Report - suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4/2

Report Overview

Submitted URL
suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4/2
IP
18.192.108.151
ASN
#16509 AMAZON-02
Submitted
2023-02-05 17:56:51
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	3.1 kB	6.3 kB	142.250.74.131
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	682 B	1.5 kB	93.184.220.29
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-13T05:09:29Z	1.2 kB	163 kB	31.13.72.12
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-13T05:09:19Z	359 B	1.4 kB	104.18.20.226
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-13T08:02:41Z	1.2 kB	1.2 kB	64.233.165.156
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-13T06:26:15Z	1.5 kB	1.7 kB	142.250.74.163
suscoop-comithers.icu	543653	2019-11-19T14:18:08Z	2023-03-13T05:32:55Z	391 B	826 B	18.192.108.151
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	44.227.109.32
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
xoomber.com	unknown	2016-01-05T15:05:54Z	2023-03-13T08:44:21Z	530 B	830 B	104.200.16.65
mc.yandex.ru	2672	2012-05-21T11:38:30Z	2023-03-13T08:16:45Z	8.2 kB	82 kB	77.88.21.119
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	54 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.7 kB	9.7 kB	23.36.77.32
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	764 B	132 kB	142.250.74.168
testedforyou.net	428320	2020-04-24T14:22:18Z	2023-03-13T08:44:23Z	14 kB	162 kB	45.79.172.174
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	373 B	21 kB	142.250.74.110
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	1.0 kB	1.2 kB	142.250.74.164
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	1.6 kB	698 B	157.240.221.35
region1.analytics.google.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:11:52Z	955 B	447 B	216.239.32.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-05 17:57:20	medium	Client IP	Internal IP	ET INFO DNS Query for Suspicious .icu Domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-05	medium	suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4/2	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs	116 B	2023-03-07	2023-05-25
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-05-25 20:48:24 Times Seen20 Hash abf179a91aebe05e8191271c7894fc8d 4f550a9f4fc4e6f53f7d4ce3e8a9af953fcbdb5b 998c2534e6829866e1b61b4d4af6abbfe19c844e83eb9e6c000f6186d50ba3c5 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.googletagmanager.com/gtag/js?id=G-1EEJR9725E&l=dataLayer&cx=c	223 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-1EEJR9725E&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:49:28 Last Seen2023-03-13 17:49:28 Times Seen1 Hash fd46f43b8a8741b5106b4b15c4945c62 7dae1058ff608627ca495444002e85387ce4e1ad d38071821be96ca887eb6e2f028a687416f4ba6c68971d50fe238b2b2a57fff0 Loading...

	connect.facebook.net/signals/config/191112919472843?v=2.9.95&r=stable	386 kB	2023-03-13	2023-03-26
Pretty URL connect.facebook.net/signals/config/191112919472843?v=2.9.95&r=stable IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:30:08 Last Seen2023-03-26 03:37:49 Times Seen3 Hash cf8e405b3e9814f88c89d46b9cb1eb05 54114cbcbd2c25caecddc323be47a1dbb2469c3c af2840f4958c3978e9040d6e61c14970a22d19838ebd0d839497849b640b4274 Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs	341 B	2023-03-07	2023-07-17
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-07-17 05:53:35 Times Seen21 Hash 3d4bac08f9ac333f294c05a6476defba 3d0b5bbe119df96c311fbab9b3bc6310f33da1ee a918c5d01fe429a642c919e0595da904a7b2955cdbe0af8a9ee05467f5146c02 Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs	341 B	2023-03-07	2023-12-22
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:31 Last Seen2023-12-22 05:22:57 Times Seen27 Hash 27f9060b4a2db15382c76283953f802d 9d9eb2c094a6f785909a62cd68823ac912496b7a e9408c3242693122dba00a488a161ef09876a3b8451f7c7cd61f35da4859206e Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PM3XLW4	206 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PM3XLW4 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:49:28 Last Seen2023-03-13 17:49:28 Times Seen1 Hash 1a75fe3250dfa8ca2fdd07c45efbe273 277c1d27e6bc2a766691b77f9b4f750f0c9e285c 916e5c30bd5ca96b0a521acb041aa65e0f90325340b816491ab5b1d23173b79f Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs	357 B	2023-03-07	2023-07-17
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-07-17 05:53:35 Times Seen21 Hash 32f4e2be313973a95dde83a4374b4f9c 96ff52108e8be2069feda367deb5338a855f055d 1c0347f358b63ac112e6acc6fe092cdeacfa16f211212c32802bf102a3e23705 Loading...

	connect.facebook.net/signals/plugins/identity.js?v=2.9.95	65 kB	2023-03-08	2024-02-19
Pretty URL connect.facebook.net/signals/plugins/identity.js?v=2.9.95 IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:50 Last Seen2024-02-19 23:40:48 Times Seen4401 Hash ed5d6caf417fab681343bc3414babc55 410ba8d8866d7c7df41f21526345cfb7426386f2 7e86f52cb0d423805ec541a4bccae5156a01fbe36355e6d798a450593212651f Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs	172 B	2023-03-07	2024-01-28
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2024-01-28 10:34:30 Times Seen24 Hash 0a653f4bb471658a5241adb6c7e379fc 3faa551ca4ea6902e3da82af90468396883d6d3d 49c86ccfcdcbd35616425e880149d6c52907226fca8fc594c37a2b2258386be2 Loading...

	testedforyou.net/js/markedsettings.js	68 B	2023-03-07	2023-07-17
Pretty URL testedforyou.net/js/markedsettings.js IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-07-17 05:53:35 Times Seen21 Hash 7a26d76f7b0a4e98b09b9ac9e4dc9a21 196c00e4855221dcb3eb88a479ed07f3ebbe6f40 5c93112a1c8f2dde03c35f69a609184a74546ed71e629dd1c639758c93d990fd Loading...

	testedforyou.net/sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzVlMHFzIiwibWFya2VycyI6IjAyMDUxNzU2NDBfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTAyMDUxNzU2NDBfY2FydF9kdV9kYXJrdGhlbWUifQ==	7.0 kB	2023-03-13	2023-03-13
Pretty URL testedforyou.net/sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzVlMHFzIiwibWFya2VycyI6IjAyMDUxNzU2NDBfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTAyMDUxNzU2NDBfY2FydF9kdV9kYXJrdGhlbWUifQ== IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:49:28 Last Seen2023-03-13 17:49:28 Times Seen1 Hash e47f1dedbe61e9e375a696ed626f09f6 7046e7e850147448626fd8e1e6bf213804ab11a3 08e3778bc843b97b9fd386eb52140f99e4ec0d7aa56c5e568f4630c78c14634b Loading...

	connect.facebook.net/en_US/fbevents.js	109 kB	2023-03-13	2023-11-17
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:47:19 Last Seen2023-11-17 16:32:25 Times Seen5 Hash beca88e7d9125b63f58be285031b0930 08cda009ebdf601f0ffe06b0ee3065fff2fb105b c1e56ad863615fc191d80d7807852db95e57579f6535186d83d04ecdebef5236 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MXXFW64	168 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MXXFW64 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:49:28 Last Seen2023-03-13 17:49:28 Times Seen1 Hash bfc2a1ae5448ae5b56f4eb9e6e5852d8 52e34b8efe2077a909d5788b2a3c06528390bc7b cb1b969817f8ab8fd221b65816206e588ad25b5ea69ae7947de1ece318646891 Loading...

	www.google-analytics.com/plugins/ua/linkid.js	1.6 kB	2023-03-07	2024-04-15
Pretty URL www.google-analytics.com/plugins/ua/linkid.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-15 19:01:06 Times Seen1974 Hash 0cc3a63fe10060af4a349e5df666eefe 3e8d3925b550345123f2cab26568221fd4154f9c 92fca55833f48b4289ac8f1cedd48752b580fce4ec4b5d81670b8193d6e51b54 Loading...

	mc.yandex.ru/metrika/tag.js	216 kB	2023-03-13	2023-03-14
Pretty URL mc.yandex.ru/metrika/tag.js IP 77.88.21.119 ASN #13238 YANDEX LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:23:21 Last Seen2023-03-14 05:30:36 Times Seen1 Hash c68fe874ca82b5ca3b4c1a2d6e1b9064 87d75e863779d97859ff97f5a9597184368df37f 7ddf2bfbac37620db215b2ef833b10ca654424297afffc037f7db9c7cb972301 Loading...

	testedforyou.net/js/jquery/jquery-1.9.1.min.js	93 kB	2023-03-07	2023-09-23
Pretty URL testedforyou.net/js/jquery/jquery-1.9.1.min.js IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:24 Last Seen2023-09-23 06:41:55 Times Seen62 Hash 8a5dd9281b5fb7d3275f66f89dc2bc34 bd4e2b0622a87370bd7ef3972a6dfedb61b54bf5 372a84f4756de5976a1e594ee6ef4ff5c7f31f378b358d157362bef727db8b0b Loading...

	testedforyou.net/download-instructions/download-instructions.js	696 B	2023-03-07	2023-07-17
Pretty URL testedforyou.net/download-instructions/download-instructions.js IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-07-17 05:53:35 Times Seen21 Hash 9024cc831da618bfb1b64404676af2b4 9b4e10c631304e9288d9e68a7d9286a27c925bdf df1e5760a48f874bb790e507761cfda358b01d76ee39a441b5dbce914854c655 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 5ec5ad77f21e3f53bcb406c6bc3a11f7	83 B	2023-03-07	2024-04-21
Pretty Observations First Seen2023-03-07 01:42:31 Last Seen2024-04-21 17:12:26 Times Seen68 Hash 5ec5ad77f21e3f53bcb406c6bc3a11f7 7ebe251c9c00289bc969438233935497d29efb62 ab3187de66558ccc057ca177ceb858d83970394993f2ca180e04ceeeec1db0dc Loading...

	#2 Eval - e6d5644bb305d936726774a3284075e4	724 B	2023-03-13	2023-12-22
Pretty Observations First Seen2023-03-13 08:28:24 Last Seen2023-12-22 05:22:57 Times Seen30 Hash e6d5644bb305d936726774a3284075e4 65a01530434c308df84e85ee7c435e17b2d52b70 826c3d9bcf30c317b823e5aca01bdda19373a21f4e64e57dae57a617be0aaa95 Loading...

	#3 Eval - 204eeff286416f91224315b4fdb73b23	710 B	2023-03-13	2024-01-28
Pretty Observations First Seen2023-03-13 08:28:24 Last Seen2024-01-28 10:34:30 Times Seen27 Hash 204eeff286416f91224315b4fdb73b23 a2b30763c35caa9b0a0fb9d58250b2e3cb9bb1bd 1e0248a984d8b33f86021a95ac0278f9233ed20f2ce52467ee0c2d8072775b75 Loading...

	#4 Eval - fe2dd7333265c13126cf892c8bfeb58d	731 B	2023-03-07	2023-05-25
Pretty Observations First Seen2023-03-07 01:42:31 Last Seen2023-05-25 20:48:24 Times Seen20 Hash fe2dd7333265c13126cf892c8bfeb58d 873da59845851456cac3107051891de35cf794b2 968af3a17139ce074afbd647eaf6aedb2b1d42560acef2cbdaf10a79c80945ea Loading...

	#5 Eval - 7607c228e83e34ce781fec68fe31315a	823 B	2023-03-07	2023-12-22
Pretty Observations First Seen2023-03-07 01:42:31 Last Seen2023-12-22 05:22:57 Times Seen30 Hash 7607c228e83e34ce781fec68fe31315a f3c3c72717d8d077304ce419a674262e3e316062 263b8517a468db4d68244cc32497d698a1f2134e48da14b653730ad9eb5e8b9e Loading...

	#6 Eval - b4954138278fe12fa7ee4c63455e4acf	923 B	2023-03-07	2023-05-25
Pretty Observations First Seen2023-03-07 01:42:31 Last Seen2023-05-25 20:48:24 Times Seen19 Hash b4954138278fe12fa7ee4c63455e4acf d55b4788473619d8c6fdcfa525b39034273a4f8a 7949d40a240d20bbc2b7688b881a07833201149200a17dc3bee8a390fe0ad679 Loading...

	#7 Eval - dabf66ad8a7a421f16e7150300533e24	715 B	2023-03-13	2023-12-22
Pretty Observations First Seen2023-03-13 08:28:24 Last Seen2023-12-22 05:22:57 Times Seen30 Hash dabf66ad8a7a421f16e7150300533e24 116f2c6d63502bff7f5a0c691ecc8c1cbf36940b 1bdd1daed34b0d16c53ad9bc3d66b2b679c62d8dfb6c483e4ecfaa58672e62f1 Loading...

	#8 Eval - 8eb844dfd02a8ec7e6dfc733c4442c05	419 B	2023-03-07	2023-12-22
Pretty Observations First Seen2023-03-07 13:54:20 Last Seen2023-12-22 05:22:57 Times Seen30 Hash 8eb844dfd02a8ec7e6dfc733c4442c05 2924aa0801818c981e4bd6b528071c48a1a2e6e2 5056fe8ebe4adddcfa058eb5e15e7b03eec00291d8d4e2a1db170e393162f390 Loading...

HTTP Transactions (77)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5614
Expires: Sun, 05 Feb 2023 19:30:13 GMT
Date: Sun, 05 Feb 2023 17:56:39 GMT
Connection: keep-alive

suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4/2

18.192.108.151

302

0 B

URL HTTP/1.1
suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4/2
IP
18.192.108.151:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /2c248bc7-db3a-477f-894e-709f28c878b4/2 HTTP/1.1
Host: suscoop-comithers.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 
Server: nginx
Date: Sun, 05 Feb 2023 17:56:39 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://xoomber.com/WJfYxY7T?sub_id_2=wpq841eajpg5bpdm2eolc5d0&sub_id_3=2c248bc7-db3a-477f-894e-709f28c878b4_
Pragma: no-cache
Set-Cookie: 2c248bc7-db3a-477f-894e-709f28c878b4-v4=-pf4UBQy4Vzn7zSO_zft3BLq-0eM4dRtKRK8G_4wboA; Max-Age=86400; Expires=Mon, 06-Feb-2023 17:56:39 GMT; Domain=suscoop-comithers.icu; Path=/; HttpOnly
cc-v4=dokZQkpOkvMLM%2BlfSgfkliv2mEaK3dNTakNk2zo3xF5NJKRvqQYsUiu0lBoq3M8UsC6GDt%2FSYOqk2AUsdQWIZQq3k1Kz%2B6LN353gSkC5rw8uyqgykGOeuJoP5KPKAps55TSHsT%2BHwV48ExKi3fz0dg%3D%3D; Max-Age=31536000; Expires=Mon, 05-Feb-2024 17:56:39 GMT; Domain=suscoop-comithers.icu; Path=/; HttpOnly

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8751
Expires: Sun, 05 Feb 2023 20:22:30 GMT
Date: Sun, 05 Feb 2023 17:56:39 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16432
Expires: Sun, 05 Feb 2023 22:30:31 GMT
Date: Sun, 05 Feb 2023 17:56:39 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 17:36:21 GMT
content-type: application/json
age: 1218
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: DjypP9byIQB3Dt2++s46CKN3yC6g/lQYvW4qqd7VhA3NHAPus7c7MuoUa4YkUvk1eQxwIXiCO40=
x-amz-request-id: 0NVCC2TGC2AV9PKW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 17:24:34 GMT
age: 1925
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:39 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
941f8c8d362b4bf6ec25bd98b49290c7
70126056807e2bac03656b64b862b4007d5bf359
702be4aa47385025efb772dce8cef0da2a49a973af7014d74418dba6e188df96

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "702BE4AA47385025EFB772DCE8CEF0DA2A49A973AF7014D74418DBA6E188DF96"
Last-Modified: Sat, 04 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7285
Expires: Sun, 05 Feb 2023 19:58:05 GMT
Date: Sun, 05 Feb 2023 17:56:40 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 17:49:07 GMT
age: 453
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6236
Expires: Sun, 05 Feb 2023 19:40:36 GMT
Date: Sun, 05 Feb 2023 17:56:40 GMT
Connection: keep-alive

xoomber.com/WJfYxY7T?sub_id_2=wpq841eajpg5bpdm2eolc5d0&sub_id_3=2c248bc7-db3a-477f-894e-709f28c878b4_

104.200.16.65

302 Found

0 B

URL HTTP/1.1
xoomber.com/WJfYxY7T?sub_id_2=wpq841eajpg5bpdm2eolc5d0&sub_id_3=2c248bc7-db3a-477f-894e-709f28c878b4_
IP
104.200.16.65:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /WJfYxY7T?sub_id_2=wpq841eajpg5bpdm2eolc5d0&sub_id_3=2c248bc7-db3a-477f-894e-709f28c878b4_ HTTP/1.1
Host: xoomber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 Found
Server: nginx
Date: Sun, 05 Feb 2023 17:56:40 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Location: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs
Pragma: no-cache
Set-Cookie: _subid=s8hnpa35e0qs;Expires=Wednesday, 08-Mar-2023 17:56:40 GMT;Max-Age=2678400;Path=/
9f320=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjE3NjVcIjoxNjc1NjE5ODAwfSxcImNhbXBhaWduc1wiOntcIjU5OVwiOjE2NzU2MTk4MDB9LFwidGltZVwiOjE2NzU2MTk4MDB9In0.XHel634Zx9d94zb6tL-YXxlILA258D71poU6ayIcDWY;Expires=Friday, 13-Mar-2076 11:53:20 GMT;Max-Age=1675706200;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2d0343e9974c0609c621bf38290c626a
bf5860a86f32bde03e0d9fa4d26835f160b6f5d7
79afeca0f5b83ca4f96f8f91d656fc72fd8ecbb21cf08cb5492fc4260cce4158

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "79AFECA0F5B83CA4F96F8F91D656FC72FD8ECBB21CF08CB5492FC4260CCE4158"
Last-Modified: Sun, 05 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5633
Expires: Sun, 05 Feb 2023 19:30:33 GMT
Date: Sun, 05 Feb 2023 17:56:40 GMT
Connection: keep-alive

push.services.mozilla.com/

44.227.109.32

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.227.109.32:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DvoSC6cIf2PZV6Z3SHy4WA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WxqcAPX8ChTBKN/aE6nNul0vCVI=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 17:56:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 17:56:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-MXXFW64

142.250.74.168

200 OK

59 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-MXXFW64
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (10590)
Size
59 kB (58894 bytes)
Hash
67e6e54ec7cd976b776c828a2b19692f
04951dcece2e53c5b7d8c8bc58511187ed0bcd03
a884a230c016915a8cfd5dfb221f33dd9b7353ffc42a062b76ac89f59270f521

HTTP Headers

GET /gtm.js?id=GTM-MXXFW64 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 17:56:40 GMT
expires: Sun, 05 Feb 2023 17:56:40 GMT
cache-control: private, max-age=900
last-modified: Sun, 05 Feb 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 58894
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-PM3XLW4

142.250.74.168

200 OK

71 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-PM3XLW4
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (8828)
Size
71 kB (71272 bytes)
Hash
747978d886382402f60225e916cc8794
184d49612ffe02f36c168c0d665622e1a3f57d84
b7c5b72623117901728b3d7dc07a8d9d2a04cd32d0dc4b5fa67a2823b0a0a807

HTTP Headers

GET /gtm.js?id=GTM-PM3XLW4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 17:56:40 GMT
expires: Sun, 05 Feb 2023 17:56:40 GMT
cache-control: private, max-age=900
last-modified: Sun, 05 Feb 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 71272
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/download-instructions.css

45.79.172.174

200 OK

3.5 kB

URL HTTP/2
testedforyou.net/download-instructions/download-instructions.css
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
data
Size
3.5 kB (3463 bytes)
Hash
a7f3cf56ae1b34f44db5492016ce168c
00a9bde7239bee4b3ed812232683466df6115adb
8327871975859808368cf7b3ff14ae0052c2a047bc5dcc028e3c1aea29de0a18

HTTP Headers

GET /download-instructions/download-instructions.css HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs
Cookie: advanced=hljip6soc20f0catl16uffuj5m; source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; _csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:40 GMT
content-type: text/css
last-modified: Fri, 03 Feb 2023 11:03:14 GMT
etag: W/"63dce9f2-5e08"
expires: Sun, 12 Feb 2023 17:56:40 GMT
cache-control: max-age=604800, max-age=604800,  public
content-encoding: gzip
X-Firefox-Spdy: h2

testedforyou.net/tfu-du-101/jscss/style.css

45.79.172.174

200 OK

14 kB

URL HTTP/2
testedforyou.net/tfu-du-101/jscss/style.css
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
data
Size
14 kB (13977 bytes)
Hash
ee2dd873093eca0a81882c79107616be
edd2dff0aaeda407ed12f71bbebd3c8ebb40dd3b
cfa65a853b6f5963fd6f7f7142308553d3d094b5b65a19d31590da5de527a720

HTTP Headers

GET /tfu-du-101/jscss/style.css HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs
Cookie: advanced=hljip6soc20f0catl16uffuj5m; source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; _csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:40 GMT
content-type: text/css
last-modified: Fri, 03 Feb 2023 11:03:14 GMT
etag: W/"63dce9f2-3716"
expires: Sun, 12 Feb 2023 17:56:40 GMT
cache-control: max-age=604800, max-age=604800,  public
content-encoding: gzip
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/i/firefox-logo.png

45.79.172.174

200 OK

3.4 kB

URL HTTP/2
testedforyou.net/download-instructions/i/firefox-logo.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 65 x 62, 8-bit colormap, non-interlaced\012- data
Size
3.4 kB (3413 bytes)
Hash
00f32dc87963ea21ce76e7adae907168
203c9f4776878e4e9ea52174470a3fe14655f9da
14931c32197c6c58d56252c12b5b89168bd2f5711e773d338d922cc2a641a1a5

HTTP Headers

GET /download-instructions/i/firefox-logo.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=hljip6soc20f0catl16uffuj5m; source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; _csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:41 GMT
content-type: image/png
content-length: 3413
last-modified: Fri, 03 Feb 2023 11:03:14 GMT
etag: "63dce9f2-d55"
expires: Sun, 12 Feb 2023 17:56:41 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/driver-updater/i/firefox-screen.png

45.79.172.174

200 OK

25 kB

URL HTTP/2
testedforyou.net/download-instructions/driver-updater/i/firefox-screen.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 800 x 175, 8-bit colormap, non-interlaced\012- data
Size
25 kB (25154 bytes)
Hash
15d3fdb92892b2dcbcaf0f1944f8c198
d17eb72157196c7eee1422b768f4b29453085749
13e038b19f340445d1dfdba04fcbe7543f9cb93b9d5ee78afb930188305db013

HTTP Headers

GET /download-instructions/driver-updater/i/firefox-screen.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=hljip6soc20f0catl16uffuj5m; source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; _csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:41 GMT
content-type: image/png
content-length: 25154
last-modified: Fri, 03 Feb 2023 11:03:14 GMT
etag: "63dce9f2-6242"
expires: Sun, 12 Feb 2023 17:56:41 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/i/steps.png

45.79.172.174

200 OK

1.4 kB

URL HTTP/2
testedforyou.net/download-instructions/i/steps.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 180 x 60, 8-bit colormap, non-interlaced\012- data
Size
1.4 kB (1377 bytes)
Hash
54224278a486da9c98d0ce8f1016293f
eacbb28164100b95ffe54db614f5901ea06854e4
6156205b893bc350ea9ea0bea3cda0073746982ea9feef9776c6472181282ac7

HTTP Headers

GET /download-instructions/i/steps.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=hljip6soc20f0catl16uffuj5m; source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; _csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:41 GMT
content-type: image/png
content-length: 1377
last-modified: Fri, 03 Feb 2023 11:03:14 GMT
etag: "63dce9f2-561"
expires: Sun, 12 Feb 2023 17:56:41 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/i/firefox-download-icon.png

45.79.172.174

200 OK

358 B

URL HTTP/2
testedforyou.net/download-instructions/i/firefox-download-icon.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 32 x 24, 8-bit colormap, non-interlaced\012- data
Size
358 B (358 bytes)
Hash
747cd64b62e9294e35e82c3811b59341
96001dcd8a8dcfde7ab0f16c35a99c693ba6ef65
6b377bc2324320c6521ab6b2bdb41a0d4b96d2683badc9943b03754370f0d3bd

HTTP Headers

GET /download-instructions/i/firefox-download-icon.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=hljip6soc20f0catl16uffuj5m; source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; _csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:41 GMT
content-type: image/png
content-length: 358
last-modified: Fri, 03 Feb 2023 11:03:14 GMT
etag: "63dce9f2-166"
expires: Sun, 12 Feb 2023 17:56:41 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/i/close.png

45.79.172.174

200 OK

657 B

URL HTTP/2
testedforyou.net/download-instructions/i/close.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 28 x 28, 8-bit colormap, non-interlaced\012- data
Size
657 B (657 bytes)
Hash
21953dc66e942356724bb035a65a6979
a1db3edbc90a640e9bd89b521f5f5b410578722e
36e39164f94c90a54cf45f905a17a3916aba8b6b0831c6a194a6293c098704bf

HTTP Headers

GET /download-instructions/i/close.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=hljip6soc20f0catl16uffuj5m; source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; _csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:41 GMT
content-type: image/png
content-length: 657
last-modified: Fri, 03 Feb 2023 11:03:14 GMT
etag: "63dce9f2-291"
expires: Sun, 12 Feb 2023 17:56:41 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/tfu-du-101/jscss/fonts/open-sans-normal.woff

45.79.172.174

200 OK

34 kB

URL HTTP/2
testedforyou.net/tfu-du-101/jscss/fonts/open-sans-normal.woff
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
Web Open Font Format, TrueType, length 34312, version 1.1\012- data
Size
34 kB (34312 bytes)
Hash
aba4b4c53579deb54f3fd349a21abce3
a96386adaa480e3a61febd60afa422f8c6dbc7c6
b9e0699272a5df7a51862b402ac6294d8d20993e67588001b8b44bfeb5438a6a

HTTP Headers

GET /tfu-du-101/jscss/fonts/open-sans-normal.woff HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://testedforyou.net/tfu-du-101/jscss/style.css
Cookie: advanced=hljip6soc20f0catl16uffuj5m; source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; _csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:41 GMT
content-type: application/font-woff
content-length: 34312
last-modified: Fri, 03 Feb 2023 11:03:14 GMT
etag: "63dce9f2-8608"
expires: Sun, 12 Feb 2023 17:56:41 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/tfu-du-101/jscss/fonts/open-sans-bold.woff

45.79.172.174

200 OK

35 kB

URL HTTP/2
testedforyou.net/tfu-du-101/jscss/fonts/open-sans-bold.woff
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
Web Open Font Format, TrueType, length 34996, version 1.1\012- data
Size
35 kB (34996 bytes)
Hash
d790d2580f8e2c9da6dc54f3b7085c40
1f0121abacf2d6877877a7f448bef3985fbfc4e6
748e14b7cf70561ab9d7acdddd1014bcc19d528b0947d4dbc5ec04f316aa8885

HTTP Headers

GET /tfu-du-101/jscss/fonts/open-sans-bold.woff HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://testedforyou.net/tfu-du-101/jscss/style.css
Cookie: advanced=hljip6soc20f0catl16uffuj5m; source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; _csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:41 GMT
content-type: application/font-woff
content-length: 34996
last-modified: Fri, 03 Feb 2023 11:03:14 GMT
etag: "63dce9f2-88b4"
expires: Sun, 12 Feb 2023 17:56:41 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/tfu-du-101/jscss/fonts/open-sans-italic.woff

45.79.172.174

200 OK

36 kB

URL HTTP/2
testedforyou.net/tfu-du-101/jscss/fonts/open-sans-italic.woff
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
Web Open Font Format, TrueType, length 36504, version 1.1\012- data
Size
36 kB (36504 bytes)
Hash
f6e0dbd5a68b19e4129059bd95f8215e
a687d6fde61570c5884db570299a702edda1fdcd
489bb93c6ad737c927ec0189a08eef50b7418653d64951ffa18497435036400a

HTTP Headers

GET /tfu-du-101/jscss/fonts/open-sans-italic.woff HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://testedforyou.net/tfu-du-101/jscss/style.css
Cookie: advanced=hljip6soc20f0catl16uffuj5m; source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; _csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:41 GMT
content-type: application/font-woff
content-length: 36504
last-modified: Fri, 03 Feb 2023 11:03:14 GMT
etag: "63dce9f2-8e98"
expires: Sun, 12 Feb 2023 17:56:41 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 05 Feb 2023 17:44:08 GMT
expires: Sun, 05 Feb 2023 19:44:08 GMT
cache-control: public, max-age=7200
age: 753
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f31d413448fb27f6006f2545602f47ff
59841d25babb3ba8963eba808c51fcea6492590a
dc69d16cb98638c74987c8bdb4613c2e7837b39a0423fefdfb2b7f518f21134c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4806
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 17:56:41 GMT
Last-Modified: Sun, 05 Feb 2023 16:36:35 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

28 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
28 kB (27843 bytes)
Hash
dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: daqSFW9upGDuMGeKt9VKConHkzaYPdzks8JIG/4XTGqrNOepe53oGlHpFrK45+kbcbmR/S8j+VT8ogxHffs3GA==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1904183273
date: Sun, 05 Feb 2023 17:56:41 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

testedforyou.net/favicon.ico

45.79.172.174

200 OK

1.2 kB

URL HTTP/2
testedforyou.net/favicon.ico
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
68cd66a66c961a0c6ad781c1ca84c6ee
f0ba1cafd867af68e1770e1e95798b6b99c987e6
7b526ade6f91f6990050ea71697bc782b47f119af917914b10939ae8a044490a

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs
Cookie: advanced=hljip6soc20f0catl16uffuj5m; source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; _csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D; outbyte-sess=gavamepmrqhebc0sr6ejblvc82; _sid=I3K1oaXMMD; _sidd=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; _ga=GA1.2.1321191273.1675619801; _fbp=fb.1.1675619801013.3363384024; _gcl_au=1.1.1171584387.1675619842
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:41 GMT
content-type: image/x-icon
content-length: 1150
last-modified: Fri, 03 Feb 2023 11:03:14 GMT
etag: "63dce9f2-47e"
expires: Sun, 12 Feb 2023 17:56:41 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f31d413448fb27f6006f2545602f47ff
59841d25babb3ba8963eba808c51fcea6492590a
dc69d16cb98638c74987c8bdb4613c2e7837b39a0423fefdfb2b7f518f21134c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4806
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 17:56:41 GMT
Last-Modified: Sun, 05 Feb 2023 16:36:35 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

ocsp.globalsign.com/gseccovsslca2018

104.18.20.226

200 OK

939 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
939 B (939 bytes)
Hash
f2bf184430e2dc31f199069725be1899
25b2488f3a3ce5f0fea07d8fc0a7b2a280cc4498
fbbf7c72b016e76df8bda9a36820addf78238714156bf424783001be62d5da65

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 17:56:41 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Thu, 09 Feb 2023 15:17:00 GMT
ETag: "25b2488f3a3ce5f0fea07d8fc0a7b2a280cc4498"
Last-Modified: Sun, 05 Feb 2023 15:17:01 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2607
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794d862e8881b509-OSL

connect.facebook.net/signals/config/191112919472843?v=2.9.95&r=stable

31.13.72.12

200 OK

110 kB

URL HTTP/2
connect.facebook.net/signals/config/191112919472843?v=2.9.95&r=stable
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64471)
Size
110 kB (110322 bytes)
Hash
5eb850608dde5af2cf7274aacd69710a
af50b4748bb8365d762b4e1f40639a1ea73d6164
f2c59637a9d9925a3d0eef94e815056e69d9fcbc637656ed1e0685a66fc3117e

HTTP Headers

GET /signals/config/191112919472843?v=2.9.95&r=stable HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: SJYf++vTZ984vA0SkdxV3uQJpCyqw5RjgW3vI8li31JU/6uN1cnYZhekP+PmHg4Sxl4d/O7dxhk8oJEvAp6BEQ==
priority: u=3,i
content-length: 110322
x-fb-trip-id: 1904183273
date: Sun, 05 Feb 2023 17:56:41 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

connect.facebook.net/signals/plugins/identity.js?v=2.9.95

31.13.72.12

200 OK

21 kB

URL HTTP/2
connect.facebook.net/signals/plugins/identity.js?v=2.9.95
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (60008)
Size
21 kB (20722 bytes)
Hash
4ab212d67df0d744f74a6f6a257b2653
7844504c6b52741b4467b98856b2da4d2e276630
6b5ed11f9d9bfad094e0177b6339804dbdccfece80ea0636343349543ca69c63

HTTP Headers

GET /signals/plugins/identity.js?v=2.9.95 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: jd5TPIRid+eqjo/QtG+WzAjD7KirSxJeCE+dmGGlLH9PuIXJyPuVStetFFZEkn8P3ZA1ilsvadkcMV/Fvwhmog==
content-length: 20722
x-fb-trip-id: 1904183273
date: Sun, 05 Feb 2023 17:56:41 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5ac5aaa2dd1a2ab697244f3c0fe3b5b5
bb8a9aeb28cc645435760f3a9a57d85e295de419
d42327bb295e41a2b04efa1c2ad6094a3480d0010de10bb32600f4d17fe9f0d4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 17:56:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-199245412-1&cid=1321191273.1675619801&jid=1619779346&gjid=1167474784&_gid=1422851749.1675619843&_u=aCDAiUAjBAAAAGAEK~&z=1534328404

64.233.165.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-199245412-1&cid=1321191273.1675619801&jid=1619779346&gjid=1167474784&_gid=1422851749.1675619843&_u=aCDAiUAjBAAAAGAEK~&z=1534328404
IP
64.233.165.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-199245412-1&cid=1321191273.1675619801&jid=1619779346&gjid=1167474784&_gid=1422851749.1675619843&_u=aCDAiUAjBAAAAGAEK~&z=1534328404 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://testedforyou.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 05 Feb 2023 17:56:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-164895039-1&cid=1321191273.1675619801&jid=1925774120&gjid=1252078254&_gid=1422851749.1675619843&_u=aCDAAUAiAAAAACAEK~&z=459546513

64.233.165.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-164895039-1&cid=1321191273.1675619801&jid=1925774120&gjid=1252078254&_gid=1422851749.1675619843&_u=aCDAAUAiAAAAACAEK~&z=459546513
IP
64.233.165.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-164895039-1&cid=1321191273.1675619801&jid=1925774120&gjid=1252078254&_gid=1422851749.1675619843&_u=aCDAAUAiAAAAACAEK~&z=459546513 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://testedforyou.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 05 Feb 2023 17:56:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

mc.yandex.ru/metrika/tag.js

77.88.21.119

200 OK

74 kB

URL HTTP/2
mc.yandex.ru/metrika/tag.js
IP
77.88.21.119:0
ASN
#13238 YANDEX LLC

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Size
74 kB (73853 bytes)
Hash
de9c4346801ea3636fb506b54c394b32
f998f9464013582483778132d544fbd106c6d9a1
c9a9f4cbaaf63148dbafd70126d101548d61884ac369c0b35b0e4efa244a9670

HTTP Headers

GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-length: 73853
date: Sun, 05 Feb 2023 17:56:41 GMT
access-control-allow-origin: *
etag: "63c93a4b-1207d"
expires: Sun, 05 Feb 2023 18:56:41 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8077210062c315b98902cb06c74d485b
808e94ac31f1b45185103ce25c1bc2afd056b17a
78871f45de0c58bffa6a86b50f6bd0db61932bf6a2b7d8191dba0f0eaab628b1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 17:56:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-1EEJR9725E&cid=1321191273.1675619801&gtm=45je3210&aip=1&z=1511891543

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-1EEJR9725E&cid=1321191273.1675619801&gtm=45je3210&aip=1&z=1511891543
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-1EEJR9725E&cid=1321191273.1675619801&gtm=45je3210&aip=1&z=1511891543 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 Feb 2023 17:56:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-164895039-1&cid=1321191273.1675619801&jid=1925774120&_u=aCDAAUAiAAAAACAEK~&z=859634767

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-164895039-1&cid=1321191273.1675619801&jid=1925774120&_u=aCDAAUAiAAAAACAEK~&z=859634767
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-164895039-1&cid=1321191273.1675619801&jid=1925774120&_u=aCDAAUAiAAAAACAEK~&z=859634767 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 Feb 2023 17:56:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 17:56:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a78b06ca527ce7542b24b349e0485d8b
6f5e5126c1c9d40c9ba09d58e1755d2ca39d02ab
bc7dc156ab8b2b33422fff0922e219246eb1d12469d10ac8007416fed41ac473

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 17:56:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a78b06ca527ce7542b24b349e0485d8b
6f5e5126c1c9d40c9ba09d58e1755d2ca39d02ab
bc7dc156ab8b2b33422fff0922e219246eb1d12469d10ac8007416fed41ac473

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 17:56:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8077210062c315b98902cb06c74d485b
808e94ac31f1b45185103ce25c1bc2afd056b17a
78871f45de0c58bffa6a86b50f6bd0db61932bf6a2b7d8191dba0f0eaab628b1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 17:56:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-164895039-1&cid=1321191273.1675619801&jid=1925774120&_u=aCDAAUAiAAAAACAEK~&z=859634767

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-164895039-1&cid=1321191273.1675619801&jid=1925774120&_u=aCDAAUAiAAAAACAEK~&z=859634767
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-164895039-1&cid=1321191273.1675619801&jid=1925774120&_u=aCDAAUAiAAAAACAEK~&z=859634767 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 Feb 2023 17:56:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-199245412-1&cid=1321191273.1675619801&jid=1619779346&_u=aCDAiUAjBAAAAGAEK~&z=659553053

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-199245412-1&cid=1321191273.1675619801&jid=1619779346&_u=aCDAiUAjBAAAAGAEK~&z=659553053
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-199245412-1&cid=1321191273.1675619801&jid=1619779346&_u=aCDAiUAjBAAAAGAEK~&z=659553053 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 Feb 2023 17:56:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=191112919472843&ev=PageView&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rl=&if=false&ts=1675619842806&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&cs_est=true&fbp=fb.1.1675619801013.3363384024&it=1675619842648&coo=false&tm=1&rqm=GET

157.240.221.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=191112919472843&ev=PageView&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rl=&if=false&ts=1675619842806&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&cs_est=true&fbp=fb.1.1675619801013.3363384024&it=1675619842648&coo=false&tm=1&rqm=GET
IP
157.240.221.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=191112919472843&ev=PageView&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rl=&if=false&ts=1675619842806&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&cs_est=true&fbp=fb.1.1675619801013.3363384024&it=1675619842648&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 05 Feb 2023 17:56:41 GMT
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=191112919472843&ev=ViewContent&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rl=&if=false&ts=1675619842810&cd[content_name]=driver-updater&cd[content_category]=outbyte&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1675619801013.3363384024&it=1675619842648&coo=false&rqm=GET

157.240.221.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=191112919472843&ev=ViewContent&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rl=&if=false&ts=1675619842810&cd[content_name]=driver-updater&cd[content_category]=outbyte&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1675619801013.3363384024&it=1675619842648&coo=false&rqm=GET
IP
157.240.221.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=191112919472843&ev=ViewContent&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rl=&if=false&ts=1675619842810&cd[content_name]=driver-updater&cd[content_category]=outbyte&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1675619801013.3363384024&it=1675619842648&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 05 Feb 2023 17:56:41 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2183fdf183ed33f2cd4342abd7bcadbe
007fe0bb01b7d77fbaaff5346fd7582041c978c8
8f0381d12ab5a76be5137b365e811e75db681eb0f6ad04d7ce28ad73101c33d5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 17:56:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

mc.yandex.ru/metrika/advert.gif

77.88.21.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/metrika/advert.gif
IP
77.88.21.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Sun, 05 Feb 2023 17:56:41 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Sun, 05 Feb 2023 18:56:41 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/watch/65533162/1?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0gggw3usgug1h33hqlj%3Afp%3A1353%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A390830253121%3Ahid%3A351858514%3Az%3A0%3Ai%3A20230205175722%3Aet%3A1675619843%3Ac%3A1%3Arn%3A511401964%3Arqn%3A1%3Au%3A1675619843587751314%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C205%2C96%2C1%2C822%2C0%2C%2C327%2C6%2C%2C%2C%2C1456%3Aco%3A0%3Ans%3A1675619840967%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675619843%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29

77.88.21.119

200 OK

419 B

URL HTTP/2
mc.yandex.ru/watch/65533162/1?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0gggw3usgug1h33hqlj%3Afp%3A1353%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A390830253121%3Ahid%3A351858514%3Az%3A0%3Ai%3A20230205175722%3Aet%3A1675619843%3Ac%3A1%3Arn%3A511401964%3Arqn%3A1%3Au%3A1675619843587751314%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C205%2C96%2C1%2C822%2C0%2C%2C327%2C6%2C%2C%2C%2C1456%3Aco%3A0%3Ans%3A1675619840967%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675619843%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP
77.88.21.119:0
ASN
#13238 YANDEX LLC

File type
JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Size
419 B (419 bytes)
Hash
b615e5e9af5ca295d7f6f7b6f2595b5f
4b1b90998584beeac978cb1e3e63a3bcf6b168b0
4d8bfb877cd68a6e86e73cca315e0ec8656a03eb30a018aa4c1c000292be29e1

HTTP Headers

GET /watch/65533162/1?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0gggw3usgug1h33hqlj%3Afp%3A1353%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A390830253121%3Ahid%3A351858514%3Az%3A0%3Ai%3A20230205175722%3Aet%3A1675619843%3Ac%3A1%3Arn%3A511401964%3Arqn%3A1%3Au%3A1675619843587751314%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C205%2C96%2C1%2C822%2C0%2C%2C327%2C6%2C%2C%2C%2C1456%3Aco%3A0%3Ans%3A1675619840967%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675619843%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://testedforyou.net
Referer: https://testedforyou.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 419
date: Sun, 05 Feb 2023 17:56:41 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 05-Feb-2023 17:56:41 GMT
last-modified: Sun, 05-Feb-2023 17:56:41 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-199245412-1&cid=1321191273.1675619801&jid=1619779346&_u=aCDAiUAjBAAAAGAEK~&z=659553053

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-199245412-1&cid=1321191273.1675619801&jid=1619779346&_u=aCDAiUAjBAAAAGAEK~&z=659553053
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-199245412-1&cid=1321191273.1675619801&jid=1619779346&_u=aCDAiUAjBAAAAGAEK~&z=659553053 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 Feb 2023 17:56:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3330
Expires: Sun, 05 Feb 2023 18:52:12 GMT
Date: Sun, 05 Feb 2023 17:56:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3330
Expires: Sun, 05 Feb 2023 18:52:12 GMT
Date: Sun, 05 Feb 2023 17:56:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3330
Expires: Sun, 05 Feb 2023 18:52:12 GMT
Date: Sun, 05 Feb 2023 17:56:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3330
Expires: Sun, 05 Feb 2023 18:52:12 GMT
Date: Sun, 05 Feb 2023 17:56:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3330
Expires: Sun, 05 Feb 2023 18:52:12 GMT
Date: Sun, 05 Feb 2023 17:56:42 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8527 bytes)
Hash
6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:05:45 GMT
age: 71457
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7992 bytes)
Hash
65cd12302c9ca5468dbc9a98155970e0
a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1
8463155faca74f13ec4500fed98289d8bfbdc4a989d1cb7580736018eadf1000

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7992
x-amzn-requestid: ba4f95d9-6081-4b34-955c-bbe8e7b2335c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEEjGsdIAMF84w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8083-7666baa66ccdec9b5fec8736;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WvRGhO3COwBBWde7STgSc_pkZV6TyGNl0rg9239b84w9WYzVgOIzgA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:23:54 GMT
age: 70368
etag: "a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9579 bytes)
Hash
b3e7140400336984afc6093c1246f863
59e0b21cdf4cfdac3f1ea05badd007727939ac42
4d927e74922159db5d07b9947fa1021cff74bb7b55759960cb3941d05c1e8f11

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9579
x-amzn-requestid: c474008d-a6a9-409b-88e2-c55062044575
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzQtnFGhoAMF5Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddfb23-54dd67257ba25ad24e977a9c;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 06:28:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0Of3BK3VqVMGQGDIODQthVmi7BC8Ney4zgGCpVuzYc1j6D8RRP-AxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 14:15:34 GMT
age: 13268
etag: "59e0b21cdf4cfdac3f1ea05badd007727939ac42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (5014 bytes)
Hash
5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:24:01 GMT
age: 23561
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12967 bytes)
Hash
8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 013fa296-a431-410b-b3fb-7417b3e877eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpIQAFCMIAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ed99-2e1daa8b75977de07c48b8fc;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 04:42:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UzQGDCYe_8AuYYLaLSAWzHQhwJMpzpXWbjE5AwukevW6G6SLDxDjmA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:42:59 GMT
age: 51223
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3474 bytes)
Hash
d7a466d89c75ff3459b7328591db52cf
c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb
e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:51:26 GMT
age: 72316
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-1EEJR9725E&gtm=45je3210&_p=1364447455&_gaz=1&cid=1321191273.1675619801&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675619842&sct=1&seg=0&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&dt=Atualizar%20drivers%20do%20Windows%2010%2F11&en=page_view&_fv=1&_ss=1&ep.allowLinker=true&ep.customTask=function(a)%7Ba.set(%22dimension%22%2Bb%2Ca.get(%22clientId%22))%7D&ep.marker_id=src_ag_bockachbr_du_tfu_du_101

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-1EEJR9725E&gtm=45je3210&_p=1364447455&_gaz=1&cid=1321191273.1675619801&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675619842&sct=1&seg=0&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&dt=Atualizar%20drivers%20do%20Windows%2010%2F11&en=page_view&_fv=1&_ss=1&ep.allowLinker=true&ep.customTask=function(a)%7Ba.set(%22dimension%22%2Bb%2Ca.get(%22clientId%22))%7D&ep.marker_id=src_ag_bockachbr_du_tfu_du_101
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-1EEJR9725E&gtm=45je3210&_p=1364447455&_gaz=1&cid=1321191273.1675619801&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675619842&sct=1&seg=0&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&dt=Atualizar%20drivers%20do%20Windows%2010%2F11&en=page_view&_fv=1&_ss=1&ep.allowLinker=true&ep.customTask=function(a)%7Ba.set(%22dimension%22%2Bb%2Ca.get(%22clientId%22))%7D&ep.marker_id=src_ag_bockachbr_du_tfu_du_101 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://testedforyou.net
date: Sun, 05 Feb 2023 17:56:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=1&wv-hit=351858514&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rn=1064739537&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675619846%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230205175725%3Au%3A1675619843587751314%3Avf%3Asm0gggw3usgug1h33hqlj%3Ast%3A1675619846&t=gdpr(14)ti(2)

77.88.21.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=1&wv-hit=351858514&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rn=1064739537&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675619846%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230205175725%3Au%3A1675619843587751314%3Avf%3Asm0gggw3usgug1h33hqlj%3Ast%3A1675619846&t=gdpr(14)ti(2)
IP
77.88.21.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wmode=0&wv-part=1&wv-hit=351858514&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rn=1064739537&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675619846%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230205175725%3Au%3A1675619843587751314%3Avf%3Asm0gggw3usgug1h33hqlj%3Ast%3A1675619846&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 24499
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Sun, 05 Feb 2023 17:56:44 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 05-Feb-2023 17:56:44 GMT
last-modified: Sun, 05-Feb-2023 17:56:44 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=1&wv-hit=351858514&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rn=211436038&wv-type=3&browser-info=we%3A1%3Aet%3A1675619846%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230205175725%3Au%3A1675619843587751314%3Avf%3Asm0gggw3usgug1h33hqlj%3Ast%3A1675619846&t=gdpr(14)ti(2)

77.88.21.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=1&wv-hit=351858514&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rn=211436038&wv-type=3&browser-info=we%3A1%3Aet%3A1675619846%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230205175725%3Au%3A1675619843587751314%3Avf%3Asm0gggw3usgug1h33hqlj%3Ast%3A1675619846&t=gdpr(14)ti(2)
IP
77.88.21.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wmode=0&wv-part=1&wv-hit=351858514&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rn=211436038&wv-type=3&browser-info=we%3A1%3Aet%3A1675619846%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230205175725%3Au%3A1675619843587751314%3Avf%3Asm0gggw3usgug1h33hqlj%3Ast%3A1675619846&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Sun, 05 Feb 2023 17:56:44 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 05-Feb-2023 17:56:44 GMT
last-modified: Sun, 05-Feb-2023 17:56:44 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wv-check=52955&wv-type=0&wmode=0&wv-part=1&wv-hit=351858514&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rn=1049564815&browser-info=we%3A1%3Aet%3A1675619850%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230205175730%3Au%3A1675619843587751314%3Avf%3Asm0gggw3usgug1h33hqlj%3Ast%3A1675619850&t=gdpr(14)ti(2)

77.88.21.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wv-check=52955&wv-type=0&wmode=0&wv-part=1&wv-hit=351858514&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rn=1049564815&browser-info=we%3A1%3Aet%3A1675619850%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230205175730%3Au%3A1675619843587751314%3Avf%3Asm0gggw3usgug1h33hqlj%3Ast%3A1675619850&t=gdpr(14)ti(2)
IP
77.88.21.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wv-check=52955&wv-type=0&wmode=0&wv-part=1&wv-hit=351858514&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rn=1049564815&browser-info=we%3A1%3Aet%3A1675619850%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230205175730%3Au%3A1675619843587751314%3Avf%3Asm0gggw3usgug1h33hqlj%3Ast%3A1675619850&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Sun, 05 Feb 2023 17:56:48 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 05-Feb-2023 17:56:48 GMT
last-modified: Sun, 05-Feb-2023 17:56:48 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=2&wv-hit=351858514&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rn=599715455&wv-type=3&browser-info=we%3A1%3Aet%3A1675619850%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230205175730%3Au%3A1675619843587751314%3Avf%3Asm0gggw3usgug1h33hqlj%3Ast%3A1675619850&t=gdpr(14)ti(2)

77.88.21.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=2&wv-hit=351858514&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rn=599715455&wv-type=3&browser-info=we%3A1%3Aet%3A1675619850%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230205175730%3Au%3A1675619843587751314%3Avf%3Asm0gggw3usgug1h33hqlj%3Ast%3A1675619850&t=gdpr(14)ti(2)
IP
77.88.21.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wmode=0&wv-part=2&wv-hit=351858514&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rn=599715455&wv-type=3&browser-info=we%3A1%3Aet%3A1675619850%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230205175730%3Au%3A1675619843587751314%3Avf%3Asm0gggw3usgug1h33hqlj%3Ast%3A1675619850&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Sun, 05 Feb 2023 17:56:48 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 05-Feb-2023 17:56:48 GMT
last-modified: Sun, 05-Feb-2023 17:56:48 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=2&wv-hit=351858514&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rn=606008574&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675619850%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230205175730%3Au%3A1675619843587751314%3Avf%3Asm0gggw3usgug1h33hqlj%3Ast%3A1675619850&t=gdpr(14)ti(2)

77.88.21.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=2&wv-hit=351858514&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rn=606008574&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675619850%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230205175730%3Au%3A1675619843587751314%3Avf%3Asm0gggw3usgug1h33hqlj%3Ast%3A1675619850&t=gdpr(14)ti(2)
IP
77.88.21.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wmode=0&wv-part=2&wv-hit=351858514&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&rn=606008574&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675619850%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230205175730%3Au%3A1675619843587751314%3Avf%3Asm0gggw3usgug1h33hqlj%3Ast%3A1675619850&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Sun, 05 Feb 2023 17:56:48 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 05-Feb-2023 17:56:48 GMT
last-modified: Sun, 05-Feb-2023 17:56:48 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs

45.79.172.174

200 OK

0 B

URL HTTP/2
testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:40 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: advanced=hljip6soc20f0catl16uffuj5m; path=/; HttpOnly
source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; expires=Sun, 05-Feb-2023 17:57:40 GMT; Max-Age=60; path=/; domain=.testedforyou.net
_csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D; path=/; HttpOnly; SameSite=Lax
accept-ch: Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
content-encoding: gzip
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/download-instructions.js

45.79.172.174

200 OK

0 B

URL HTTP/2
testedforyou.net/download-instructions/download-instructions.js
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /download-instructions/download-instructions.js HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs
Cookie: advanced=hljip6soc20f0catl16uffuj5m; source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; _csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:40 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 03 Feb 2023 11:03:14 GMT
etag: W/"63dce9f2-2b8"
expires: Sun, 12 Feb 2023 17:56:40 GMT
cache-control: max-age=604800, max-age=604800,  public
content-encoding: gzip
X-Firefox-Spdy: h2

mc.yandex.ru/watch/65533162?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0gggw3usgug1h33hqlj%3Afp%3A1353%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A390830253121%3Ahid%3A351858514%3Az%3A0%3Ai%3A20230205175722%3Aet%3A1675619843%3Ac%3A1%3Arn%3A511401964%3Arqn%3A1%3Au%3A1675619843587751314%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C205%2C96%2C1%2C822%2C0%2C%2C327%2C6%2C%2C%2C%2C1456%3Aco%3A0%3Ans%3A1675619840967%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675619843%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)

77.88.21.119

302 Found

0 B

URL HTTP/2
mc.yandex.ru/watch/65533162?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0gggw3usgug1h33hqlj%3Afp%3A1353%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A390830253121%3Ahid%3A351858514%3Az%3A0%3Ai%3A20230205175722%3Aet%3A1675619843%3Ac%3A1%3Arn%3A511401964%3Arqn%3A1%3Au%3A1675619843587751314%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C205%2C96%2C1%2C822%2C0%2C%2C327%2C6%2C%2C%2C%2C1456%3Aco%3A0%3Ans%3A1675619840967%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675619843%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP
77.88.21.119:0
ASN
#13238 YANDEX LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /watch/65533162?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0gggw3usgug1h33hqlj%3Afp%3A1353%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A390830253121%3Ahid%3A351858514%3Az%3A0%3Ai%3A20230205175722%3Aet%3A1675619843%3Ac%3A1%3Arn%3A511401964%3Arqn%3A1%3Au%3A1675619843587751314%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C205%2C96%2C1%2C822%2C0%2C%2C327%2C6%2C%2C%2C%2C1456%3Aco%3A0%3Ans%3A1675619840967%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675619843%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: /watch/65533162/1?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa35e0qs&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0gggw3usgug1h33hqlj%3Afp%3A1353%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A390830253121%3Ahid%3A351858514%3Az%3A0%3Ai%3A20230205175722%3Aet%3A1675619843%3Ac%3A1%3Arn%3A511401964%3Arqn%3A1%3Au%3A1675619843587751314%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C205%2C96%2C1%2C822%2C0%2C%2C327%2C6%2C%2C%2C%2C1456%3Aco%3A0%3Ans%3A1675619840967%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675619843%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sun, 05 Feb 2023 17:56:41 GMT
access-control-allow-origin: https://testedforyou.net
set-cookie: yabs-sid=714091501675619801; Path=/; SameSite=None; Secure
i=wXUDSGhDI8ep6S0ioD23lIWayIRU6CaMmYR4sgDxwyJD5mr/9mzhPIpZMmxmLeUqeAb9F25muk8HAXbvxtAKYLF+2lE=; Expires=Wed, 02-Feb-2033 17:56:36 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=9262830131675619801; Expires=Mon, 05-Feb-2024 17:56:41 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=9262830131675619801; Expires=Mon, 05-Feb-2024 17:56:41 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1707155801.yc.1675619801#1707155801.yrts.1675619801#1707155801.yrtsi.1675619801; Expires=Mon, 05-Feb-2024 17:56:41 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 05-Feb-2023 17:56:41 GMT
last-modified: Sun, 05-Feb-2023 17:56:41 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

testedforyou.net/js/jquery/jquery-1.9.1.min.js

45.79.172.174

200 OK

0 B

URL HTTP/2
testedforyou.net/js/jquery/jquery-1.9.1.min.js
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/jquery/jquery-1.9.1.min.js HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs
Cookie: advanced=hljip6soc20f0catl16uffuj5m; source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; _csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:40 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 03 Feb 2023 11:03:14 GMT
etag: W/"63dce9f2-169b2"
expires: Sun, 12 Feb 2023 17:56:40 GMT
cache-control: max-age=604800, max-age=604800,  public
content-encoding: gzip
X-Firefox-Spdy: h2

testedforyou.net/js/markedsettings.js

45.79.172.174

200 OK

0 B

URL HTTP/2
testedforyou.net/js/markedsettings.js
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/markedsettings.js HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs
Cookie: advanced=hljip6soc20f0catl16uffuj5m; source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; _csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:40 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 03 Feb 2023 11:03:14 GMT
etag: W/"63dce9f2-44"
expires: Sun, 12 Feb 2023 17:56:40 GMT
cache-control: max-age=604800, max-age=604800,  public
content-encoding: gzip
X-Firefox-Spdy: h2

testedforyou.net/sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzVlMHFzIiwibWFya2VycyI6IjAyMDUxNzU2NDBfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTAyMDUxNzU2NDBfY2FydF9kdV9kYXJrdGhlbWUifQ==

45.79.172.174

200 OK

0 B

URL HTTP/2
testedforyou.net/sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzVlMHFzIiwibWFya2VycyI6IjAyMDUxNzU2NDBfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTAyMDUxNzU2NDBfY2FydF9kdV9kYXJrdGhlbWUifQ==
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzVlMHFzIiwibWFya2VycyI6IjAyMDUxNzU2NDBfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTAyMDUxNzU2NDBfY2FydF9kdV9kYXJrdGhlbWUifQ== HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa35e0qs
Cookie: advanced=hljip6soc20f0catl16uffuj5m; source=0205175640_src_ag_bockachbr_du_tfu_du_101-0205175640_cart_du_darktheme; _csrf=c1b823ff5091828331a175c6b5fa2316d7b332995dabeab1c6d14be9627aee88a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22hPc4siFpf0X4ilfaaZsGPHlRlRcZL16N%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 17:56:41 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: outbyte-sess=gavamepmrqhebc0sr6ejblvc82; path=/; HttpOnly
_sid=I3K1oaXMMD; expires=Mon, 05-Feb-2024 17:56:41 GMT; Max-Age=31536000; path=/; domain=.testedforyou.net
_sidd=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%3D%3D; expires=Mon, 05-Feb-2024 17:56:41 GMT; Max-Age=31536000; path=/; domain=.testedforyou.net
_ga=GA1.2.1321191273.1675619801; expires=Tue, 04-Feb-2025 17:56:41 GMT; Max-Age=63072000; path=/; domain=.testedforyou.net
_fbp=fb.1.1675619801013.3363384024; expires=Sat, 06-May-2023 17:56:41 GMT; Max-Age=7776000; path=/; domain=.testedforyou.net
access-control-allow-origin: testedforyou.net
access-control-allow-credentials: true
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
last-modified: Sun, 05 Feb 2023 17:56:41GMT
content-disposition: inline; filename="sid.js"
accept-ch: Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML