Report - suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4

Report Overview

Submitted URL
suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4
IP
18.192.108.151
ASN
#16509 AMAZON-02
Submitted
2023-02-02 22:12:42
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.42.182.211
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	768 B	22 kB	142.250.74.110
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	1.0 kB	1.2 kB	216.58.211.4
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	1.6 kB	698 B	157.240.205.35
xoomber.com	unknown	2016-01-05T15:05:54Z	2023-03-13T08:44:21Z	530 B	829 B	104.200.16.65
testedforyou.net	428320	2020-04-24T14:22:18Z	2023-03-13T08:44:23Z	13 kB	158 kB	45.79.172.174
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-13T05:09:19Z	359 B	1.4 kB	104.18.21.226
mc.yandex.ru	2672	2012-05-21T11:38:30Z	2023-03-13T08:16:45Z	7.5 kB	81 kB	93.158.134.119
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	682 B	1.6 kB	93.184.220.29
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-13T08:02:41Z	1.2 kB	1.2 kB	64.233.165.156
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	764 B	132 kB	142.250.74.40
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-13T05:09:29Z	374 B	29 kB	31.13.72.12
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-13T06:26:15Z	482 B	578 B	142.250.74.131
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	60 kB	34.120.237.76
suscoop-comithers.icu	543653	2019-11-19T14:18:08Z	2023-03-13T05:32:55Z	389 B	824 B	18.192.108.151
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.0 kB	8.0 kB	95.101.11.115
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	3.4 kB	7.0 kB	142.250.74.131
region1.analytics.google.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:11:52Z	952 B	447 B	216.239.34.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-02 22:12:59	medium	Client IP	Internal IP	ET INFO DNS Query for Suspicious .icu Domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-02	medium	suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (25)

	URL	Size	First Seen	Last Seen
	testedforyou.net/js/jquery/jquery-1.9.1.min.js	93 kB	2023-03-07	2023-09-23
Pretty URL testedforyou.net/js/jquery/jquery-1.9.1.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:24 Last Seen2023-09-23 06:41:55 Times Seen62 Hash 8a5dd9281b5fb7d3275f66f89dc2bc34 bd4e2b0622a87370bd7ef3972a6dfedb61b54bf5 372a84f4756de5976a1e594ee6ef4ff5c7f31f378b358d157362bef727db8b0b Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu	357 B	2023-03-07	2023-07-17
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-07-17 05:53:35 Times Seen21 Hash 32f4e2be313973a95dde83a4374b4f9c 96ff52108e8be2069feda367deb5338a855f055d 1c0347f358b63ac112e6acc6fe092cdeacfa16f211212c32802bf102a3e23705 Loading...

	connect.facebook.net/signals/plugins/identity.js?v=2.9.95	65 kB	2023-03-08	2024-02-19
Pretty URL connect.facebook.net/signals/plugins/identity.js?v=2.9.95 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:50 Last Seen2024-02-19 23:40:48 Times Seen4401 Hash ed5d6caf417fab681343bc3414babc55 410ba8d8866d7c7df41f21526345cfb7426386f2 7e86f52cb0d423805ec541a4bccae5156a01fbe36355e6d798a450593212651f Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PM3XLW4	206 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PM3XLW4 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:18:52 Last Seen2023-03-13 15:18:52 Times Seen1 Hash 44e4f724cce7b1056d3375ff24d18c77 6392c14224caeb4cd214baec71577cb251c76534 c98fad21c113138a94da9c5dec7cc44244408bcb9cd86a2caead45374886a3c8 Loading...

	testedforyou.net/download-instructions/download-instructions.js	696 B	2023-03-07	2023-07-17
Pretty URL testedforyou.net/download-instructions/download-instructions.js IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-07-17 05:53:35 Times Seen21 Hash 9024cc831da618bfb1b64404676af2b4 9b4e10c631304e9288d9e68a7d9286a27c925bdf df1e5760a48f874bb790e507761cfda358b01d76ee39a441b5dbce914854c655 Loading...

	testedforyou.net/js/markedsettings.js	68 B	2023-03-07	2023-07-17
Pretty URL testedforyou.net/js/markedsettings.js IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-07-17 05:53:35 Times Seen21 Hash 7a26d76f7b0a4e98b09b9ac9e4dc9a21 196c00e4855221dcb3eb88a479ed07f3ebbe6f40 5c93112a1c8f2dde03c35f69a609184a74546ed71e629dd1c639758c93d990fd Loading...

	testedforyou.net/sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzU3OGh1IiwibWFya2VycyI6IjAyMDIyMjEyMzNfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTAyMDIyMjEyMzNfY2FydF9kdV9kYXJrdGhlbWUifQ==	7.0 kB	2023-03-13	2023-03-13
Pretty URL testedforyou.net/sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzU3OGh1IiwibWFya2VycyI6IjAyMDIyMjEyMzNfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTAyMDIyMjEyMzNfY2FydF9kdV9kYXJrdGhlbWUifQ== IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:18:52 Last Seen2023-03-13 15:18:52 Times Seen1 Hash 2e2b34c810c33fafea1d5876f59596b3 4c4741405d41edd73c7c704641d9a06845dcb4bf 8d098594e10e0ea99f2ccc11daca821696aea7cfd0d434e6a14d661eddb392e3 Loading...

	www.googletagmanager.com/gtag/js?id=G-1EEJR9725E&l=dataLayer&cx=c	223 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-1EEJR9725E&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:18:52 Last Seen2023-03-13 15:18:52 Times Seen1 Hash c98628c33ab85a244d79940b374ed422 8060c3967f0a643b9f9d0c877edb70ab148c8fb8 d934cc087c17410e1dbe3067b9daa8deb7c1ccb053f5c06bcd2fe45d25892d44 Loading...

	www.google-analytics.com/plugins/ua/linkid.js	1.6 kB	2023-03-07	2024-05-06
Pretty URL www.google-analytics.com/plugins/ua/linkid.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-05-06 13:19:47 Times Seen1993 Hash 0cc3a63fe10060af4a349e5df666eefe 3e8d3925b550345123f2cab26568221fd4154f9c 92fca55833f48b4289ac8f1cedd48752b580fce4ec4b5d81670b8193d6e51b54 Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu	341 B	2023-03-07	2023-12-22
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:31 Last Seen2023-12-22 05:22:57 Times Seen27 Hash 27f9060b4a2db15382c76283953f802d 9d9eb2c094a6f785909a62cd68823ac912496b7a e9408c3242693122dba00a488a161ef09876a3b8451f7c7cd61f35da4859206e Loading...

	connect.facebook.net/en_US/fbevents.js	109 kB	2023-03-13	2023-11-17
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:47:19 Last Seen2023-11-17 16:32:25 Times Seen5 Hash beca88e7d9125b63f58be285031b0930 08cda009ebdf601f0ffe06b0ee3065fff2fb105b c1e56ad863615fc191d80d7807852db95e57579f6535186d83d04ecdebef5236 Loading...

