Report - linkvertise.com/540658/pet-simulator-x-partner/1

Report Overview

Submitted URL
linkvertise.com/540658/pet-simulator-x-partner/1
IP
172.64.206.34
ASN
#13335 CLOUDFLARENET
Submitted
2023-02-05 09:18:20
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	4.4 kB	12 kB	95.101.11.115
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	4.1 kB	7.0 kB	93.184.220.29
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.13.173.34
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	510 B	129 kB	142.250.74.35
maxst.icons8.com	39862	2015-05-27T12:17:54Z	2023-03-13T08:51:43Z	442 B	702 B	185.76.9.21
p.typekit.net	620	2012-05-23T16:28:57Z	2023-03-13T05:10:18Z	443 B	338 B	23.36.76.96
script.hotjar.com	887	2020-11-05T17:23:46Z	2023-03-13T07:54:54Z	384 B	69 kB	143.204.55.46
dnacdn.net	3760	2019-09-02T17:07:45Z	2023-03-13T07:41:37Z	887 B	1.3 kB	178.250.2.146
gum.criteo.com	381	2015-01-22T11:58:57Z	2023-03-13T07:21:44Z	2.8 kB	35 kB	178.250.2.146
stackpath.bootstrapcdn.com	2467	2018-06-15T22:36:43Z	2023-03-13T07:25:30Z	870 B	1.8 kB	104.18.11.207
sand.ostrichesica.com	193385	2021-06-07T04:00:13Z	2023-03-13T00:49:54Z	389 B	32 kB	54.230.111.79
publisher.linkvertise.com	230086	2020-08-12T09:42:03Z	2023-03-13T05:42:25Z	3.3 kB	95 kB	172.64.207.34
cdn.taboola.com	1040	2013-07-20T01:48:03Z	2023-03-13T05:18:23Z	387 B	43 kB	151.101.129.44
vars.hotjar.com	1014	2020-11-05T11:13:14Z	2023-03-12T19:56:22Z	505 B	1.7 kB	143.204.55.118
linkvertise.com	57422	2015-12-18T22:49:10Z	2023-03-13T05:18:00Z	1.7 kB	17 kB	172.64.206.34
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.1 kB	4.2 kB	216.58.211.3
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	2.7 kB	51 kB	34.120.237.76
gem.gbc.criteo.com	6039	2019-01-31T11:05:09Z	2023-03-13T05:34:09Z	387 B	492 B	178.250.6.92
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
linkvertise.chargebeestaticv2.com	unknown	2022-07-28T19:58:24Z	2023-03-13T00:49:54Z	518 B	1.3 kB	54.230.111.33
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	415 B	1.1 kB	142.250.74.164
contextual.media.net	513	2012-05-21T09:20:31Z	2023-03-13T05:53:10Z	382 B	372 B	23.38.200.22
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	381 B	64 kB	142.250.74.168
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:09:18Z	696 B	446 B	216.239.34.36
trc-events.taboola.com	1779	2020-06-09T15:52:57Z	2023-03-13T05:18:26Z	565 B	163 B	141.226.228.48
paper.ostrichesica.com	183841	2021-06-07T16:37:44Z	2023-03-13T00:50:34Z	6.8 kB	1.7 kB	52.45.196.192
static.hotjar.com	641	2014-11-01T06:14:27Z	2023-03-13T05:12:51Z	377 B	632 B	143.204.55.84
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-13T05:09:21Z	803 B	40 kB	104.17.25.14
js.chargebee.com	23733	2019-05-23T14:12:40Z	2023-03-13T08:38:04Z	3.0 kB	297 kB	143.204.55.121
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350 B	966 B	143.204.42.165
ag.gbc.criteo.com	5925	2018-12-17T14:17:41Z	2023-03-13T05:53:12Z	386 B	493 B	185.235.84.15

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-05 09:18:50	low	52.45.196.192	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate
2023-02-05 09:18:55	medium	Client IP	192.169.69.26	ET INFO DYNAMIC_DNS HTTP Request to a *.duckdns .org Domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (57)

	URL	Size	First Seen	Last Seen
	linkvertise.com/runtime.9028a2ff6641236d.js	3.6 kB	2023-03-07	2023-09-10
Pretty URL linkvertise.com/runtime.9028a2ff6641236d.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-09-10 18:25:21 Times Seen2415 Hash 0270ef93354cd4a2eb1df53f143e2537 4b895eee6513d5e1509992c528b6343418d8546a d8f17fc17786ac0acc2dd2d47f24827e89cce8c72f1ce83eb764e475decb9970 Loading...

	linkvertise.com/540658/pet-simulator-x-partner/1	5.2 kB	2023-03-07	2023-09-10
Pretty URL linkvertise.com/540658/pet-simulator-x-partner/1 IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-09-10 18:25:21 Times Seen325 Hash e8bce5239d8470b5056d43aaef157627 d5d141c9dd3783c3615218b91872eef8814b2f1c 7fe578c7d294d467782839ab32ab7abef8e15434758214fc5bf0a3b050e48c18 Loading...

	linkvertise.com/main.3ce3d8abd3f40994.js	2.9 MB	2023-03-13	2023-03-13
Pretty URL linkvertise.com/main.3ce3d8abd3f40994.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:06:09 Last Seen2023-03-13 18:12:47 Times Seen1 Hash ba6c47a293c6c080339eb4cd5b7e0f4e ce17bd25147435a80362fb70e289801ba4d5789f b566d71ae3616c3aca6a03ffc9e1c7f34dbd5c0586664fadc6f839e94e81221c Loading...

	www.thinksuggest.org/simple/suggest-min-unpacked.js	52 kB	2023-03-07	2024-04-22
Pretty URL www.thinksuggest.org/simple/suggest-min-unpacked.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-04-22 04:36:12 Times Seen11809 Hash cd2f3074326840d55a3c3ea1e99e83fe 3a2e1d1a93506526ae3ed2b44d584af7771ff8d0 9ec9f50ac6a5dfdf7ace0a047ab4e86a7f8ff297030f93f9b8b4e27c57fdaa51 Loading...

	linkvertise.com/assets/vendor/thinksuggest	2.4 kB	2023-03-07	2023-04-05
Pretty URL linkvertise.com/assets/vendor/thinksuggest IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-04-05 01:40:49 Times Seen138 Hash d4fc14d8e50c4da7f4cdbb209c346b20 5d525ba24f01f8342c3e64b44f519ce246283f0a 84d63fa8eee330eb27272ba4eae1f934923a5f5ff5d2d070d49dfab5dbb9f2dc Loading...

	gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS	30 kB	2023-03-07	2023-03-17
Pretty URL gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS IP 178.250.2.146 ASN #44788 Criteo SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:17:20 Last Seen2023-03-17 21:47:34 Times Seen1 Hash 49908b82b9e80d6ae18a2a5b3d383af9 b5fdbde84ebb8d44304a39a7eca9afc15fd0fc43 1294283dd1491c4767840ecaafa97659b0e3c560ef4048bd51907181c52af89e Loading...

	stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js	51 kB	2023-03-07	2024-04-24
Pretty URL stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-24 01:45:28 Times Seen243700 Hash 67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4 Loading...

	linkvertise.com/540658/pet-simulator-x-partner/1	61 B	2023-03-07	2024-02-21
Pretty URL linkvertise.com/540658/pet-simulator-x-partner/1 IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5600 Hash 5f1530f7c9d5ec10db5f85900397c9ea 457927ecea448848df6ae8f7a6cbb21535f6db85 624b2f08c18a4c6bef49e112548529dcf6bae01c03549213482a0ec60335e63c Loading...

	linkvertise.com/assets/ads.js	53 B	2023-03-07	2024-04-22
Pretty URL linkvertise.com/assets/ads.js IP 172.64.207.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:21 Last Seen2024-04-22 04:36:12 Times Seen7571 Hash 6505cd57ceee4ca43442ca3a639bc9fb fba759aae1fba98c65c0f7530e11dcf9db64f6bd b1af735cf017f07c82e88c4e7ae104eb140ebec0882691bdc68ad6c1a6e3449f Loading...

	linkvertise.com/540658/pet-simulator-x-partner/1	384 B	2023-03-07	2023-09-10
Pretty URL linkvertise.com/540658/pet-simulator-x-partner/1 IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-09-10 18:25:21 Times Seen384 Hash 1b542721063834c7497013710c32ae68 eae295b9d949477cbd14deb382507fad6b159650 982369c09d990814aa5e0b323a005064bbc77748027b30318afafc3c678a53ea Loading...

	www.googletagmanager.com/gtag/js?id=G-7DRMH8RP03&l=dataLayer&cx=c	220 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-7DRMH8RP03&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:29:46 Last Seen2023-03-13 17:29:46 Times Seen1 Hash 704fe5cc842414fd76aea7828e207a33 dfe3299518a1fad89936ffc33ad3a1bbb762f8f0 3a46dd290174ec0eb9f90371b71b9d04013fa75dbbd90a57c4b5dcadcbd554a2 Loading...

	js.chargebee.com/v2/148-3987f172361378a6883f.js	3.3 kB	2023-03-13	2023-03-13
Pretty URL js.chargebee.com/v2/148-3987f172361378a6883f.js IP 143.204.55.121 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:59:01 Last Seen2023-03-13 21:36:25 Times Seen1 Hash 6d813d6e32089bc8a6b827ee01e287ec 7235d94baeb20e621fbefbe82a09593415d875d6 ec37105f670d5a93df517d2b26f00b719a35baa91d4d9931f275559d07b75d9d Loading...

	gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.5585858326130044%22%7D	418 B	2023-03-07	2023-03-17
Pretty URL gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.5585858326130044%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:53:17 Last Seen2023-03-17 21:47:34 Times Seen1 Hash 72ad3a00c4af14e8c301e9eafbe741ea 63dc5435a78e8b86fb54fa8be021d2f54b1903b1 d05385301aef1a77fd22c1c56c08102835063c8221b753de58aff20a800c95eb Loading...

	linkvertise.com/540658/pet-simulator-x-partner/1	357 B	2023-03-07	2024-02-21
Pretty URL linkvertise.com/540658/pet-simulator-x-partner/1 IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5601 Hash 7cb6df65dfbbc68a028c262cea708528 797bfa66ea86998e5481c7e9431158030f2a798f f30ba21714ececd6939cfb1db7d6cd0cf9f0d885b58716e4a0f33f556feccf1b Loading...

	linkvertise.com/540658/pet-simulator-x-partner/1	7.2 kB	2023-03-07	2024-02-21
Pretty URL linkvertise.com/540658/pet-simulator-x-partner/1 IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5600 Hash f21cce266449773cd5d82853b5a4e84a 503db95d21644bbcff48373abd04dc1c31186853 fbd8cabfc3161779b15b164e3b5c6a50f7311851471046cb25bc82b957ae692b Loading...

	www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG	188 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:29:46 Last Seen2023-03-13 17:29:46 Times Seen1 Hash b289c18d32a33fc4db2183b0d400a649 b334cda72bc24fe09b5deeb7dccfa8a23c018537 0ce61f7827bed3d793285d00eb0a5828a1c0e9dd3d9fe3e11ee420dc4eaabc49 Loading...

	static.hotjar.com/c/hotjar-3321028.js?sv=7	8.6 kB	2023-03-13	2023-03-13
Pretty URL static.hotjar.com/c/hotjar-3321028.js?sv=7 IP 143.204.55.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:29:46 Last Seen2023-03-13 17:29:46 Times Seen1 Hash 8b37a9815aee2b84d59ff261aa6af015 00f793871f29dc45816fd0ef730f50bc33edae23 c90b4c37abb7770265a1af8d9033eb45d632426383a9a10ba4ea55ae49b91a8a Loading...

	vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html	2.3 kB	2023-03-13	2023-03-14
Pretty URL vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html IP 143.204.55.118 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:50:52 Last Seen2023-03-14 14:54:55 Times Seen1 Hash 9dfb5fc1a14b81a3b18b479f63bb8ab3 2720e78ed93ca88089984dacdaaeae0e95a321d1 f7be6f445f6d0ff732728c98ddf542577272191c10478c1edf9913612de40f3b Loading...

	linkvertise.com/polyfills.377513cbf9a45f49.js	35 kB	2023-03-07	2023-03-17
Pretty URL linkvertise.com/polyfills.377513cbf9a45f49.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-03-17 11:40:51 Times Seen1 Hash 348049f569f022db75011767ada032a0 3d47926da62df830988d03c7c2337ecba8e94b41 0209ce0d9df82b08c36e22a0b907b1fa1cbea9d2a055023e0a979fd226679f68 Loading...

	linkvertise.com/scripts.03e173ff37d2f1cf.js	223 kB	2023-03-09	2023-03-14
Pretty URL linkvertise.com/scripts.03e173ff37d2f1cf.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:20:20 Last Seen2023-03-14 15:10:38 Times Seen1 Hash 80ae57542a8477d83cf8896c94e945c4 efd99b00c29107d15cde48fc8cf1e56ac5234c54 e19cd5e5b81ca1ecc00697c9d5707ddd30714cb4ccb64d249b5910cad2227ca4 Loading...

	cdn.taboola.com/libtrc/linkvertise-link-to/loader.js	199 kB	2023-03-13	2023-03-13
Pretty URL cdn.taboola.com/libtrc/linkvertise-link-to/loader.js IP 151.101.129.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:51:52 Last Seen2023-03-13 17:29:46 Times Seen1 Hash 5bf1d13cb36eac418dea084e7c4ce58a 7a7f262ed96a759bc5f3b9be7a3a0413e0b39d11 466dc1742cd2cc156fe4c01de09f68b6bbc089ab05b46c3f864563d75cc25892 Loading...

	gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.5585858326130044%22%7D	14 kB	2023-03-07	2023-05-06
Pretty URL gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com#%7B%22uid%22:%7B%22value%22:null,%22origin%22:0%7D,%22lwid%22:%7B%22value%22:null,%22origin%22:0%7D,%22bundle%22:%7B%22value%22:null,%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22value%22:null,%22origin%22:0%7D,%22tld%22:%22linkvertise.com%22,%22topUrl%22:%22linkvertise.com%22,%22cw%22:true,%22lsw%22:true,%22origin%22:%22rtus%22,%22rtusCallerId%22:72,%22requestId%22:%220.5585858326130044%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:51:36 Last Seen2023-05-06 00:14:31 Times Seen2035 Hash 49e65b540d43d40997ce3844d41b2dd0 b7331c5edc086ee2c7731b1b36e937e7c44450a7 f185c1b78d87a007d9492a85c6ce64c06cc851ef9f13ca3caf8aaafe243b0ac2 Loading...

	www.google.com/recaptcha/api.js?render=explicit&onload=ng2recaptchaloaded	913 B	2023-03-13	2023-03-13
Pretty URL www.google.com/recaptcha/api.js?render=explicit&onload=ng2recaptchaloaded IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:37:41 Last Seen2023-03-13 20:48:46 Times Seen1 Hash 0262111f9b376598d557e8c76735dfc2 74d2b5ada5055c3f57d9879cddf25e1405a85a96 0919e8ea0a80d6773a69137078a2f144b686844690dea621a5678c21587afe45 Loading...

	www.google.com/recaptcha/api2/bframe?hl=en&v=gEr-ODersURoIfof1hiDm7R5&k=6LcEr_UUAAAAAHXt5wx-k9P_m8Z1JY-Ck9Mxrhxo	178 B	2023-03-07	2023-03-29
Pretty URL www.google.com/recaptcha/api2/bframe?hl=en&v=gEr-ODersURoIfof1hiDm7R5&k=6LcEr_UUAAAAAHXt5wx-k9P_m8Z1JY-Ck9Mxrhxo IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:35:33 Last Seen2023-03-29 20:54:12 Times Seen21 Hash e655e93e36ffddf33e63c881d346849e 6bccbd5ea080d649c4a4a1cdadbff2c6678da874 ac0460b22a3019f9d94190894405b816feb4c61498f3c20d43259bb3fda51e8f Loading...

	linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js	9.1 kB	2023-03-07	2023-12-14
Pretty URL linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js IP 172.64.207.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:44:21 Last Seen2023-12-14 06:55:00 Times Seen6681 Hash a260e7ad8d02f2ec2470e211d97871ec 6e7061c207a5356c4ae9d040af2aea5d82d07b67 4d5206ee58438a808f3f4a09910fbbe126a1019c04649343de9b7ad38a690f6e Loading...

	js.chargebee.com/v2/master-28f23e4f7b94abf18b9f.js	241 kB	2023-03-13	2023-03-13
Pretty URL js.chargebee.com/v2/master-28f23e4f7b94abf18b9f.js IP 143.204.55.121 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:59:01 Last Seen2023-03-13 21:36:25 Times Seen1 Hash 948dc641ad9d6d9c0fff32585c0f3beb 7bf71cc3c2dfd4d9406f33916431ec9664c3aac5 39ed66e627a5431312f5dacbdc440b31703a22b800bb4805e9d1383d80765fbe Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=invisible&cb=d4b4twqaduv3	69 B	2023-03-07	2024-04-24
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=invisible&cb=d4b4twqaduv3 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-24 01:30:37 Times Seen99287 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=invisible&cb=d4b4twqaduv3	35 kB	2023-03-13	2023-03-13
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=invisible&cb=d4b4twqaduv3 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:29:46 Last Seen2023-03-13 17:29:46 Times Seen1 Hash 3b43277a58f35737f91104f0bdc82a53 d9244b7964a1e922b4819ba5142e25da6625ee84 33f5841a7ac6f632448689cc64493de8c21a948799fbc36cd4f1cad087aa092f Loading...

	linkvertise.com/540658/pet-simulator-x-partner/1	343 B	2023-03-07	2024-02-21
Pretty URL linkvertise.com/540658/pet-simulator-x-partner/1 IP 172.64.206.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2024-02-21 23:20:37 Times Seen5593 Hash 5815651c777ca9749f394ca8f86f70a7 e5d105ec2b6bc5b6be141e82b7678954c1cb2fb0 8a57f0ee2b5df3cb5a3ff340cfe4e55611629b7c053a132ee686c5fd3736033f Loading...

	js.chargebee.com/v2/152-dba6a3a9f49f90e94d8d.js	2.8 kB	2023-03-13	2023-03-13
Pretty URL js.chargebee.com/v2/152-dba6a3a9f49f90e94d8d.js IP 143.204.55.121 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:59:01 Last Seen2023-03-13 21:36:25 Times Seen1 Hash 4238223b72262e874558e29d28e551b3 6af143a8d0990a2d276c5e3b55767c033575e9f6 621cc9ed96d918b7db38a11171b84fa1aac736f92eacbe4d60cf1f0d78557e4d Loading...

	www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js	412 kB	2023-03-13	2023-03-14
Pretty URL www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:35:27 Last Seen2023-03-14 08:38:41 Times Seen1 Hash d2aff4cd4e40d9bfa2c1f818bcad7ce2 4cc960f771819bccd4783520506e3909e8ec0fcd d808130157ed1fca0469f5f40210d7d1b2dc2c41add64e658bb3222aea4d9eba Loading...

	js.chargebee.com/v2/chargebee.js	258 kB	2023-03-13	2023-03-13
Pretty URL js.chargebee.com/v2/chargebee.js IP 143.204.55.121 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:59:01 Last Seen2023-03-13 21:36:25 Times Seen1 Hash c41e1c99e410f972cfeb1f8767aa3979 39462ad765d0f43cc7268cbe3f72a093fd4f30e5 9abfdf04693e700d0bad385f56070ae5aa682365e1017500b34b08005a45307c Loading...

	linkvertise.com/assets/vendor/thinksuggest	237 B	2023-03-07	2023-04-05
Pretty URL linkvertise.com/assets/vendor/thinksuggest IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-04-05 01:40:49 Times Seen138 Hash c006251d7a981892bfb1c09758a35776 7b3062cd0324e31386b8cea52c2552277a8531cf 3973b0e8cfafd23c7285066509370038cd98c3820bd6bddf818328212d8eb562 Loading...

	linkvertise.com/assets/vendor/thinksuggest	1.7 kB	2023-03-07	2023-04-05
Pretty URL linkvertise.com/assets/vendor/thinksuggest IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:00 Last Seen2023-04-05 01:40:49 Times Seen138 Hash 8551296584a94f00128790678e219118 096f7341f14c5f474f6b8d5ed84694244843ab08 8a5a3c8d45b113fbe4e9e07bad27b404ed620c8a3735ee9ba9de9247b309303d Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LcEr_UUAAAAAHXt5wx-k9P_m8Z1JY-Ck9Mxrhxo&co=aHR0cHM6Ly9saW5rdmVydGlzZS5jb206NDQz&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=normal&cb=t9ht9ylygyic	36 kB	2023-03-13	2023-03-13
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LcEr_UUAAAAAHXt5wx-k9P_m8Z1JY-Ck9Mxrhxo&co=aHR0cHM6Ly9saW5rdmVydGlzZS5jb206NDQz&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=normal&cb=t9ht9ylygyic IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:29:46 Last Seen2023-03-13 17:29:46 Times Seen1 Hash 684ae7f951fe926c4f2ac85f71f1ffdb c8d86f99578f6ade331c4f73bdfa1adf06b18c93 683698c077ab96b1bdd0cee7e0c1597db434408b745fce77a5b431fa641beb22 Loading...

	js.chargebee.com/v2/136-04294f7bee4da31abb6d.js	12 kB	2023-03-13	2023-03-13
Pretty URL js.chargebee.com/v2/136-04294f7bee4da31abb6d.js IP 143.204.55.121 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:59:00 Last Seen2023-03-13 21:36:25 Times Seen1 Hash 9aef1ba966da7d13bb8f9410eea89309 5443e13b0eb71e7ceb7d881a97119ff6f67b891a fb3454c6e1840224e205a587219e908b7e8cda49b3dff6378bcc4568660b3610 Loading...

	paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F540658%2Fpet-simulator-x-partner%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675588729717&hl=1&op=0&ag=1317291471&rand=242920952902122995269212172615259262221522226172792972096909110028277577016&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=NJRVKrDClZ&pto=1640&ver=50&gac=-&mei=&ap=&duid=1.1675588729.CrBdyowgqGhgZJIE&suid=1.1675588729.305Ir67gavfEAazu&tuid=1.1675588729.gxq0w0qC5byYeutz&fbc=-&gtm=W10%3D&it=67%2C1370%2C158&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0	2.7 kB	2023-03-13	2023-03-13
Pretty URL paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F540658%2Fpet-simulator-x-partner%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675588729717&hl=1&op=0&ag=1317291471&rand=242920952902122995269212172615259262221522226172792972096909110028277577016&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=NJRVKrDClZ&pto=1640&ver=50&gac=-&mei=&ap=&duid=1.1675588729.CrBdyowgqGhgZJIE&suid=1.1675588729.305Ir67gavfEAazu&tuid=1.1675588729.gxq0w0qC5byYeutz&fbc=-&gtm=W10%3D&it=67%2C1370%2C158&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:29:46 Last Seen2023-03-13 17:29:46 Times Seen1 Hash 86cf9877f983b7995bb39a69001e4e43 a6659d0444fca6250f5a2d47d34965239e10bf19 8227ef338d9776c233897019f6ae2bf16aa133d60320225f4240403213368781 Loading...

	paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F540658%2Fpet-simulator-x-partner%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675588730117&hl=1&op=0&ag=1317291471&rand=132265660258106218610578757025268250896960190962251522126086611926587788198&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=IE6ZbUd1im&pto=2040&ver=50&gac=1828782735.1675588730&mei=&ap=&duid=1.1675588729.CrBdyowgqGhgZJIE&suid=1.1675588729.305Ir67gavfEAazu&tuid=1.1675588729.gxq0w0qC5byYeutz&fbc=-&gtm=W10%3D&it=74%2C1370%2C158&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0	2.8 kB	2023-03-13	2023-03-13
Pretty URL paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F540658%2Fpet-simulator-x-partner%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675588730117&hl=1&op=0&ag=1317291471&rand=132265660258106218610578757025268250896960190962251522126086611926587788198&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=IE6ZbUd1im&pto=2040&ver=50&gac=1828782735.1675588730&mei=&ap=&duid=1.1675588729.CrBdyowgqGhgZJIE&suid=1.1675588729.305Ir67gavfEAazu&tuid=1.1675588729.gxq0w0qC5byYeutz&fbc=-&gtm=W10%3D&it=74%2C1370%2C158&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 IP 52.45.196.192 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:29:46 Last Seen2023-03-13 17:29:46 Times Seen1 Hash 33f111de14911bf5c6eaac39a48c827a b2cf3241480f9dc1eaf9c9e5ac87d0e6d1b4edd0 a2c007a0b69044bf8a448107bcf989dea8f1d346e60d639b6e5465cd6d1c8c98 Loading...

	www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-	884 B	2023-03-13	2023-03-13
Pretty URL www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:51:52 Last Seen2023-03-13 20:48:46 Times Seen1 Hash de0eba5708e9ae4fa5f12fc9c654a45b 74a282bce0f8d759cde8be29b2a3408f7b32bbcc b6bb21b775cbd3387769eb79e2ff4070d55f6d30792345807ba98f43884fe290 Loading...

	contextual.media.net/dmedianet.js?cid=8CUG57U1V	142 kB	2023-03-13	2023-03-13
Pretty URL contextual.media.net/dmedianet.js?cid=8CUG57U1V IP 23.38.200.22 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:29:46 Last Seen2023-03-13 17:29:46 Times Seen1 Hash fcbf7cc1ac7f902e1006a74f88f0e0ba c719213ec1ac61cbc3ebee641022a769a003d071 639dff9a46d9381290fdb86aa61e04133514604fa3df7859e00b6b9b7ddd5147 Loading...

	cdn.taboola.com/libtrc/impl.20230202-7-RELEASE.js	754 kB	2023-03-13	2023-03-13
Pretty URL cdn.taboola.com/libtrc/impl.20230202-7-RELEASE.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:58:45 Last Seen2023-03-13 17:29:46 Times Seen1 Hash d13f9a1a452a849e65f87ebbc2aedeaf ae68a8a679c1a830f78430af3fab24835a730241 eb23e8b12102ebe2df7695f0308baca489591250d9166142bacdc0277e6f2c07 Loading...

	unknown	0 B	2023-03-07	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 02:14:41 Times Seen37029436 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

		Size	First Seen	Last Seen
	#1 Eval - cdb8f5789b376b67f7efeda96ebbd0f8	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 21:10:41 Last Seen2023-03-13 21:02:57 Times Seen1 Hash cdb8f5789b376b67f7efeda96ebbd0f8 906bf65532f9e9f29bb1df8bfb222515be0cb5fc d896ad7d50d378b59b9d1be3c4950cbc057ad6cc83f9cdef522454929cc9f301 Loading...

	#2 Eval - 84001355c732bc8fa4060c23f4b854fa	16 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 17:29:46 Last Seen2023-03-13 17:29:46 Times Seen1 Hash 84001355c732bc8fa4060c23f4b854fa 62c426b48dfab68078bd3bea663459fff06d3477 5510edb939e1780cffbe398d0661178a01c832228806b73bed16b602cc5388cc Loading...

	#3 Eval - 7b2eafe88ff7e98cc36c5c04b4ca0b2b	22 B	2023-03-13	2023-03-14
Pretty Observations First Seen2023-03-13 15:06:48 Last Seen2023-03-14 07:43:08 Times Seen1 Hash 7b2eafe88ff7e98cc36c5c04b4ca0b2b e5eb03ff52599fd6e9dfc5df7a84a4200939aaca 9046ff9b2d9db3cff99ee5340d7ef7e5b46e26790abfe59db85edb95245d1c6b Loading...

	#4 Eval - 37cd3bd2adbd29e7fafaf20f77f4bf43	18 B	2023-03-07	2024-04-15
Pretty Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-15 12:57:44 Times Seen656 Hash 37cd3bd2adbd29e7fafaf20f77f4bf43 d4a665f4bf3dc9a6f3ea3a55c50c5a37c6bd05f5 0f3342bc14063d9ed7a669eb067b50ea17b2cb7dcb51968939b72fa9ac862d91 Loading...

	#5 Eval - b11a9b3e95762e3a12d171d1ba23ed15	17 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 17:29:46 Last Seen2023-03-13 17:29:46 Times Seen1 Hash b11a9b3e95762e3a12d171d1ba23ed15 1a77bfed897a7a68a15cedd8c2c7af1f1e1137ca dc90d5226866b6da3ebfdd7aff002c26e74b7b44d06931b694dc1f4f6de0e5e1 Loading...

	#6 Eval - eab8313bda5bcf457e3960dd870ec986	64 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 21:10:41 Last Seen2023-03-13 21:02:57 Times Seen1 Hash eab8313bda5bcf457e3960dd870ec986 2040c44ca623657a7842ed109aa1ff376784968c 6ddb568813476781555dc007dbf68364ac4237de77158b4a2b8906396d564da3 Loading...

	#7 Eval - 54203d80fe39daeb129ac49dfa505647	62 B	2023-03-13	2023-03-14
Pretty Observations First Seen2023-03-13 15:06:48 Last Seen2023-03-14 07:43:08 Times Seen1 Hash 54203d80fe39daeb129ac49dfa505647 3afb4e397f319778b09eb79deb8fe5532db04f1e 0b0cbc8a00f6c0cd41604b5ab47421a48d6e68716c14d02fb593444c327540b0 Loading...

	#8 Eval - b326b5062b2f0e69046810717534cb09	4 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-24 01:41:44 Times Seen23285 Hash b326b5062b2f0e69046810717534cb09 5ffe533b830f08a0326348a9160afafc8ada44db b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b Loading...

	#9 Eval - f4bf22269e41be9e3a92808f5d0f2201	16 kB	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 21:10:41 Last Seen2023-03-13 21:02:57 Times Seen1 Hash f4bf22269e41be9e3a92808f5d0f2201 597b026bf76f9a647e1d16d8532d9ddd5f0de46b 276096740107abb4b5b058985713ac9e81f2fcb100010356b47be556e300d790 Loading...

	#10 Eval - b5c61f793566b8c202d085b2b08770ba	16 kB	2023-03-13	2023-03-14
Pretty Observations First Seen2023-03-13 15:06:48 Last Seen2023-03-14 07:43:08 Times Seen1 Hash b5c61f793566b8c202d085b2b08770ba 3ebd7972ef7c752f5e5ee50aad7f3e8f7cd6f56e a6226fffc806e7350700ded0d0fd6197209384c7e441e441c2d1aadd5213e295 Loading...

	#11 Eval - af72b91f44a63027ce6a3360baee8a43	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 21:10:41 Last Seen2023-03-13 21:02:57 Times Seen1 Hash af72b91f44a63027ce6a3360baee8a43 030a8bdf4fc642af17e60f7942b4e7db0b395ef9 3767d5321b4ae282cd6bc77966b15645f99a332b0c28e8bdd6ffd6bfa9cb2104 Loading...

	#12 Eval - eed16ff4b73849b2ea4fde6a4a10a729	22 B	2023-03-13	2023-03-14
Pretty Observations First Seen2023-03-13 15:06:48 Last Seen2023-03-14 07:43:08 Times Seen1 Hash eed16ff4b73849b2ea4fde6a4a10a729 9ba91162a36ca15781b19bfe8ae9a5e2df98d55b 971ac3be55ba44d48d62046dbf8373a0f48d762150a3d9e69744f95449a1911b Loading...

	#13 Eval - 889ca9e2c79a3ce7aaadbcdfd0ce4ef5	62 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:20:41 Last Seen2024-04-23 20:49:03 Times Seen14148 Hash 889ca9e2c79a3ce7aaadbcdfd0ce4ef5 b05c2c051bae71f80cb8c289e5a42d4f96d323fa 6477acf082d26199b6ce8346b93149b1b999233d9fe76b0340ebf43317cf98f8 Loading...

	#14 Eval - e5d8c139688b25ef77b263d88ea99150	7 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:20:41 Last Seen2024-04-23 20:49:03 Times Seen14183 Hash e5d8c139688b25ef77b263d88ea99150 7abc9c61c4966543f66d150c0155bfac575f86a7 53e5f34ac520035c7f124076d1e68c70a85c83cf68a339fa713b872b54126148 Loading...

	#15 Eval - 6559111e4eae643ce013ce0821e91a02	25 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:20:41 Last Seen2024-04-23 20:49:03 Times Seen13653 Hash 6559111e4eae643ce013ce0821e91a02 fa1086c9aa2cb2d14f5c13bceefe21511bcdae5a d72255f7e5ea4dfdf9821df800356367d0bc7df07ecd103bb660018cb1e4f400 Loading...

HTTP Transactions (88)

	URL	IP	Response	Size
	linkvertise.com/540658/pet-simulator-x-partner/1	172.64.206.34	301 Moved Permanently	0 B
URL HTTP/1.1 linkvertise.com/540658/pet-simulator-x-partner/1 IP 172.64.206.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /540658/pet-simulator-x-partner/1 HTTP/1.1 Host: linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Sun, 05 Feb 2023 09:18:08 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Sun, 05 Feb 2023 10:18:08 GMT Location: https://linkvertise.com/540658/pet-simulator-x-partner/1 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FKoDbX%2FTjyhGEYbaMb5%2F4RyAIJ9%2Bcn083oY5ayG6v6mikc%2BSfXPHNFkX1NaU1wIl5yNfqVmelPkNLUJUs8MVOgrpzL9rO%2BvQlwrmqmB%2Bbti%2F1m%2FRr1Ib8XcXW%2BiPqeSHspg%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding X-Frame-Options: sameorigin Server: cloudflare CF-RAY: 794a8e9768d871d5-LHR alt-svc: h2=":443"; ma=60

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1cdc095521e9ee2606059be447d1fdd5 02b5d0a5b5823e2338daf7e144700babe2a213af 8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11949 Expires: Sun, 05 Feb 2023 12:37:17 GMT Date: Sun, 05 Feb 2023 09:18:08 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c21ba65e44ac95470c314e068e49a9eb 17a13b13738993d889d4afa3d848dc63bf6eba64 9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66" Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20470 Expires: Sun, 05 Feb 2023 14:59:18 GMT Date: Sun, 05 Feb 2023 09:18:08 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sun, 05 Feb 2023 08:33:54 GMT content-type: application/json age: 2654 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash fb7b6b46e708ad73eaaa3c21e74569ae 950663c025acad81556af5aa3022ecc9d55097fe 763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64" Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8689 Expires: Sun, 05 Feb 2023 11:42:57 GMT Date: Sun, 05 Feb 2023 09:18:08 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: fpN8hy5xsJu7hkN5HoonVpQW+BTV7DFZRUhglllchdAJYX1ud9v67cVuMcQb/yTzwXCDSglXgF8= x-amz-request-id: NS7N32E35H5SWTVQ content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sun, 05 Feb 2023 08:24:24 GMT age: 3224 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Sun, 05 Feb 2023 09:18:08 GMT content-type: application/json content-length: 12 vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-credentials: true access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 30c0da3312f1d17617065bd0f04dd5d0 d752fc25b0183cadb69f11ebd1cf8e60d8f6c795 3fb18a4e4226e27e07c8075ebd39fc47579d137ef3240dfea492b9753f71fb7b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "3FB18A4E4226E27E07C8075EBD39FC47579D137EF3240DFEA492B9753F71FB7B" Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17038 Expires: Sun, 05 Feb 2023 14:02:06 GMT Date: Sun, 05 Feb 2023 09:18:08 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 30c0da3312f1d17617065bd0f04dd5d0 d752fc25b0183cadb69f11ebd1cf8e60d8f6c795 3fb18a4e4226e27e07c8075ebd39fc47579d137ef3240dfea492b9753f71fb7b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "3FB18A4E4226E27E07C8075EBD39FC47579D137EF3240DFEA492B9753F71FB7B" Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17037 Expires: Sun, 05 Feb 2023 14:02:06 GMT Date: Sun, 05 Feb 2023 09:18:09 GMT Connection: keep-alive`

	p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css	23.36.76.96	200 OK	5 B
URL HTTP/2 p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css IP 23.36.76.96:0 ASN #20940 Akamai International B.V. File type ASCII text Size 5 B (5 bytes) Hash 83d24d4b43cc7eef2b61e66c95f3d158 f0cafc285ee23bb6c28c5166f305493c4331c84d 1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb HTTP Headers `GET /p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css HTTP/1.1 Host: p.typekit.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx content-type: text/css content-length: 5 last-modified: Thu, 28 Jul 2022 22:24:50 GMT etag: "62e30cb2-5" cache-control: public, max-age=604800 access-control-allow-origin: * cross-origin-resource-policy: cross-origin accept-ranges: bytes date: Sun, 05 Feb 2023 09:18:09 GMT X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 6630148a03da2d4ccf19993f0fefd44c 2c747b9bc89b4240ad4340b31b993e3d947d1e5a 68c252a328d6f8dbea1935f3a4a950fb02969e70aabfff9853add357f76ecd4f HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6131 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:09 GMT Last-Modified: Sun, 05 Feb 2023 07:35:58 GMT Server: ECS (ska/F704) X-Cache: HIT Content-Length: 279`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 28c3f02ba8cac75c2f1945e7be499cae 82390270ea7ee981db3fae587295029f335726da ce1f772f6bd3cdd88e6f161731958d8bce7e3c019c9e618d0ed37560b79b0a4c HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 677 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:09 GMT Last-Modified: Sun, 05 Feb 2023 09:06:52 GMT Server: ECS (ska/F705) X-Cache: HIT Content-Length: 280`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 28c3f02ba8cac75c2f1945e7be499cae 82390270ea7ee981db3fae587295029f335726da ce1f772f6bd3cdd88e6f161731958d8bce7e3c019c9e618d0ed37560b79b0a4c HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4264 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:09 GMT Last-Modified: Sun, 05 Feb 2023 08:07:05 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 280`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 6630148a03da2d4ccf19993f0fefd44c 2c747b9bc89b4240ad4340b31b993e3d947d1e5a 68c252a328d6f8dbea1935f3a4a950fb02969e70aabfff9853add357f76ecd4f HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6131 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:09 GMT Last-Modified: Sun, 05 Feb 2023 07:35:58 GMT Server: ECS (ska/F704) X-Cache: HIT Content-Length: 279`

	cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css	104.17.25.14	200 OK	10 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type ASCII text Size 10 kB (10228 bytes) Hash 9f8ae150e614ee49febe1ac6088202e6 5f5d1a1a96289a0fa1d052d8dd59d5a236e5227e c931e5cbd1bbd7e7e6802ce040c35ce7c1d7425988b767c6a29bedbfa2eb496f HTTP Headers `GET /ajax/libs/font-awesome/5.10.2/css/all.css HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:09 GMT content-type: text/css; charset=utf-8 content-length: 10228 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03e60-111e5" last-modified: Mon, 04 May 2020 16:10:08 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 1491829 expires: Fri, 26 Jan 2024 09:18:09 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ulizWr204HO8O0C2UtwbIfuXqesmBnDuL0t4O95wqDjVEBfN%2FIerFLgDEvLoAsqyptqk0iK6GB9YbaalFMtoWMIL6ED3VNFdgOOKk4JgE8aBZIJ9z6s0d7TV5JYTy0zDCS%2Fkijvb"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 794a8e9b1b211c12-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	104.17.25.14	200 OK	28 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65451) Size 28 kB (27748 bytes) Hash 638a4990025383a0f83ebf29bdb84a68 153e8818dc42f598e47fde8cf398f1447649a4d0 878e34b89800bb271d3588e526eb3598eb3822e263f3bdaf53645847d39d0ad6 HTTP Headers `GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:09 GMT content-type: application/javascript; charset=utf-8 content-length: 27748 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03ec4-15851" last-modified: Mon, 04 May 2020 16:11:48 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 1321273 expires: Fri, 26 Jan 2024 09:18:09 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ht5tDpnPjQXWnADiPI9fnqNlNHgnTHvGTNcePlDGaHobg6lDOEs09plJYiOnmfOLxBCHayXj5sdiiWlOEUE7FL6rWkwPmDEoUQ54adeBiBI%2BNC0S2SolUqb4MV9I8YK6g8wIPLkX"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 794a8e9b3b3a1c12-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 28c3f02ba8cac75c2f1945e7be499cae 82390270ea7ee981db3fae587295029f335726da ce1f772f6bd3cdd88e6f161731958d8bce7e3c019c9e618d0ed37560b79b0a4c HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4264 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:09 GMT Last-Modified: Sun, 05 Feb 2023 08:07:05 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 280`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sun, 05 Feb 2023 09:07:20 GMT age: 649 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 153d0de36959c722c00df71ba86daca2 305f56a3134879ebf0828e169e903e560540c070 0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:09 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG	142.250.74.168	200 OK	63 kB
URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG IP 142.250.74.168:0 ASN #15169 GOOGLE File type Unicode text, UTF-8 text, with very long lines (12213) Size 63 kB (63186 bytes) Hash b4bef31cca110a6bc901b71fee3016f3 93d3f0d62722c1e67e4d7bccaa454e1c7c7289dc 7d8ed658638b830de5c45b21729c6861a8de2df72133fce9c81e6293fbaf3a43 HTTP Headers `GET /gtm.js?id=GTM-TZ69NZG HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sun, 05 Feb 2023 09:18:09 GMT expires: Sun, 05 Feb 2023 09:18:09 GMT cache-control: private, max-age=900 last-modified: Sun, 05 Feb 2023 09:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 63186 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 5452c58c07ce8d3cade93b323b271c35 581b1e438daeb32a12feaf50f2aab17dcf3e3171 b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:09 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js	172.64.207.34	200 OK	14 kB
URL HTTP/2 linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js IP 172.64.207.34:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text Size 14 kB (13959 bytes) Hash ef61b0279b555159ee32279b88bdc1ef 42e22bb6142b47b08be5456e827ddb63be0dc99d 5f3ed4e19d3482f5a76c7a5f4ceb9b1d4588574d0d13a2932b9b3c4b6e9fe308 HTTP Headers `GET /assets/cheq/public/sc/disk/CHEQguard.sc.min.js HTTP/1.1 Host: linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/540658/pet-simulator-x-partner/1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:09 GMT content-type: application/javascript access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"e95fe14af1d50eab9d4bf9a757b1f1bf" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CSSQUN5LiUDwMFqDvNMx2qI6RP62A35foCZ%2Fp5RWD6%2BwQ9BkQZWIy5WzmtZBFgnP6WjkNrZKBGF0z8Q5E2hifbR4%2F4vmzIeLTYuRzitui%2B1hz9qOzdnfH5%2BQoIj%2BBRDe%2Bg4%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-cache-status: DYNAMIC x-frame-options: sameorigin server: cloudflare cf-ray: 794a8e9aaba676ed-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash dedf9c519ac38c4bece9c5bc895787d7 4911175c3f8a435978c5301c33c7a99a5e00a1d5 bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698" Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17512 Expires: Sun, 05 Feb 2023 14:10:01 GMT Date: Sun, 05 Feb 2023 09:18:09 GMT Connection: keep-alive`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 153d0de36959c722c00df71ba86daca2 305f56a3134879ebf0828e169e903e560540c070 0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:09 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 5452c58c07ce8d3cade93b323b271c35 581b1e438daeb32a12feaf50f2aab17dcf3e3171 b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:09 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	push.services.mozilla.com/	52.13.173.34	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.13.173.34:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: HKG9mMP/EG4cw6eFVD3iKg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: 8aMkYq4ZMJ+PTFbZ1cGnV3cfuU8=`

	js.chargebee.com/v2/animation.css	143.204.55.121	200 OK	758 B
URL HTTP/2 js.chargebee.com/v2/animation.css IP 143.204.55.121:0 ASN #16509 AMAZON-02 File type ASCII text Size 758 B (758 bytes) Hash f8a79fc47c28375628855b4c78ff6f85 b2fb79a766c233408a6e0dd38a169dee2e88d4b0 e3b7f54cf81a0ff1f16662abce7b1970ed6a8a8191da96cf05dcf6644d203df3 HTTP Headers `GET /v2/animation.css HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: text/css content-length: 758 last-modified: Thu, 02 Feb 2023 08:38:43 GMT x-amz-version-id: g1mbCLE5jWEtoxgqbjZDxUQVubRcL5hh accept-ranges: bytes server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload date: Sun, 05 Feb 2023 09:15:17 GMT cache-control: max-age=300,public etag: "f8a79fc47c28375628855b4c78ff6f85" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: S0yMYn7H_6TXKgZmxaClzkZJMxlyaaVY3exkogzpJmHyIPGetd-dzg== age: 189 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 917d569dd391e472dbe004dd6eaecaa2 d993b6b9f8200c3de427cc7531720c697158285e dc4d4d5cab37264db342a28c5c5116124cc59524200283f8068d479f605c5a64 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3085 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:09 GMT Last-Modified: Sun, 05 Feb 2023 08:26:44 GMT Server: ECS (ska/F705) X-Cache: HIT Content-Length: 279`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 917d569dd391e472dbe004dd6eaecaa2 d993b6b9f8200c3de427cc7531720c697158285e dc4d4d5cab37264db342a28c5c5116124cc59524200283f8068d479f605c5a64 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6347 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:09 GMT Last-Modified: Sun, 05 Feb 2023 07:32:22 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 279`

	js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html	143.204.55.121	200 OK	203 B
URL HTTP/2 js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html IP 143.204.55.121:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 203 B (203 bytes) Hash f8b310373855a5c3f476ebe44fbb7c50 bb4305b1d788c605028cad28f1210d941486eddc e2335ee83781668ff411e81f2e5200f3a5759aa9f92d93b8e0c2738960444ed0 HTTP Headers GET /v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK content-type: text/html content-length: 203 last-modified: Thu, 02 Feb 2023 08:38:43 GMT x-amz-version-id: bXOn1NOPXbkLnpJrrJ4PlmrQN1lHLpgs accept-ranges: bytes server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload date: Sun, 05 Feb 2023 09:17:29 GMT cache-control: max-age=300,public etag: "f8b310373855a5c3f476ebe44fbb7c50" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: s8MernC7waEIuZSVp44vin9EdU-u1zdyRV6AMX7kfNtIfrXqX9ZnfA== age: 47 X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	143.204.42.165	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.165:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash ad865243c82c5461b504f1e61e2dc2d9 ce349b77833d08a312f0bf4367b7af85e6ddd128 f854ff873997e8b46f704d7ea6919f52531c6d7af099b4e15f8e278dcbbc4d8e HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Sun, 05 Feb 2023 09:18:09 GMT Etag: "63de4bd4-1d7" Last-Modified: Sun, 05 Feb 2023 08:28:48 GMT Server: ECS (dcb/7EA5) X-Cache: Miss from cloudfront Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: KScrUgF_QeekZDF3EpoMlDQrDB_HWTnKo7y2QPHWQqQBLWWGFGJONA== Age: 2962`

	sand.ostrichesica.com/clicktrue_invocation.js?id=14473	54.230.111.79	200 OK	32 kB
URL HTTP/2 sand.ostrichesica.com/clicktrue_invocation.js?id=14473 IP 54.230.111.79:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators Size 32 kB (31901 bytes) Hash 37aeaba156d969db4e16b1992889018b 85983ac2fb401a905a4b4ca29fc42a53d30aaa43 3257d1e724786b2f2b7d5e9d0e6687b93799156816198cf678fac438eb7e76f3 HTTP Headers `GET /clicktrue_invocation.js?id=14473 HTTP/1.1 Host: sand.ostrichesica.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/javascript; charset=utf-8 content-length: 31901 content-encoding: gzip server: Caddy date: Sun, 05 Feb 2023 01:37:50 GMT cache-control: max-age=43200 expires: Sun, 05 Feb 2023 13:37:50 GMT etag: "15743-uehjuGYPwWxP/DnjsF6UJEzeCMc" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: aoPRZymXSETv7hD415Yvx5tgW1JNyU1OO8XQVZgzqvig8y_HeLc5bg== age: 27620 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2	142.250.74.35	200 OK	128 kB
URL HTTP/2 fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 128360, version 1.0\012- data Size 128 kB (128360 bytes) Hash 393b5d8b3fd798486652801f3ee8c6ea 979383e09be691921a211f5fc4ef97fc4406e4dd 83be7b2f504af2c948c5106fa907dc4224380a7b75a993a7bff52cd71ec8c7d3 HTTP Headers `GET /s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 128360 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sun, 05 Feb 2023 00:56:02 GMT expires: Mon, 05 Feb 2024 00:56:02 GMT cache-control: public, max-age=31536000 age: 30127 last-modified: Thu, 25 Aug 2022 00:09:15 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/account	172.64.207.34	204 No Content	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/account IP 172.64.207.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /api/v1/account HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` HTTP/2 204 No Content date: Sun, 05 Feb 2023 09:18:10 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-headers: content-type access-control-max-age: 0 set-cookie: laravel_session=95MN9x6WMMHvrUTjzTjh4XPSJwjkpdLgcB0hDeyd; expires=Mon, 05 Feb 2024 09:18:09 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JVjdBPofYhdisPf1l%2BpQClti%2FqoJGxXzMCNTIFTY4eZAyA2AVlcckvicwtuoqgZJuFiouAsK0FECAE6P8jTTxjGn11P4sAKMBQ5f0cMntICuYFF%2BmQqzYRqZdbemcIaP9H5KyUMqOi9Hgj%2F4"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 794a8ea039ef719c-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	publisher.linkvertise.com/api/v1/redirect/link/static/540658/pet-simulator-x-partner?origin=	172.64.207.34	204 No Content	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/540658/pet-simulator-x-partner?origin= IP 172.64.207.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/v1/redirect/link/static/540658/pet-simulator-x-partner?origin= HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Sun, 05 Feb 2023 09:18:10 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-headers: content-type access-control-max-age: 0 set-cookie: laravel_session=u4bTfW2niiQYYww26Y7w0awEk3N0vC0QF8WYaDT0; expires=Mon, 05 Feb 2024 09:18:10 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yCsZwFQjv7dBf7qROoodbssUozhZIlZl9ARfUeQBs1ermpHSuBh8LSIbVhWvvvu%2BvfHknvGvCU5In200DYkTUPA0We1nrhG%2F3c8P82lzkV8oohTNC1YgpRUFmMqmafMQVnI8yR5BE4pCS%2BsZ"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 794a8ea07a2c719c-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 917d569dd391e472dbe004dd6eaecaa2 d993b6b9f8200c3de427cc7531720c697158285e dc4d4d5cab37264db342a28c5c5116124cc59524200283f8068d479f605c5a64 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5019 Cache-Control: max-age=101526 Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:10 GMT Etag: "63de4a4d-117" Expires: Mon, 06 Feb 2023 13:30:16 GMT Last-Modified: Sat, 04 Feb 2023 12:06:37 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 279`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash ac11c984c756d6a4beafdabd699acd36 09b7ccac8a5586d081d9ca5897b1091d953a81f0 f1609550745e25a9e3eabcdeeb31965b4cb077e3135dddc17ed3a9122b93f9a8 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "F1609550745E25A9E3EABCDEEB31965B4CB077E3135DDDC17ED3A9122B93F9A8" Last-Modified: Thu, 02 Feb 2023 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8008 Expires: Sun, 05 Feb 2023 11:31:38 GMT Date: Sun, 05 Feb 2023 09:18:10 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 295e8ea7d066180364dbbeb0e9731a63 576db6593ec165818f58adf32eacf65f8c8c8213 b86c7ee180ff9007bcad690cb52b4c3e08c670bb4ed6babbfdb512f832083246 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B86C7EE180FF9007BCAD690CB52B4C3E08C670BB4ED6BABBFDB512F832083246" Last-Modified: Fri, 03 Feb 2023 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7998 Expires: Sun, 05 Feb 2023 11:31:28 GMT Date: Sun, 05 Feb 2023 09:18:10 GMT Connection: keep-alive`

	publisher.linkvertise.com/api/v1/account	172.64.207.34	200 OK	80 kB
URL HTTP/2 publisher.linkvertise.com/api/v1/account IP 172.64.207.34:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 80 kB (79680 bytes) Hash 1f4e4bea7279c63b559099e4a76c8c14 e1512781d331d6d684e7190661c9ec12dcc0bcef e056886a7bc9c34d6d721147dca84c6be20400834ee6c7aa17b6b52fec2f38bf HTTP Headers `GET /api/v1/account HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Content-Type: application/json Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:10 GMT content-type: application/json cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin access-control-allow-credentials: true set-cookie: laravel_session=4dw6DdSSyTgr2hnuaW4FsXqW8pMWzneCWTt0sYEN; expires=Mon, 05 Feb 2024 09:18:10 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wtz24Prvt8K2iQbOHLXDVjyOXlSqCSAu76DisG%2FOk5Ao%2FNU9JnbfUuhOAD8qbet6pFGYddpN7QBefFjXkFzTPWkYK3%2FmH2KPHIhf1BXRcrVg9OgS5OqQOQC9H%2BWuQGSOGOzGHdY1Xx3FBDwv"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 794a8ea0ba9a719c-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	js.chargebee.com/v2/chargebee.js	143.204.55.121	200 OK	198 kB
URL HTTP/2 js.chargebee.com/v2/chargebee.js IP 143.204.55.121:0 ASN #16509 AMAZON-02 File type data Size 198 kB (198184 bytes) Hash db191ced38ed789e56b0e505e689edc2 2f14b51002063181ad03b05b5ee4aeb20825b7b3 9456aed3df4dcffdc17badb97f8d2d24e44a988a45e6cb941aefa1c1be4320ce HTTP Headers `GET /v2/chargebee.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/x-javascript last-modified: Thu, 02 Feb 2023 08:38:42 GMT x-amz-version-id: fSCvEKsLssq6.dB4pAUTguMPj.oadxag server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Sun, 05 Feb 2023 09:16:51 GMT cache-control: max-age=300,public etag: W/"c41e1c99e410f972cfeb1f8767aa3979" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: wuTuu3hymvRBloxwAlisTLXY-3vS7sD7QtydSugRF0ibFIxvNU-BYQ== age: 78 X-Firefox-Spdy: h2

	js.chargebee.com/v2/152-dba6a3a9f49f90e94d8d.js	143.204.55.121	200 OK	22 kB
URL HTTP/2 js.chargebee.com/v2/152-dba6a3a9f49f90e94d8d.js IP 143.204.55.121:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (52744) Size 22 kB (22139 bytes) Hash 482749e1b9d7dda7a3cc1b120172cea7 22c18d4ba9e36b94b65d327890346107bc7d89b5 49626661a1b2be0a966f758a182c4ab346ff7555e11b14fba6a264a7ec68be3b HTTP Headers `GET /v2/152-dba6a3a9f49f90e94d8d.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Thu, 02 Feb 2023 08:38:42 GMT x-amz-version-id: Ie3xwbsL01lSj9Q7NGbZIrO0mzwpN_BH server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Sun, 05 Feb 2023 09:17:38 GMT cache-control: max-age=300,public etag: W/"4238223b72262e874558e29d28e551b3" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: RfXirpYibMKWVgYomjOSKnr7g7Rm66n4ysABunPTw7mNJb3BH0YI1A== age: 34 X-Firefox-Spdy: h2

	linkvertise.chargebeestaticv2.com/api/internal/1675588500/retrieve_js_info	54.230.111.33	200 OK	451 B
URL HTTP/2 linkvertise.chargebeestaticv2.com/api/internal/1675588500/retrieve_js_info IP 54.230.111.33:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (451), with no line terminators Size 451 B (451 bytes) Hash 53e8a4bad15d11a2df3eb6a44e64734b 9681853dd64480d24c5482edfe9ddbc138008f19 6cb113617c09dcd449abccfe4341acc4ba667bce0ca54f92b95ffc0f03b16a79 HTTP Headers GET /api/internal/1675588500/retrieve_js_info HTTP/1.1 Host: linkvertise.chargebeestaticv2.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-Requested-With: XMLHttpRequest Origin: https://js.chargebee.com Connection: keep-alive Referer: https://js.chargebee.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK content-type: application/json;charset=utf-8 content-length: 451 date: Sun, 05 Feb 2023 08:20:33 GMT cache-control: max-age=0, must-revalidate, public, s-maxage=3600 expires: Thu, 01 Jan 1970 00:00:00 UTC strict-transport-security: max-age=31536000; includeSubDomains; preload access-control-allow-origin: https://js.chargebee.com access-control-allow-credentials: true access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token access-control-allow-methods: GET, OPTIONS, POST server: ChargeBee x-cache: Hit from cloudfront via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: fBmjEq3IDqtohnfZMqJGfkqAHyMXDSF2IQMZb0CRTNvFFujs9bLPUA== age: 3456 X-Firefox-Spdy: h2

	js.chargebee.com/v2/master-28f23e4f7b94abf18b9f.js	143.204.55.121	200 OK	72 kB
URL HTTP/2 js.chargebee.com/v2/master-28f23e4f7b94abf18b9f.js IP 143.204.55.121:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (61614) Size 72 kB (71461 bytes) Hash 7bf78ec4db3834e3f61e80ced11dd98c 65db8478901af38bd696b3f48361a074fd58e8ae 534f23c2b3f03ff2e6ae87a28a7018bfe35bd19165fefc266398f97de1fdcbb5 HTTP Headers `GET /v2/master-28f23e4f7b94abf18b9f.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Thu, 02 Feb 2023 08:38:42 GMT x-amz-version-id: sBqFHnwLy79Wl0TJWpdafjWm.LCL_tH_ server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Sun, 05 Feb 2023 09:15:13 GMT cache-control: max-age=300,public etag: W/"948dc641ad9d6d9c0fff32585c0f3beb" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: c_y5PLgyLVS9sRSjPh68jaMTAHgRdNDKL-UMjmoI5DQadzUWMfgRLA== age: 180 X-Firefox-Spdy: h2

	paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F540658%2Fpet-simulator-x-partner%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675588730117&hl=1&op=0&ag=1317291471&rand=132265660258106218610578757025268250896960190962251522126086611926587788198&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=IE6ZbUd1im&pto=2040&ver=50&gac=1828782735.1675588730&mei=&ap=&duid=1.1675588729.CrBdyowgqGhgZJIE&suid=1.1675588729.305Ir67gavfEAazu&tuid=1.1675588729.gxq0w0qC5byYeutz&fbc=-&gtm=W10%3D&it=74%2C1370%2C158&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0	52.45.196.192	200 OK	978 B
URL HTTP/2 paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F540658%2Fpet-simulator-x-partner%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675588730117&hl=1&op=0&ag=1317291471&rand=132265660258106218610578757025268250896960190962251522126086611926587788198&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=IE6ZbUd1im&pto=2040&ver=50&gac=1828782735.1675588730&mei=&ap=&duid=1.1675588729.CrBdyowgqGhgZJIE&suid=1.1675588729.305Ir67gavfEAazu&tuid=1.1675588729.gxq0w0qC5byYeutz&fbc=-&gtm=W10%3D&it=74%2C1370%2C158&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 IP 52.45.196.192:0 ASN #14618 AMAZON-AES File type ASCII text, with very long lines (2781), with no line terminators Size 978 B (978 bytes) Hash b24474608375a5d956fae490961d88e7 421d7e4e768ca39ca367793109fadcc90e5bab4b c5af843308dca049c8482ed95f66acf55178aeebc6ce165660765c78539d6f15 HTTP Headers GET /ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F540658%2Fpet-simulator-x-partner%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675588730117&hl=1&op=0&ag=1317291471&rand=132265660258106218610578757025268250896960190962251522126086611926587788198&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=IE6ZbUd1im&pto=2040&ver=50&gac=1828782735.1675588730&mei=&ap=&duid=1.1675588729.CrBdyowgqGhgZJIE&suid=1.1675588729.305Ir67gavfEAazu&tuid=1.1675588729.gxq0w0qC5byYeutz&fbc=-&gtm=W10%3D&it=74%2C1370%2C158&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1 Host: paper.ostrichesica.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK cache-control: no-cache, no-store, must-revalidate content-encoding: gzip content-type: text/javascript date: Sun, 05 Feb 2023 09:18:10 GMT expires: Fri, 01 Jan 1990 00:00:00 GMT pragma: no-cache set-cookie: cg_uuid=a3717fed12254af26e0ec08f9cfa06dd; Max-Age=29030400; Path=/; Expires=Sun, 07 Jan 2024 09:18:10 GMT; HttpOnly; Secure; SameSite=None content-length: 978 X-Firefox-Spdy: h2`

	publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=KOX51w11u8u0PM6cj2b6uiIIhuvPshvNRZc7wc1hxkpo6NHnFrM9yZ81pp12bPBPuBR6&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd	172.64.207.34	204 No Content	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=KOX51w11u8u0PM6cj2b6uiIIhuvPshvNRZc7wc1hxkpo6NHnFrM9yZ81pp12bPBPuBR6&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd IP 172.64.207.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/v1/validate-traffic?cheq_response=KOX51w11u8u0PM6cj2b6uiIIhuvPshvNRZc7wc1hxkpo6NHnFrM9yZ81pp12bPBPuBR6&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Sun, 05 Feb 2023 09:18:10 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-headers: content-type access-control-max-age: 0 set-cookie: laravel_session=OKbhJd6nzX2PUxXCwJYRuKDQvnmcdnSesBZEnYUa; expires=Mon, 05 Feb 2024 09:18:10 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0PhbJQdU2l2TN%2B9FNMy7sWao5lT9nahVH4k7fffZ42C6R2JpnJKODU5FSHRbSmnAvPhxcJHNOAIaMoX8DXQtrRVfA1%2Fx8aMmXe%2F%2BhgtBA9Qg3y%2FmPq84Ygt0o%2B8cIMZsf1G2gGt7JAPtUKRh"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 794a8ea47e60719c-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash a78b06ca527ce7542b24b349e0485d8b 6f5e5126c1c9d40c9ba09d58e1755d2ca39d02ab bc7dc156ab8b2b33422fff0922e219246eb1d12469d10ac8007416fed41ac473 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:10 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	publisher.linkvertise.com/api/v1/redirect/link/540658/pet-simulator-x-partner/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd	172.64.207.34	204 No Content	0 B
URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/540658/pet-simulator-x-partner/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd IP 172.64.207.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/v1/redirect/link/540658/pet-simulator-x-partner/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Sun, 05 Feb 2023 09:18:10 GMT cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers access-control-allow-credentials: true access-control-allow-methods: POST access-control-allow-headers: content-type access-control-max-age: 0 set-cookie: laravel_session=FKg9b14YhYYdTqSy8ohW02YjG2YockZUtB2I5NoI; expires=Mon, 05 Feb 2024 09:18:10 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NPtd5Y%2FoGHyJSL2qrfhT6HalByRhuigVRf983YR%2FMzL4xmVJCigPz4GzRgbM%2FDTfgs8R%2Ff7nNARpNmvO4FWsIyc92LlVRylkHl%2Fe%2BqOjxPMbfcwfCAIF1b1%2BrTft%2BjhS35JI0dRcdkdgdMxk"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 794a8ea47e6b719c-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-	142.250.74.164	200 OK	584 B
URL HTTP/2 www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- IP 142.250.74.164:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (884), with no line terminators Size 584 B (584 bytes) Hash ffa92c1a96485ba730e51de7d5ef5fb9 8dd883c58e5e51e68260ca6067d3fdde2aa1dd4a f97b9e35db46fb28c9da9ea8f4c0eaee60fe1e73b090fdf74d264a40e6f662ba HTTP Headers `GET /recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://js.chargebee.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK expires: Sun, 05 Feb 2023 09:18:10 GMT date: Sun, 05 Feb 2023 09:18:10 GMT cache-control: private, max-age=300 content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block content-length: 584 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=IE6ZbUd1im&ts=95&cb=1675588730212	52.45.196.192	200 OK	43 B
URL HTTP/2 paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=IE6ZbUd1im&ts=95&cb=1675588730212 IP 52.45.196.192:0 ASN #14618 AMAZON-AES File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash db04c7b378cb2db912c3ba8a5a774ee3 dee34bd86c3484d31002182aa2b7caa4699126b8 98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a HTTP Headers GET /tracker/tc_imp.gif?e=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&cri=IE6ZbUd1im&ts=95&cb=1675588730212 HTTP/1.1 Host: paper.ostrichesica.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Cookie: cg_uuid=2a6b18bcd37bc35c022ce43486b2f35c Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK cache-control: no-cache, no-store, must-revalidate content-type: image/gif date: Sun, 05 Feb 2023 09:18:10 GMT expires: Fri, 01 Jan 1990 00:00:00 GMT pragma: no-cache content-length: 43 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c7d887fc3e3b7a68b7872c76802085c0 eb26f820776e7d87a00489eb14f918e5f6945835 915e873e95d8f0276f4763e5596b03cac487f6f8a36c65577c6622fc8560d929 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:10 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	cdn.taboola.com/libtrc/linkvertise-link-to/loader.js	151.101.129.44	200 OK	42 kB
URL HTTP/2 cdn.taboola.com/libtrc/linkvertise-link-to/loader.js IP 151.101.129.44:0 ASN #54113 FASTLY File type data Size 42 kB (41945 bytes) Hash 9e02280b218c4b761390ccc4a8bf9b92 c46a387718a07c7bb0992df79afef6deba7d6873 79898eaf76e1120e1149e60ad431aca8a418df0b1aa4a484ee4239a3bfff2ac3 HTTP Headers `GET /libtrc/linkvertise-link-to/loader.js HTTP/1.1 Host: cdn.taboola.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: eLGq6S/pYksYFG3TlkJlaLaM1TZydA3v9BiY97hPNBpwHGmn1LwFw4dYNjre1vnwaOhDP55H9/M= x-amz-request-id: PB6PFYKV7AYHBHNS x-amz-replication-status: PENDING last-modified: Thu, 02 Feb 2023 10:12:04 GMT etag: "5bf1d13cb36eac418dea084e7c4ce58a" x-amz-version-id: DaEa574DexENf_8lQW1GNo9lOuPA8sH3 content-type: application/javascript; charset=utf-8 server: AmazonS3 content-encoding: gzip accept-ranges: bytes date: Sun, 05 Feb 2023 09:18:10 GMT via: 1.1 varnish age: 120 x-served-by: cache-bma1637-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1675588691.859217,VS0,VE1 cache-control: private,max-age=14401 vary: Accept-Encoding abp: 99 content-length: 41487 X-Firefox-Spdy: h2

	script.hotjar.com/modules.bca0d1c28285412bb689.js	143.204.55.46	200 OK	68 kB
URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js IP 143.204.55.46:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (49086) Size 68 kB (67924 bytes) Hash e923aa360dc485b9df86355bd040c998 03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec 9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676 HTTP Headers `GET /modules.bca0d1c28285412bb689.js HTTP/1.1 Host: script.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript content-length: 67924 date: Fri, 03 Feb 2023 13:10:06 GMT accept-ranges: bytes access-control-allow-origin: * cache-control: max-age=31536000 content-encoding: br cross-origin-resource-policy: cross-origin etag: "e923aa360dc485b9df86355bd040c998" last-modified: Fri, 03 Feb 2023 13:09:45 GMT strict-transport-security: max-age=2592000; includeSubDomains x-content-type-options: nosniff x-robots-tag: none vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: WDNMFNWrNQ1OYdsjQs1Bq7vpPsRjn3kNF5o47fOz2uzmM95SS2byPA== age: 158884 X-Firefox-Spdy: h2

	region1.google-analytics.com/g/collect?v=2&tid=G-7DRMH8RP03&gtm=45je3210&_p=910739419&cid=1828782735.1675588730&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675588729&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F540658%2Fpet-simulator-x-partner%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1	216.239.34.36	204 No Content	0 B
URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-7DRMH8RP03&gtm=45je3210&_p=910739419&cid=1828782735.1675588730&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675588729&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F540658%2Fpet-simulator-x-partner%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1 IP 216.239.34.36:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-7DRMH8RP03&gtm=45je3210&_p=910739419&cid=1828782735.1675588730&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675588729&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F540658%2Fpet-simulator-x-partner%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 Host: region1.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: https://linkvertise.com date: Sun, 05 Feb 2023 09:18:10 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11829 Expires: Sun, 05 Feb 2023 12:35:20 GMT Date: Sun, 05 Feb 2023 09:18:11 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11829 Expires: Sun, 05 Feb 2023 12:35:20 GMT Date: Sun, 05 Feb 2023 09:18:11 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11829 Expires: Sun, 05 Feb 2023 12:35:20 GMT Date: Sun, 05 Feb 2023 09:18:11 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11829 Expires: Sun, 05 Feb 2023 12:35:20 GMT Date: Sun, 05 Feb 2023 09:18:11 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11829 Expires: Sun, 05 Feb 2023 12:35:20 GMT Date: Sun, 05 Feb 2023 09:18:11 GMT Connection: keep-alive`

	publisher.linkvertise.com/api/v1/redirect/link/static/540658/pet-simulator-x-partner?origin=	172.64.207.34	200 OK	9.5 kB
URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/540658/pet-simulator-x-partner?origin= IP 172.64.207.34:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (25107), with no line terminators Size 9.5 kB (9494 bytes) Hash 5f7d3274d71ac9dfb37ca1fdca65c3d9 83a504fa771bd826b9a5303b4811c46d9d46787f 721899a43699a7fbab4bad8b557a95e43c019c42e8011f8b9b93f8e233c208f1 HTTP Headers `GET /api/v1/redirect/link/static/540658/pet-simulator-x-partner?origin= HTTP/1.1 Host: publisher.linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/ Content-Type: application/json Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:10 GMT content-type: application/json cache-control: no-cache, private access-control-allow-origin: https://linkvertise.com vary: Origin access-control-allow-credentials: true set-cookie: laravel_session=uAfpxIy7Uky3tYZQVIKaoBWyBQCxxiKi2Ms2LiJx; expires=Mon, 05 Feb 2024 09:18:10 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1DvsPa8vrxou%2FzYm%2BSxzVoJjzyZMStFAMD%2BUahNNI%2B46ZGLdNyfvny0NKb6%2BEaTNsBudHGlrr2J458OpJzDpfV54qClehcm9CtMJnFMZiGwjL5z5Y3p2%2Bd2%2FaALOytR2fQaMGNaRS6nF8D7H"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} x-frame-options: sameorigin server: cloudflare cf-ray: 794a8ea0daa9719c-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg	34.120.237.76	200 OK	9.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.6 kB (9579 bytes) Hash b3e7140400336984afc6093c1246f863 59e0b21cdf4cfdac3f1ea05badd007727939ac42 4d927e74922159db5d07b9947fa1021cff74bb7b55759960cb3941d05c1e8f11 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9579 x-amzn-requestid: 377c182d-43e8-4251-8731-6364d29fb955 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: foJaRFs0oAMFreQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d9890e-1ad3e68f50fc15707ec0406a;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: sUtUjqOLpq42m22bLgmLggmPbtatZC01og_xzkVI1o8rJtAnvhvqHA== via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 14:15:26 GMT age: 68565 etag: "59e0b21cdf4cfdac3f1ea05badd007727939ac42" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad342374-789b-497a-b212-29d0b2aaced0.jpeg	34.120.237.76	200 OK	7.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad342374-789b-497a-b212-29d0b2aaced0.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.1 kB (7060 bytes) Hash 75caf9549ac23c827c10d6baabb84884 e8391e4046acb91cd4a6113974fda1c44dcd3865 a01e3a9aaa0b0fa156303bcbf38c1c45ea6abe8d0a052734b05ea4da82f176c4 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad342374-789b-497a-b212-29d0b2aaced0.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7060 x-amzn-requestid: 9379b64e-3a3f-4b8d-aba2-bc3cd7dab98f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fi3cgFCkIAMFrhA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d76c4f-6ac6da215407497043249929;Sampled=0 x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:51 GMT x-amz-cf-pop: SEA19-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 75uKxGlJDSXzIUgR5Rm4f13SClTT1UIDLgbkTrFDEDvKmGmViQ3Djg== via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 22:25:50 GMT age: 39141 etag: "e8391e4046acb91cd4a6113974fda1c44dcd3865" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (12967 bytes) Hash 8e0be7db14d930d6227443314bcd1747 4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12967 x-amzn-requestid: 013fa296-a431-410b-b3fb-7417b3e877eb x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fpIQAFCMIAMF0Sw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d9ed99-2e1daa8b75977de07c48b8fc;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 04:42:01 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: UzQGDCYe_8AuYYLaLSAWzHQhwJMpzpXWbjE5AwukevW6G6SLDxDjmA== via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 03:42:59 GMT age: 20112 etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (11056 bytes) Hash 3e0c38abfcd86f8074d4182d49fc354f 1367bebb73fa652695242100b26c394f1bfe4457 e42d110060133ac05e6cdfafa6473c55473220fdc7eaf03e3a89f58aa3603670 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11056 x-amzn-requestid: 4acc3364-4a33-4934-bdcb-41284d952113 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fPFrwEW4IAMF_Tg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cf8317-33872f461a2faab552322837;Sampled=0 x-amzn-remapped-date: Tue, 24 Jan 2023 07:04:55 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 4xmWa9XVzQ3xzjzIZyrdv3GpFSaTcoacse6b0lgGch2IMvV69AZ57w== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 21:45:28 GMT age: 41563 etag: "1367bebb73fa652695242100b26c394f1bfe4457" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg	34.120.237.76	200 OK	5.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.0 kB (5014 bytes) Hash 5b6c30ad03669b66bf2f63b3edd69882 e630bd132b52b965a5ade646ea8a165d1abf6d7b f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5014 x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fi3bIE0aoAMF6YQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0 x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ== via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 11:30:27 GMT age: 78464 etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html	143.204.55.118	200 OK	1.0 kB
URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html IP 143.204.55.118:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators Size 1.0 kB (1034 bytes) Hash 112fdf47cdb80b9ce3d033ed09717460 3898efa86cbf1b64dc41a90a110ed5afd6f2ae13 3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb HTTP Headers `GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1 Host: vars.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/html content-length: 1034 date: Fri, 03 Feb 2023 13:10:06 GMT accept-ranges: bytes cache-control: max-age=31536000 content-encoding: br cross-origin-embedder-policy: require-corp cross-origin-resource-policy: cross-origin etag: "112fdf47cdb80b9ce3d033ed09717460" last-modified: Fri, 03 Feb 2023 13:09:45 GMT strict-transport-security: max-age=2592000; includeSubDomains x-robots-tag: none vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: Z3MMF9uEbD3bXvT5LwUrj6Il2S86JGANkI_Leo1YObKvhdOmrnTmbQ== age: 158885 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	313 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 313 B (313 bytes) Hash 482952c319f6b341719e70726729734d d562869196fe45ede7cf9d7b83643c020eae68b2 052ed0f05af6fa66b55a1e883536b6fc2743d32d56aa4b7c58f0b8202b67ee9b HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3010 Cache-Control: max-age=98827 Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:11 GMT Etag: "63de479c-139" Expires: Mon, 06 Feb 2023 12:45:18 GMT Last-Modified: Sat, 04 Feb 2023 11:55:08 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 313`

	trc-events.taboola.com/linkvertise-link-to/log/2/debug?tim=09%3A18%3A50.685&type=usage&msg=rtus&llvl=2&id=3231&cv=20230202-7-RELEASE&lt=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D	141.226.228.48	204 No Content	0 B
URL HTTP/2 trc-events.taboola.com/linkvertise-link-to/log/2/debug?tim=09%3A18%3A50.685&type=usage&msg=rtus&llvl=2&id=3231&cv=20230202-7-RELEASE&lt=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D IP 141.226.228.48:0 ASN #200478 Taboola.com ltd File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /linkvertise-link-to/log/2/debug?tim=09%3A18%3A50.685&type=usage&msg=rtus&llvl=2&id=3231&cv=20230202-7-RELEASE&lt=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1 Host: trc-events.taboola.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 204 No Content server: nginx date: Sun, 05 Feb 2023 09:18:11 GMT x-fastly-to-nlb-rtt: 21998 access-control-allow-credentials: true X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	313 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 313 B (313 bytes) Hash 2521dc6dc015025c26c7a1b08b3060a1 f5c7abc50c9229a4b198a5c0d5f6dfa8ac528b9f 6671bc387c8011ec55a9d023502189b997adeb18fc2f199747dec7d688f85bd3 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1860 Cache-Control: max-age=103763 Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:11 GMT Etag: "63de5f62-139" Expires: Mon, 06 Feb 2023 14:07:34 GMT Last-Modified: Sat, 04 Feb 2023 13:36:34 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 313`

	dnacdn.net/dna	178.250.2.146	200 OK	0 B
URL HTTP/2 dnacdn.net/dna IP 178.250.2.146:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /dna HTTP/1.1 Host: dnacdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/ Origin: https://gum.criteo.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:10 GMT server: Kestrel content-length: 0 cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 set-cookie: browser_data=VmrBiF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVVUHd4V2FwdkUycU9zeWttRUxyY1llNiUyQmZKdU55b3I3aEhDczg5VkxHVQ; expires=Fri, 01 Mar 2024 09:18:11 GMT; domain=dnacdn.net; path=/; secure; samesite=none access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-origin: https://gum.criteo.com server-processing-duration-in-ticks: 277919 strict-transport-security: max-age=31536000; preload; X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	313 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 313 B (313 bytes) Hash 77c548ed6dbee7a04321102c3d93db5c 3f4a20119d052c6c8e5f4224a2948ffd559f96b3 5d553cadff959602e40d007c876a01e0dd4540640c64bbb2679300d43326c603 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1837 Cache-Control: max-age=157057 Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:11 GMT Etag: "63df2fa7-139" Expires: Tue, 07 Feb 2023 04:55:48 GMT Last-Modified: Sun, 05 Feb 2023 04:25:11 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 313`

	gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS	178.250.2.146	200 OK	0 B
URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS IP 178.250.2.146:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: x-crto-bundle Referer: https://linkvertise.com/ Origin: https://linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:11 GMT server: Kestrel content-length: 0 cache-control: private, max-age=3600 expires: 60 access-control-allow-credentials: true access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE access-control-allow-origin: https://linkvertise.com server-processing-duration-in-ticks: 550829 strict-transport-security: max-age=31536000; preload; X-Firefox-Spdy: h2`

	gum.criteo.com/sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=d3FnXl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVVUHd4V2FwdkUycU9zeWttRUxyY2JDTzBnNUoyTklQJTJCOXI4Q3BMU2JmYg&idsd=-1261565828,187785799&cw=1&rtusCallerId=72&lsw=1	178.250.2.146	200 OK	24 kB
URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=d3FnXl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVVUHd4V2FwdkUycU9zeWttRUxyY2JDTzBnNUoyTklQJTJCOXI4Q3BMU2JmYg&idsd=-1261565828,187785799&cw=1&rtusCallerId=72&lsw=1 IP 178.250.2.146:0 ASN #44788 Criteo SA File type JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (36466) Size 24 kB (23632 bytes) Hash c3bb9f7771b66fcc5050a6b8c2658687 592f991fe7ba05161b7e1d984fe9ef24bb8eb01c 1307f903e8b73ad8e9034ea1480017912ff33aa5eac0e725983682a067c5afe9 HTTP Headers GET /sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=d3FnXl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVVUHd4V2FwdkUycU9zeWttRUxyY2JDTzBnNUoyTklQJTJCOXI4Q3BMU2JmYg&idsd=-1261565828,187785799&cw=1&rtusCallerId=72&lsw=1 HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:10 GMT content-type: application/json; charset=utf-8 server: Kestrel cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 server-processing-duration-in-ticks: 1447970 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	313 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 313 B (313 bytes) Hash b0e746f05c3e28991ba5acf8930a7987 0c564283eaae09d7a9a14c05d7b95de7963b517b 900fe19f894a25adb533d9f3f00d0bb2537316f76d3cead2f6d6f9e97b7726c3 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6307 Cache-Control: max-age=118281 Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 09:18:11 GMT Etag: "63de86b9-139" Expires: Mon, 06 Feb 2023 18:09:32 GMT Last-Modified: Sat, 04 Feb 2023 16:24:25 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 313`

	gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS	178.250.2.146	200 OK	8.9 kB
URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS IP 178.250.2.146:0 ASN #44788 Criteo SA File type data Size 8.9 kB (8851 bytes) Hash 6d726b761cf40527daea94e8e3a799ce b840c3c270e9601bb81e14254d54c2da16bf1930 cd06de19924ab5c7608d874e7bc0c5d5f5fb7ce118c18a2d7c0cdc5496d7b0d3 HTTP Headers GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br x-crto-bundle: h-kkIV83WXVUVnRGRU1aOExjaHVUU1ROcGpMZElEYjZMNGR4RnZPYSUyQjhmREpCQ0ZBJTJCTmM4SEYxQmZQUFUzVlBYTURuVkhheHlBQktqV1dIY3hIaSUyQklkNmFyWVdpTlZxenZPcGlYd0sxb0dsV2ZsM0d6TmhoTVRJUGhrRmFNd1VpeUczZlppUWNWUmg0WXAlMkZrUWRodmxlMVVwUSUzRCUzRA Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:10 GMT content-type: text/javascript; charset=utf-8 server: Kestrel cache-control: private, max-age=3600 expires: 60 access-control-allow-credentials: true access-control-allow-origin: https://linkvertise.com server-processing-duration-in-ticks: 2158227 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	contextual.media.net/dmedianet.js?cid=8CUG57U1V	23.38.200.22	200 OK	0 B
URL HTTP/2 contextual.media.net/dmedianet.js?cid=8CUG57U1V IP 23.38.200.22:0 ASN #16625 AKAMAI-AS File type Size 0 B (0 bytes) Hash HTTP Headers `GET /dmedianet.js?cid=8CUG57U1V HTTP/1.1 Host: contextual.media.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: Apache content-type: text/javascript; charset=utf-8 x-mnt-h: 22-pz6p x-mnt-w: 22-pz6p etag: "33578693472c57ba8d3f0357adc9fcb1" strict-transport-security: max-age=31536000 vary: Accept-Encoding content-encoding: gzip cache-control: max-age=300 expires: Sun, 05 Feb 2023 09:23:10 GMT date: Sun, 05 Feb 2023 09:18:10 GMT X-Firefox-Spdy: h2`

	linkvertise.com/assets/ads.js	172.64.207.34	200 OK	0 B
URL HTTP/2 linkvertise.com/assets/ads.js IP 172.64.207.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/ads.js HTTP/1.1 Host: linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://linkvertise.com/540658/pet-simulator-x-partner/1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:09 GMT content-type: application/javascript access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"87a18df10c601bf2ed3321eab0aec42a" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qz8OOv09qI27X31zREkTZC7PDK3VKq8%2B5OAjWOTb%2FAZEYobv8F1IxBMCBj54ZqMGX71YWakrB4EuZyjHQdlIhteaVf15fYFK8iTixdBAyrzsbn3NZK5xAt2xbU7Ca7xRhiQ%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-cache-status: DYNAMIC x-frame-options: sameorigin server: cloudflare cf-ray: 794a8e9a9ba176ed-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	js.chargebee.com/v2/148-3987f172361378a6883f.js	143.204.55.121	200 OK	0 B
URL HTTP/2 js.chargebee.com/v2/148-3987f172361378a6883f.js IP 143.204.55.121:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /v2/148-3987f172361378a6883f.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Thu, 02 Feb 2023 08:38:42 GMT x-amz-version-id: g8QbkeSlglOFXISI9gUwE71gXE_D32gK server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Sun, 05 Feb 2023 09:18:10 GMT cache-control: max-age=300,public etag: W/"6d813d6e32089bc8a6b827ee01e287ec" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: VBqIH_1GF4Ak4yQRY3_TmGHwIJjyYkxuXOT8cHVxdbo8QwQH7Ddhmw== age: 12 X-Firefox-Spdy: h2

	maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css	185.76.9.21	200 OK	0 B
URL HTTP/2 maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css IP 185.76.9.21:0 ASN #60068 Datacamp Limited File type Size 0 B (0 bytes) Hash HTTP Headers `GET /vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css HTTP/1.1 Host: maxst.icons8.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:09 GMT content-type: text/css; charset=utf-8 vary: Accept-Encoding etag: W/"15e81-wb0UGHttyzbvrSHlFxH4lBgB3g8" last-modified: 2022-05-16T12:30:47.897Z server-timing: -;dur=0;desc="Generate" strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * access-control-allow-credentials: true expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public x-accel-expires: @1968663892 server: CDN77-Turbo x-77-nzt: AblMCRQUaK7//QlUAQ x-77-nzt-ray: af585630a0a7149a5174df6308572f06 x-cache: HIT x-age: 22284797 x-77-pop: stockholmSE x-77-cache: HIT content-encoding: gzip X-Firefox-Spdy: h2

	static.hotjar.com/c/hotjar-3321028.js?sv=7	143.204.55.84	200 OK	0 B
URL HTTP/2 static.hotjar.com/c/hotjar-3321028.js?sv=7 IP 143.204.55.84:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /c/hotjar-3321028.js?sv=7 HTTP/1.1 Host: static.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * content-encoding: br cross-origin-resource-policy: cross-origin strict-transport-security: max-age=2592000; includeSubDomains x-cache-hit: 1 x-content-type-options: nosniff date: Sun, 05 Feb 2023 09:17:29 GMT cache-control: max-age=60 etag: W/8b37a9815aee2b84d59ff261aa6af015 vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: EahliSRQBbEvDi4aOm7oVQxH2lfs_A5SeRZHe57KDVxyFgOXHvWLIA== age: 45 X-Firefox-Spdy: h2

	stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js	104.18.11.207	200 OK	0 B
URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP 104.18.11.207:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1 Host: stackpath.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:09 GMT content-type: application/javascript; charset=utf-8 vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE access-control-allow-origin: * cache-control: public, max-age=31919000 last-modified: Mon, 25 Jan 2021 22:04:06 GMT cdn-cachedat: 11/15/2021 23:30:00 cdn-proxyver: 1.0 cdn-requestpullcode: 200 cdn-requestpullsuccess: True cdn-edgestorageid: 723 cdn-status: 200 timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-requestid: ed8d946baeeb2ee38f4aebce8d84f641 cdn-cache: HIT cf-cache-status: HIT age: 18631979 strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 794a8e9b39ffb4ed-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	js.chargebee.com/v2/136-04294f7bee4da31abb6d.js	143.204.55.121	200 OK	0 B
URL HTTP/2 js.chargebee.com/v2/136-04294f7bee4da31abb6d.js IP 143.204.55.121:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /v2/136-04294f7bee4da31abb6d.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Thu, 02 Feb 2023 08:38:42 GMT x-amz-version-id: NSlm2Jg29xJx93Rrs7mbrPf.GhDDN61Q server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Sun, 05 Feb 2023 09:18:08 GMT cache-control: max-age=300,public etag: W/"9aef1ba966da7d13bb8f9410eea89309" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: V-OVNRcKPJU9mB0sYhD-rBg5PdQjuqzg50P_dt-dmLr4l57Vup6NvA== age: 2 X-Firefox-Spdy: h2

	dnacdn.net/dna	178.250.2.146	200 OK	0 B
URL HTTP/2 dnacdn.net/dna IP 178.250.2.146:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash HTTP Headers `GET /dna HTTP/1.1 Host: dnacdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/ Origin: https://gum.criteo.com Connection: keep-alive Cookie: browser_data=VmrBiF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVVUHd4V2FwdkUycU9zeWttRUxyY1llNiUyQmZKdU55b3I3aEhDczg5VkxHVQ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:11 GMT content-type: application/json; charset=utf-8 server: Kestrel cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 set-cookie: browser_data=d3FnXl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVVUHd4V2FwdkUycU9zeWttRUxyY2JDTzBnNUoyTklQJTJCOXI4Q3BMU2JmYg; expires=Fri, 01 Mar 2024 09:18:11 GMT; domain=dnacdn.net; path=/; secure; samesite=none access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-origin: https://gum.criteo.com server-processing-duration-in-ticks: 273467 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2

	gem.gbc.criteo.com/newidsd	178.250.6.92	200 OK	0 B
URL HTTP/2 gem.gbc.criteo.com/newidsd IP 178.250.6.92:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash HTTP Headers `GET /newidsd HTTP/1.1 Host: gem.gbc.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/ Origin: https://gum.criteo.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:10 GMT content-type: application/json; charset=utf-8 server: Kestrel cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-origin: https://gum.criteo.com server-processing-duration-in-ticks: 88833 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	linkvertise.com/540658/pet-simulator-x-partner/1	172.64.207.34	200 OK	0 B
URL HTTP/2 linkvertise.com/540658/pet-simulator-x-partner/1 IP 172.64.207.34:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /540658/pet-simulator-x-partner/1 HTTP/1.1 Host: linkvertise.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:08 GMT content-type: text/html; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F7z8DtICFPARJUH8Mg4hiy424m50L8MMN%2B1PAL5%2BrRJJRuEH04brzE5qGMDAa5UsQYGjXfgyt0iHLq67XNIz2cEtwC2IwKpMAX9vAPwELRPWMJ2yfrVHDGs1wQHyIvHLF38%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-cache-status: DYNAMIC x-frame-options: sameorigin server: cloudflare cf-ray: 794a8e998a7d76ed-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS	178.250.2.146	200 OK	0 B
URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS IP 178.250.2.146:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash HTTP Headers `GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:10 GMT content-type: text/javascript; charset=utf-8 server: Kestrel cache-control: private, max-age=3600 expires: 60 server-processing-duration-in-ticks: 624571 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css	104.18.11.207	200 OK	0 B
URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css IP 104.18.11.207:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /bootstrap/4.1.3/css/bootstrap.min.css HTTP/1.1 Host: stackpath.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://linkvertise.com Connection: keep-alive Referer: https://linkvertise.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:09 GMT content-type: text/css; charset=utf-8 vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE access-control-allow-origin: * cache-control: public, max-age=31919000 last-modified: Mon, 25 Jan 2021 22:04:06 GMT cdn-cachedat: 12/11/2021 23:51:22 cdn-proxyver: 1.02 cdn-requestpullcode: 200 cdn-requestpullsuccess: True cdn-edgestorageid: 601 cdn-status: 200 timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-requestid: 873d47ad8054cd5f5d4a8793d245560e cdn-cache: HIT cf-cache-status: HIT age: 1483981 strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 794a8e9b29fbb4ed-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com	178.250.2.146	200 OK	0 B
URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com IP 178.250.2.146:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash HTTP Headers GET /syncframe?origin=rtus&topUrl=linkvertise.com HTTP/1.1 Host: gum.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://linkvertise.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:10 GMT content-type: text/html; charset=utf-8 server: Kestrel cache-control: private, max-age=3600 set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/ uid=45b042cc-7fb2-4928-878f-15fb202106cd; expires=Fri, 01 Mar 2024 09:18:10 GMT; domain=.criteo.com; path=/; secure; samesite=none cross-origin-resource-policy: cross-origin cross-origin-embedder-policy: require-corp server-processing-duration-in-ticks: 604666 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2

	ag.gbc.criteo.com/newidsd	185.235.84.15	200 OK	0 B
URL HTTP/2 ag.gbc.criteo.com/newidsd IP 185.235.84.15:0 ASN #44788 Criteo SA File type Size 0 B (0 bytes) Hash HTTP Headers `GET /newidsd HTTP/1.1 Host: ag.gbc.criteo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gum.criteo.com/ Origin: https://gum.criteo.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK date: Sun, 05 Feb 2023 09:18:10 GMT content-type: application/json; charset=utf-8 server: Kestrel cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 access-control-allow-credentials: true access-control-allow-methods: GET access-control-allow-origin: https://gum.criteo.com server-processing-duration-in-ticks: 131234 strict-transport-security: max-age=31536000; preload; vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (57)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML