click.warriorketo.net/?t=c&ids=Mjc4ODk5OTY5__NzkyMQ==__MTY1NjAxNzI=__NDk0__270&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGeThwaw==
170.187.185.18301 Moved Permanently 351 B URL HTTP/1.1 click.warriorketo.net/?t=c&ids=Mjc4ODk5OTY5__NzkyMQ==__MTY1NjAxNzI=__NDk0__270&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGeThwaw==
IP 170.187.185.18:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fc9fa560437bb81ccd166021acea807e
0b955bbf0abed7616ff46497882c94cdf13027b4
403428ba1f24dd6a36c1bd19cf053171d876c441942792d524ec3be911144471
GET /?t=c&ids=Mjc4ODk5OTY5__NzkyMQ==__MTY1NjAxNzI=__NDk0__270&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGeThwaw== HTTP/1.1
Host: click.warriorketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 26 Nov 2022 22:19:10 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 351
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Security-Policy: upgrade-insecure-requests
Location: https://click.warriorketo.net/?t=c&ids=Mjc4ODk5OTY5__NzkyMQ==__MTY1NjAxNzI=__NDk0__270&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGeThwaw==
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6783
Expires: Sun, 27 Nov 2022 00:12:14 GMT
Date: Sat, 26 Nov 2022 22:19:11 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2331
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:19:11 GMT
Last-Modified: Sat, 26 Nov 2022 21:40:20 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7633
Expires: Sun, 27 Nov 2022 00:26:24 GMT
Date: Sat, 26 Nov 2022 22:19:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 21:19:16 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3595
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +pjkQCuK+5scuQEk/+TzN35RJ6icKNbu7Sa0BR/55GoT2jyy8V0QZBwqcTMwXfyxbdtmw508Ng4=
x-amz-request-id: 7NXRCXR18XNSNEDT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 21:44:23 GMT
age: 2088
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 22:19:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.comodoca.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 0713ac390274f2816aded9f9b2bc977d
1a03a367ad35873bf6b4644356c87944bd8fa1f7
ec24aa2afb2142058f7760d2d8cfa1ea7f6f7b5d90ed1508d596f23e1402b01c
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:19:11 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 24 Nov 2022 00:15:46 GMT
Expires: Thu, 01 Dec 2022 00:15:45 GMT
Etag: "1a03a367ad35873bf6b4644356c87944bd8fa1f7"
Cache-Control: max-age=512053,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770601135b731c02-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 22:11:12 GMT
cache-control: public,max-age=3600
age: 479
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 7b2ec684e28386df60769fecb3f90bd5
0da65928980164a90aa487ad7777fc3e64058cb1
4dcd81e9a16e34b4f537f6b20260608edf5ccbe22cbe01cd71f5ab66ac3be5ee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3363
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:19:11 GMT
Last-Modified: Sat, 26 Nov 2022 21:23:08 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4728
Cache-Control: max-age=129988
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:19:11 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 10:25:39 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 7b2ec684e28386df60769fecb3f90bd5
0da65928980164a90aa487ad7777fc3e64058cb1
4dcd81e9a16e34b4f537f6b20260608edf5ccbe22cbe01cd71f5ab66ac3be5ee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3363
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:19:11 GMT
Last-Modified: Sat, 26 Nov 2022 21:23:08 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280
push.services.mozilla.com/
52.39.94.191101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.94.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ymnVVHBKS1zWWjKQEN5/aA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BItG7Q2OM8dVluw2nbrxcNrfdLE=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cb0834275935180cb9995727ba2fd4cf
6fda52703bad0a16d154b9de211c82772b53415c
c3e0068b977f5abce8ec3249bcbaf8b999b8572e48d49a5b71926b8ab1da18b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C3E0068B977F5ABCE8EC3249BCBAF8B999B8572E48D49A5B71926B8AB1DA18B1"
Last-Modified: Fri, 25 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16359
Expires: Sun, 27 Nov 2022 02:51:51 GMT
Date: Sat, 26 Nov 2022 22:19:12 GMT
Connection: keep-alive
trytheyavue.com/bg/images/s1-col-img2.jpg
69.172.200.220200 OK 14 kB URL HTTP/2 trytheyavue.com/bg/images/s1-col-img2.jpg
IP 69.172.200.220:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 268x271, components 3\012- data
Hash fa3d5485ee98ed67c760c8b42d4be4f1
64775a10bcc204005b6a7b103ef72b38738e6cea
dec2a633fadd0a91a6c9345eefb89864d3dc5fe9554f765f0b4092a2b66ada3e
GET /bg/images/s1-col-img2.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/jpeg
content-length: 14485
last-modified: Wed, 16 Feb 2022 19:09:10 GMT
etag: "620d4bd6-3895"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: c39246eff5790d594907623e742d5d72
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:19:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
trytheyavue.com/bg/images/s1-col-img2b.jpg
69.172.200.220200 OK 16 kB URL HTTP/2 trytheyavue.com/bg/images/s1-col-img2b.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 268x271, components 3\012- data
Hash aed164682f195cacd44c1f9c5ef5e697
274579eacc10050959aaae06c28378472518d506
4a00574a6f54e4a5d95492b671a3d00b1393f28eb72035f23431ac30ed2cd0f1
GET /bg/images/s1-col-img2b.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/jpeg
content-length: 16304
last-modified: Thu, 24 Feb 2022 00:07:02 GMT
etag: "6216cc26-3fb0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 43c592839ff1eff7632223dbb39a012d
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/s1-col-img3.jpg
69.172.200.220200 OK 12 kB URL HTTP/2 trytheyavue.com/bg/images/s1-col-img3.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 268x271, components 3\012- data
Hash 4fd66208b2a2e8a311dc26686ec0e072
66e2a2e4a6c219ece9a887d6625855d8ca9feb73
788e6a66a1ff705af20f800e0323202a832e1c634564fff503eb1e54db73b264
GET /bg/images/s1-col-img3.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/jpeg
content-length: 11854
last-modified: Wed, 16 Feb 2022 19:09:10 GMT
etag: "620d4bd6-2e4e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 3e4180877c34ae97ca1defdafb932c42
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/s1-col-img4c.jpg
69.172.200.220200 OK 17 kB URL HTTP/2 trytheyavue.com/bg/images/s1-col-img4c.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 268x271, components 3\012- data
Hash 4745c3faa1c89ff513e2affbe68fad26
558b4451510a205fa2edcadbe4bdc3c4f0469f8f
c9bb0604530ce2d042d1ce4aef288b110c36c4267da33162915474382dec370c
GET /bg/images/s1-col-img4c.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/jpeg
content-length: 17030
last-modified: Thu, 24 Feb 2022 00:06:49 GMT
etag: "6216cc19-4286"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: de1b612f2b08fe4519cf877035f6d2d3
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/pkg6.jpg
69.172.200.220200 OK 24 kB URL HTTP/2 trytheyavue.com/bg/images/pkg6.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 285x192, components 3\012- data
Hash f6e15c389e3e4c15dacd562a43408545
af7cce8f46330c94bc71d6a86b7fade558d2f654
7f6046f1abe44779cbcf8abb23e19b298cc1739d9af7130ecc0bdc9612f8b469
GET /bg/images/pkg6.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/jpeg
content-length: 24261
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-5ec5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 8433302cd4d15bdc459cfb63f1a8f9c3
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/card-pic-pp.png
69.172.200.220200 OK 8.0 kB URL HTTP/2 trytheyavue.com/bg/images/card-pic-pp.png
IP 69.172.200.220:0
File type PNG image data, 196 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 6bc215c25b5c65355c4561e82bfb1fc0
1991a108fa7e722e963a2000b98b58d31568c5f6
340414a48c2dc2b20350cef81958a3f13b04de13f61d27fca52394262f24f617
GET /bg/images/card-pic-pp.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/png
content-length: 7985
last-modified: Thu, 24 Mar 2022 18:31:40 GMT
etag: "623cb90c-1f31"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 172f4b5b1b0fae78e5902907bb43ec7c
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/pkg3.jpg
69.172.200.220200 OK 19 kB URL HTTP/2 trytheyavue.com/bg/images/pkg3.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 285x192, components 3\012- data
Hash 96a8e68f5eb10e65159fc20c27ae2a75
db5886f6307b103394bc4653b0734919be15a968
ae3726a3af3b1e9a4de1dc88796ca279528b182cf7bf7a895a61c833effcfe1d
GET /bg/images/pkg3.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/jpeg
content-length: 19188
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-4af4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 2b2fdce50b48e7a58fd4e745ac9c5aff
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/pkg1.jpg
69.172.200.220200 OK 10 kB URL HTTP/2 trytheyavue.com/bg/images/pkg1.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 285x192, components 3\012- data
Hash 2acacc333232d9fbd3d7545dcebb9712
ade5e719159b28fbc6fb117df66e36a02650f456
8ccd15e0d0af48eb272a7e02facc1d139b82a0df66e99b8144c54add557646f9
GET /bg/images/pkg1.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/jpeg
content-length: 10482
last-modified: Wed, 16 Feb 2022 19:09:10 GMT
etag: "620d4bd6-28f2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 70e3b5dcd1871612a9a52a7c7dd5e422
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/s3-col-img1.jpg
69.172.200.220200 OK 1.9 kB URL HTTP/2 trytheyavue.com/bg/images/s3-col-img1.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 68x68, components 3\012- data
Hash 80dcafd94be0303eea64e9764ca25bc7
a6da2819f44d11b11c9c9917ac6b199f75340410
a6f36d331b434088df5f245d00a3747f1a923f834f9bb88a3ff7498560e580f5
GET /bg/images/s3-col-img1.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/jpeg
content-length: 1939
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-793"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: fc885da3621aca5978d6b3bf2e761ac8
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/star.png
69.172.200.220200 OK 3.7 kB URL HTTP/2 trytheyavue.com/bg/images/star.png
IP 69.172.200.220:0
File type PNG image data, 85 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5c219ef6b9add123ad8d48a0c545d560
09a2af5918877af29cfe43c4c4499d503cfb5441
c8710386f0df5c6e6a1f48a6fa4707075db509def2326fa655fc846e3990d8ff
GET /bg/images/star.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/png
content-length: 3651
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-e43"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 056be7b21da0f30d8e14e9e5343787dd
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/s3-col-img2b.jpg
69.172.200.220200 OK 2.0 kB URL HTTP/2 trytheyavue.com/bg/images/s3-col-img2b.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 68x68, components 3\012- data
Hash df74548e87cd6e00b1fd67c4efe68359
373786851f09c9d78ab33c541a5d8187712800c0
e17dc4d356526377f43a73418b764b359068e181bbba811e51d32725a62e1ca6
GET /bg/images/s3-col-img2b.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/jpeg
content-length: 1959
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-7a7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 8359e72194253bfa61b0da209c8431c9
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/s3-col-img3.jpg
69.172.200.220200 OK 1.8 kB URL HTTP/2 trytheyavue.com/bg/images/s3-col-img3.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 68x68, components 3\012- data
Hash 18673c5ee860b496e580b119d725652c
3a682c32b131cae11c050eb24a41ef5b7fa076e8
363f15f412e7c1b5eaa73c890fc8931106b2cb5c3f83d47c2ba6cd6d5b51a0e5
GET /bg/images/s3-col-img3.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/jpeg
content-length: 1802
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-70a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: e724d029b6da7f678919cd8f124cf583
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/s3-star1.png
69.172.200.220200 OK 1.6 kB URL HTTP/2 trytheyavue.com/bg/images/s3-star1.png
IP 69.172.200.220:0
File type PNG image data, 101 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 8e07c3f9d7e98fd7e21fdcddbbaf74ea
ccb8e6cfbb004594a2dacbbfda31150f581599d6
114604435e223b7e5f78bb01421ecb79c4225525f1a57b6888a9d657c83e68b6
GET /bg/images/s3-star1.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/png
content-length: 1646
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-66e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: c94c669e90fd7a21f00aad90c951665a
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/s3-line.png
69.172.200.220200 OK 1.0 kB URL HTTP/2 trytheyavue.com/bg/images/s3-line.png
IP 69.172.200.220:0
File type PNG image data, 424 x 11, 8-bit/color RGBA, non-interlaced\012- data
Hash 6f88d8d434269091886c8e55fd26a56a
d9a01ba493284d5335ef94bdcc91cc2c0a3b1ddc
cd057683e9b46be7e211b5f7964f9f379a1fb6f8de51d313bfa3b1a77a92198c
GET /bg/images/s3-line.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/png
content-length: 1015
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-3f7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 2f87590139e4f50bfab69b6dbb0855dc
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/bgftr.png
69.172.200.220200 OK 6.4 kB URL HTTP/2 trytheyavue.com/bg/images/bgftr.png
IP 69.172.200.220:0
File type PNG image data, 317 x 83, 8-bit/color RGBA, non-interlaced\012- data
Hash 844f725c887276f8e7a2fc0c25bb041d
9a1f9e453fe909431833a43b680baf33e7103a5f
3c42bfe42cf1d124f7c1b3ff8cb12c62894540a22cf7c20e3522114abb3c1318
GET /bg/images/bgftr.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/png
content-length: 6403
last-modified: Wed, 16 Feb 2022 19:09:10 GMT
etag: "620d4bd6-1903"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 93a81ea716851e6f7cea80f0d692c2a9
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/pop-img.jpg
69.172.200.220200 OK 27 kB URL HTTP/2 trytheyavue.com/bg/images/pop-img.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 286x286, components 3\012- data
Hash e31961d0bdeac489807e86ed53aeb75a
4af90ff98045dd5f15a6adf89be5391e585c86b2
fb896927a3647766d8b8458dae8dea1ed11f615b3954ac75ac74cf235cf6ad35
GET /bg/images/pop-img.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/jpeg
content-length: 26623
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-67ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 149e4dc194c6284bd2e26387fca647b3
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/grnt-seal1.png
69.172.200.220200 OK 64 kB URL HTTP/2 trytheyavue.com/bg/images/grnt-seal1.png
IP 69.172.200.220:0
File type PNG image data, 268 x 203, 8-bit/color RGBA, non-interlaced\012- data
Hash 13df17443aaad4a09d0b0d6b9f267ffd
7660b28ee5e24cfcc563b69273fb77e44843a25a
2ebeb88f38577f8c6dfd3308ca9588ac89049535bb6b2ac9e55b6de48dfa95ee
GET /bg/images/grnt-seal1.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/png
content-length: 64059
last-modified: Wed, 16 Feb 2022 19:09:11 GMT
etag: "620d4bd7-fa3b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 756c82570a6e21e5481e56df9d42297d
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/tv-panel2.jpg
69.172.200.220200 OK 84 kB URL HTTP/2 trytheyavue.com/bg/images/tv-panel2.jpg
IP 69.172.200.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 446x541, components 3\012- data
Hash 9d2156d3abe4a97bd5dfcae23e21bfea
6a0f2be72eec3eaba148227c7d8710a5f5847ba2
c824c8c1525ef96657da4902c863e9ea8a6c20ad4a0c798368bd490003a035b9
GET /bg/images/tv-panel2.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: image/jpeg
content-length: 83582
last-modified: Wed, 18 May 2022 02:48:05 GMT
etag: "62845e65-1467e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: a2bf2e57e3aaf964ae9886c8aa4ccbbb
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:19:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:19:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-MHJ3M9T
142.250.74.168200 OK 40 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MHJ3M9T
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash b8e6cc448b575445c60b62539d466f3c
8faa2233cfe22e60dafad10b32d59e4e4c4ea51c
e4c3245e34f0436742916a775e54861dd364b45e30729996f0946168ffa71af6
GET /gtm.js?id=GTM-MHJ3M9T HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 22:19:12 GMT
expires: Sat, 26 Nov 2022 22:19:12 GMT
cache-control: private, max-age=900
last-modified: Sat, 26 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 39544
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:19:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
trytheyavue.com/bg/js/jquery.accordion.js
69.172.200.220200 OK 2.4 kB URL HTTP/2 trytheyavue.com/bg/js/jquery.accordion.js
IP 69.172.200.220:0
Hash e081516d1ef1faa58a4d636baeacdb39
b21c19b02db6afd3886e2bcf96802d2e5f2e106a
44a939f3abb0e5079d07b1f3431f5ca2ab4e6edf2b0cc4ad89cfd6f952cda736
GET /bg/js/jquery.accordion.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 19:05:00 GMT
etag: W/"620d4adc-2007"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: e68ade7750101432a42a0260439c9ef8
server: DOSarrest
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/banner-bgr.jpg
69.172.200.220200 OK 14 kB URL HTTP/2 trytheyavue.com/bg/images/banner-bgr.jpg
IP 69.172.200.220:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x427, components 3\012- data
Hash 6810f595b3e18c233af848d3d3206c22
2051820fefe98faf056f31799c13b4240ee73f8a
056c43d10cf3190e39c974b968944af2b84cd3ef437c93b1cb888b240e75d046
GET /bg/images/banner-bgr.jpg HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/css/style-tv-2.css
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1; _ga_TVB374KJRK=GS1.1.1669501152.1.0.1669501152.60.0.0; _ga=GA1.1.753886253.1669501153
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: image/jpeg
content-length: 13969
last-modified: Wed, 16 Feb 2022 19:09:10 GMT
etag: "620d4bd6-3691"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 30c9e714eae4bf535bf6ea984f04ea5c
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16259
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:19:13 GMT
Connection: keep-alive
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,500;0,700;1,400;1,700&display=swap
142.250.74.10200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,500;0,700;1,400;1,700&display=swap
IP 142.250.74.10:0
Hash 58766273310171197fc4e3dd0a9bbb54
306108e191e56f40fa6e500d69a6902243d2de19
8457f2a93e38e9991d65a72a02e4313888d020313358ad9570443fcb39213027
GET /css2?family=Roboto:ital,wght@0,400;0,500;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 22:19:12 GMT
date: Sat, 26 Nov 2022 22:19:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16259
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:19:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16259
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:19:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16259
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:19:13 GMT
Connection: keep-alive
trytheyavue.com/bg/js/slick.js
69.172.200.220200 OK 23 kB URL HTTP/2 trytheyavue.com/bg/js/slick.js
IP 69.172.200.220:0
Hash b7654a04fa732877c94a871c5b8f9e69
1deea0d4aabc386ece0ab1f2c0e0fa9b6edc6190
3e3ec8e30d63a830d922669ec19804a9beaf65dbfc3a8296c8c3b270f8f6cefc
GET /bg/js/slick.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 19:05:01 GMT
etag: W/"620d4add-15f74"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 0117323da3630a0a2c31b95b3e5b3927
server: DOSarrest
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1db6041a0bdb2319ae85afcc30caaeec
3b0ec6a7188dadf986f72fda8110296d9abd6f35
05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: z7Hy7zEJmW8khrRb_uNcDa3UATX8DaKsdis-wUJAXfOZN4BM-0JtvQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 01:46:48 GMT
age: 73945
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6ee5071a31d351c552aa651e40b16189
6fca9136030ea6f67be44e428ea39c34ff3e28e7
8d52f14267b8bd47119954796ff6c5d54eb6aa5d23c6e8bbd246108a5b89c1d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8254
x-amzn-requestid: e12624ea-58c6-4f39-826c-8a1d87ebc5ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFySQGegIAMF-HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637efda7-2c5e216a0d8a1502615186a8;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 05:14:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0Ylris3tg94-66p8L5kYl2zgnVZ4mCc04ju96DslaB97Dfr-6nTyfA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:52:26 GMT
age: 1607
etag: "6fca9136030ea6f67be44e428ea39c34ff3e28e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 31bd21c7-1d75-4159-af51-52035da16da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-krGE6AIAMF2Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c1b13-32a7b9c6642592c70783a0cf;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 00:42:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6v42KU65wdKKPvjE7TRA3Li3o2dvrdPH7oGVDZGPPsAepqFFjQJkkA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 16:15:20 GMT
age: 21833
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 76c00eceed956377d7469ef58b0815cb
97a135335f5b1b042adeb385718f8808cb78528b
81fb72ab752b2eb39ab6ee015055304490b3b6c3259968703fd07c2a2eed1e61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7380
x-amzn-requestid: 18589644-299c-4a39-9376-db1bd1472009
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iEegIAMFeuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-23990acc0fdc599a75a534e3;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RqsZxAtbOkWBGbXJ3sZHxcS-ZvWOw7Yg2Qd4zj0QLhrp3wAXC8w6jA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:50:08 GMT
age: 1745
etag: "97a135335f5b1b042adeb385718f8808cb78528b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:37 GMT
age: 1656
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/prev.png
69.172.200.220200 OK 1.7 kB URL HTTP/2 trytheyavue.com/bg/images/prev.png
IP 69.172.200.220:0
File type PNG image data, 21 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 01e990575227f45e90211872aed15306
15603911601bffcb0c5a1d68e5dd764a95ba77e3
028b3c3d81174a4729c0cdd0f2423b66bc9e640e60228f8976d18ad111eddedf
GET /bg/images/prev.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/css/slick.css
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1; _ga_TVB374KJRK=GS1.1.1669501152.1.0.1669501152.60.0.0; _ga=GA1.1.753886253.1669501153
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: image/png
content-length: 1665
last-modified: Wed, 16 Feb 2022 19:09:10 GMT
etag: "620d4bd6-681"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 3beb8293249aa8f13e0adc8f1c788bb8
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/next.png
69.172.200.220200 OK 1.5 kB URL HTTP/2 trytheyavue.com/bg/images/next.png
IP 69.172.200.220:0
File type PNG image data, 21 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 67b37a3d660f4ae7a9693b1c68594f18
bd40bb43412a67011f72b4460bd95a02a27dd7b2
8d8f82d6f5a7788e94f3919bf440a9b3ced9d95e5d67927ee79b9529b8ad6f4f
GET /bg/images/next.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/css/slick.css
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1; _ga_TVB374KJRK=GS1.1.1669501152.1.0.1669501152.60.0.0; _ga=GA1.1.753886253.1669501153
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: image/png
content-length: 1546
last-modified: Wed, 16 Feb 2022 19:09:10 GMT
etag: "620d4bd6-60a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: f5bdb68ad60d1237949c57128e644bd1
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
fast.vidalytics.com/embeds/Ipm9Y6ab/uuOPiUEZKLRO0WHH/player-dash-mse.min.js?hash=anwtegeyp
151.139.128.10200 OK 584 kB URL HTTP/2 fast.vidalytics.com/embeds/Ipm9Y6ab/uuOPiUEZKLRO0WHH/player-dash-mse.min.js?hash=anwtegeyp
IP 151.139.128.10:0
File type Unicode text, UTF-8 text, with very long lines (65399)
Size 584 kB (584455 bytes)
Hash 4b7d0ffab17374ee02db67743b8c86f2
1da2c5069c12aa0376ee606234aa8943185bd4bb
0d70f7441260ab977ab62612ccde72be200b771b5e4c3d26b7d0b812000ac51b
GET /embeds/Ipm9Y6ab/uuOPiUEZKLRO0WHH/player-dash-mse.min.js?hash=anwtegeyp HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 11:26:22 GMT
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server, x-cdn, x-cdn-info
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=300, s-maxage=2592000
etag: "e3f57482698e8b79415fb04ca22b57ff"
server: UploadServer
x-guploader-uploadid: ADPycdvPUMqcf9zVZOwcKlF4uKMj8MNkeydscde57bNAL_ezd26aNdMm8ltYrYKtsKXMGDW-uqisgaMPhuN4LM-d2cR2dA
x-goog-generation: 1665141982214232
x-goog-hash: crc32c=DhSzgQ==, md5=4/V0gmmOi3lBX7BMoitX/w==
x-goog-metageneration: 1
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 502500
x-cdn: 4
content-encoding: gzip
x-hw: 1669501153.cds204.sk1.hn,1669501153.cds204.sk1.hn,1669501153.cds202.sk1.c,1669501153.cds204.sk1.sl
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:19:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-TVB374KJRK&cid=753886253.1669501153>m=2oeb90&aip=1
142.251.1.155204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-TVB374KJRK&cid=753886253.1669501153>m=2oeb90&aip=1
IP 142.251.1.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-TVB374KJRK&cid=753886253.1669501153>m=2oeb90&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://trytheyavue.com
date: Sat, 26 Nov 2022 22:19:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:19:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
trytheyavue.com/bg/js/page.js
69.172.200.220200 OK 42 kB URL HTTP/2 trytheyavue.com/bg/js/page.js
IP 69.172.200.220:0
Hash 3d84563d6671df846e1d064d535a335a
1d5df17a8c35c1e2407552aae9ddeedef839ce8b
aeda9fd82d1c9a11e6772e28987ac5e7e2542a3cd6ec3fc9410a7d022f6dd673
GET /bg/js/page.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 19:05:00 GMT
etag: W/"620d4adc-101a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 1f31872bed61da5e8a976c747571acce
server: DOSarrest
X-Firefox-Spdy: h2
trytheyavue.com/bg/css/Graphik-Regular.woff2
69.172.200.220200 OK 38 kB URL HTTP/2 trytheyavue.com/bg/css/Graphik-Regular.woff2
IP 69.172.200.220:0
File type Web Open Font Format (Version 2), TrueType, length 37504, version 1.0\012- data
Hash 5af81e7957df5df26b14c20f56c84940
b9e0ab52f86502e16f398e4345963d423cafdf5b
eaad9914c7a2627d8d8088f7296387ad68c6400bafe9341b439f9831d1968624
GET /bg/css/Graphik-Regular.woff2 HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://trytheyavue.com/bg/css/style-tv-2.css
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1; _ga_TVB374KJRK=GS1.1.1669501152.1.0.1669501152.60.0.0; _ga=GA1.1.753886253.1669501153
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: font/woff2
content-length: 37504
last-modified: Wed, 16 Feb 2022 18:55:50 GMT
etag: "620d48b6-9280"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 175f47bbd83658beb82ca53fa2fea37b
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/css/Graphik-Bold.woff2
69.172.200.220200 OK 40 kB URL HTTP/2 trytheyavue.com/bg/css/Graphik-Bold.woff2
IP 69.172.200.220:0
File type Web Open Font Format (Version 2), TrueType, length 40100, version 1.0\012- data
Hash 8aa732462079680de4ec73facf960248
2839050a88f2b79bee9fa386deb0579d0838c27a
b33eb15d15cecdcf36a1dfaea76df818ab26eeb5cd5fb48e7767d0ecef5a57f6
GET /bg/css/Graphik-Bold.woff2 HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://trytheyavue.com/bg/css/style-tv-2.css
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1; _ga_TVB374KJRK=GS1.1.1669501152.1.0.1669501152.60.0.0; _ga=GA1.1.753886253.1669501153
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: font/woff2
content-length: 40100
last-modified: Wed, 16 Feb 2022 18:55:49 GMT
etag: "620d48b5-9ca4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 29888abb1417fb2cf85d5a594b6b146f
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
trytheyavue.com/bg/css/Graphik-Medium.woff2
69.172.200.220200 OK 40 kB URL HTTP/2 trytheyavue.com/bg/css/Graphik-Medium.woff2
IP 69.172.200.220:0
File type Web Open Font Format (Version 2), TrueType, length 40120, version 1.0\012- data
Hash 865393f6402fb887b3ede269ae203d08
ed16c3083a7e97757321ca3d920ddefb3892f5f1
e19425e397dfe156ac383a546b0c36442e4f55e7cf6d715c799df52cff7453fe
GET /bg/css/Graphik-Medium.woff2 HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://trytheyavue.com/bg/css/style-tv-2.css
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1; _ga_TVB374KJRK=GS1.1.1669501152.1.0.1669501152.60.0.0; _ga=GA1.1.753886253.1669501153
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: font/woff2
content-length: 40120
last-modified: Wed, 16 Feb 2022 18:55:50 GMT
etag: "620d48b6-9cb8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 29fc7d34d4ffe0b930dba842ff254f5d
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
tracking.buygoods.com/track/?a=7166&firstcookie=0&referrer=https%3A%2F%2Femdlvr.com%2F&product=they1,they3,they6&sessid2=
172.66.43.22200 OK 595 B URL HTTP/2 tracking.buygoods.com/track/?a=7166&firstcookie=0&referrer=https%3A%2F%2Femdlvr.com%2F&product=they1,they3,they6&sessid2=
IP 172.66.43.22:0
File type ASCII text, with CRLF line terminators
Hash 4548865ae7ea6689fc834a50d82b4b51
c0790cf54a245fab4b42fd7d5d9ae3eb6e8010c6
374672a1e22dccb35e77e67a410517fee7d8c3794246a2a98c7f5bc193604099
GET /track/?a=7166&firstcookie=0&referrer=https%3A%2F%2Femdlvr.com%2F&product=they1,they3,they6&sessid2= HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7706011f7f88b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:19:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-TVB374KJRK&cid=753886253.1669501153>m=2oeb90&aip=1&z=1094519213
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-TVB374KJRK&cid=753886253.1669501153>m=2oeb90&aip=1&z=1094519213
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-TVB374KJRK&cid=753886253.1669501153>m=2oeb90&aip=1&z=1094519213 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:19:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:19:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/stream.mpd
151.139.128.10200 OK 4.7 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/stream.mpd
IP 151.139.128.10:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash a669b996f506eeff926d747067cd0d39
03dcae10d87f05f6c9006579eefccda45fab4114
440673b569ae9df31dd5ddc6a5f0dda2cba85113db3d94dd54706672b14c017a
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/stream.mpd HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:14 GMT
content-length: 4688
content-type: application/dash+xml
last-modified: Wed, 23 Feb 2022 21:21:22 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvzswz-tnuGPgtEYJaFGGrjq4J5NxUyS2hdEHLMnKiJU8vOyE5ytCz2qcK50PK0OjOHzpf05Rq3odym2lHm7kuS6Q
cache-control: public, max-age=31104000
etag: "a669b996f506eeff926d747067cd0d39"
x-goog-generation: 1645651282208676
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 4688
x-goog-hash: crc32c=nHdB/g==, md5=pmm5lvUG7v+SbXRwZ80NOQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669501154.cds204.sk1.hn,1669501154.cds256.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 0e46904cc2f4f7b3203b76be8c2ecc3d
19c831cedec7ad2a59a56e11af71b6bd83c635f1
b0dbd04d41a270c81a7b4799892fcfaf5c8c0173c03cc3fa13c1d00d6ad68847
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 26 Nov 2022 22:19:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 26 Nov 2022 20:10:01 GMT
Expires: Sun, 27 Nov 2022 20:10:01 GMT
ETag: "19c831cedec7ad2a59a56e11af71b6bd83c635f1"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
analytics-ingress-global.bitmovin.com/licensing
35.190.27.197200 OK 117 B URL HTTP/2 analytics-ingress-global.bitmovin.com/licensing
IP 35.190.27.197:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f90d2c53623621471228392bf3047e2a
b9f0bb5e8fd5fd97cb47a25edb9b6950ad51627e
5c22e577292cc557786ad7c531cb0d73bfefd43e006865f2945bca9c04d2b700
POST /licensing HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 102
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: v1.54.0
date: Sat, 26 Nov 2022 22:19:14 GMT
content-type: application/json
content-length: 117
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 0e46904cc2f4f7b3203b76be8c2ecc3d
19c831cedec7ad2a59a56e11af71b6bd83c635f1
b0dbd04d41a270c81a7b4799892fcfaf5c8c0173c03cc3fa13c1d00d6ad68847
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 26 Nov 2022 22:19:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 26 Nov 2022 20:10:01 GMT
Expires: Sun, 27 Nov 2022 20:10:01 GMT
ETag: "19c831cedec7ad2a59a56e11af71b6bd83c635f1"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/init.mp4
151.139.128.10200 OK 459 B URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/init.mp4
IP 151.139.128.10:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 9ca7c465fe1875363d003a015e82fa15
f1fd497dad3d1a5816a4abd6fe57464c9c7619a4
0032a01ab3dc07cd657d0a62d16094bcc6503af97a0958941bb9f7af8b43d6e1
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/init.mp4 HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:14 GMT
content-length: 459
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:16:57 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycduFa5O5uo5O3AFWDoge8tGSQvs9za-p6OStk4KwxeW5K6SXImZyoxrJ0kUhpJClK96YCANteck78PBhrEQapswaC-M-ytqt
cache-control: public, max-age=31104000
etag: "9ca7c465fe1875363d003a015e82fa15"
x-goog-generation: 1645651016924350
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 459
x-goog-hash: crc32c=u8l+QA==, md5=nKfEZf4YdTY9ADoBXoL6FQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669501154.cds204.sk1.hn,1669501154.cds002.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
licensing.bitmovin.com/licensing
35.227.229.24200 OK 165 B URL HTTP/2 licensing.bitmovin.com/licensing
IP 35.227.229.24:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bad32d07dc1ad9e3d334785067afbf34
653f8f612c6646daae0122b3b27e2c11486f86a4
41d9103b84690ae5330f1de907c91f6964d58cbb449887cf1bb0e13475dc0638
POST /licensing HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 146
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Sat, 26 Nov 2022 22:19:14 GMT
content-length: 165
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.vidalytics.com/awesome-log?cid=Ipm9Y6ab
107.178.211.97200 OK 43 B URL HTTP/2 stats.vidalytics.com/awesome-log?cid=Ipm9Y6ab
IP 107.178.211.97:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /awesome-log?cid=Ipm9Y6ab HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Accept, Content-Type, Origin, Range, X-Requested-With
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-expose-headers: Access-Control-Allow-Origin, Cache-Control, ETag, etag
cache-control: no-cache, public, max-age=2592000
content-length: 43
content-type: image/gif
etag: "Ipm9Y6ab/OnyVaLK52dx9g7dN"
date: Sat, 26 Nov 2022 22:19:14 GMT
x-envoy-upstream-service-time: 10
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
trytheyavue.com/bg/images/favicon/apple-touch-icon-1a.png
69.172.200.220200 OK 14 kB URL HTTP/2 trytheyavue.com/bg/images/favicon/apple-touch-icon-1a.png
IP 69.172.200.220:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 6634ebe4d4870a04d121b6a44178e690
1cd896a9c9f7dbd73081b25d3a32079bc41d9158
2e467a2818d993dd8658b7ab70e5531a6d61d39e5d8f7989a96fe5f88e0e4453
GET /bg/images/favicon/apple-touch-icon-1a.png HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1; _ga_TVB374KJRK=GS1.1.1669501152.1.0.1669501152.60.0.0; _ga=GA1.1.753886253.1669501153
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:14 GMT
content-type: image/png
content-length: 13664
last-modified: Wed, 16 Feb 2022 19:08:17 GMT
etag: "620d4ba1-3560"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 63c74ca62bc55017273ef6c4bf105a1b
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2
fast.vidalytics.com/embeds/Ipm9Y6ab/vsB8k7Qjvpaw6QuI/player-dash-mse.min.js?hash=oqstrnniv
151.139.128.10200 OK 585 kB URL HTTP/2 fast.vidalytics.com/embeds/Ipm9Y6ab/vsB8k7Qjvpaw6QuI/player-dash-mse.min.js?hash=oqstrnniv
IP 151.139.128.10:0
Size 585 kB (585212 bytes)
Hash 3d47573ed49d95de89805df16634e91a
8ca01867142cb4a6267e5356653a705b39dc4267
509dbede45ea8eba83add8882594d45c898f630a11d0d67fe65906a3d0a0fa17
GET /embeds/Ipm9Y6ab/vsB8k7Qjvpaw6QuI/player-dash-mse.min.js?hash=oqstrnniv HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 11:26:11 GMT
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server, x-cdn, x-cdn-info
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control: public, max-age=300, s-maxage=2592000
etag: "8824dbb025c7fd370b12f4adafba609f"
server: UploadServer
x-guploader-uploadid: ADPycdvPugQWKdlzfoFlAOSJ5RYXix8LIhKSSMXV9NAKvJYyZws2g07G4Sa75qMzgiuPcBA85QkvHHyRmZsU-NsfnFozsw
x-goog-generation: 1665141971673273
x-goog-hash: crc32c=qTkxaA==, md5=iCTbsCXH/TcLEvStr7pgnw==
x-goog-metageneration: 1
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 502506
x-cdn: 4
content-encoding: gzip
x-hw: 1669501153.cds204.sk1.hn,1669501153.cds204.sk1.hn,1669501153.cds238.sk1.c,1669501153.cds204.sk1.sl
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 0e46904cc2f4f7b3203b76be8c2ecc3d
19c831cedec7ad2a59a56e11af71b6bd83c635f1
b0dbd04d41a270c81a7b4799892fcfaf5c8c0173c03cc3fa13c1d00d6ad68847
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 26 Nov 2022 22:19:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 26 Nov 2022 20:10:01 GMT
Expires: Sun, 27 Nov 2022 20:10:01 GMT
ETag: "19c831cedec7ad2a59a56e11af71b6bd83c635f1"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.clarity.ms/eus2/s/0.6.43/clarity.js
13.107.246.53200 OK 55 kB URL HTTP/2 www.clarity.ms/eus2/s/0.6.43/clarity.js
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (55029)
Hash 441723b72633b1ac9757ad7c63168005
806166ca9ebb5839dd90a5e5c9335e3e0b18c169
cc8a16ce849d72f106bd67187e4b60c20da3093375202bf0b53f23e8f40a8b11
GET /eus2/s/0.6.43/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-length: 55116
content-type: application/javascript;charset=utf-8
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8fceb15c2864c"
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-cache: CONFIG_NOCACHE
x-azure-ref: 04pCCYwAAAADWlihudPaiS4b2XTcjehe+QU1TMDRFREdFMTkwNwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Sat, 26 Nov 2022 22:19:14 GMT
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_0.webm
151.139.128.10200 OK 500 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_0.webm
IP 151.139.128.10:0
Size 500 kB (499639 bytes)
Hash ad94c2fbe08c8d5e1eb0fc115bb5f09b
0337e105e43bbf3b7e01e20b1b1f18ac54ad8156
075a793dca1903396eccbe3689378150bdfcb0d9f4e3e3962f6b64134a165ed8
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_0.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:14 GMT
content-length: 499639
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:16:57 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycduUH-ouOmQdLA8PO3mJzZFuX1Zrv3icuGW88L7K7BUaB1D-Qtnv2Ia7lDqeBUFPn3KjSyryqRh1wd09_CL-07GDZQ
cache-control: public, max-age=31104000
etag: "ad94c2fbe08c8d5e1eb0fc115bb5f09b"
x-goog-generation: 1645651017147565
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 499639
x-goog-hash: crc32c=bvbu/A==, md5=rZTC++CMjV4esPwRW7Xwmw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669501154.cds204.sk1.hn,1669501154.cds067.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1254
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Sat, 26 Nov 2022 22:19:14 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 407
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Sat, 26 Nov 2022 22:19:14 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_1.webm
151.139.128.10200 OK 367 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_1.webm
IP 151.139.128.10:0
Size 367 kB (366903 bytes)
Hash d3b4c2bd0afab353a97629da8f51e84f
74b25aa450e4c5634d694befcfbe03282080e7df
ca9da5ca3cef5068666afb915b4e9b5ec0ce8dada0c301f8d4d5de27c3b4232c
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_1.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:14 GMT
content-length: 366903
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:17:00 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdu6rC7Na-grC7P32H554Pa4kkJ0OFeraX-DTlCHh13W6lxkaaBbHbEBH6VatE3GRs1Ot1GyetemAeXqqEkkoxKSnwPWtzGs
cache-control: public, max-age=31104000
etag: "d3b4c2bd0afab353a97629da8f51e84f"
x-goog-generation: 1645651020846164
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 366903
x-goog-hash: crc32c=YeJ3GQ==, md5=07TCvQr6s1Opdinaj1HoTw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669501154.cds204.sk1.hn,1669501154.cds248.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
licensing.bitmovin.com/impression
35.227.229.24204 No Content 0 B URL HTTP/2 licensing.bitmovin.com/impression
IP 35.227.229.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /impression HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 111
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Sat, 26 Nov 2022 22:19:14 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_2.webm
151.139.128.10200 OK 478 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_2.webm
IP 151.139.128.10:0
Size 478 kB (477817 bytes)
Hash 9381100175ab943a883f1473d7940f01
0b4740ea58e09aa8e31711799910bc122e6bd645
596bcb97afa5a342fe2d3aca85f8e6c41b020ac0a50b95c74c39fd7a4864db04
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_2.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:14 GMT
content-length: 477817
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:16:42 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycduFcFOPWITWV8fx1WSIcucAJXoZADIos6caCYlhkLrqQV426kQXITIn0ZPuD1ZkpBjhdyxbXVQHHgTkHrYSpzmrYg
cache-control: public, max-age=31104000
etag: "9381100175ab943a883f1473d7940f01"
x-goog-generation: 1645651002732804
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 477817
x-goog-hash: crc32c=Obre3g==, md5=k4EQAXWrlDqIPxRz15QPAQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669501154.cds204.sk1.hn,1669501154.cds235.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_3.webm
151.139.128.10200 OK 409 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_3.webm
IP 151.139.128.10:0
Size 409 kB (409204 bytes)
Hash efd7c5c16c34600248c6ae303c89cb85
0bc9657809198b955d645ce131314cb8ec014470
f7673c5386c728ae7e97ad5352ac95f0392d898ec222900837d7c7700df39c2b
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_3.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:14 GMT
content-length: 409204
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:16:22 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycds5xbV2i5ZaJsXK_DEPpxXoEsu7Hq4MkLJe1AbST_8wz38rE-6tk_XZnIDyRsw7C90V7ePnYSUtUp39ULt2zF3-
x-goog-generation: 1645650982349199
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 409204
x-goog-hash: crc32c=FvBrnw==, md5=79fFwWw0YAJIxq4wPInLhQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, max-age=31104000
etag: "efd7c5c16c34600248c6ae303c89cb85"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669501154.cds204.sk1.hn,1669501154.cds247.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 540
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Sat, 26 Nov 2022 22:19:14 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_4.webm
151.139.128.10200 OK 439 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_4.webm
IP 151.139.128.10:0
Size 439 kB (439419 bytes)
Hash 6edaf82276f1595844266e4754f39e0f
d5ba2a58bcf1c51cb2980c08bac121944aaec969
5e7c51e55895a3dea0ca05818b982502261f533a46c9105eba0661f3eb9ef567
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_4.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:15 GMT
content-length: 439419
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:16:33 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdtu-_OsMaZz6lCr5UFHS4Nlh0X6M6Q-kdliKzRChwFe3Cyd6x4bzBGIpNjLd4Cre5dHQyhkBxiD85iOnFDl-yl5qw
cache-control: public, max-age=31104000
etag: "6edaf82276f1595844266e4754f39e0f"
x-goog-generation: 1645650993563645
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 439419
x-goog-hash: crc32c=tP9sLw==, md5=btr4InbxWVhEJm5HVPOeDw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669501154.cds204.sk1.hn,1669501154.cds243.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_5.webm
151.139.128.10200 OK 500 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_5.webm
IP 151.139.128.10:0
Size 500 kB (500235 bytes)
Hash e2bd4001b47b3e8b12112064ffdfd1ee
03b4373da7af5e09e806f974b79ae7a96c0bd46f
e3aa4857ca7e50309cd9344852db319c2833b8ad506b600fb0a024d468a11ef6
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_5.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:15 GMT
content-length: 500235
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:16:30 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdv8yWaaKkSHBl4VAeFjKEbRWfCrga3ctV7V-HEZM1fpjEIknsNVIhWeSQntSZ-2XGMXMfoFdhkBY0LTEJy_PcbSfQ
cache-control: public, max-age=31104000
etag: "e2bd4001b47b3e8b12112064ffdfd1ee"
x-goog-generation: 1645650990818787
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 500235
x-goog-hash: crc32c=5Rr/tw==, md5=4r1AAbR7PosSESBk/9/R7g==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669501155.cds204.sk1.hn,1669501155.cds245.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 255
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Sat, 26 Nov 2022 22:19:15 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=CDCC3F73D8334FD1AC61556DCA3B9837&RedC=c.clarity.ms&MXFR=1DEA2695715E6AE51A6334FD755E6419
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=1DEA2695715E6AE51A6334FD755E6419; domain=.clarity.ms; expires=Thu, 21-Dec-2023 22:19:15 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Sat, 26 Nov 2022 22:19:14 GMT
content-length: 0
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_6.webm
151.139.128.10200 OK 501 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_6.webm
IP 151.139.128.10:0
Size 501 kB (500821 bytes)
Hash 744a788e163353cf6a5991f608885367
38114c2c24cd15255ec1ec5db23e0a2851f96663
ad9b49ac66a2c4d035e3d5f0131eef285d4904dbf1760c2d5be4a88dc7ddeb97
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_6.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:15 GMT
content-length: 500821
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:16:34 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdumMKYlPtKxGO0WK7xZImcXvsYlS-oPQ3K7YbBPvQeo8v3mtRCwN1CSP3T-n63xqt9D3jyAU8YL5cWk-QTwUQ-94nkC41Ef
cache-control: public, max-age=31104000
etag: "744a788e163353cf6a5991f608885367"
x-goog-generation: 1645650993957856
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 500821
x-goog-hash: crc32c=qZ3c4g==, md5=dEp4jhYzU89qWZH2CIhTZw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669501155.cds204.sk1.hn,1669501155.cds069.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=CDCC3F73D8334FD1AC61556DCA3B9837&RedC=c.clarity.ms&MXFR=1DEA2695715E6AE51A6334FD755E6419
204.79.197.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=CDCC3F73D8334FD1AC61556DCA3B9837&RedC=c.clarity.ms&MXFR=1DEA2695715E6AE51A6334FD755E6419
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=CDCC3F73D8334FD1AC61556DCA3B9837&RedC=c.clarity.ms&MXFR=1DEA2695715E6AE51A6334FD755E6419 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trytheyavue.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=CDCC3F73D8334FD1AC61556DCA3B9837&MUID=2BC9BC7B09CD6FD70C01AE1308386E70
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=2BC9BC7B09CD6FD70C01AE1308386E70; domain=c.bing.com; expires=Thu, 21-Dec-2023 22:19:15 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9E1DE6199CD24848869F997F802F483C Ref B: OSL30EDGE0114 Ref C: 2022-11-26T22:19:15Z
date: Sat, 26 Nov 2022 22:19:14 GMT
content-length: 0
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1856
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Sat, 26 Nov 2022 22:19:14 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1817
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Sat, 26 Nov 2022 22:19:14 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1809
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Sat, 26 Nov 2022 22:19:14 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 654
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://trytheyavue.com
access-control-allow-credentials: true
date: Sat, 26 Nov 2022 22:19:14 GMT
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=CDCC3F73D8334FD1AC61556DCA3B9837&MUID=2BC9BC7B09CD6FD70C01AE1308386E70
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=CDCC3F73D8334FD1AC61556DCA3B9837&MUID=2BC9BC7B09CD6FD70C01AE1308386E70
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=CDCC3F73D8334FD1AC61556DCA3B9837&MUID=2BC9BC7B09CD6FD70C01AE1308386E70 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trytheyavue.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Thu, 13 Oct 2022 20:07:05 GMT
accept-ranges: bytes
etag: "40db785d3fdfd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Sat, 26-Nov-2022 22:29:15 GMT; path=/; SameSite=None; Secure;
date: Sat, 26 Nov 2022 22:19:14 GMT
content-length: 42
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_7.webm
151.139.128.10200 OK 506 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_7.webm
IP 151.139.128.10:0
Size 506 kB (505516 bytes)
Hash 7c1488701907d2eabfd17960229baf38
14ecd29bda672b915519357f67ea518d2730b459
3da1b1fc5803210937ed745f51bc094ae7a43aa89d67a229d2c5374bbf0b975a
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_7.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:15 GMT
content-length: 505516
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:17:03 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdtuk8p2icQLHsDSPOyMEzUFG9lOcstgI5O7TMJj5UuNbeiGg9gMbwXxZRgEkBbF5b1U1xp0yeLS66doY225HdXN_w
cache-control: public, max-age=31104000
etag: "7c1488701907d2eabfd17960229baf38"
x-goog-generation: 1645651023016999
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 505516
x-goog-hash: crc32c=kmHtjQ==, md5=fBSIcBkH0uq/0XlgIpuvOA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669501155.cds204.sk1.hn,1669501155.cds222.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_8.webm
151.139.128.10200 OK 432 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_8.webm
IP 151.139.128.10:0
Size 432 kB (432081 bytes)
Hash a691ad4ca6225cfdf976f2b750709285
dda7c7dc8149e45ee9e44536411135fe73bfeb22
41fc75a53998dd0e9fa72bffccd9874d333305e818366d2acc6a4676d16c0905
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_8.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:15 GMT
content-length: 432081
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:17:02 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdvKn1htOhPbk4fZJVu2Dhb1dtYPmo08wta-6JiZA1SQkye6z8DNqnFjfOjayJaklgn8jsW4hXQiNxC6RNA1D6Gn5-IogjR5
cache-control: public, max-age=31104000
etag: "a691ad4ca6225cfdf976f2b750709285"
x-goog-generation: 1645651022293008
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 432081
x-goog-hash: crc32c=kgoprg==, md5=ppGtTKYiXP35dvK3UHCShQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669501155.cds204.sk1.hn,1669501155.cds218.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_9.webm
151.139.128.10200 OK 489 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_9.webm
IP 151.139.128.10:0
Size 489 kB (488628 bytes)
Hash 5c076552e51aae1f0de22d76bebac80a
0d6a625ef9c1996121484d36c205220caf98e924
59627dbad45d40fc4ebcfc249f81eb8dbc381afb4495e2ebeabbd3992c11eb92
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_9.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:15 GMT
content-length: 488628
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:17:01 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdtv_hSl84A-boXXZkmU01MWp3GF023YKo24Mut6xt-15o0-ng38UDLXWevg89Ulv0CVGj_sp-xiRcHaEDL_WTxddg
cache-control: public, max-age=31104000
etag: "5c076552e51aae1f0de22d76bebac80a"
x-goog-generation: 1645651021010890
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 488628
x-goog-hash: crc32c=oXlrNg==, md5=XAdlUuUarh8N4i12vrrICg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669501155.cds204.sk1.hn,1669501155.cds217.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 159445
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://trytheyavue.com
access-control-allow-credentials: true
date: Sat, 26 Nov 2022 22:19:15 GMT
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_10.webm
151.139.128.10200 OK 492 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_10.webm
IP 151.139.128.10:0
Size 492 kB (491536 bytes)
Hash f01ae2dcbacd847edd7ee7e1cda8f80a
fcf9d5aea2f895408860ce1dfe4e16ec365d01a1
06d0728dccd07a571867d75628c5de377126b259e454b0ba082528d8e83c01ab
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_10.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:15 GMT
content-length: 491536
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:16:58 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdtxseLWs9ZTEI1j382Nwze991taFMbCMnGrp-o6Efa-y_K89IdQ26SzSqt94kIG8rQO5ksmzir65PexbH_MIVqNoQ
cache-control: public, max-age=31104000
etag: "f01ae2dcbacd847edd7ee7e1cda8f80a"
x-goog-generation: 1645651018155237
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 491536
x-goog-hash: crc32c=n9tILQ==, md5=8Bri3LrNhH7dfufhzaj4Cg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669501155.cds204.sk1.hn,1669501155.cds242.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_11.webm
151.139.128.10200 OK 474 kB URL HTTP/2 fast.vidalytics.com/video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_11.webm
IP 151.139.128.10:0
Size 474 kB (473834 bytes)
Hash 60781a3b420e2ec327ead3bfff6095cf
29482d2ea96634e055112dc5686d32a5c7df07f9
c504277cadb067cb10774755e53c2c95c14106752de55bdf9fec1762dec16371
GET /video/Ipm9Y6ab/Yl7n5ihLxp5RjK2K/58278/49470/webm/video/1280x720_vp9_1000000/s_11.webm HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:19 GMT
content-length: 473834
content-type: video/mp4
last-modified: Wed, 23 Feb 2022 21:17:32 GMT
accept-ranges: bytes
x-guploader-uploadid: ADPycdsIgxjZ92xUBHxpzM1r29wGiybp9rqSDGH66xLkHL152DSKr1x_OBB0h-99Xhg0BPdwJv8i_2nF6quqDEjyRUCuSw
cache-control: public, max-age=31104000
etag: "60781a3b420e2ec327ead3bfff6095cf"
x-goog-generation: 1645651052561143
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 473834
x-goog-hash: crc32c=UYdIvQ==, md5=YHgaO0IOLsMn6tO//2CVzw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-hw: 1669501159.cds204.sk1.hn,1669501159.cds201.sk1.c
x-cdn: 4
X-Firefox-Spdy: h2
stats.vidalytics.com/scribe
107.178.211.97200 OK 16 B URL HTTP/2 stats.vidalytics.com/scribe
IP 107.178.211.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c
POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 186
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Sat, 26 Nov 2022 22:19:19 GMT
content-length: 16
x-envoy-upstream-service-time: 1
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1864
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Sat, 26 Nov 2022 22:19:20 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
analytics-ingress-global.bitmovin.com/analytics
35.190.27.197204 No Content 0 B URL HTTP/2 analytics-ingress-global.bitmovin.com/analytics
IP 35.190.27.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1824
Origin: https://trytheyavue.com
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: v1.54.0
date: Sat, 26 Nov 2022 22:19:19 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
emdlvr.com/wp-content/plugins/pretty-link/pro/js/javascript-redirect.js?ver=3.2.6
172.67.187.198200 OK 0 B URL HTTP/2 emdlvr.com/wp-content/plugins/pretty-link/pro/js/javascript-redirect.js?ver=3.2.6
IP 172.67.187.198:0
GET /wp-content/plugins/pretty-link/pro/js/javascript-redirect.js?ver=3.2.6 HTTP/1.1
Host: emdlvr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://emdlvr.com/y8pk
Cookie: prli_click_91=gyxc; prli_visitor=63827fb047f46; prli_click_90=y8pk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:11 GMT
content-type: application/javascript
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
last-modified: Sun, 23 Oct 2022 08:36:36 GMT
expires: Thu, 22 Dec 2022 12:25:54 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
cf-cache-status: HIT
age: 381197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w%2FWSaOK2wY1QrnaRGQv6W4btsKNmWVoeM9jdcoEPHvQqIsMFdB2v%2Bm%2Bli6Qc5zs626DX%2FTHVKCIiDcPNIZAyumArAGuFT9Xzoi6zxJsUL%2BsAoyXgW%2F7blMndo0iZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77060117ec62fac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fast.vidalytics.com/embeds/Ipm9Y6ab/vsB8k7Qjvpaw6QuI/loader.min.js
151.139.128.10200 OK 0 B URL HTTP/2 fast.vidalytics.com/embeds/Ipm9Y6ab/vsB8k7Qjvpaw6QuI/loader.min.js
IP 151.139.128.10:0
GET /embeds/Ipm9Y6ab/vsB8k7Qjvpaw6QuI/loader.min.js HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
cache-control: no-store, private, max-age=0, s-max-age=0
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 11:26:11 GMT
x-guploader-uploadid: ADPycdvqRhXeOHU7gJz2WrEMHq1acK9RMYys6EQUhxY2cTawuYVhwvaJAUzW5Fv6jBuW1iehhOYATBKS9tggJUFrVLjygA
expires: Sat, 26 Nov 2022 22:19:13 GMT
etag: "0580fb7919a8433488c4f831ed3c2cad"
x-goog-generation: 1665141971289404
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10160
x-goog-hash: crc32c=Scdktw==, md5=BYD7eRmoQzSIxPgx7TwsrQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server, x-cdn, x-cdn-info
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-cdn-info: loader
x-cdn: 4
content-encoding: gzip
x-hw: 1669501153.cds204.sk1.hn,1669501153.cds204.sk1.hn,1669501153.cds247.sk1.sc,1669501153.cds247.sk1.p,1669501153.cds204.sk1.sl
X-Firefox-Spdy: h2
trytheyavue.com/bg/css/style-tv-2.css
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/bg/css/style-tv-2.css
IP 69.172.200.220:0
GET /bg/css/style-tv-2.css HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: text/css
last-modified: Wed, 16 Feb 2022 18:55:50 GMT
etag: W/"620d48b6-5cd7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 8053cb92c668b296f2be058f10923249
server: DOSarrest
X-Firefox-Spdy: h2
trytheyavue.com/bg/css/fixed.css
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/bg/css/fixed.css
IP 69.172.200.220:0
GET /bg/css/fixed.css HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: text/css
last-modified: Wed, 16 Feb 2022 18:55:49 GMT
etag: W/"620d48b5-402"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: c92a1f9edf1a5c06af034949179c6b54
server: DOSarrest
X-Firefox-Spdy: h2
trytheyavue.com/bg/js/fixed-tvv2.js
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/bg/js/fixed-tvv2.js
IP 69.172.200.220:0
GET /bg/js/fixed-tvv2.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: application/javascript
last-modified: Thu, 24 Feb 2022 18:02:28 GMT
etag: W/"6217c834-158b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: dac00688fe0a6123b47e218891b094b2
server: DOSarrest
X-Firefox-Spdy: h2
trytheyavue.com/bg/js/pop.js
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/bg/js/pop.js
IP 69.172.200.220:0
GET /bg/js/pop.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 19:05:00 GMT
etag: W/"620d4adc-1ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: e162aff75e61c56ccca8e4517060285e
server: DOSarrest
X-Firefox-Spdy: h2
www.clarity.ms/tag/aoowmvh2bj?ref=gtm2
13.107.246.53200 OK 0 B URL HTTP/2 www.clarity.ms/tag/aoowmvh2bj?ref=gtm2
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /tag/aoowmvh2bj?ref=gtm2 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=a3fa3f4965434477be246372e370b7b3.20221126.20231126; expires=Sun, 26 Nov 2023 22:19:14 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:67bc0b23-8423-4b52-b1ca-6a87709ceaa2
x-cache: CONFIG_NOCACHE
x-azure-ref: 04ZCCYwAAAACBDYO90Ze9R4RlwR0uCpu5QU1TMDRFREdFMTkwNwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Sat, 26 Nov 2022 22:19:13 GMT
X-Firefox-Spdy: h2
trytheyavue.com/bg/js/jquery-1.12.4.min.js
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/bg/js/jquery-1.12.4.min.js
IP 69.172.200.220:0
GET /bg/js/jquery-1.12.4.min.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 19:05:01 GMT
etag: W/"620d4add-17b8b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: c648b2c2057db23c8e7fe502e125ad6e
server: DOSarrest
X-Firefox-Spdy: h2
click.warriorketo.net/?t=c&ids=Mjc4ODk5OTY5__NzkyMQ==__MTY1NjAxNzI=__NDk0__270&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGeThwaw==
170.187.185.18200 OK 0 B URL HTTP/2 click.warriorketo.net/?t=c&ids=Mjc4ODk5OTY5__NzkyMQ==__MTY1NjAxNzI=__NDk0__270&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGeThwaw==
IP 170.187.185.18:0
GET /?t=c&ids=Mjc4ODk5OTY5__NzkyMQ==__MTY1NjAxNzI=__NDk0__270&url=aHR0cHMlM0ElMkYlMkZlbWRsdnIuY29tJTJGeThwaw== HTTP/1.1
Host: click.warriorketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 22:19:11 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: MISS
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
IP 69.172.200.220:0
GET /bg/research?aff_id=470&subid=mwn3agiop1126theyavue HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://emdlvr.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:12 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; path=/; expires=Fri, 26 Nov 2032 22:19:12 GMT; secure
user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; path=/; expires=Fri, 26 Nov 2032 22:19:12 GMT; secure
persistedParams=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; secure; httponly
persistedParams.sig=qQIP2OdsTFa87s1ohgL1NB6ingI; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; secure; httponly
uid=wKhaAmOCkOAJegA4Axk6Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/
cnid=1; path=/
content-security-policy: frame-ancestors 'self' cbsplit.com;
content-encoding: gzip
cache-control: private
x-dis-request-id: ab835046430f4a85f4ac49271d1b95f5
server: DOSarrest
X-Firefox-Spdy: h2
trytheyavue.com/bg/js/bounceback.min.js
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/bg/js/bounceback.min.js
IP 69.172.200.220:0
GET /bg/js/bounceback.min.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 19:05:00 GMT
etag: W/"620d4adc-cd0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 2697294360bb69c4637a383b135c56b9
server: DOSarrest
X-Firefox-Spdy: h2
trytheyavue.com/bg/js/bookmarkscroll.js
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/bg/js/bookmarkscroll.js
IP 69.172.200.220:0
GET /bg/js/bookmarkscroll.js HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 19:05:00 GMT
etag: W/"620d4adc-b17"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 7fcbc2cd41ebf5a563ad2d8f97ea3c29
server: DOSarrest
X-Firefox-Spdy: h2
emdlvr.com/y8pk
172.67.187.198200 OK 0 B IP 172.67.187.198:0
Analyzer Verdict Alert fortinet Phishing
GET /y8pk HTTP/1.1
Host: emdlvr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: prli_click_91=gyxc; prli_visitor=63827fb047f46
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:11 GMT
content-type: text/html;charset=UTF-8
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Mon, 07 Jul 1777 07:07:07 GMT
x-redirect-powered-by: Pretty Link Executive 3.2.6 http://prettylink.com
set-cookie: prli_click_90=y8pk; expires=Mon, 26-Dec-2022 22:19:11 GMT; Max-Age=2592000; path=/
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: MISS
x-server-powered-by: Engintron
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yf3XEeCS%2FYxQphHeJYzdPMKmIoLWrjsLbkeEpAVAtlqgQBzrEShMyZZniy%2FEukmM9ojH4AxMBUlYmKOuoqBN3xQhzcn%2Ftv%2F8hqTCqegDdyn7sjRVqyj4kbvLWbDq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 770601166b64fac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fast.vidalytics.com/embeds/Ipm9Y6ab/uuOPiUEZKLRO0WHH/loader.min.js
151.139.128.10200 OK 0 B URL HTTP/2 fast.vidalytics.com/embeds/Ipm9Y6ab/uuOPiUEZKLRO0WHH/loader.min.js
IP 151.139.128.10:0
GET /embeds/Ipm9Y6ab/uuOPiUEZKLRO0WHH/loader.min.js HTTP/1.1
Host: fast.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
cache-control: no-store, private, max-age=0, s-max-age=0
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 11:26:21 GMT
x-guploader-uploadid: ADPycdu3v3jBpCJAFPnHIgvZZWrIus_oXOorRhCE4yyNZU6UqKy3XO9xQy7-nra79gAgJK0oxeFddmNyjaebZDWf6lKy
expires: Sat, 26 Nov 2022 22:19:13 GMT
etag: "3f0bc350bcb8af98bc82e5210b8cceed"
x-goog-generation: 1665141981853962
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10160
x-goog-hash: crc32c=/8oNPg==, md5=PwvDULy4r5i8guUhC4zO7Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: Content-Type, x-hw, server, x-cdn, x-cdn-info
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-cdn-info: loader
x-cdn: 4
content-encoding: gzip
x-hw: 1669501153.cds204.sk1.hn,1669501153.cds204.sk1.hn,1669501153.cds201.sk1.sc,1669501153.cds201.sk1.p,1669501153.cds204.sk1.sl
X-Firefox-Spdy: h2
trytheyavue.com/api/visits?page_id=27&page_version=&request_id=4621FD81%3AAD00_D197C0D8%3A01BB_638290E0_197046%3A223426&querystring=aff_id%3D470%26subid%3Dmwn3agiop1126theyavue&fbclid=&fbp=&fbc=&referrer=https%3A%2F%2Femdlvr.com%2F
69.172.200.220200 OK 0 B URL HTTP/2 trytheyavue.com/api/visits?page_id=27&page_version=&request_id=4621FD81%3AAD00_D197C0D8%3A01BB_638290E0_197046%3A223426&querystring=aff_id%3D470%26subid%3Dmwn3agiop1126theyavue&fbclid=&fbp=&fbc=&referrer=https%3A%2F%2Femdlvr.com%2F
IP 69.172.200.220:0
GET /api/visits?page_id=27&page_version=&request_id=4621FD81%3AAD00_D197C0D8%3A01BB_638290E0_197046%3A223426&querystring=aff_id%3D470%26subid%3Dmwn3agiop1126theyavue&fbclid=&fbp=&fbc=&referrer=https%3A%2F%2Femdlvr.com%2F HTTP/1.1
Host: trytheyavue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trytheyavue.com/bg/research?aff_id=470&subid=mwn3agiop1126theyavue
Cookie: user_id=22910ebc380111bbf3fe5123fa557bf1; user_id.sig=VqAbEPyPsy4HT7N4Xu0mPebnOj0; uid=wKhaAmOCkOAJegA4Axk6Ag==; cnid=1; _ga_TVB374KJRK=GS1.1.1669501152.1.0.1669501152.60.0.0; _ga=GA1.1.753886253.1669501153
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:19:13 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' cbsplit.com;
content-encoding: gzip
x-dis-request-id: dc25d6fabd6758fca63cf5fa03481aad
server: DOSarrest
X-Firefox-Spdy: h2