	connect.facebook.net/signals/config/191112919472843?v=2.9.95&r=stable	386 kB	2023-03-13	2023-03-13
Pretty URL connect.facebook.net/signals/config/191112919472843?v=2.9.95&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:49:21 Last Seen2023-03-13 15:18:52 Times Seen1 Hash afef276bf733040fa87d8459b6a35155 a1f766fdb04decb9748058b5956bfca69a1f0ff7 12f5d4eb2bd8c92b66a41d2da436141a9299f874da327c6af6e062484db016d2 Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu	341 B	2023-03-07	2023-07-17
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-07-17 05:53:35 Times Seen21 Hash 3d4bac08f9ac333f294c05a6476defba 3d0b5bbe119df96c311fbab9b3bc6310f33da1ee a918c5d01fe429a642c919e0595da904a7b2955cdbe0af8a9ee05467f5146c02 Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu	172 B	2023-03-07	2024-01-28
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2024-01-28 10:34:30 Times Seen24 Hash 0a653f4bb471658a5241adb6c7e379fc 3faa551ca4ea6902e3da82af90468396883d6d3d 49c86ccfcdcbd35616425e880149d6c52907226fca8fc594c37a2b2258386be2 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MXXFW64	168 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MXXFW64 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:18:52 Last Seen2023-03-13 15:18:52 Times Seen1 Hash 9388396ca3fd6fc6ad105d1d565ad1d9 aec2fb326852ccd2c3d6ba93ca202586dbcd0a09 7006ebcf6bcbb40b979708f0b261a2ee2c4cb4f6f69d4282e4d86390ee914dae Loading...

	testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu	116 B	2023-03-07	2023-05-25
Pretty URL testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu IP 45.79.172.174 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:20 Last Seen2023-05-25 20:48:24 Times Seen20 Hash abf179a91aebe05e8191271c7894fc8d 4f550a9f4fc4e6f53f7d4ce3e8a9af953fcbdb5b 998c2534e6829866e1b61b4d4af6abbfe19c844e83eb9e6c000f6186d50ba3c5 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

		Size	First Seen	Last Seen
	#1 Eval - 5ec5ad77f21e3f53bcb406c6bc3a11f7	83 B	2023-03-07	2024-04-30
Pretty Observations First Seen2023-03-07 01:42:31 Last Seen2024-04-30 12:33:11 Times Seen69 Hash 5ec5ad77f21e3f53bcb406c6bc3a11f7 7ebe251c9c00289bc969438233935497d29efb62 ab3187de66558ccc057ca177ceb858d83970394993f2ca180e04ceeeec1db0dc Loading...

	#2 Eval - dabf66ad8a7a421f16e7150300533e24	715 B	2023-03-13	2023-12-22
Pretty Observations First Seen2023-03-13 08:28:24 Last Seen2023-12-22 05:22:57 Times Seen30 Hash dabf66ad8a7a421f16e7150300533e24 116f2c6d63502bff7f5a0c691ecc8c1cbf36940b 1bdd1daed34b0d16c53ad9bc3d66b2b679c62d8dfb6c483e4ecfaa58672e62f1 Loading...

	#3 Eval - 8eb844dfd02a8ec7e6dfc733c4442c05	419 B	2023-03-07	2023-12-22
Pretty Observations First Seen2023-03-07 13:54:20 Last Seen2023-12-22 05:22:57 Times Seen30 Hash 8eb844dfd02a8ec7e6dfc733c4442c05 2924aa0801818c981e4bd6b528071c48a1a2e6e2 5056fe8ebe4adddcfa058eb5e15e7b03eec00291d8d4e2a1db170e393162f390 Loading...

	#4 Eval - fe2dd7333265c13126cf892c8bfeb58d	731 B	2023-03-07	2023-05-25
Pretty Observations First Seen2023-03-07 01:42:31 Last Seen2023-05-25 20:48:24 Times Seen20 Hash fe2dd7333265c13126cf892c8bfeb58d 873da59845851456cac3107051891de35cf794b2 968af3a17139ce074afbd647eaf6aedb2b1d42560acef2cbdaf10a79c80945ea Loading...

	#5 Eval - 204eeff286416f91224315b4fdb73b23	710 B	2023-03-13	2024-01-28
Pretty Observations First Seen2023-03-13 08:28:24 Last Seen2024-01-28 10:34:30 Times Seen27 Hash 204eeff286416f91224315b4fdb73b23 a2b30763c35caa9b0a0fb9d58250b2e3cb9bb1bd 1e0248a984d8b33f86021a95ac0278f9233ed20f2ce52467ee0c2d8072775b75 Loading...

	#6 Eval - e6d5644bb305d936726774a3284075e4	724 B	2023-03-13	2023-12-22
Pretty Observations First Seen2023-03-13 08:28:24 Last Seen2023-12-22 05:22:57 Times Seen30 Hash e6d5644bb305d936726774a3284075e4 65a01530434c308df84e85ee7c435e17b2d52b70 826c3d9bcf30c317b823e5aca01bdda19373a21f4e64e57dae57a617be0aaa95 Loading...

	#7 Eval - 7607c228e83e34ce781fec68fe31315a	823 B	2023-03-07	2023-12-22
Pretty Observations First Seen2023-03-07 01:42:31 Last Seen2023-12-22 05:22:57 Times Seen30 Hash 7607c228e83e34ce781fec68fe31315a f3c3c72717d8d077304ce419a674262e3e316062 263b8517a468db4d68244cc32497d698a1f2134e48da14b653730ad9eb5e8b9e Loading...

	#8 Eval - b4954138278fe12fa7ee4c63455e4acf	923 B	2023-03-07	2023-05-25
Pretty Observations First Seen2023-03-07 01:42:31 Last Seen2023-05-25 20:48:24 Times Seen19 Hash b4954138278fe12fa7ee4c63455e4acf d55b4788473619d8c6fdcfa525b39034273a4f8a 7949d40a240d20bbc2b7688b881a07833201149200a17dc3bee8a390fe0ad679 Loading...

HTTP Transactions (72)

URL IP Response Size

suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4

18.192.108.151

302

0 B

URL HTTP/1.1
suscoop-comithers.icu/2c248bc7-db3a-477f-894e-709f28c878b4
IP
18.192.108.151:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /2c248bc7-db3a-477f-894e-709f28c878b4 HTTP/1.1
Host: suscoop-comithers.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 
Server: nginx
Date: Thu, 02 Feb 2023 22:12:32 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://xoomber.com/WJfYxY7T?sub_id_2=w5ujh4dqgmub1mbm2d5o58qe&sub_id_3=2c248bc7-db3a-477f-894e-709f28c878b4_
Pragma: no-cache
Set-Cookie: 2c248bc7-db3a-477f-894e-709f28c878b4-v4=B_m4LFNTO7k5JoI-pkuGOKL2NDCHJeEHYXSSRdd20co; Max-Age=86400; Expires=Fri, 03-Feb-2023 22:12:32 GMT; Domain=suscoop-comithers.icu; Path=/; HttpOnly
cc-v4=gqbKVbKyE5XraToRY2f%2FCcl5B3rgZw3XTzlRHWBudjk%2B6i8XGW0hhexXdLX6XaKeQQ6HsmahKv1DaYLeQIbWYVQNiJbkbbKPeA09VCQOvj6v5qECL9VqZKyzBAEkh28M4xRG6gWKlySRsiNF1%2FlJeg%3D%3D; Max-Age=31536000; Expires=Fri, 02-Feb-2024 22:12:32 GMT; Domain=suscoop-comithers.icu; Path=/; HttpOnly

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9165
Expires: Fri, 03 Feb 2023 00:45:17 GMT
Date: Thu, 02 Feb 2023 22:12:32 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18602
Expires: Fri, 03 Feb 2023 03:22:34 GMT
Date: Thu, 02 Feb 2023 22:12:32 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 21:43:32 GMT
content-type: application/json
age: 1740
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2641
Expires: Thu, 02 Feb 2023 22:56:33 GMT
Date: Thu, 02 Feb 2023 22:12:32 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: +Tp8wNCtOUapff9CqGJI8XPG6S8Q4wd8PvvWBR4RC35Wt8IUu2S3CcxxLYfgHkLj3O3mpEdDvNw=
x-amz-request-id: YRDGTBNWZA5FQGXA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 21:23:16 GMT
age: 2956
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:32 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3ac1e5cc49c1e1461f67370be29b1449
c95e690ca2f309bd612880db92702cef9531224d
43819239ca44f2f8100df8169d21778dfea434d92f5a3106a7329756a1ea845e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "43819239CA44F2F8100DF8169D21778DFEA434D92F5A3106A7329756A1EA845E"
Last-Modified: Thu, 02 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=404
Expires: Thu, 02 Feb 2023 22:19:16 GMT
Date: Thu, 02 Feb 2023 22:12:32 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 22:07:19 GMT
age: 313
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

xoomber.com/WJfYxY7T?sub_id_2=w5ujh4dqgmub1mbm2d5o58qe&sub_id_3=2c248bc7-db3a-477f-894e-709f28c878b4_

104.200.16.65

302 Found

0 B

URL HTTP/1.1
xoomber.com/WJfYxY7T?sub_id_2=w5ujh4dqgmub1mbm2d5o58qe&sub_id_3=2c248bc7-db3a-477f-894e-709f28c878b4_
IP
104.200.16.65:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /WJfYxY7T?sub_id_2=w5ujh4dqgmub1mbm2d5o58qe&sub_id_3=2c248bc7-db3a-477f-894e-709f28c878b4_ HTTP/1.1
Host: xoomber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 Found
Server: nginx
Date: Thu, 02 Feb 2023 22:12:32 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Location: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu
Pragma: no-cache
Set-Cookie: _subid=s8hnpa3578hu;Expires=Sunday, 05-Mar-2023 22:12:32 GMT;Max-Age=2678400;Path=/
9f320=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjE3NjVcIjoxNjc1Mzc1OTUyfSxcImNhbXBhaWduc1wiOntcIjU5OVwiOjE2NzUzNzU5NTJ9LFwidGltZVwiOjE2NzUzNzU5NTJ9In0.PDjeYWPe6233sh5sUX02pRlKq2Cn8-Jf5Kiq0CaZJJU;Expires=Saturday, 07-Mar-2076 20:25:04 GMT;Max-Age=1675462352;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16417
Expires: Fri, 03 Feb 2023 02:46:09 GMT
Date: Thu, 02 Feb 2023 22:12:32 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d427eb0c99e2891ea77dcd817b0b42d9
eadac28d88a4c9dec17f04976f8aa452b088c97c
8a395e2aa18f3c01a229c17d6a6844db888d418c9f7d4d1bc0b936bd8da515da

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8A395E2AA18F3C01A229C17D6A6844DB888D418C9F7D4D1BC0B936BD8DA515DA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8337
Expires: Fri, 03 Feb 2023 00:31:30 GMT
Date: Thu, 02 Feb 2023 22:12:33 GMT
Connection: keep-alive

push.services.mozilla.com/

52.42.182.211

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.42.182.211:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: diVmmHbQl1s3zsiG8aTxEA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: teIwIfMSdFn1aAvYSNnC04/znIw=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:12:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:12:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-MXXFW64

142.250.74.40

200 OK

59 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-MXXFW64
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (10590)
Size
59 kB (58910 bytes)
Hash
441afb536eacab8f9713fc9f0fb259a8
c585a7c30abfd22c0b3d3c66ab5cd62a7c9707eb
507c15debfa8649be19e429b86319fbc10f98e0e8334c36352295b9c12d077a7

HTTP Headers

GET /gtm.js?id=GTM-MXXFW64 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 22:12:33 GMT
expires: Thu, 02 Feb 2023 22:12:33 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 21:28:30 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 58910
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-PM3XLW4

142.250.74.40

200 OK

71 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-PM3XLW4
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (8828)
Size
71 kB (71268 bytes)
Hash
6e9c76824604afc5a85160f57b306e89
ab67bab8d2ee8ae45fe6404e62b75e7a40f9c4ab
65a5f0494e9e7c2c0be9cb5f8930d04316ff67b6930cea4caece40c3e67e4c27

HTTP Headers

GET /gtm.js?id=GTM-PM3XLW4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 22:12:33 GMT
expires: Thu, 02 Feb 2023 22:12:33 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 21:21:20 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 71268
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:12:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

testedforyou.net/download-instructions/download-instructions.css

45.79.172.174

200 OK

37 kB

URL HTTP/2
testedforyou.net/download-instructions/download-instructions.css
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
data
Size
37 kB (37303 bytes)
Hash
6a6e01ca4a0c920ef7ab54a664cd287f
ad54b7ac734099c9c85c1c60646a60e425b9b95c
2bb9a607896b384470a940a353925f2c21acc1ed86dbf7587ca8c1a7034037d7

HTTP Headers

GET /download-instructions/download-instructions.css HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu
Cookie: advanced=kuprfa2am03br2lfm8ul9tlamm; source=0202221233_src_ag_bockachbr_du_tfu_du_101-0202221233_cart_du_darktheme; _csrf=82220d32ac5e8c1bfd060c21dd82285cd60472cb237c9ef2f7531364e21481cda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Zbvv_CuMZg8mWRoUUTQW2HF6QG_ckzO%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:33 GMT
content-type: text/css
last-modified: Thu, 02 Feb 2023 05:39:34 GMT
etag: W/"63db4c96-5e08"
expires: Thu, 09 Feb 2023 22:12:33 GMT
cache-control: max-age=604800, max-age=604800,  public
content-encoding: gzip
X-Firefox-Spdy: h2

testedforyou.net/tfu-du-101/i/header-dark.png

45.79.172.174

200 OK

11 kB

URL HTTP/2
testedforyou.net/tfu-du-101/i/header-dark.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 1440 x 47, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10755 bytes)
Hash
cf28b428b2ddc6ddd119feb17c1cab37
fdc189f2ba828a2b218889c446523591c10bfc83
f63c221f15f4f17ca5fe67375792205b28020a2def0e7709a09855cbb1db3974

HTTP Headers

GET /tfu-du-101/i/header-dark.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/tfu-du-101/jscss/style.css
Cookie: advanced=kuprfa2am03br2lfm8ul9tlamm; source=0202221233_src_ag_bockachbr_du_tfu_du_101-0202221233_cart_du_darktheme; _csrf=82220d32ac5e8c1bfd060c21dd82285cd60472cb237c9ef2f7531364e21481cda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Zbvv_CuMZg8mWRoUUTQW2HF6QG_ckzO%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:33 GMT
content-type: image/png
content-length: 10755
last-modified: Thu, 02 Feb 2023 05:39:34 GMT
etag: "63db4c96-2a03"
expires: Thu, 09 Feb 2023 22:12:33 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/i/firefox-logo.png

45.79.172.174

200 OK

3.4 kB

URL HTTP/2
testedforyou.net/download-instructions/i/firefox-logo.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 65 x 62, 8-bit colormap, non-interlaced\012- data
Size
3.4 kB (3413 bytes)
Hash
00f32dc87963ea21ce76e7adae907168
203c9f4776878e4e9ea52174470a3fe14655f9da
14931c32197c6c58d56252c12b5b89168bd2f5711e773d338d922cc2a641a1a5

HTTP Headers

GET /download-instructions/i/firefox-logo.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=kuprfa2am03br2lfm8ul9tlamm; source=0202221233_src_ag_bockachbr_du_tfu_du_101-0202221233_cart_du_darktheme; _csrf=82220d32ac5e8c1bfd060c21dd82285cd60472cb237c9ef2f7531364e21481cda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Zbvv_CuMZg8mWRoUUTQW2HF6QG_ckzO%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:33 GMT
content-type: image/png
content-length: 3413
last-modified: Thu, 02 Feb 2023 05:39:34 GMT
etag: "63db4c96-d55"
expires: Thu, 09 Feb 2023 22:12:33 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/tfu-du-101/jscss/fonts/open-sans-bold.woff

45.79.172.174

200 OK

35 kB

URL HTTP/2
testedforyou.net/tfu-du-101/jscss/fonts/open-sans-bold.woff
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
Web Open Font Format, TrueType, length 34996, version 1.1\012- data
Size
35 kB (34996 bytes)
Hash
d790d2580f8e2c9da6dc54f3b7085c40
1f0121abacf2d6877877a7f448bef3985fbfc4e6
748e14b7cf70561ab9d7acdddd1014bcc19d528b0947d4dbc5ec04f316aa8885

HTTP Headers

GET /tfu-du-101/jscss/fonts/open-sans-bold.woff HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://testedforyou.net/tfu-du-101/jscss/style.css
Cookie: advanced=kuprfa2am03br2lfm8ul9tlamm; source=0202221233_src_ag_bockachbr_du_tfu_du_101-0202221233_cart_du_darktheme; _csrf=82220d32ac5e8c1bfd060c21dd82285cd60472cb237c9ef2f7531364e21481cda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Zbvv_CuMZg8mWRoUUTQW2HF6QG_ckzO%22%3B%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:33 GMT
content-type: application/font-woff
content-length: 34996
last-modified: Thu, 02 Feb 2023 05:39:34 GMT
etag: "63db4c96-88b4"
expires: Thu, 09 Feb 2023 22:12:33 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/tfu-du-101/jscss/fonts/open-sans-italic.woff

45.79.172.174

200 OK

36 kB

URL HTTP/2
testedforyou.net/tfu-du-101/jscss/fonts/open-sans-italic.woff
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
Web Open Font Format, TrueType, length 36504, version 1.1\012- data
Size
36 kB (36504 bytes)
Hash
f6e0dbd5a68b19e4129059bd95f8215e
a687d6fde61570c5884db570299a702edda1fdcd
489bb93c6ad737c927ec0189a08eef50b7418653d64951ffa18497435036400a

HTTP Headers

GET /tfu-du-101/jscss/fonts/open-sans-italic.woff HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://testedforyou.net/tfu-du-101/jscss/style.css
Cookie: advanced=kuprfa2am03br2lfm8ul9tlamm; source=0202221233_src_ag_bockachbr_du_tfu_du_101-0202221233_cart_du_darktheme; _csrf=82220d32ac5e8c1bfd060c21dd82285cd60472cb237c9ef2f7531364e21481cda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Zbvv_CuMZg8mWRoUUTQW2HF6QG_ckzO%22%3B%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:33 GMT
content-type: application/font-woff
content-length: 36504
last-modified: Thu, 02 Feb 2023 05:39:34 GMT
etag: "63db4c96-8e98"
expires: Thu, 09 Feb 2023 22:12:33 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/driver-updater/i/firefox-screen.png

45.79.172.174

200 OK

25 kB

URL HTTP/2
testedforyou.net/download-instructions/driver-updater/i/firefox-screen.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 800 x 175, 8-bit colormap, non-interlaced\012- data
Size
25 kB (25154 bytes)
Hash
15d3fdb92892b2dcbcaf0f1944f8c198
d17eb72157196c7eee1422b768f4b29453085749
13e038b19f340445d1dfdba04fcbe7543f9cb93b9d5ee78afb930188305db013

HTTP Headers

GET /download-instructions/driver-updater/i/firefox-screen.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=kuprfa2am03br2lfm8ul9tlamm; source=0202221233_src_ag_bockachbr_du_tfu_du_101-0202221233_cart_du_darktheme; _csrf=82220d32ac5e8c1bfd060c21dd82285cd60472cb237c9ef2f7531364e21481cda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Zbvv_CuMZg8mWRoUUTQW2HF6QG_ckzO%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:33 GMT
content-type: image/png
content-length: 25154
last-modified: Thu, 02 Feb 2023 05:39:34 GMT
etag: "63db4c96-6242"
expires: Thu, 09 Feb 2023 22:12:33 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/i/steps.png

45.79.172.174

200 OK

1.4 kB

URL HTTP/2
testedforyou.net/download-instructions/i/steps.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 180 x 60, 8-bit colormap, non-interlaced\012- data
Size
1.4 kB (1377 bytes)
Hash
54224278a486da9c98d0ce8f1016293f
eacbb28164100b95ffe54db614f5901ea06854e4
6156205b893bc350ea9ea0bea3cda0073746982ea9feef9776c6472181282ac7

HTTP Headers

GET /download-instructions/i/steps.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=kuprfa2am03br2lfm8ul9tlamm; source=0202221233_src_ag_bockachbr_du_tfu_du_101-0202221233_cart_du_darktheme; _csrf=82220d32ac5e8c1bfd060c21dd82285cd60472cb237c9ef2f7531364e21481cda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Zbvv_CuMZg8mWRoUUTQW2HF6QG_ckzO%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:33 GMT
content-type: image/png
content-length: 1377
last-modified: Thu, 02 Feb 2023 05:39:34 GMT
etag: "63db4c96-561"
expires: Thu, 09 Feb 2023 22:12:33 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/i/firefox-download-icon.png

45.79.172.174

200 OK

358 B

URL HTTP/2
testedforyou.net/download-instructions/i/firefox-download-icon.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 32 x 24, 8-bit colormap, non-interlaced\012- data
Size
358 B (358 bytes)
Hash
747cd64b62e9294e35e82c3811b59341
96001dcd8a8dcfde7ab0f16c35a99c693ba6ef65
6b377bc2324320c6521ab6b2bdb41a0d4b96d2683badc9943b03754370f0d3bd

HTTP Headers

GET /download-instructions/i/firefox-download-icon.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=kuprfa2am03br2lfm8ul9tlamm; source=0202221233_src_ag_bockachbr_du_tfu_du_101-0202221233_cart_du_darktheme; _csrf=82220d32ac5e8c1bfd060c21dd82285cd60472cb237c9ef2f7531364e21481cda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Zbvv_CuMZg8mWRoUUTQW2HF6QG_ckzO%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:33 GMT
content-type: image/png
content-length: 358
last-modified: Thu, 02 Feb 2023 05:39:34 GMT
etag: "63db4c96-166"
expires: Thu, 09 Feb 2023 22:12:33 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/i/close.png

45.79.172.174

200 OK

657 B

URL HTTP/2
testedforyou.net/download-instructions/i/close.png
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
PNG image data, 28 x 28, 8-bit colormap, non-interlaced\012- data
Size
657 B (657 bytes)
Hash
21953dc66e942356724bb035a65a6979
a1db3edbc90a640e9bd89b521f5f5b410578722e
36e39164f94c90a54cf45f905a17a3916aba8b6b0831c6a194a6293c098704bf

HTTP Headers

GET /download-instructions/i/close.png HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/download-instructions/download-instructions.css
Cookie: advanced=kuprfa2am03br2lfm8ul9tlamm; source=0202221233_src_ag_bockachbr_du_tfu_du_101-0202221233_cart_du_darktheme; _csrf=82220d32ac5e8c1bfd060c21dd82285cd60472cb237c9ef2f7531364e21481cda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Zbvv_CuMZg8mWRoUUTQW2HF6QG_ckzO%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:33 GMT
content-type: image/png
content-length: 657
last-modified: Thu, 02 Feb 2023 05:39:34 GMT
etag: "63db4c96-291"
expires: Thu, 09 Feb 2023 22:12:33 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 21:44:08 GMT
expires: Thu, 02 Feb 2023 23:44:08 GMT
cache-control: public, max-age=7200
age: 1705
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 987
Cache-Control: max-age=150766
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:12:33 GMT
Etag: "63dbdb64-1d7"
Expires: Sat, 04 Feb 2023 16:05:19 GMT
Last-Modified: Thu, 02 Feb 2023 15:48:52 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

www.google-analytics.com/plugins/ua/linkid.js

142.250.74.110

200 OK

859 B

URL HTTP/2
www.google-analytics.com/plugins/ua/linkid.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1335)
Size
859 B (859 bytes)
Hash
904463ce35aee800847ab85ec948aaf6
904e4d2647466c7f7e0f7412019984e3b2ccfb24
057b4d29359dfe2536a2ec40243bdfa7b151222efcc1eb358608994a14c34237

HTTP Headers

GET /plugins/ua/linkid.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 859
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 21:16:54 GMT
expires: Thu, 02 Feb 2023 22:16:54 GMT
cache-control: public, max-age=3600
age: 3339
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

28 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
28 kB (27843 bytes)
Hash
dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: NKeWO15ba8WhISadMqYAvJlN9Kx6aoA5KEFDXK9pzAWyPovUPk+Fl4nKavZUU61zOSSmLTRU+R3QTitcADAZpQ==
content-length: 27843
x-fb-trip-id: 1904183273
date: Thu, 02 Feb 2023 22:12:33 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

testedforyou.net/favicon.ico

45.79.172.174

200 OK

1.2 kB

URL HTTP/2
testedforyou.net/favicon.ico
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
68cd66a66c961a0c6ad781c1ca84c6ee
f0ba1cafd867af68e1770e1e95798b6b99c987e6
7b526ade6f91f6990050ea71697bc782b47f119af917914b10939ae8a044490a

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu
Cookie: advanced=kuprfa2am03br2lfm8ul9tlamm; source=0202221233_src_ag_bockachbr_du_tfu_du_101-0202221233_cart_du_darktheme; _csrf=82220d32ac5e8c1bfd060c21dd82285cd60472cb237c9ef2f7531364e21481cda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Zbvv_CuMZg8mWRoUUTQW2HF6QG_ckzO%22%3B%7D; outbyte-sess=327f7dbegoo6mkatifbnbr4p6b; _sid=zom0pCtxbs; _sidd=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; _ga=GA1.2.1313356891.1675375953; _fbp=fb.1.1675375953376.6020049695; _gcl_au=1.1.195942822.1675375982
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:33 GMT
content-type: image/x-icon
content-length: 1150
last-modified: Thu, 02 Feb 2023 05:39:34 GMT
etag: "63db4c96-47e"
expires: Thu, 09 Feb 2023 22:12:33 GMT
cache-control: max-age=604800, max-age=604800,  public
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.globalsign.com/gseccovsslca2018

104.18.21.226

200 OK

940 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
940 B (940 bytes)
Hash
a851a607d3117c21b7e376f47f36dff4
8296b0383b3dd531edc67be1316ded98a72dcf2b
0bf37682d67dc8fbf55b1f438c86cfb0e7cea86de39b30c9e9c90a899ea470ec

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:12:33 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Mon, 06 Feb 2023 19:10:42 GMT
ETag: "8296b0383b3dd531edc67be1316ded98a72dcf2b"
Last-Modified: Thu, 02 Feb 2023 19:10:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 245
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793644de8e971c06-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 987
Cache-Control: max-age=150766
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:12:33 GMT
Etag: "63dbdb64-1d7"
Expires: Sat, 04 Feb 2023 16:05:19 GMT
Last-Modified: Thu, 02 Feb 2023 15:48:52 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:12:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-199245412-1&cid=1313356891.1675375953&jid=1886900152&gjid=1395639927&_gid=1993580990.1675375982&_u=aCDAiUAjBAAAAGAEK~&z=1168577807

64.233.165.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-199245412-1&cid=1313356891.1675375953&jid=1886900152&gjid=1395639927&_gid=1993580990.1675375982&_u=aCDAiUAjBAAAAGAEK~&z=1168577807
IP
64.233.165.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-199245412-1&cid=1313356891.1675375953&jid=1886900152&gjid=1395639927&_gid=1993580990.1675375982&_u=aCDAiUAjBAAAAGAEK~&z=1168577807 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://testedforyou.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 22:12:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

mc.yandex.ru/metrika/tag.js

93.158.134.119

200 OK

74 kB

URL HTTP/2
mc.yandex.ru/metrika/tag.js
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Size
74 kB (73769 bytes)
Hash
a236c7014c1f1a1e52d356f59e5d665a
b66c638eb2346287364c37725819bbab1f409d66
ad2d57579e453af0eac49156840bcd1dcfbd802a82135af98f41f714d7e698f2

HTTP Headers

GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-length: 73769
date: Thu, 02 Feb 2023 22:12:33 GMT
access-control-allow-origin: *
etag: "63c93a4b-12029"
expires: Thu, 02 Feb 2023 23:12:33 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:12:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-1EEJR9725E&cid=1313356891.1675375953&gtm=2oe210&aip=1&z=857691052

142.250.74.131

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-1EEJR9725E&cid=1313356891.1675375953&gtm=2oe210&aip=1&z=857691052
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-1EEJR9725E&cid=1313356891.1675375953&gtm=2oe210&aip=1&z=857691052 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 22:12:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:12:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-164895039-1&cid=1313356891.1675375953&jid=746963509&gjid=632066980&_gid=1993580990.1675375982&_u=aCDAAUAiAAAAACAEK~&z=1376455688

64.233.165.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-164895039-1&cid=1313356891.1675375953&jid=746963509&gjid=632066980&_gid=1993580990.1675375982&_u=aCDAAUAiAAAAACAEK~&z=1376455688
IP
64.233.165.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-164895039-1&cid=1313356891.1675375953&jid=746963509&gjid=632066980&_gid=1993580990.1675375982&_u=aCDAAUAiAAAAACAEK~&z=1376455688 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://testedforyou.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 22:12:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:12:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

mc.yandex.ru/metrika/advert.gif

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/metrika/advert.gif
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Thu, 02 Feb 2023 22:12:34 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Thu, 02 Feb 2023 23:12:34 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/watch/65533162?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1474%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A222933347874%3Ahid%3A983850667%3Az%3A0%3Ai%3A20230202221301%3Aet%3A1675375982%3Ac%3A1%3Arn%3A331753144%3Arqn%3A1%3Au%3A1675375982724263138%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C285%2C90%2C0%2C884%2C0%2C%2C295%2C5%2C%2C%2C%2C1583%3Aco%3A0%3Ans%3A1675375979900%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675375982%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)

93.158.134.119

302 Found

419 B

URL HTTP/2
mc.yandex.ru/watch/65533162?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1474%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A222933347874%3Ahid%3A983850667%3Az%3A0%3Ai%3A20230202221301%3Aet%3A1675375982%3Ac%3A1%3Arn%3A331753144%3Arqn%3A1%3Au%3A1675375982724263138%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C285%2C90%2C0%2C884%2C0%2C%2C295%2C5%2C%2C%2C%2C1583%3Aco%3A0%3Ans%3A1675375979900%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675375982%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Size
419 B (419 bytes)
Hash
63d612e3f21b44cb629c40cf6c7d26a4
9afe75dacef5eec53c84f8b0595e1795ab865159
669d4d993d771a66244968de71a8286e7c1ec8e2d93171abb6fd9d3b221c68e3

HTTP Headers

GET /watch/65533162?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1474%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A222933347874%3Ahid%3A983850667%3Az%3A0%3Ai%3A20230202221301%3Aet%3A1675375982%3Ac%3A1%3Arn%3A331753144%3Arqn%3A1%3Au%3A1675375982724263138%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C285%2C90%2C0%2C884%2C0%2C%2C295%2C5%2C%2C%2C%2C1583%3Aco%3A0%3Ans%3A1675375979900%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675375982%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: /watch/65533162/1?wmode=7&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1474%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A222933347874%3Ahid%3A983850667%3Az%3A0%3Ai%3A20230202221301%3Aet%3A1675375982%3Ac%3A1%3Arn%3A331753144%3Arqn%3A1%3Au%3A1675375982724263138%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C285%2C90%2C0%2C884%2C0%2C%2C295%2C5%2C%2C%2C%2C1583%3Aco%3A0%3Ans%3A1675375979900%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675375982%3At%3AAtualizar%20drivers%20do%20Windows%2010%2F11&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Thu, 02 Feb 2023 22:12:34 GMT
access-control-allow-origin: https://testedforyou.net
set-cookie: yabs-sid=1794464301675375954; Path=/; SameSite=None; Secure
i=ZWp2Ga0PJBEzu43Kye7UpX2cSEkqbUBLFvX0nJzD34nlBm3hGGa7wu+TDLn4TnTtPS+/RVGYkt/It2yRSF0KBqksCmg=; Expires=Sun, 30-Jan-2033 22:12:31 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=1606248041675375954; Expires=Fri, 02-Feb-2024 22:12:34 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=1606248041675375954; Expires=Fri, 02-Feb-2024 22:12:34 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706911954.yc.1675375954#1706911954.yrts.1675375954#1706911954.yrtsi.1675375954; Expires=Fri, 02-Feb-2024 22:12:34 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 02-Feb-2023 22:12:34 GMT
last-modified: Thu, 02-Feb-2023 22:12:34 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=191112919472843&ev=PageView&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rl=&if=false&ts=1675375982017&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1675375953376.6020049695&it=1675375981778&coo=false&tm=1&rqm=GET

157.240.205.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=191112919472843&ev=PageView&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rl=&if=false&ts=1675375982017&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1675375953376.6020049695&it=1675375981778&coo=false&tm=1&rqm=GET
IP
157.240.205.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=191112919472843&ev=PageView&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rl=&if=false&ts=1675375982017&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1675375953376.6020049695&it=1675375981778&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 22:12:34 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:12:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.facebook.com/tr/?id=191112919472843&ev=ViewContent&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rl=&if=false&ts=1675375982021&cd[content_name]=driver-updater&cd[content_category]=outbyte&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1675375953376.6020049695&it=1675375981778&coo=false&rqm=GET

157.240.205.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=191112919472843&ev=ViewContent&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rl=&if=false&ts=1675375982021&cd[content_name]=driver-updater&cd[content_category]=outbyte&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1675375953376.6020049695&it=1675375981778&coo=false&rqm=GET
IP
157.240.205.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=191112919472843&ev=ViewContent&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rl=&if=false&ts=1675375982021&cd[content_name]=driver-updater&cd[content_category]=outbyte&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1675375953376.6020049695&it=1675375981778&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 22:12:34 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:12:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-199245412-1&cid=1313356891.1675375953&jid=1886900152&_u=aCDAiUAjBAAAAGAEK~&z=774093089

216.58.211.4

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-199245412-1&cid=1313356891.1675375953&jid=1886900152&_u=aCDAiUAjBAAAAGAEK~&z=774093089
IP
216.58.211.4:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-199245412-1&cid=1313356891.1675375953&jid=1886900152&_u=aCDAiUAjBAAAAGAEK~&z=774093089 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 22:12:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-164895039-1&cid=1313356891.1675375953&jid=746963509&_u=aCDAAUAiAAAAACAEK~&z=2122870074

216.58.211.4

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-164895039-1&cid=1313356891.1675375953&jid=746963509&_u=aCDAAUAiAAAAACAEK~&z=2122870074
IP
216.58.211.4:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-164895039-1&cid=1313356891.1675375953&jid=746963509&_u=aCDAAUAiAAAAACAEK~&z=2122870074 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 22:12:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:12:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13426
Expires: Fri, 03 Feb 2023 01:56:20 GMT
Date: Thu, 02 Feb 2023 22:12:34 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13426
Expires: Fri, 03 Feb 2023 01:56:20 GMT
Date: Thu, 02 Feb 2023 22:12:34 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13426
Expires: Fri, 03 Feb 2023 01:56:20 GMT
Date: Thu, 02 Feb 2023 22:12:34 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5256 bytes)
Hash
fe87e986c62630127a7fdd979c802947
28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf
770a765c927c0f81d0c41acd45a7a24f5799f9497fcc73489cab4fafbf994bdb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5256
x-amzn-requestid: 1bf5f6da-2389-4195-a2de-64ae8cf4f231
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffdtIG2KoAMFj4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d60fed-5a5300bf56a40f40118bafa9;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 06:19:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9bJhQiev2ZT8vgCtaULLUpT3V7XOY6Y3yzmWqC4zbORnOOBknR0vFA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 00:31:47 GMT
age: 78047
etag: "28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.4 kB (3385 bytes)
Hash
703c7834618fd34f3d7ce5c82a51abc0
4bdaa7e9e8d6408b73ea457e7aabb26fa2a5c81c
1f467ce5825e3f8b8f841293d1ce945dc7a577abbe2cb8a2caa16ace165f4857

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3385
x-amzn-requestid: 30717e1a-7a08-4b11-90e7-cd175aa667d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzrEo4oAMF1qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce4-3bc1302b4cf47fa2520e3033;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: M1ueeOY5WmuJwPyf4dPvRrjQfTU5d2G-2T3_6fLfTI4UTjuxZ-U4ow==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:44:46 GMT
age: 1668
etag: "4bdaa7e9e8d6408b73ea457e7aabb26fa2a5c81c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13065 bytes)
Hash
cf80667db0c35c9c6139eca4ba5d12fd
4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590
d63e69f4b6ea16333d242bf33d4f02a4a6c96a739ca018d86afc5741d85b774d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13065
x-amzn-requestid: 20c6f462-0f1f-44d1-9b6b-6afbc4e79e8b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpYpcELtIAMFvFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da07d5-44cd803c0feba28919b0a9ec;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 06:33:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T3PhGRcHX1X2hn8K_4587fXBrEyuY5Em-b9Jg41uH4uyQXeFoRBIYg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:46:56 GMT
age: 1538
etag: "4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e690e4c-e16d-49e9-ac12-24a092d6a60c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8543 bytes)
Hash
a1d6fa4715c4e78250b2f72ddd2706f1
be04ac3a50aa6f1b349a2410ad386d92de3222be
d1c3c1b7016428bf2a085b71ca0d1e215a64b3d31ff15b0ef8bf5a78f11d9ae5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e690e4c-e16d-49e9-ac12-24a092d6a60c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8543
x-amzn-requestid: 3dc0960e-97db-42c8-99ac-623a44e8bb3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuv0wGJhIAMFaTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ceb-5ad3ef033a62559762db42b9;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EKWOeGruQEm9HuSlJMiEEw_gN1p37qTTIhYqaiQ6bFaCF65kUfmMtA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:57:20 GMT
age: 914
etag: "be04ac3a50aa6f1b349a2410ad386d92de3222be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (14071 bytes)
Hash
9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b7r7phj8i49RMSuWufxF1L34K9udWa0mJ4dY12izM9ofwAuCFBGEZQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 1473
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bc75469-aee4-46b2-9ae0-75869ae8bb2a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8912 bytes)
Hash
40d4165b4e6dbb637204df196545ada8
a01f74c0c2c3ec1e5e7d6498415df8fbf109ae94
25d54e72b043f2d9553be6a8dedfce3ce39df4ac2b992f7e6d32ef04e96a3266

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bc75469-aee4-46b2-9ae0-75869ae8bb2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8912
x-amzn-requestid: 4fdceb0c-8af7-4ffb-b28b-c0d9e22f2456
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpQ4KGUsoAMFlcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9fb67-68ef58c454f6bd834eb05485;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 05:40:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KqdmB4tt4CIXxWaI0S0Icx_EJiBK5KLgfUJ8K2jlkh-AgYI6S9w4lA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 1473
etag: "a01f74c0c2c3ec1e5e7d6498415df8fbf109ae94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-1EEJR9725E&gtm=2oe210&_p=372634781&_gaz=1&cid=1313356891.1675375953&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675375981&sct=1&seg=0&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&dt=Atualizar%20drivers%20do%20Windows%2010%2F11&en=page_view&_fv=1&_ss=1&ep.allowLinker=true&ep.customTask=function(a)%7Ba.set(%22dimension%22%2Bb%2Ca.get(%22clientId%22))%7D&ep.marker_id=src_ag_bockachbr_du_tfu_du_101

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-1EEJR9725E&gtm=2oe210&_p=372634781&_gaz=1&cid=1313356891.1675375953&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675375981&sct=1&seg=0&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&dt=Atualizar%20drivers%20do%20Windows%2010%2F11&en=page_view&_fv=1&_ss=1&ep.allowLinker=true&ep.customTask=function(a)%7Ba.set(%22dimension%22%2Bb%2Ca.get(%22clientId%22))%7D&ep.marker_id=src_ag_bockachbr_du_tfu_du_101
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-1EEJR9725E&gtm=2oe210&_p=372634781&_gaz=1&cid=1313356891.1675375953&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675375981&sct=1&seg=0&dl=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&dt=Atualizar%20drivers%20do%20Windows%2010%2F11&en=page_view&_fv=1&_ss=1&ep.allowLinker=true&ep.customTask=function(a)%7Ba.set(%22dimension%22%2Bb%2Ca.get(%22clientId%22))%7D&ep.marker_id=src_ag_bockachbr_du_tfu_du_101 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://testedforyou.net
date: Thu, 02 Feb 2023 22:12:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=1&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=830143988&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675375985%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221304%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375985&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=1&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=830143988&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675375985%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221304%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375985&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wmode=0&wv-part=1&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=830143988&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675375985%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221304%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375985&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 24499
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Thu, 02 Feb 2023 22:12:36 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 02-Feb-2023 22:12:36 GMT
last-modified: Thu, 02-Feb-2023 22:12:36 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=1&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=560628097&wv-type=3&browser-info=we%3A1%3Aet%3A1675375985%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221304%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375985&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=1&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=560628097&wv-type=3&browser-info=we%3A1%3Aet%3A1675375985%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221304%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375985&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wmode=0&wv-part=1&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=560628097&wv-type=3&browser-info=we%3A1%3Aet%3A1675375985%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221304%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375985&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Thu, 02 Feb 2023 22:12:36 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 02-Feb-2023 22:12:36 GMT
last-modified: Thu, 02-Feb-2023 22:12:36 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wv-check=51903&wv-type=0&wmode=0&wv-part=1&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=593939262&browser-info=we%3A1%3Aet%3A1675375989%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221308%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375989&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wv-check=51903&wv-type=0&wmode=0&wv-part=1&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=593939262&browser-info=we%3A1%3Aet%3A1675375989%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221308%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375989&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wv-check=51903&wv-type=0&wmode=0&wv-part=1&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=593939262&browser-info=we%3A1%3Aet%3A1675375989%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221308%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375989&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Thu, 02 Feb 2023 22:12:40 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 02-Feb-2023 22:12:40 GMT
last-modified: Thu, 02-Feb-2023 22:12:40 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=2&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=251908808&wv-type=3&browser-info=we%3A1%3Aet%3A1675375989%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221308%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375989&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=2&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=251908808&wv-type=3&browser-info=we%3A1%3Aet%3A1675375989%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221308%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375989&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wmode=0&wv-part=2&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=251908808&wv-type=3&browser-info=we%3A1%3Aet%3A1675375989%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221308%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375989&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Thu, 02 Feb 2023 22:12:40 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 02-Feb-2023 22:12:40 GMT
last-modified: Thu, 02-Feb-2023 22:12:40 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=2&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=234071030&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675375989%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221308%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375989&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wmode=0&wv-part=2&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=234071030&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675375989%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221308%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375989&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wmode=0&wv-part=2&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=234071030&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675375989%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221308%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375989&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Thu, 02 Feb 2023 22:12:40 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 02-Feb-2023 22:12:40 GMT
last-modified: Thu, 02-Feb-2023 22:12:40 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/65533162?wv-check=50327&wv-type=0&wmode=0&wv-part=2&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=16155124&browser-info=we%3A1%3Aet%3A1675375989%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221308%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375989&t=gdpr(14)ti(2)

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/65533162?wv-check=50327&wv-type=0&wmode=0&wv-part=2&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=16155124&browser-info=we%3A1%3Aet%3A1675375989%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221308%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375989&t=gdpr(14)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/65533162?wv-check=50327&wv-type=0&wmode=0&wv-part=2&wv-hit=983850667&page-url=https%3A%2F%2Ftestedforyou.net%2Fbr%2Ftfu-du-101%2F%3Fm%3Dsrc_ag_bockachbr_du_tfu_du_101%26utm_source%3Dbockachbr%26utm_campaign%3Dtfu_du_101%26clkid%3Ds8hnpa3578hu&rn=16155124&browser-info=we%3A1%3Aet%3A1675375989%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230202221308%3Au%3A1675375982724263138%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675375989&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 12
Origin: https://testedforyou.net
Connection: keep-alive
Referer: https://testedforyou.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Thu, 02 Feb 2023 22:12:40 GMT
access-control-allow-origin: https://testedforyou.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 02-Feb-2023 22:12:40 GMT
last-modified: Thu, 02-Feb-2023 22:12:40 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu

45.79.172.174

200 OK

0 B

URL HTTP/2
testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:33 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: advanced=kuprfa2am03br2lfm8ul9tlamm; path=/; HttpOnly
source=0202221233_src_ag_bockachbr_du_tfu_du_101-0202221233_cart_du_darktheme; expires=Thu, 02-Feb-2023 22:13:33 GMT; Max-Age=60; path=/; domain=.testedforyou.net
_csrf=82220d32ac5e8c1bfd060c21dd82285cd60472cb237c9ef2f7531364e21481cda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Zbvv_CuMZg8mWRoUUTQW2HF6QG_ckzO%22%3B%7D; path=/; HttpOnly; SameSite=Lax
accept-ch: Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
content-encoding: gzip
X-Firefox-Spdy: h2

testedforyou.net/js/markedsettings.js

45.79.172.174

200 OK

0 B

URL HTTP/2
testedforyou.net/js/markedsettings.js
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/markedsettings.js HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu
Cookie: advanced=kuprfa2am03br2lfm8ul9tlamm; source=0202221233_src_ag_bockachbr_du_tfu_du_101-0202221233_cart_du_darktheme; _csrf=82220d32ac5e8c1bfd060c21dd82285cd60472cb237c9ef2f7531364e21481cda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Zbvv_CuMZg8mWRoUUTQW2HF6QG_ckzO%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:33 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 02 Feb 2023 05:39:34 GMT
etag: W/"63db4c96-44"
expires: Thu, 09 Feb 2023 22:12:33 GMT
cache-control: max-age=604800, max-age=604800,  public
content-encoding: gzip
X-Firefox-Spdy: h2

testedforyou.net/sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzU3OGh1IiwibWFya2VycyI6IjAyMDIyMjEyMzNfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTAyMDIyMjEyMzNfY2FydF9kdV9kYXJrdGhlbWUifQ==

45.79.172.174

200 OK

0 B

URL HTTP/2
testedforyou.net/sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzU3OGh1IiwibWFya2VycyI6IjAyMDIyMjEyMzNfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTAyMDIyMjEyMzNfY2FydF9kdV9kYXJrdGhlbWUifQ==
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sid/connect?proxyFrom=testedforyou.net&sidp=eyJ1dG1fc291cmNlIjoiYm9ja2FjaGJyIiwidXRtX2NhbXBhaWduIjoidGZ1X2R1XzEwMSIsImNsa2lkIjoiczhobnBhMzU3OGh1IiwibWFya2VycyI6IjAyMDIyMjEyMzNfc3JjX2FnX2JvY2thY2hicl9kdV90ZnVfZHVfMTAxLTAyMDIyMjEyMzNfY2FydF9kdV9kYXJrdGhlbWUifQ== HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu
Cookie: advanced=kuprfa2am03br2lfm8ul9tlamm; source=0202221233_src_ag_bockachbr_du_tfu_du_101-0202221233_cart_du_darktheme; _csrf=82220d32ac5e8c1bfd060c21dd82285cd60472cb237c9ef2f7531364e21481cda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Zbvv_CuMZg8mWRoUUTQW2HF6QG_ckzO%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:33 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: outbyte-sess=327f7dbegoo6mkatifbnbr4p6b; path=/; HttpOnly
_sid=zom0pCtxbs; expires=Fri, 02-Feb-2024 22:12:33 GMT; Max-Age=31536000; path=/; domain=.testedforyou.net
_sidd=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%3D%3D; expires=Fri, 02-Feb-2024 22:12:33 GMT; Max-Age=31536000; path=/; domain=.testedforyou.net
_ga=GA1.2.1313356891.1675375953; expires=Sat, 01-Feb-2025 22:12:33 GMT; Max-Age=63072000; path=/; domain=.testedforyou.net
_fbp=fb.1.1675375953376.6020049695; expires=Wed, 03-May-2023 22:12:33 GMT; Max-Age=7776000; path=/; domain=.testedforyou.net
access-control-allow-origin: testedforyou.net
access-control-allow-credentials: true
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
last-modified: Thu, 02 Feb 2023 22:12:33GMT
content-disposition: inline; filename="sid.js"
accept-ch: Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
content-encoding: gzip
X-Firefox-Spdy: h2

testedforyou.net/tfu-du-101/jscss/style.css

45.79.172.174

200 OK

0 B

URL HTTP/2
testedforyou.net/tfu-du-101/jscss/style.css
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /tfu-du-101/jscss/style.css HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu
Cookie: advanced=kuprfa2am03br2lfm8ul9tlamm; source=0202221233_src_ag_bockachbr_du_tfu_du_101-0202221233_cart_du_darktheme; _csrf=82220d32ac5e8c1bfd060c21dd82285cd60472cb237c9ef2f7531364e21481cda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Zbvv_CuMZg8mWRoUUTQW2HF6QG_ckzO%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:33 GMT
content-type: text/css
last-modified: Thu, 02 Feb 2023 05:39:34 GMT
etag: W/"63db4c96-3716"
expires: Thu, 09 Feb 2023 22:12:33 GMT
cache-control: max-age=604800, max-age=604800,  public
content-encoding: gzip
X-Firefox-Spdy: h2

testedforyou.net/download-instructions/download-instructions.js

45.79.172.174

200 OK

0 B

URL HTTP/2
testedforyou.net/download-instructions/download-instructions.js
IP
45.79.172.174:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /download-instructions/download-instructions.js HTTP/1.1
Host: testedforyou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://testedforyou.net/br/tfu-du-101/?m=src_ag_bockachbr_du_tfu_du_101&utm_source=bockachbr&utm_campaign=tfu_du_101&clkid=s8hnpa3578hu
Cookie: advanced=kuprfa2am03br2lfm8ul9tlamm; source=0202221233_src_ag_bockachbr_du_tfu_du_101-0202221233_cart_du_darktheme; _csrf=82220d32ac5e8c1bfd060c21dd82285cd60472cb237c9ef2f7531364e21481cda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%226Zbvv_CuMZg8mWRoUUTQW2HF6QG_ckzO%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:12:33 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 02 Feb 2023 05:39:34 GMT
etag: W/"63db4c96-2b8"
expires: Thu, 09 Feb 2023 22:12:33 GMT
cache-control: max-age=604800, max-age=604800,  public
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (25)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML