link-hub.net/386088/sariixo
172.67.135.50302 Moved Temporarily 0 B URL HTTP/1.1 link-hub.net/386088/sariixo
IP 172.67.135.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /386088/sariixo HTTP/1.1
Host: link-hub.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Date: Sun, 05 Feb 2023 15:22:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Location: https://linkvertise.com/386088/sariixo?o=sharing
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U29RekUmwskp67koJf0UVA0DTpPrxJk7fLG0jhivhgVziCuGf2s3VQadoUIIFb9cuQnGiughMDWrDFdLSjbDdaxMx5D8lheMkZTfvymAfrDxv%2B115D%2BcHb5CDnHaR0g%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794ca46e18c70afe-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9499
Expires: Sun, 05 Feb 2023 18:00:53 GMT
Date: Sun, 05 Feb 2023 15:22:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17996
Expires: Sun, 05 Feb 2023 20:22:30 GMT
Date: Sun, 05 Feb 2023 15:22:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6201
Expires: Sun, 05 Feb 2023 17:05:55 GMT
Date: Sun, 05 Feb 2023 15:22:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 14:33:56 GMT
content-type: application/json
age: 2918
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vxHIFq7mWDsodjYsbi9oByOFxVpXiUBi7Ht+JEFgoXfAqSNuuA1sKGavxznFXz/mxg4WsX92Scc=
x-amz-request-id: NX0J1WJH639AKPGQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 14:53:19 GMT
age: 1755
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 757a7104a889ab2e90e2a044565c56c1
ffa9ac5093b7ff58ff4cfde98c8de51de70a3197
5479d9fbabd6c69a0e702e3408f8b286476c6cae4891df5b7658d22f93c4b0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5479D9FBABD6C69A0E702E3408F8B286476C6CAE4891DF5B7658D22F93C4B0F1"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5498
Expires: Sun, 05 Feb 2023 16:54:12 GMT
Date: Sun, 05 Feb 2023 15:22:34 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 15:22:34 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 757a7104a889ab2e90e2a044565c56c1
ffa9ac5093b7ff58ff4cfde98c8de51de70a3197
5479d9fbabd6c69a0e702e3408f8b286476c6cae4891df5b7658d22f93c4b0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5479D9FBABD6C69A0E702E3408F8B286476C6CAE4891DF5B7658D22F93C4B0F1"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5497
Expires: Sun, 05 Feb 2023 16:54:12 GMT
Date: Sun, 05 Feb 2023 15:22:35 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 28c3f02ba8cac75c2f1945e7be499cae
82390270ea7ee981db3fae587295029f335726da
ce1f772f6bd3cdd88e6f161731958d8bce7e3c019c9e618d0ed37560b79b0a4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5464
Cache-Control: max-age=133052
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:35 GMT
Etag: "63df191f-118"
Expires: Tue, 07 Feb 2023 04:20:07 GMT
Last-Modified: Sun, 05 Feb 2023 02:49:03 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6630148a03da2d4ccf19993f0fefd44c
2c747b9bc89b4240ad4340b31b993e3d947d1e5a
68c252a328d6f8dbea1935f3a4a950fb02969e70aabfff9853add357f76ecd4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5695
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:35 GMT
Last-Modified: Sun, 05 Feb 2023 13:47:40 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6630148a03da2d4ccf19993f0fefd44c
2c747b9bc89b4240ad4340b31b993e3d947d1e5a
68c252a328d6f8dbea1935f3a4a950fb02969e70aabfff9853add357f76ecd4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2369
Cache-Control: max-age=106919
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:35 GMT
Etag: "63debf21-117"
Expires: Mon, 06 Feb 2023 21:04:34 GMT
Last-Modified: Sat, 04 Feb 2023 20:25:05 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 28c3f02ba8cac75c2f1945e7be499cae
82390270ea7ee981db3fae587295029f335726da
ce1f772f6bd3cdd88e6f161731958d8bce7e3c019c9e618d0ed37560b79b0a4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3687
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:35 GMT
Last-Modified: Sun, 05 Feb 2023 14:21:08 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 280
p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css
23.36.76.184200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css
IP 23.36.76.184:0
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Sun, 05 Feb 2023 15:22:35 GMT
X-Firefox-Spdy: h2
linkvertise.com/386088/sariixo?o=sharing
172.64.207.34200 OK 38 kB URL HTTP/2 linkvertise.com/386088/sariixo?o=sharing
IP 172.64.207.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11491)
Hash 980bcedaeedb7fe0089b4b2356a3e070
63b47339e535eab126f70ba4bd2066d9a963fcf0
942cc6ee657f63049ee795526a77c17a5a5c2be5115c3d6ef05ac1439ee5e15c
GET /386088/sariixo?o=sharing HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:34 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7XqBmaxUPHRnI%2B6D%2FYxakQj3UQv8Enq7bxVvdwj%2Fq6Z59D7wXU0qQ381KW25wpc0FynHhtXwlnlM2869j0DaCBZf8GXiRCRZTgQaO%2FeIE5VfsuxlDcHGtxAAAHYYnYmZwIg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 794ca4706e6174d1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
linkvertise.com/runtime.9028a2ff6641236d.js
172.64.207.34200 OK 2.1 kB URL HTTP/2 linkvertise.com/runtime.9028a2ff6641236d.js
IP 172.64.207.34:0
File type ASCII text, with very long lines (3609), with no line terminators
Hash 4a5a89a5eae0d99d01e0c69efce07ee9
3a7d518d54ddba5de48643c7d3d21152bd68d426
1d5716bee4bccdf71fd85c2ded2144f5151d33ee0ec44ad1b36fa063e3866b70
GET /runtime.9028a2ff6641236d.js HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/386088/sariixo?o=sharing
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:35 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"d88f61353c1dbbf2701151e493c2829f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3q1uXHCtgZLzbiS4iwds%2Fcz5UktKu4LF7N8%2BiU3FPDRwRXBGAAcFz3NDJ%2BLaT86%2FnwqE0vax3N87hRhzvrQ5qrIctqTPcdTXwp%2Bvf31qTa%2FLmaw9QBWMpSY5xqXRxhpfOOo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 794ca4717f8a74d1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6630148a03da2d4ccf19993f0fefd44c
2c747b9bc89b4240ad4340b31b993e3d947d1e5a
68c252a328d6f8dbea1935f3a4a950fb02969e70aabfff9853add357f76ecd4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 234
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:35 GMT
Last-Modified: Sun, 05 Feb 2023 15:18:41 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 14:49:07 GMT
age: 2008
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9206c3ba6d5a17d62244c438fd03496e
069e8257aebe618953434b1299d065540125a512
937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG
172.217.21.168200 OK 63 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG
IP 172.217.21.168:0
File type Unicode text, UTF-8 text, with very long lines (12213)
Hash a03213ee6c06b09b8cb72e22844575f0
4cacc1dd4f060a7041bc0fc5ffcd2596be6d3ef4
97939aea275e4f479bb61f7d1eebaf317d7f7a6179fadfcd465c6341a4425f22
GET /gtm.js?id=GTM-TZ69NZG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 15:22:35 GMT
expires: Sun, 05 Feb 2023 15:22:35 GMT
cache-control: private, max-age=900
last-modified: Sun, 05 Feb 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 63172
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
216.58.207.227200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP 216.58.207.227:0
Hash 6c1a443e4268c10628af247a5f89f09e
1beb190fac42c1c2851fb3d3b2e264d1937ce2e4
3db5512bb37b0606c801f46ce2cb7a6826f1ab02ec3b556d0d05cb69f157091a
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 00:48:21 GMT
expires: Tue, 30 Jan 2024 00:48:21 GMT
cache-control: public, max-age=31536000
age: 570854
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11060
Expires: Sun, 05 Feb 2023 18:26:55 GMT
Date: Sun, 05 Feb 2023 15:22:35 GMT
Connection: keep-alive
js.chargebee.com/v2/animation.css
143.204.55.124200 OK 758 B URL HTTP/2 js.chargebee.com/v2/animation.css
IP 143.204.55.124:0
Hash f8a79fc47c28375628855b4c78ff6f85
b2fb79a766c233408a6e0dd38a169dee2e88d4b0
e3b7f54cf81a0ff1f16662abce7b1970ed6a8a8191da96cf05dcf6644d203df3
GET /v2/animation.css HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 758
last-modified: Thu, 02 Feb 2023 08:38:43 GMT
x-amz-version-id: g1mbCLE5jWEtoxgqbjZDxUQVubRcL5hh
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Sun, 05 Feb 2023 15:17:55 GMT
cache-control: max-age=300,public
etag: "f8a79fc47c28375628855b4c78ff6f85"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1GCqe4nlrYf3UEM8ad7twDTxpfJxOQpi_nyIInELWOlu3cfVm3LUcg==
age: 281
X-Firefox-Spdy: h2
sand.ostrichesica.com/clicktrue_invocation.js?id=14473
54.230.111.55200 OK 32 kB URL HTTP/2 sand.ostrichesica.com/clicktrue_invocation.js?id=14473
IP 54.230.111.55:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 37aeaba156d969db4e16b1992889018b
85983ac2fb401a905a4b4ca29fc42a53d30aaa43
3257d1e724786b2f2b7d5e9d0e6687b93799156816198cf678fac438eb7e76f3
GET /clicktrue_invocation.js?id=14473 HTTP/1.1
Host: sand.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 31901
content-encoding: gzip
server: Caddy
date: Sun, 05 Feb 2023 13:37:50 GMT
cache-control: max-age=43200
expires: Mon, 06 Feb 2023 01:37:50 GMT
etag: "15743-uehjuGYPwWxP/DnjsF6UJEzeCMc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: U7F6a9n-qc43x14pvKbrPBPksGMuc7v2Yq_bIvC6tLQQWhWpGBPRNA==
age: 6285
X-Firefox-Spdy: h2
js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html
143.204.55.124200 OK 203 B URL HTTP/2 js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html
IP 143.204.55.124:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f8b310373855a5c3f476ebe44fbb7c50
bb4305b1d788c605028cad28f1210d941486eddc
e2335ee83781668ff411e81f2e5200f3a5759aa9f92d93b8e0c2738960444ed0
GET /v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 203
last-modified: Thu, 02 Feb 2023 08:38:43 GMT
x-amz-version-id: bXOn1NOPXbkLnpJrrJ4PlmrQN1lHLpgs
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Sun, 05 Feb 2023 15:19:09 GMT
cache-control: max-age=300,public
etag: "f8b310373855a5c3f476ebe44fbb7c50"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: M69xXHqO2Yb-Mt3gvLcBAlA9mYfxL-J5X2FpCDlNGgOqC6-w8Ysh0g==
age: 209
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 9f3a7d180c878551cf4c08980472d65e
931176b4febfc7727ddca547e29e9c9488bf8daf
0ce1d72a75a275e035204f17921df84ac22fbfcff68831104e710dbb95492ccb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4067
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:35 GMT
Last-Modified: Sun, 05 Feb 2023 14:14:49 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 280
fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
216.58.207.227200 OK 128 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 128360, version 1.0\012- data
Size 128 kB (128360 bytes)
Hash 393b5d8b3fd798486652801f3ee8c6ea
979383e09be691921a211f5fc4ef97fc4406e4dd
83be7b2f504af2c948c5106fa907dc4224380a7b75a993a7bff52cd71ec8c7d3
GET /s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128360
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 00:56:02 GMT
expires: Mon, 05 Feb 2024 00:56:02 GMT
cache-control: public, max-age=31536000
age: 51993
last-modified: Thu, 25 Aug 2022 00:09:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css
185.76.9.19200 OK 16 kB URL HTTP/2 maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css
IP 185.76.9.19:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash e08d2f98cbed04c58217e418ef401fd3
6ebb9a61a6a7e490786ac9e6211ba938bfb92bf7
0d618f03f819f0f37f06d66dbfb5268e0a078704a40ba4505f5be96b36d666b0
GET /vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css HTTP/1.1
Host: maxst.icons8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:35 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"15e81-wb0UGHttyzbvrSHlFxH4lBgB3g8"
last-modified: 2022-05-16T12:30:47.897Z
server-timing: -;dur=0;desc="Generate"
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
x-accel-expires: @1968663886
server: CDN77-Turbo
x-77-nzt: AblMCQ1nxrz/bV9UAQ
x-77-nzt-ray: c0a4cc282d04947cbbc9df637eaec70d
x-cache: HIT
x-age: 22306669
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/redirect/link/static/386088/sariixo?origin=
172.64.207.34204 No Content 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/386088/sariixo?origin=
IP 172.64.207.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/redirect/link/static/386088/sariixo?origin= HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 15:22:36 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=WNesSZD9n5dnBgJX4h1hZ9Zql4NleIwigmWGuduQ; expires=Mon, 05 Feb 2024 15:22:36 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CefX7r4QfUnaodFcG2ZL4e2%2Fmx4ksB%2FMrVVOj9EXLOh4jfBPdU%2FZ5dCy0a%2B0oe3876%2Fq9rtw2CJld3vFZO9CI1PC70AmVlyb1Wh7XrB9nYy0dmI9dxQNEClNpSDdGpvFqFYEWCP%2FFaSdcQMb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 794ca476eee0d184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/account
172.64.207.34204 No Content 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/account
IP 172.64.207.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/account HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 15:22:36 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=KVsrXFSXYP5Ct3gwKe2K0CiJi2CBSgXEQVgZH35a; expires=Mon, 05 Feb 2024 15:22:36 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ecVxLTyh5C%2BU0CZ5VewQ1the2ofKmetPyrTM1e7JsPp2jTd%2BtQWKRFIQWjkNv601Dy58DoD9U12DIfOQa3Llb9Qz0Ir43sYaOoaDMwUmS%2BMJ2cOmkyrhyFVZlEwycBZG2UuBMBIBHV35qIp3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 794ca476eedfd184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 70 kB IP 93.184.220.29:0
Hash 573a045d1346fbaeb356a2fdaf6587cc
2cff2800962d152e6150a62b1c5cca6ee2242e1b
4a72863d36f469f8c9e3a6d18ad21fc0b3ba2e71f14de6347c2695a3ad568249
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4033
Cache-Control: max-age=165079
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:36 GMT
Etag: "63df9bd2-118"
Expires: Tue, 07 Feb 2023 13:13:55 GMT
Last-Modified: Sun, 05 Feb 2023 12:06:42 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1f693a1d7d3bd8393eb7a0a3d3a97353
948a11cc0201bcd63ee99397df578a2bee557753
1092955301cf09f8b27df609793878a98f411fcdd95f5c679b9a320cc50006ee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1092955301CF09F8B27DF609793878A98F411FCDD95F5C679B9A320CC50006EE"
Last-Modified: Sun, 05 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4494
Expires: Sun, 05 Feb 2023 16:37:30 GMT
Date: Sun, 05 Feb 2023 15:22:36 GMT
Connection: keep-alive
publisher.linkvertise.com/api/v1/account
172.64.207.34200 OK 970 B URL HTTP/2 publisher.linkvertise.com/api/v1/account
IP 172.64.207.34:0
File type JSON data\012- , ASCII text, with very long lines (932), with no line terminators
Hash 0899816880432dee7fb544dcc2056deb
ba2395d66c27d0637545f88d73aa85152d328c34
2d10d53a0d9516309722b534ca24d619b3a495ea55cfc0d23eb2686ca7b99c50
GET /api/v1/account HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:36 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=lbKi1MBcI2zArKHYbNavtuKVHEVWCbXd5Q0hCVah; expires=Mon, 05 Feb 2024 15:22:36 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sVTptg4vF63DLl1xPyxmmfRgyU%2B%2BKkR3VKH75hOgORdB3MzJZNBt0jpJ9gxzxxAkk0VPfdrIrSgj8%2BbxKP3p5EfRk0hC4zNdcAH%2Bo3vL%2FoVt8Aae2nXu0RbLWxNXS48ENPj7FSH%2BK7AJi1q4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 794ca4775fa8d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.chargebee.com/v2/master-28f23e4f7b94abf18b9f.js
143.204.55.124200 OK 124 kB URL HTTP/2 js.chargebee.com/v2/master-28f23e4f7b94abf18b9f.js
IP 143.204.55.124:0
Size 124 kB (124081 bytes)
Hash 1cb6a2d818f916f8db13144d7cf5a512
9cc7ff1f0e3f265a2fcbe6b66e93f17e6bbf5657
b73c19b45e460a0609f22ade56e08b2be9cd94fb8dafa65421d094fe74305bf1
GET /v2/master-28f23e4f7b94abf18b9f.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 02 Feb 2023 08:38:42 GMT
x-amz-version-id: sBqFHnwLy79Wl0TJWpdafjWm.LCL_tH_
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 05 Feb 2023 15:22:31 GMT
cache-control: max-age=300,public
etag: W/"948dc641ad9d6d9c0fff32585c0f3beb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IegajZrv1l0fHVbQPyS-QjDPlxHmZt9xlbPPT6_OaAQbBM50GbO06g==
age: 6
X-Firefox-Spdy: h2
js.chargebee.com/v2/chargebee.js
143.204.55.124200 OK 92 kB URL HTTP/2 js.chargebee.com/v2/chargebee.js
IP 143.204.55.124:0
Hash def9cdf13cf46ded71374ec1ead299bf
85f5b3268b0e166fe52a56f74980a0174ce0b9c0
53966a4f44c8cecaddf93fdcce15fbff0404d4ee2f5746334e18f677034c2082
GET /v2/chargebee.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 02 Feb 2023 08:38:42 GMT
x-amz-version-id: fSCvEKsLssq6.dB4pAUTguMPj.oadxag
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 05 Feb 2023 15:18:24 GMT
cache-control: max-age=300,public
etag: W/"c41e1c99e410f972cfeb1f8767aa3979"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NUmVafRQ18TvAURisK9vi_Mo5X3VTa6tX2gxrFTj67Luf-XuwS4SSA==
age: 252
X-Firefox-Spdy: h2
linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js
172.64.207.34200 OK 4.5 kB URL HTTP/2 linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js
IP 172.64.207.34:0
Hash 3a1a2a56e8175b3b15d08c2414373a2e
5f1c4f860ca7037d20ae25c72345ac93de1198b8
9e22fee782d75954edcdb9ffea072b4e4e31bc61b5180a22bcec3212c0984de0
GET /assets/cheq/public/sc/disk/CHEQguard.sc.min.js HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/386088/sariixo?o=sharing
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:35 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e95fe14af1d50eab9d4bf9a757b1f1bf"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6%2BlYEU0DC5RSfKNersVfOF3iLCEHMsGYLrKUn22OxoRwGKE9lhgzuUW0WVR5IdhYhnYOX4luU1yuTSN7Ypcll9EGWR5yoaATi3CoJU16sLg38ZVuhxr6HFIU8bddW%2BlSdJs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 794ca4717f8874d1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
143.204.55.20200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 143.204.55.20:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kD0DwEoAPBBZS34VD3l56eN1hT9UQYnZ-MshZqyApiZO8OED4-0dgQ==
age: 180750
X-Firefox-Spdy: h2
paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F386088%2Fsariixo%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675610596849&hl=1&op=0&ag=1317291471&rand=049601169501001812020779299682262680505027166817290121026556852622257872610&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDE0MzZdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFsiY2IiLCIwLDAsMCwwLDIsMCwwLDEsMCwyLDMsMCwxLDAsMSwxLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDgsMCwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMSwwLDAsNCJdLFstMSwiTGludXggeDg2XzY0Il0sWy0yLCI2LElMSFlMQjlCTFRhMkpxUWczRm9lZWwyd1liRTJvZ0JJS0o2Y1IwMDBNSkhRd1lUREdZYWh2M3V0NzFWcFhSOU84K001clZTS3Mxa1BCZS8vOTlzblZKR3BVZFBmZHp6bjNPZmMiXSxbLTMsIltdIl0sWy00LCItIl0sWy01LCItIl0sWy02LCJ7XCJ3XCI6W1wiMFwiLFwiJFwiLFwialF1ZXJ5XCIsXCJib290c3RyYXBcIixcImpRdWVyeTM0MTAxNjE0NTczMTc3NzU3Njc2NjFcIixcImRhdGFMYXllclwiLFwiZjcwNVwiLFwiY2JKc29uUFwiLFwiX19jb3JlLWpzX3NoYXJlZF9fXCIsXCJjYl93aW5kb3dfbG9nZ2VyXCIsXCJfX1NFTlRSWV9fXCIsXCJDaGFyZ2ViZWVcIixcIk5vdGlmeVBhaW50RXZlbnRcIixcImlzQWRCbG9ja0FjdGl2ZVwiLFwiX21OSGFuZGxlXCIsXCJtZWRpYW5ldF92ZXJzaW9uSWRcIixcIm1lZGlhbmV0X2Nobm1cIixcIm1lZGlhbmV0X2Nobm0yXCIsXCJtZWRpYW5ldF9jaG5tM1wiLFwibWVkaWFuZXRfbWlzY1wiLFwiTUQ1XCIsXCJDSEVRZ3VhcmRcIixcIndlYnBhY2tDaHVua2x2X3dlYlwiLFwiJGxvY2FsaXplXCIsXCJab25lXCIsXCJfX3pvbmVfc3ltYm9sX19Qcm9taXNlXCIsXCJfX3pvbmVfc3ltYm9sX19mZXRjaFwiLFwiX196b25lX3N5bWJvbF9fcXVldWVNaWNyb3Rhc2tcIixcIl9fem9uZV9zeW1ib2xfX3NldFRpbWVvdXRcIixcIl9fem9uZV9zeW1ib2xfX2NsZWFyVGltZW91dFwiLFwiX196b25lX3N5bWJvbF9fc2V0SW50ZXJ2YWxcIixcIl9fem9uZV9zeW1ib2xfX2NsZWFySW50ZXJ2YWxcIixcIl9fem9uZV9zeW1ib2xfX3JlcXVlc3RBbmltYXRpb25GcmFtZVwiLFwiX196b25lX3N5bWJvbF9fY2FuY2VsQW5pbWF0aW9uRnJhbWVcIixcIl9fem9uZV9zeW1ib2xfX2FsZXJ0XCIsXCJfX3pvbmVfc3ltYm9sX19wcm9tcHRcIixcIl9fem9uZV9zeW1ib2xfX2NvbmZpcm1cIixcIl9fem9uZV9zeW1ib2xfX011dGF0aW9uT2JzZXJ2ZXJcIixcIl9fem9uZV9zeW1ib2xfX0ludGVyc2VjdGlvbk9ic2VydmVyXCIsXCJfX3pvbmVfc3ltYm9sX19GaWxlUmVhZGVyXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9uZGV2aWNlbW90aW9ucGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmRldmljZW9yaWVudGF0aW9ucGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbmFic29sdXRlZGV2aWNlb3JpZW50YXRpb25wYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5Y29ubmVjdHBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub252cmRpc3BsYXlkaXNjb25uZWN0cGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheWFjdGl2YXRlcGF0Y2hlZFwiLFwiX196b25lX3N5bWJvbF9fb25vbnZyZGlzcGxheWRlYWN0aXZhdGVwYXRjaGVkXCIsXCJfX3pvbmVfc3ltYm9sX19vbm9udnJkaXNwbGF5cHJlc2VudGNoYW5nZXBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub25hYm9ydHBhdGNoZWRcIixcIl9fem9uZV9zeW1ib2xfX29ub25ibHVycGF0Y2hlZFwiXSxcIm5cIjpbXSxcImRcIjpbXX0iXSxbLTcsIi0iXSxbLTgsIi0iXSxbLTksIisiXSxbLTEwLCItIl0sWy0xMSwie1widFwiOlwiXCIsXCJtXCI6W119Il0sWy0xMiwiXCJ1bnNwZWNpZmllZFwiIl0sWy0xMywiLSJdLFstMTQsIi0iXSxbLTE1LCItIl0sWy0xNiwiMCJdLFstMTcsIjE2Il0sWy0xOCwiWzEsMCwwLDBdIl0sWy0xOSwiWzAsMCwwLDAsMCwwLDEsMjQsMjQsXCItXCIsMTI4MCwxMDAyLDEyODAsMTAyNCwxMjgwLDEwMjQsMTI4MCw5MzksMCwwLDAsMCxcIi1cIixcIi1cIl0iXSxbLTIwLCItIl0sWy0yMSwiLSJdLFstMjIsIltcIm5cIixcIm5cIl0iXSxbLTIzLCIrIl0sWy0yNCwiW10iXSxbLTI1LCItIl0sWy0yNiwiLSJdLFstMjcsIi0iXSxbLTI4LCJlbi1VUyxlbiJdLFstMjksIi0iXSxbLTMwLCJbXCJ2XCIsMF0iXSxbLTMxLCJmYWxzZSJdLFstMzIsIjAiXSxbLTMzLCItIl0sWy0zNCwiLSJdLFstMzUsIlsxNjc1NjEwNTk2ODI0LDBdIl0sWy0zNiwiW1wiNS80XCIsXCI1LzRcIl0iXSxbLTM3LCItIl0sWy0zOCwiaSwtMSwtMSwzMTAsMCwxNCwwLDI5LDc0LDU4LC0xLDAsLDEzOTcsMTUzMCwxNTMwIl0sWy0zOSwiW1wiMjAxMDAxMDFcIiwwLFwiR2Vja29cIixcIk5ldHNjYXBlXCIsXCJNb3ppbGxhXCIsXCIyMDE4MTAwMTAwMDAwMFwiLG51bGwsZmFsc2UsbnVsbCxmYWxzZSxudWxsLDBdIl0sWy00MCwiMzciXSxbLTQxLCItIl0sWy00MiwiMTc3MDA1MDA4MSJdLFstNDMsIjAwMDAwMDAxMDAwMDAwMDAwMTExMTAwMTAwIl0sWy00NCwiMCw1LDAsNSJdLFstNDUsIjAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCJdLFstNDYsIjAiXSxbLTQ3LCJVVEMsZW4tVVMsbGF0bixncmVnb3J5Il0sWy00OCwiMCwwIl0sWy00OSwiLSJdLFstNTAsImh0dHBzOi8vbGlua3ZlcnRpc2UuY29tLzM4NjA4OC9zYXJpaXhvP289c2hhcmluZyJdLFstNTEsIi0iXSxbLTUyLCItIl0sWy01MywiMDEwIl0sWy01NCwie1wiaFwiOltcIjQxMDQzMTYyM1wiLFwiMjYzOTIyMjQ2OFwiLFwiXzNcIixcIjI4NzI4OTkzMjBcIl0sXCJkXCI6W10sXCJiXCI6W1wiXzFcIixcIjEwNjQ4MjI2ODdcIixcIjQxMDQzMTYyM1wiLFwiMjYzOTIyMjQ2OFwiXSxcInNcIjoxfSJdLFstNTUsIjIiXSxbImRkYiIsIjAsNywwLDEsMSwxLDAsMCwxLDAsMCwwLDAsMCwxLDAsMSwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMiwwLDAsMCwxLDAsMSwwLDAsMCwwLDAsMiwyLDAsMTUsMCwxLDAsMCwwLDAsMSwwIl0sWyJibmNoIiw2N10sWyJhYm5jaCIsNjhdXQ%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=Q8C3upeScF&pto=1554&ver=50&gac=-&mei=&ap=&duid=1.1675610596.z27hzrCBC0J9FkNN&suid=1.1675610596.TM7UVGLUpxfJnCEi&tuid=1.1675610596.2dJMOw2CX9NVym7Q&fbc=->m=W10%3D&it=60%2C1289%2C66&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
50.16.211.97200 OK 943 B URL HTTP/2 paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F386088%2Fsariixo%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675610596849&hl=1&op=0&ag=1317291471&rand=049601169501001812020779299682262680505027166817290121026556852622257872610&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=Q8C3upeScF&pto=1554&ver=50&gac=-&mei=&ap=&duid=1.1675610596.z27hzrCBC0J9FkNN&suid=1.1675610596.TM7UVGLUpxfJnCEi&tuid=1.1675610596.2dJMOw2CX9NVym7Q&fbc=->m=W10%3D&it=60%2C1289%2C66&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP 50.16.211.97:0
File type ASCII text, with very long lines (2637), with no line terminators
Hash abd98e67a01170e44ee205ca8f412c54
6c0025d8aac2947440912d3a0db7e080b8eb896d
26b4b1c6479ab7713001a2d90a8a6de636dd6520b3352b9f68c93427ca0bdc9f
GET /ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F386088%2Fsariixo%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675610596849&hl=1&op=0&ag=1317291471&rand=049601169501001812020779299682262680505027166817290121026556852622257872610&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=Q8C3upeScF&pto=1554&ver=50&gac=-&mei=&ap=&duid=1.1675610596.z27hzrCBC0J9FkNN&suid=1.1675610596.TM7UVGLUpxfJnCEi&tuid=1.1675610596.2dJMOw2CX9NVym7Q&fbc=->m=W10%3D&it=60%2C1289%2C66&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Sun, 05 Feb 2023 15:22:36 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=7de5d06d6332311fe6f1eb80f1f7f25d; Max-Age=29030400; Path=/; Expires=Sun, 07 Jan 2024 15:22:36 GMT; HttpOnly; Secure; SameSite=None
content-length: 943
X-Firefox-Spdy: h2
js.chargebee.com/v2/152-dba6a3a9f49f90e94d8d.js
143.204.55.124200 OK 1.8 kB URL HTTP/2 js.chargebee.com/v2/152-dba6a3a9f49f90e94d8d.js
IP 143.204.55.124:0
Hash 6956c456a7bd1d5ebaa5f4016e973c66
b8120f3c324297ec75365f1cb29f37e61cd9e97d
488fd4371ff342f087e70d49a34ee8ed54e0ccc49582345c0019159ba1dc888c
GET /v2/152-dba6a3a9f49f90e94d8d.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 02 Feb 2023 08:38:42 GMT
x-amz-version-id: Ie3xwbsL01lSj9Q7NGbZIrO0mzwpN_BH
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 05 Feb 2023 15:19:34 GMT
cache-control: max-age=300,public
etag: W/"4238223b72262e874558e29d28e551b3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qBrBNVLDbFCMy_ZvLHfvVhpb1KdKUdUDkwl36xiWo04yu4Y7ufV_lA==
age: 182
X-Firefox-Spdy: h2
linkvertise.chargebeestaticv2.com/api/internal/1675610100/retrieve_js_info
54.230.111.36200 OK 451 B URL HTTP/2 linkvertise.chargebeestaticv2.com/api/internal/1675610100/retrieve_js_info
IP 54.230.111.36:0
File type JSON data\012- , ASCII text, with very long lines (451), with no line terminators
Hash 53e8a4bad15d11a2df3eb6a44e64734b
9681853dd64480d24c5482edfe9ddbc138008f19
6cb113617c09dcd449abccfe4341acc4ba667bce0ca54f92b95ffc0f03b16a79
GET /api/internal/1675610100/retrieve_js_info HTTP/1.1
Host: linkvertise.chargebeestaticv2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://js.chargebee.com
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=utf-8
content-length: 451
date: Sun, 05 Feb 2023 15:18:39 GMT
cache-control: max-age=0, must-revalidate, public, s-maxage=3600
expires: Thu, 01 Jan 1970 00:00:00 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: https://js.chargebee.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token
access-control-allow-methods: GET, OPTIONS, POST
server: ChargeBee
x-cache: Hit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0tt9WwVj2egiArZ4gkPjIPjutVCwaeFOCkTxi0o_53UzCLI6uB-K-A==
age: 237
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=2rETNRbWw23%2FXc3f1%2FbzqYtH2uD0CFgtiHOiHprRW57ip0ZZatLEDgDv%2F9PH0qDzJElL&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
172.64.207.34204 No Content 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=2rETNRbWw23%2FXc3f1%2FbzqYtH2uD0CFgtiHOiHprRW57ip0ZZatLEDgDv%2F9PH0qDzJElL&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
IP 172.64.207.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/validate-traffic?cheq_response=2rETNRbWw23%2FXc3f1%2FbzqYtH2uD0CFgtiHOiHprRW57ip0ZZatLEDgDv%2F9PH0qDzJElL&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 15:22:36 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=5EFgilBTTWeM8PJHLLRngnj7GjWcX6rEzH95WOcY; expires=Mon, 05 Feb 2024 15:22:36 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7%2BnD04qoEQfwnk0cmpghx14xT1CFAZ60Pxgsv%2FJZpY5PU389h6aulnBGnPMjOgcUPLobbYRcHn4Sj%2FDmA5BiIAAj4Kv7M2KVbd5N8eD0q50%2BUaRcSxPqTKt%2BKtFllXKd243QVxlHz%2BQN6qg2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 794ca47aeda0d184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/redirect/link/386088/sariixo/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
172.64.207.34204 No Content 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/386088/sariixo/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
IP 172.64.207.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/redirect/link/386088/sariixo/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 15:22:36 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=po5Cxwyc9auPzcnrMk2OzLl7rRBSZLKo3gtUI0WX; expires=Mon, 05 Feb 2024 15:22:36 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MjwVrJjMrachfEJXczBOSAOA%2FbHpm8Fh4iCdhlaXrLMbiOzIEjV56oCca2keBGNNC7MVwLH%2BFI4yDB80y2HUCBoe2WvSFqdFy1DMFnRuttkh50MxY5c8BbUyRbcsdDIom62Q9wUNagSOLdeJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 794ca47aeda5d184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
paper.ostrichesica.com/tracker/tc_imp.gif?e=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&cri=YinCWZikHs&ts=11&cb=1675610597382
50.16.211.97200 OK 43 B URL HTTP/2 paper.ostrichesica.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136debc134ea428f9b9225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5f15896a2417071a10acf9f29f674ed6d68c532c394ff87b7406843ade349202660476c15a000934525890bc6e1b77be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c2244780e5ff4d82c367800f7ab497889f9f52799e058761f2fa3f3ad949e74b9cfc248b5038e523c60cbe986a7b376cccee879cf774a91bac333074aae3f34eec55620b79bae6adc59a259b18c1ec247c3d03c957a6ccfd178c76482cefaa7dafde91836e46de3eab9760f26b6d06293a850e0574c13a9224899c2838899accb70df2990c6e3c638fe7b7f3394682c84d4c90e679ea872a141bfd34c9c70bc2b5059558c78ff01dfd3a57abb9133ca10a7d79cd727c019416edc501f54725f55c1ec3bf40a9482c720a5bf6bf69720cca9efbe25cfffa711266e86a9067d8af9580953baa3b666a42687e95aeb8d32a028e568c141de06d6b63dc11d22e2af926336397e49280c045de892fe1fd278be33153d57eaa85d9cdd4158ecb2cdbba26dc4eae1fa87f8aaf84d51588640e3d02e12e6032d4dad3d2e0435e467bd325c9bbfd3699861c9248dac29cbb90d9c72093f2256066ee387e6a854722bfc511892b2cba7a28813538cbad6108add313f81c0183d75ebc89a2f61c57bda0cc443bd6889188d994fbbef7f&cri=YinCWZikHs&ts=11&cb=1675610597382
IP 50.16.211.97:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=YinCWZikHs&ts=11&cb=1675610597382 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=7de5d06d6332311fe6f1eb80f1f7f25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Sun, 05 Feb 2023 15:22:36 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a78b06ca527ce7542b24b349e0485d8b
6f5e5126c1c9d40c9ba09d58e1755d2ca39d02ab
bc7dc156ab8b2b33422fff0922e219246eb1d12469d10ac8007416fed41ac473
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F386088%2Fsariixo%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675610597371&hl=1&op=0&ag=1317291471&rand=647987807890796251021662129885127907219051177118588011899085712617217007956&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%2Fbz1zaGFyaW5nIl0sWy01MSwiLSJdLFstNTIsIi0iXSxbLTUzLCIwMTAiXSxbLTU0LCJ7XCJoXCI6W1wiNDEwNDMxNjIzXCIsXCIyNjM5MjIyNDY4XCIsXCJfM1wiLFwiMjg3Mjg5OTMyMFwiXSxcImRcIjpbXSxcImJcIjpbXCJfMVwiLFwiMTA2NDgyMjY4N1wiLFwiNDEwNDMxNjIzXCIsXCIyNjM5MjIyNDY4XCJdLFwic1wiOjF9Il0sWy01NSwiMSJdLFsiZGRiIiwiMCw1LDAsMSwxLDMsMCwwLDAsMCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwzLDAsMCwwLDEsMCwxLDAsMCwwLDAsMCwyLDMsMCwwLDAsMSwwLDAsMCwwLDAsMSJdLFsiYm5jaCIsMzldLFsiYWJuY2giLDM5XV0%3D&dep=0&pre=0&sdd=%7B%7D&cri=YinCWZikHs&pto=2075&ver=50&gac=1305058204.1675610597&mei=&ap=&duid=1.1675610596.z27hzrCBC0J9FkNN&suid=1.1675610596.TM7UVGLUpxfJnCEi&tuid=1.1675610596.2dJMOw2CX9NVym7Q&fbc=->m=W10%3D&it=78%2C1289%2C66&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
50.16.211.97200 OK 31 kB URL HTTP/2 paper.ostrichesica.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F386088%2Fsariixo%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675610597371&hl=1&op=0&ag=1317291471&rand=647987807890796251021662129885127907219051177118588011899085712617217007956&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%2Fbz1zaGFyaW5nIl0sWy01MSwiLSJdLFstNTIsIi0iXSxbLTUzLCIwMTAiXSxbLTU0LCJ7XCJoXCI6W1wiNDEwNDMxNjIzXCIsXCIyNjM5MjIyNDY4XCIsXCJfM1wiLFwiMjg3Mjg5OTMyMFwiXSxcImRcIjpbXSxcImJcIjpbXCJfMVwiLFwiMTA2NDgyMjY4N1wiLFwiNDEwNDMxNjIzXCIsXCIyNjM5MjIyNDY4XCJdLFwic1wiOjF9Il0sWy01NSwiMSJdLFsiZGRiIiwiMCw1LDAsMSwxLDMsMCwwLDAsMCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwzLDAsMCwwLDEsMCwxLDAsMCwwLDAsMCwyLDMsMCwwLDAsMSwwLDAsMCwwLDAsMSJdLFsiYm5jaCIsMzldLFsiYWJuY2giLDM5XV0%3D&dep=0&pre=0&sdd=%7B%7D&cri=YinCWZikHs&pto=2075&ver=50&gac=1305058204.1675610597&mei=&ap=&duid=1.1675610596.z27hzrCBC0J9FkNN&suid=1.1675610596.TM7UVGLUpxfJnCEi&tuid=1.1675610596.2dJMOw2CX9NVym7Q&fbc=->m=W10%3D&it=78%2C1289%2C66&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP 50.16.211.97:0
Hash ad864d75a880bf654450e0541ffb509b
5f81eec71abf0f7ca83205a9c18ea30f75afbdcf
00485f2c4851c388aa764a0a1a4795cbbb04f848ab90b9cf1564d5561963370d
GET /ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F386088%2Fsariixo%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675610597371&hl=1&op=0&ag=1317291471&rand=647987807890796251021662129885127907219051177118588011899085712617217007956&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%2Fbz1zaGFyaW5nIl0sWy01MSwiLSJdLFstNTIsIi0iXSxbLTUzLCIwMTAiXSxbLTU0LCJ7XCJoXCI6W1wiNDEwNDMxNjIzXCIsXCIyNjM5MjIyNDY4XCIsXCJfM1wiLFwiMjg3Mjg5OTMyMFwiXSxcImRcIjpbXSxcImJcIjpbXCJfMVwiLFwiMTA2NDgyMjY4N1wiLFwiNDEwNDMxNjIzXCIsXCIyNjM5MjIyNDY4XCJdLFwic1wiOjF9Il0sWy01NSwiMSJdLFsiZGRiIiwiMCw1LDAsMSwxLDMsMCwwLDAsMCwwLDAsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwzLDAsMCwwLDEsMCwxLDAsMCwwLDAsMCwyLDMsMCwwLDAsMSwwLDAsMCwwLDAsMSJdLFsiYm5jaCIsMzldLFsiYWJuY2giLDM5XV0%3D&dep=0&pre=0&sdd=%7B%7D&cri=YinCWZikHs&pto=2075&ver=50&gac=1305058204.1675610597&mei=&ap=&duid=1.1675610596.z27hzrCBC0J9FkNN&suid=1.1675610596.TM7UVGLUpxfJnCEi&tuid=1.1675610596.2dJMOw2CX9NVym7Q&fbc=->m=W10%3D&it=78%2C1289%2C66&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: paper.ostrichesica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=7de5d06d6332311fe6f1eb80f1f7f25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Sun, 05 Feb 2023 15:22:36 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 957
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-
142.250.74.164200 OK 584 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash ffa92c1a96485ba730e51de7d5ef5fb9
8dd883c58e5e51e68260ca6067d3fdde2aa1dd4a
f97b9e35db46fb28c9da9ea8f4c0eaee60fe1e73b090fdf74d264a40e6f662ba
GET /recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 05 Feb 2023 15:22:36 GMT
date: Sun, 05 Feb 2023 15:22:36 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c7d887fc3e3b7a68b7872c76802085c0
eb26f820776e7d87a00489eb14f918e5f6945835
915e873e95d8f0276f4763e5596b03cac487f6f8a36c65577c6622fc8560d929
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.chargebee.com/v2/pi-worker-7db4bf6f61fec93697ad6b88cb6e629c.js
143.204.55.124200 OK 136 kB URL HTTP/2 js.chargebee.com/v2/pi-worker-7db4bf6f61fec93697ad6b88cb6e629c.js
IP 143.204.55.124:0
Size 136 kB (136347 bytes)
Hash f096bdeef49cf0e9f3a699dbed6542a5
d3293bb8c965c2870fee7cab92f0b4e26601a090
578bec9cc0e0b8b31a4d78835bbbb9a4962c4c223548746ff7ea8e406ad88275
GET /v2/pi-worker-7db4bf6f61fec93697ad6b88cb6e629c.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 02 Feb 2023 08:38:42 GMT
x-amz-version-id: 1sr4dmwMz7DhW82Q8tYZDWzW1ALnO6v_
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 05 Feb 2023 15:18:27 GMT
cache-control: max-age=300,public
etag: W/"97cec07d2c26d860bfd2e16426fca8fe"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QGL1FxWPZ7ojYefYzar5wSl_Yh8FL4kfI24SVNQdqKxKNtTb4ap3eQ==
age: 249
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
216.58.211.3200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (633)
Size 164 kB (163841 bytes)
Hash fe98364486b3206867b17008f995646f
35a5e9aa210970f7abd718d99e629c6982a3cc02
1fd703cb16e3f6f3f7192109d19c69d6e5ac1cfa0feb5b105a86564b7970d28a
GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://js.chargebee.com
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 08:53:11 GMT
expires: Wed, 31 Jan 2024 08:53:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 02:51:47 GMT
content-type: text/javascript
age: 455365
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/redirect/link/386088/sariixo/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
172.64.207.34200 OK 42 kB URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/386088/sariixo/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
IP 172.64.207.34:0
File type JSON data\012- , ASCII text, with very long lines (916), with no line terminators
Hash f9ed28d7a7e9b275c7b8a5f6f5081d53
f1b532e623925e80d522adf6cc26b30dcddc75fb
b350bb5067f0e76f68d34c1b933eb83d70623ac0bce996510fd2722a748c9946
POST /api/v1/redirect/link/386088/sariixo/traffic-validation?X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Content-Length: 92
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:36 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=jqPbch4WX58BwlaACGAp4unKhdfe0DUGPN9IkcSg; expires=Mon, 05 Feb 2024 15:22:36 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FHwqkKjp07KsZHha%2B58NfTZ7q0y20gyp%2BPGTLYM2TXvK8gkVy4vBlCO7OkL1mzbjWGPE5LXO%2BouQO98hYg2tScbiwO8A9vXniINSu2fyp4Rk5t70oKtMnvf0xGfC%2FUZHT1Zxm1Yf8d%2Bjw7V0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 794ca47b5e26d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-7DRMH8RP03>m=45je3210&_p=155975167&cid=1305058204.1675610597&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675610597&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F386088%2Fsariixo%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-7DRMH8RP03>m=45je3210&_p=155975167&cid=1305058204.1675610597&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675610597&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F386088%2Fsariixo%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7DRMH8RP03>m=45je3210&_p=155975167&cid=1305058204.1675610597&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675610597&sct=1&seg=0&dl=https%3A%2F%2Flinkvertise.com%2F386088%2Fsariixo%2F1&dt=Loading...%20%7C%20Linkvertise&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://linkvertise.com
date: Sun, 05 Feb 2023 15:22:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/impl.20230205-12-RELEASE.js
151.101.193.44200 OK 197 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20230205-12-RELEASE.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (65508)
Size 197 kB (196892 bytes)
Hash e6532114add3d32d6861de016d706d57
9807b129f4e9d3714ac7a2b0c542f44dd21cd410
ef9cbfbf9ab3f37a31cf5679aa819741590492e71ab0ee5269f9a5e335f22e99
GET /libtrc/impl.20230205-12-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: vX/DjxXcyh9oDFshSYRH3/jq/s0phq+C0+TSb6NZOz9I++jhhWGoSqa/hCcFiZoG0ws6kRB/wUk=
x-amz-request-id: NQT1BRGRF9H6J6QH
x-amz-replication-status: COMPLETED
last-modified: Sun, 05 Feb 2023 14:29:53 GMT
etag: "49e56b50b95c2f758636cee6ffc5339c"
x-amz-version-id: gf8ptCgadtML.X_sSHKpHYsru_K3YIRT
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 05 Feb 2023 15:22:36 GMT
via: 1.1 varnish
age: 2928
x-served-by: cache-bma1658-BMA
x-cache: HIT
x-cache-hits: 1985
x-timer: S1675610557.948797,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 55
content-length: 196892
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12575
Expires: Sun, 05 Feb 2023 18:52:12 GMT
Date: Sun, 05 Feb 2023 15:22:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12575
Expires: Sun, 05 Feb 2023 18:52:12 GMT
Date: Sun, 05 Feb 2023 15:22:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12575
Expires: Sun, 05 Feb 2023 18:52:12 GMT
Date: Sun, 05 Feb 2023 15:22:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12575
Expires: Sun, 05 Feb 2023 18:52:12 GMT
Date: Sun, 05 Feb 2023 15:22:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12575
Expires: Sun, 05 Feb 2023 18:52:12 GMT
Date: Sun, 05 Feb 2023 15:22:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 14:53:51 GMT
age: 1726
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 38c58626-f4ad-4e2b-ad71-a628519d2ea2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmEdHFwCoAMFhxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8b453-7da6d0c1093468d320caaa1e;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 06:25:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t8dZTwod1-pZr8ACfp-6gfEu0TA3kGpfJrQeF8VgLg2tlrt03sa6Bg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:40:08 GMT
age: 42149
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
216.58.207.227200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 11072, version 1.0\012- data
Hash e7df3d0942815909add8f9d0c40d00d9
cf5032eea3399a58870e8a05e629b006a8c7c3c7
bce2f309470952b7affa62ff4d91b454334c68cefa541429b502904d20696875
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 09:38:52 GMT
expires: Sat, 03 Feb 2024 09:38:52 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:53 GMT
content-type: font/woff2
age: 193425
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: c11233d1-ef16-4b03-9174-a493011dc0ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEoFHOKIAMFZwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8166-4a290e811547293f437311bb;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:49:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1F0bxib8bn4kZvGBTL63ecNDDEy6XZ8kIb8K5BNqusVL9SvAAARUJw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:11:45 GMT
age: 61852
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7a466d89c75ff3459b7328591db52cf
c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb
e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:10:58 GMT
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
age: 61899
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a4eed23b240d04a3cd6b085cfa93375
f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00
93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10905
x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmNJCEDzIAMFmxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jIvBQjGh9JzWQM0YpEYiqP5CcBrkwqLVjAYhMWJ1P1H0MRkm7kpnpg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:12:06 GMT
age: 61831
etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 251f1a5d671fb797fb98e9a71754c341
335425603d9eec146a3c03422dbca91134272e53
74932f07561287e33302aabcf9c639e9df7ae0fbc4bf71f5467310aabafea208
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6202
x-amzn-requestid: 01b85fcd-69a0-49da-8640-32a3ef19378a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bUFEJoAMFapg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c48-14817e717361e09170714e9d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1_1mEN4j5cciWEiimz4PRjx3PNGnrSRib9oEJAdYLrrtyjqnz_zvcQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 12:31:54 GMT
age: 10243
etag: "335425603d9eec146a3c03422dbca91134272e53"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 8942dac2c3b84167c8c1c36c8c5dbc24
3202c79b026ed05cd1568065cfba03cffe066637
998bc79f4dc7577f16aa29eea707a9f74380352848fae678f2f9e1a5a5ea42c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5473
Cache-Control: max-age=165831
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:37 GMT
Etag: "63df9923-138"
Expires: Tue, 07 Feb 2023 13:26:28 GMT
Last-Modified: Sun, 05 Feb 2023 11:55:15 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 312
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 32 kB URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
File type C source, ASCII text, with very long lines (29462)
Hash ec4e9f8e62af5181e893b59ed1edca53
0b2f22baf43ae68de716684c23e12c92fc5aa006
49b865f424b24bfcfd3728cb30441cde04e68310ac16b862c740ec658cab04cd
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:36 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 846762
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 21:48:03 GMT
expires: Fri, 02 Feb 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 236074
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
trc-events.taboola.com/linkvertise-link-to/log/2/debug?tim=15%3A23%3A18.023&type=usage&msg=rtus&llvl=2&id=5323&cv=20230205-12-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/linkvertise-link-to/log/2/debug?tim=15%3A23%3A18.023&type=usage&msg=rtus&llvl=2&id=5323&cv=20230205-12-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /linkvertise-link-to/log/2/debug?tim=15%3A23%3A18.023&type=usage&msg=rtus&llvl=2&id=5323&cv=20230205-12-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sun, 05 Feb 2023 15:22:38 GMT
x-fastly-to-nlb-rtt: 21987
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash b23324d6f4d0e667817fe82657ea263e
d82916373ee96db4ec3f53ce1c45be33335eb5d2
591a0efe0ebb8eeda4679ee09e9bfe90d09af104f101724781bac817a2902cae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3966
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:38 GMT
Last-Modified: Sun, 05 Feb 2023 14:16:32 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:38 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=qE8Ocl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czdIaWFldkIyQ2lkQ21qTzQ5YmhTNWJOUUdUWlpMNVNya0lhd1FSa3NWdXY; expires=Fri, 01 Mar 2024 15:22:38 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 334976
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 77c548ed6dbee7a04321102c3d93db5c
3f4a20119d052c6c8e5f4224a2948ffd559f96b3
5d553cadff959602e40d007c876a01e0dd4540640c64bbb2679300d43326c603
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3889
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:38 GMT
Last-Modified: Sun, 05 Feb 2023 14:17:49 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 77c548ed6dbee7a04321102c3d93db5c
3f4a20119d052c6c8e5f4224a2948ffd559f96b3
5d553cadff959602e40d007c876a01e0dd4540640c64bbb2679300d43326c603
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3862
Cache-Control: max-age=137215
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:38 GMT
Etag: "63df2fa7-139"
Expires: Tue, 07 Feb 2023 05:29:33 GMT
Last-Modified: Sun, 05 Feb 2023 04:25:11 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 313
gum.criteo.com/sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=JwfTj180M0RITmhlJTJCZkMwOUJGQlhaMUN2czdIaWFldkIyQ2lkQ21qTzQ5YmhTNVpMOGtpNlAlMkZCbnhDYmR0UjklMkJkaERJ&idsd=-1127344876,-835648960&cw=1&rtusCallerId=72&lsw=1
178.250.0.157200 OK 315 B URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=JwfTj180M0RITmhlJTJCZkMwOUJGQlhaMUN2czdIaWFldkIyQ2lkQ21qTzQ5YmhTNVpMOGtpNlAlMkZCbnhDYmR0UjklMkJkaERJ&idsd=-1127344876,-835648960&cw=1&rtusCallerId=72&lsw=1
IP 178.250.0.157:0
File type JSON data\012- , ASCII text, with very long lines (393), with no line terminators
Hash 859c3fb2f57224c107f3418e9058bc5c
d02f7ba9a1bff0ad73ba09e99569980793cfc8b1
b0f4a69381962ab7cd63c8095dd665a455b2314dd6fdc4219779e8ad1c4d7574
GET /sid/json?origin=rtus&domain=linkvertise.com&sn=FirefoxSyncframe&so=0&topUrl=linkvertise.com&info=JwfTj180M0RITmhlJTJCZkMwOUJGQlhaMUN2czdIaWFldkIyQ2lkQ21qTzQ5YmhTNVpMOGtpNlAlMkZCbnhDYmR0UjklMkJkaERJ&idsd=-1127344876,-835648960&cw=1&rtusCallerId=72&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:38 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1378690
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash f26d5481a18bcf64b0421f80f30c35ab
4962f67774adcba3a20cf9c4d26d4d45bcb0d2ea
d02eda5fdcd7f8918c3753054923061885b07155764140d32349b55acd998f94
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5414
Cache-Control: max-age=116066
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 15:22:38 GMT
Etag: "63ded6fa-13a"
Expires: Mon, 06 Feb 2023 23:37:04 GMT
Last-Modified: Sat, 04 Feb 2023 22:06:50 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 314
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:38 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-crto-bundle: ahs4vV9CJTJGQ0ZRbWdCZVR1bGVqajJxNzZKOHZYdmVuc29OcG5qNVZDOURGVEhvUXFWTHR4ZnJDRlBmTlJ5bWxCSVYyNTV6RjFzd2w2SjFWJTJGUWpldGYlMkZabFRMM1RuOGhQJTJCMW1QOHVFY0IxM0JUMWNtOU9jTXdENzVnVFVDSDJaem5WQlVRVkV4cHZkNlhyZXAlMkIlMkZaVVJsQWpMZEElM0QlM0Q
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:38 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://linkvertise.com
server-processing-duration-in-ticks: 1772131
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css
104.17.25.14200 OK 0 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css
IP 104.17.25.14:0
GET /ajax/libs/font-awesome/5.10.2/css/all.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:35 GMT
content-type: text/css; charset=utf-8
content-length: 10228
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-111e5"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1513695
expires: Fri, 26 Jan 2024 15:22:35 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mW3i5RGGNbynZsm38pIP4q0Ax%2FLIIFTTOIP1PvYQ430xoa44ehxqOxBpDWcxKwbm25PClDpfkddYeuuSjKvV1LDc%2BXBvLGx2caLAw%2F1Paa%2BGrLZBMc28B9wEAo%2BUD12qpWUnmgZz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 794ca471fb5bb50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.chargebee.com/v2/148-3987f172361378a6883f.js
143.204.55.124200 OK 0 B URL HTTP/2 js.chargebee.com/v2/148-3987f172361378a6883f.js
IP 143.204.55.124:0
GET /v2/148-3987f172361378a6883f.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-7db4bf6f61fec93697ad6b88cb6e629c.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 02 Feb 2023 08:38:42 GMT
x-amz-version-id: g8QbkeSlglOFXISI9gUwE71gXE_D32gK
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 05 Feb 2023 15:20:04 GMT
cache-control: max-age=300,public
etag: W/"6d813d6e32089bc8a6b827ee01e287ec"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GG-C-yvkFJrzd-vmVpi_9M1rSI-gtVJfdfGtCIza13SPldrJ4ua3aQ==
age: 166
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.97200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.97:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:38 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 91190
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=2rETNRbWw23%2FXc3f1%2FbzqYtH2uD0CFgtiHOiHprRW57ip0ZZatLEDgDv%2F9PH0qDzJElL&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
172.64.207.34200 OK 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=2rETNRbWw23%2FXc3f1%2FbzqYtH2uD0CFgtiHOiHprRW57ip0ZZatLEDgDv%2F9PH0qDzJElL&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd
IP 172.64.207.34:0
GET /api/v1/validate-traffic?cheq_response=2rETNRbWw23%2FXc3f1%2FbzqYtH2uD0CFgtiHOiHprRW57ip0ZZatLEDgDv%2F9PH0qDzJElL&X-Linkvertise-UT=6JHuU2ng3zAdlDGwZPdp10mmUl3nocEzmPnXgS9xhQtMuIlsQgzNlfgualXjkKJd HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:36 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=OzgYDGd2lHqVzLsKOgRcB5J0dDRaw6zTzrTOe2LF; expires=Mon, 05 Feb 2024 15:22:36 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rYk5%2FZyrnzBWL2QrQYkm3Iztkfz7fFLmcyyj5gybxhzUoCjN%2FatZtMWSyN3vEyq27cafJ999S3m6%2F8dTYS0bHRM0FQMq7cGJSrOfQufJBtjxjjKMBL0EAK8AhmUv3bZJIuwY1auQpN5whZuk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 794ca47b5e23d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
linkvertise.com/assets/ads.js
172.64.207.34200 OK 0 B URL HTTP/2 linkvertise.com/assets/ads.js
IP 172.64.207.34:0
GET /assets/ads.js HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/386088/sariixo?o=sharing
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:35 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"87a18df10c601bf2ed3321eab0aec42a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gf3VzgIrGTfLezWOzUtI%2F9uFcOceqQyoaO8XBsFiolXUxRjJWXV602iNng7qrHKEaObIKzXRGQoM7u63avyddMXTyaQFNzUScWEM1uKkBFLCaIIsQIeSNTQsURMnJnQX0W8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 794ca4717f8474d1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
linkvertise.com/polyfills.377513cbf9a45f49.js
172.64.207.34200 OK 0 B URL HTTP/2 linkvertise.com/polyfills.377513cbf9a45f49.js
IP 172.64.207.34:0
GET /polyfills.377513cbf9a45f49.js HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/386088/sariixo?o=sharing
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:35 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"3f3f145029d39fbfb2042c5095feac69"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EZpUOI9oRus5y1z1HI8mHLVKH%2FPvfF9KiAg1xpK%2FsJxe%2FkEfzsZhP5YbvAcvaE94O0mavwXTfPK8nc28UXQkAirpKAiHWoEULgfieDP94LplqhjxNCJx4eckG1hxj9yFqq0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 794ca4717f8d74d1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
linkvertise.com/main.3ce3d8abd3f40994.js
172.64.207.34200 OK 0 B URL HTTP/2 linkvertise.com/main.3ce3d8abd3f40994.js
IP 172.64.207.34:0
GET /main.3ce3d8abd3f40994.js HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/386088/sariixo?o=sharing
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:35 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"502db49c496dbc79512b1261ed916b72"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v%2FYGtjccv5V%2FSefiuOWOD%2FwlU18%2FQ%2BwDtJDKaZUc0TfpmH2dUp71aZu4cW4j20Gim8yS6BlcJLokEQ4wC2dPQvCJ50x0lgmMNDl3BOjRDuIagVLb2F4nQvbmfeDmRXVrfQg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 794ca4717f8f74d1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
104.18.10.207200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
IP 104.18.10.207:0
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:35 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: ed8d946baeeb2ee38f4aebce8d84f641
cdn-cache: HIT
cf-cache-status: HIT
age: 18653845
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 794ca471ed65b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.chargebee.com/v2/136-04294f7bee4da31abb6d.js
143.204.55.124200 OK 0 B URL HTTP/2 js.chargebee.com/v2/136-04294f7bee4da31abb6d.js
IP 143.204.55.124:0
GET /v2/136-04294f7bee4da31abb6d.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 02 Feb 2023 08:38:42 GMT
x-amz-version-id: NSlm2Jg29xJx93Rrs7mbrPf.GhDDN61Q
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 05 Feb 2023 15:19:43 GMT
cache-control: max-age=300,public
etag: W/"9aef1ba966da7d13bb8f9410eea89309"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EuZLprbF2qi5U26Kktinupa4cU3vc7b3dNVtlKksFgUQjXEcNJW0vg==
age: 175
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/redirect/link/static/386088/sariixo?origin=
172.64.207.34200 OK 0 B URL HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/386088/sariixo?origin=
IP 172.64.207.34:0
GET /api/v1/redirect/link/static/386088/sariixo?origin= HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Origin: https://linkvertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:36 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=MMiSEOdfomNkPTmLCbMeEr6PcVCoLqNrmeOoNrtI; expires=Mon, 05 Feb 2024 15:22:36 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1f9l6Vo%2B1Vz%2BjePKU9cFmrs12laoDZK%2Bz%2BDxrrY1WjDcomSLfvDLnXrbv8p0bTWchhgTtHYP3M7T0JmeZuYOAlCiE3LocKzYz7Fjvh8agWo6ZIkIzx1aszhTbM3Jalb9279Wq3uBaTcXm%2Bd0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 794ca4775fa0d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.7200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.7:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:38 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 97503
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
104.18.10.207200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
IP 104.18.10.207:0
GET /bootstrap/4.1.3/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:35 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 12/11/2021 23:51:22
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 873d47ad8054cd5f5d4a8793d245560e
cdn-cache: HIT
cf-cache-status: HIT
age: 1505847
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 794ca471fd6fb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
linkvertise.com/scripts.03e173ff37d2f1cf.js
172.64.207.34200 OK 0 B URL HTTP/2 linkvertise.com/scripts.03e173ff37d2f1cf.js
IP 172.64.207.34:0
GET /scripts.03e173ff37d2f1cf.js HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/386088/sariixo?o=sharing
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:35 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"1268514dea3db40394e6eb9570f7e70d"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wj%2BqNWUiFDnDB4MsPmrqyp9%2FdvXdfe8e3DgHrCDhdIJu2Mftknza2Lk7AEJRZoshSndTHMIUJYzcGAQQSwjTziMZZJmypNNBTl0MYzjxqxx08k5BtVZ59s9mL7daQatPMxE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 794ca4717f8e74d1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=linkvertise.com
IP 178.250.0.157:0
GET /syncframe?origin=rtus&topUrl=linkvertise.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://linkvertise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 15:22:37 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=0212d30d-4c9d-437f-b6a7-f196d5a20809; expires=Fri, 01 Mar 2024 15:22:37 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 775354
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2