP0E0oMrfQQA8kie_pnwXuFtlZ7DG-4yKhP9ob20iCXP9XYxiN9D6w== age: 62 X-Firefox-Spdy: h2

	js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/150-8060a0eea0ecd5394e33.js	54.230.111.20	200 OK	0 B
URL HTTP/2 js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/150-8060a0eea0ecd5394e33.js IP 54.230.111.20:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/cbjs-2023.03.14-07.25/v2/150-8060a0eea0ecd5394e33.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://js.chargebee.com/assets/cbjs-2023.03.14-07.25/v2/master.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Tue, 14 Mar 2023 07:35:22 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: DuoPC.NTOBQKqDq.3g4ZwXgr87cxK4H_ server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Sat, 18 Mar 2023 20:03:12 GMT cache-control: max-age=300,public etag: W/"8d411d7c51b1a7c7e2df89c190330bd4" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: yzOEVZJm1UaGvNK4-FTsib0PYzq9PIZG2HKD94K5tam0Tn99H7PuGA== age: 4 X-Firefox-Spdy: h2

	contextual.media.net/dmedianet.js?cid=8CUG57U1V	23.38.200.22	200 OK	0 B
URL HTTP/2 contextual.media.net/dmedianet.js?cid=8CUG57U1V IP 23.38.200.22:0 ASN #16625 AKAMAI-AS File type Size 0 B (0 bytes) Hash HTTP Headers `GET /dmedianet.js?cid=8CUG57U1V HTTP/1.1 Host: contextual.media.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: Apache content-type: text/javascript; charset=utf-8 x-mnt-h: 22-7dvb x-mnt-w: 22-j7wz etag: "6296253bca6a33f23177f483dcc2a302" strict-transport-security: max-age=31536000 vary: Accept-Encoding content-encoding: gzip cache-control: max-age=300 expires: Sat, 18 Mar 2023 20:08:16 GMT date: Sat, 18 Mar 2023 20:03:16 GMT X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (56)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML