pages.catonetworks.com/MjQ1LVJKSy00NDEAAAGJzzumz8Invoqvuo73j_gV0Dz98E1ZOMNskN9ozIxQxVY5lPQzioPh8DiHoYNqXsOZMOpNiXw=
104.17.73.206301 Moved Permanently 0 B URL HTTP/1.1 pages.catonetworks.com/MjQ1LVJKSy00NDEAAAGJzzumz8Invoqvuo73j_gV0Dz98E1ZOMNskN9ozIxQxVY5lPQzioPh8DiHoYNqXsOZMOpNiXw=
IP 104.17.73.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /MjQ1LVJKSy00NDEAAAGJzzumz8Invoqvuo73j_gV0Dz98E1ZOMNskN9ozIxQxVY5lPQzioPh8DiHoYNqXsOZMOpNiXw= HTTP/1.1
Host: pages.catonetworks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 09 Feb 2023 00:26:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-request-id: d07c207111a01297
location: https://pages.catonetworks.com/MjQ1LVJKSy00NDEAAAGJzzumz8Invoqvuo73j_gV0Dz98E1ZOMNskN9ozIxQxVY5lPQzioPh8DiHoYNqXsOZMOpNiXw=
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=UtuhNT29mBoSAq.M_I0eNn83e_V.JmhsfgeFElqz_vM-1675902400-0-AQXTkCiz8fngLhml+Oh5UnNEOB+ig9Apiw+3hJCVCoTL0uegI4p3Kds6Mj//oDvaDI5b1JQXinJ2KO/J3aC7TRM=; path=/; expires=Thu, 09-Feb-23 00:56:40 GMT; domain=.pages.catonetworks.com; HttpOnly; SameSite=None
Server: cloudflare
CF-RAY: 79687994fe6cb4f4-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3338
Expires: Thu, 09 Feb 2023 01:22:19 GMT
Date: Thu, 09 Feb 2023 00:26:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4443
Expires: Thu, 09 Feb 2023 01:40:44 GMT
Date: Thu, 09 Feb 2023 00:26:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 23:36:45 GMT
content-type: application/json
age: 2996
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5341
Expires: Thu, 09 Feb 2023 01:55:42 GMT
Date: Thu, 09 Feb 2023 00:26:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: nEOBV688HThyV0qB6j+xZaKiy0O4CJrKBvKEPKWgbl556LNPyidt2zCYODexAymmCfCPiheipkI=
x-amz-request-id: FC7YHGDAZ54YZSAR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 23:46:09 GMT
age: 2432
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 00:26:41 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 02d7cd025408d6ce17f10a1adbce910b
94f4244b30946fbfb4e200d411492ca190c289c0
102f68f75e03b3b4bd485de24b021dbcadf8ad6434bfdc06c49522784d7f8404
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=171620
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:41 GMT
Etag: "63e43925-118"
Expires: Sat, 11 Feb 2023 00:07:01 GMT
Last-Modified: Thu, 09 Feb 2023 00:07:01 GMT
Server: nginx
Content-Length: 280
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3742
Expires: Thu, 09 Feb 2023 01:29:03 GMT
Date: Thu, 09 Feb 2023 00:26:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 09 Feb 2023 00:14:52 GMT
age: 709
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
go.catonetworks.com/Bad-clicks-123111223.html?mkt_tok=MjQ1LVJKSy00NDEAAAGJzzumzwKxPlgYJuFzZfmaUOlWJmzLMtYNUcAb0EZ_k0B_4eiIaega9XHV_112AA0wqsf-CQ2GKmssHgOc4NPyvUWKgrlK2a6Ma13ge5eLPhW1
104.17.70.206301 Moved Permanently 398 B URL HTTP/1.1 go.catonetworks.com/Bad-clicks-123111223.html?mkt_tok=MjQ1LVJKSy00NDEAAAGJzzumzwKxPlgYJuFzZfmaUOlWJmzLMtYNUcAb0EZ_k0B_4eiIaega9XHV_112AA0wqsf-CQ2GKmssHgOc4NPyvUWKgrlK2a6Ma13ge5eLPhW1
IP 104.17.70.206:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e63d9a2de60e12ea31915ffd3f0c8e9f
7d5a6c26d0364d42b0910d640db3d84a5cc9157d
78275a4922bfec70bb43b84346e217c72d4f0fa371dab52219f220dc1b8e7917
GET /Bad-clicks-123111223.html?mkt_tok=MjQ1LVJKSy00NDEAAAGJzzumzwKxPlgYJuFzZfmaUOlWJmzLMtYNUcAb0EZ_k0B_4eiIaega9XHV_112AA0wqsf-CQ2GKmssHgOc4NPyvUWKgrlK2a6Ma13ge5eLPhW1 HTTP/1.1
Host: go.catonetworks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 09 Feb 2023 00:26:41 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://go.catonetworks.com/Bad-clicks-123111223.html?mkt_tok=MjQ1LVJKSy00NDEAAAGJzzumzwKxPlgYJuFzZfmaUOlWJmzLMtYNUcAb0EZ_k0B_4eiIaega9XHV_112AA0wqsf-CQ2GKmssHgOc4NPyvUWKgrlK2a6Ma13ge5eLPhW1
Vary: Accept-Encoding
X-Cache-Status: BYPASS
X-MKTO-Nginx-Cache: false
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=ISfU8AqHyjch.OQqNX9ZcRsRziPj7SexoCVsv1mLnrM-1675902401-0-ATqEk8wHLaJTilrvdFFhONnos+LSKqMRioBCS9zHfneYCLuc4ymlWBFoVelqDZlEO061WHGGLNwi6WdmY+E0FvU=; path=/; expires=Thu, 09-Feb-23 00:56:41 GMT; domain=.go.catonetworks.com; HttpOnly; SameSite=None
Server: cloudflare
CF-RAY: 7968799afed90b02-OSL
push.services.mozilla.com/
54.148.213.75101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.213.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: e2pdMnYTjS0Iuz7vzGAH/Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VfVetkc3KcTmemsEbVrJDqNfbII=
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8cf977e322cb1f3a4ae1c2246a4738d1
6a0077ce83b019d3a220d28e3375ec8492cb2ac3
16f75fa9bcc972e806a3d90c129ea0e6f8b58bb93b35461ac9374f3070749bc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:41 GMT
Etag: "63e34b6b-117"
Server: ECS (amb/6BC6)
Content-Length: 279
munchkin.marketo.net//munchkin.js
88.221.99.189200 OK 728 B URL HTTP/1.1 munchkin.marketo.net//munchkin.js
IP 88.221.99.189:0
File type ASCII text, with very long lines (521)
Hash 51a92d8c69733d719447dea0416ed039
69f4c1e0b7ebba812bc096708d57627927dff265
cb483c0ea4012ac512bcba6204b37622b388c1aefd4ae9028f60abb965f23d29
GET //munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "92b41a298690c047b0c4602dd843cba4:1662686319.691662"
Last-Modified: Fri, 09 Sep 2022 01:18:39 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 09 Feb 2023 00:26:42 GMT
Content-Length: 728
Connection: keep-alive
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c99599d6628f41d54430edaa40f5c533
4bbd35fd1097784ae5e1e046ba35595eb49ac57f
3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-K8SHJM
142.250.74.168200 OK 81 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-K8SHJM
IP 142.250.74.168:0
File type ASCII text, with very long lines (16191)
Hash da752980b45f097c657f18c5353ae910
367b3efdd9e4a7da48b8f4080640027ef28e3952
848f6a0f6baf5082d8c422d55bc9f8161e71473d6ba040b3a5c606ec33767cd6
GET /gtm.js?id=GTM-K8SHJM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 Feb 2023 00:26:42 GMT
expires: Thu, 09 Feb 2023 00:26:42 GMT
cache-control: private, max-age=900
last-modified: Thu, 09 Feb 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80722
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
go.catonetworks.com/js/stripmkttok.js
104.17.73.206200 OK 678 B URL HTTP/2 go.catonetworks.com/js/stripmkttok.js
IP 104.17.73.206:0
Hash 3fdef86d42eeb7dfcfb73a530ee91fc5
2607ea641352760e576457f45118a7669410f985
8a52a2135e190805e486c15721ae5af8a353d2882d515a316aa106e8c0a38099
GET /js/stripmkttok.js HTTP/1.1
Host: go.catonetworks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/Bad-clicks-123111223.html?mkt_tok=MjQ1LVJKSy00NDEAAAGJzzumzwKxPlgYJuFzZfmaUOlWJmzLMtYNUcAb0EZ_k0B_4eiIaega9XHV_112AA0wqsf-CQ2GKmssHgOc4NPyvUWKgrlK2a6Ma13ge5eLPhW1
Cookie: BIGipServerPOOL-31.222.131.4-442-na-LON05=!lbAKnUwh6Grna4e9jRdq5/AJjPbVzcwLk6VxWNjlqgcltq9IrlOEb11BLRpFuamjoiZwFHO8ILhl0JI=; __cf_bm=qm1KgfRUZL0EXhC1L4.fa_94tH1umQk_5qY3RgIhR.g-1675902402-0-AbrPUcPqLcTee5wOLaZzlFbG7MoJIdGm27mtsvNseqMl5J/Mo4cELKncrf64HQmr+pwfus2txfbMc3W5jeHw0kg=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:42 GMT
content-type: application/x-javascript
content-length: 678
last-modified: Thu, 12 Jan 2023 20:56:20 GMT
etag: "fe0872-602-5f217594de500"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
expires: Thu, 09 Feb 2023 04:26:42 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 796879a149ddb4f1-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c99599d6628f41d54430edaa40f5c533
4bbd35fd1097784ae5e1e046ba35595eb49ac57f
3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
munchkin.marketo.net/162/munchkin.js
88.221.99.189200 OK 4.7 kB URL HTTP/1.1 munchkin.marketo.net/162/munchkin.js
IP 88.221.99.189:0
File type ASCII text, with very long lines (606)
Hash 3e9baed982956735f6e0a0e756d97ed9
9223be6a494a10959101a7942419df7b05b84d73
930a508ed0ea6b4861d19c0738360182514010913c4ebfe9352064ae5006f8a1
GET /162/munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "75daf56f6191efe42577301908659c29:1656637152.894482"
Last-Modified: Fri, 01 Jul 2022 00:59:12 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=8640000
Expires: Sat, 20 May 2023 00:26:42 GMT
Date: Thu, 09 Feb 2023 00:26:42 GMT
Content-Length: 4677
Connection: keep-alive
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
www.google-analytics.com/gtm/optimize.js?id=OPT-TBSXZJX
216.239.34.178200 OK 46 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=OPT-TBSXZJX
IP 216.239.34.178:0
File type ASCII text, with very long lines (1759)
Hash b85b29a0687ac221b92d0aadb1f10306
fcd10172d7da2bf1fd0688f9b883f142d95cb6b3
3c8433903852bcb0106f91ceaebb7abaf3daaf2037309bf3e773e67eb64628d8
GET /gtm/optimize.js?id=OPT-TBSXZJX HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 Feb 2023 00:26:43 GMT
expires: Thu, 09 Feb 2023 00:26:43 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46540
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3a9622b66047e190b3cfc6195bdd7fab
bcca83d7c2ffd3cfa85977f482b55652a3bc7125
0d60e19adb8a372154df24d216dab417781072d7adc8ca0a734b8b9084f0a7fa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2734
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:43 GMT
Last-Modified: Wed, 08 Feb 2023 23:41:09 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 59274586b00249f3cbd2ff5dc9071563
76b59ad65277082e1811d339bf03d953037e0a25
7e6c2cd14a5c882d4a742f80bc48f2c9704ea2ca12e2e98f9f144ce230450eb0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3860
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:43 GMT
Last-Modified: Wed, 08 Feb 2023 23:22:23 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
cdn.cookielaw.org/consent/3ead6bec-a9f0-42dc-b4d4-555f386a9b55.js
104.16.148.64200 OK 20 kB URL HTTP/2 cdn.cookielaw.org/consent/3ead6bec-a9f0-42dc-b4d4-555f386a9b55.js
IP 104.16.148.64:0
File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Hash b5f249877d10ae9b4dbf46deb613a8ee
2b79a62ca64e9830c7b9179c7a191c2a4a70de12
7bf07008186fc438d0530fce08b587ef94ef10ee9494cf10a5c7805e05e9210b
GET /consent/3ead6bec-a9f0-42dc-b4d4-555f386a9b55.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:43 GMT
content-type: application/x-javascript
content-length: 19821
cache-control: public, max-age=86400
content-encoding: GZIP
content-md5: tfJJh30QrptNv0bethOo7g==
last-modified: Tue, 16 Mar 2021 13:17:14 GMT
etag: 0x8D8E87DD0A852DE
x-ms-request-id: 33e756a8-b01e-000b-5d43-38c092000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 58976
expires: Fri, 10 Feb 2023 00:26:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 796879a35c87b506-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/akFld4MlcQU
216.58.211.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/akFld4MlcQU
IP 216.58.211.3:0
Hash 48bcd5b7029cfb8a3fb1ed895cfe3fd7
e9ece3e191be41c934938dfca1b3cabab55d66d1
e2d4c36af46cc93bd02f65b1b0c790cd01857d06fb69ca46a98a91f081e94d17
POST /s/gts1d4/akFld4MlcQU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:43 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
go.catonetworks.com/rs/245-RJK-441/images/utmCookies.js
104.17.73.206200 OK 890 B URL HTTP/2 go.catonetworks.com/rs/245-RJK-441/images/utmCookies.js
IP 104.17.73.206:0
File type exported SGML document, ASCII text, with CRLF line terminators
Hash a55f797e9279605c802252f5e74c8997
2114516ea00be77db1eb59608fcb368be484e2c1
ecf2e5c8c37dd322b709a5ed31e07b0523a98930137e52b7186a26de02eddfca
GET /rs/245-RJK-441/images/utmCookies.js HTTP/1.1
Host: go.catonetworks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/Bad-clicks-123111223.html
Cookie: BIGipServerPOOL-31.222.131.4-442-na-LON05=!lbAKnUwh6Grna4e9jRdq5/AJjPbVzcwLk6VxWNjlqgcltq9IrlOEb11BLRpFuamjoiZwFHO8ILhl0JI=; __cf_bm=qm1KgfRUZL0EXhC1L4.fa_94tH1umQk_5qY3RgIhR.g-1675902402-0-AbrPUcPqLcTee5wOLaZzlFbG7MoJIdGm27mtsvNseqMl5J/Mo4cELKncrf64HQmr+pwfus2txfbMc3W5jeHw0kg=; _mkto_trk=id:245-RJK-441&token:_mch-catonetworks.com-1675902459615-67377; _gcl_au=1.1.1767262792.1675902460
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:43 GMT
content-type: application/x-javascript
content-length: 890
last-modified: Wed, 18 Jan 2023 01:10:31 GMT
etag: "500c96-ab8-5f27f7b964b98"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
cf-cache-status: EXPIRED
expires: Thu, 09 Feb 2023 00:27:43 GMT
cache-control: public, max-age=60
accept-ranges: bytes
server: cloudflare
cf-ray: 796879a2faf6b4f1-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0bdb7270303181a8741369fcfa9709e7
e85aa6393d2a1013b0546050c5158a5685c6feb3
23fd96172c8f72d73d8b2a85d29684d36d3037df3247e294f15259724eebcaae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5646
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:43 GMT
Last-Modified: Wed, 08 Feb 2023 22:52:37 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash cdf7b25cd08d8366009e3e2d5fc1d302
e2a80d52621e8b6773c19161a7e6b2f6e836bb05
7935ac70fb48c850e958fae4fa47f50b4a877fd6ed300c5a435813d26fe4528c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2728
Cache-Control: max-age=105571
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:43 GMT
Etag: "63e32c7e-116"
Expires: Fri, 10 Feb 2023 05:46:14 GMT
Last-Modified: Wed, 08 Feb 2023 05:00:46 GMT
Server: ECS (amb/6B86)
X-Cache: HIT
Content-Length: 278
ocsp.usertrust.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash eff5075f7959ec465d50424d69666ea7
d7fb173d57276145bf217d1c83f2a1d605e66fa5
380464a69581bab338a470d6e14b09a1d59bea2f27b53aff57b88ed1f780bcea
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 00:26:43 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 05 Feb 2023 21:54:06 GMT
Expires: Sun, 12 Feb 2023 21:54:05 GMT
Etag: "d7fb173d57276145bf217d1c83f2a1d605e66fa5"
Cache-Control: max-age=603157,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1247
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796879a3d9b3b515-OSL
js.chilipiper.com/marketing.js
34.111.73.67200 OK 17 kB URL HTTP/2 js.chilipiper.com/marketing.js
IP 34.111.73.67:0
File type ASCII text, with very long lines (54757)
Hash 7101a83874c179c6822e41f6155eff1a
6a88e7aeea584b6c541a5c4373cde7154fe6ed84
64a3d72d8bb9fc2d4faed52a40214e470813662180226b351e73ee933c759421
GET /marketing.js HTTP/1.1
Host: js.chilipiper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
server: Google Frontend
via: 1.1 google
content-length: 17132
x-cloud-trace-context: 12945a83cef9894e52d2e548c48e01d5
vary: Accept-Encoding
date: Thu, 09 Feb 2023 00:25:49 GMT
cache-control: public, max-age=0, s-maxage=60, must-revalidate
age: 54
last-modified: Wed, 01 Feb 2023 09:27:41 GMT
etag: W/"63da308d-d60c"
content-type: application/javascript
x-cache-hit: hit
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
245-rjk-441.mktoresp.com/webevents/visitWebPage?_mchNc=1675902459616&_mchCn=Bad-clicks-123111223&_mchId=245-RJK-441&_mchTk=_mch-catonetworks.com-1675902459615-67377&mkt_tok=MjQ1LVJKSy00NDEAAAGJzzumzwKxPlgYJuFzZfmaUOlWJmzLMtYNUcAb0EZ_k0B_4eiIaega9XHV_112AA0wqsf-CQ2GKmssHgOc4NPyvUWKgrlK2a6Ma13ge5eLPhW1&_mchWs=j1RR&_mchHo=go.catonetworks.com&_mchPo=&_mchRu=%2FBad-clicks-123111223.html&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp=mkt_tok%3DMjQ1LVJKSy00NDEAAAGJzzumzwKxPlgYJuFzZfmaUOlWJmzLMtYNUcAb0EZ_k0B_4eiIaega9XHV_112AA0wqsf-CQ2GKmssHgOc4NPyvUWKgrlK2a6Ma13ge5eLPhW1
134.213.193.62200 OK 28 B URL HTTP/1.1 245-rjk-441.mktoresp.com/webevents/visitWebPage?_mchNc=1675902459616&_mchCn=Bad-clicks-123111223&_mchId=245-RJK-441&_mchTk=_mch-catonetworks.com-1675902459615-67377&mkt_tok=MjQ1LVJKSy00NDEAAAGJzzumzwKxPlgYJuFzZfmaUOlWJmzLMtYNUcAb0EZ_k0B_4eiIaega9XHV_112AA0wqsf-CQ2GKmssHgOc4NPyvUWKgrlK2a6Ma13ge5eLPhW1&_mchWs=j1RR&_mchHo=go.catonetworks.com&_mchPo=&_mchRu=%2FBad-clicks-123111223.html&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp=mkt_tok%3DMjQ1LVJKSy00NDEAAAGJzzumzwKxPlgYJuFzZfmaUOlWJmzLMtYNUcAb0EZ_k0B_4eiIaega9XHV_112AA0wqsf-CQ2GKmssHgOc4NPyvUWKgrlK2a6Ma13ge5eLPhW1
IP 134.213.193.62:0
File type ASCII text, with no line terminators
Hash 9dafc521bd59955b4986f0fc3777f77a
5a572b4730d4a2bce2fa35597a0993c649f26c74
e4e90a7b8bacdfe395361149a9fd42f9192b68bdf1497e4454d0ab4c4917f746
POST /webevents/visitWebPage?_mchNc=1675902459616&_mchCn=Bad-clicks-123111223&_mchId=245-RJK-441&_mchTk=_mch-catonetworks.com-1675902459615-67377&mkt_tok=MjQ1LVJKSy00NDEAAAGJzzumzwKxPlgYJuFzZfmaUOlWJmzLMtYNUcAb0EZ_k0B_4eiIaega9XHV_112AA0wqsf-CQ2GKmssHgOc4NPyvUWKgrlK2a6Ma13ge5eLPhW1&_mchWs=j1RR&_mchHo=go.catonetworks.com&_mchPo=&_mchRu=%2FBad-clicks-123111223.html&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp=mkt_tok%3DMjQ1LVJKSy00NDEAAAGJzzumzwKxPlgYJuFzZfmaUOlWJmzLMtYNUcAb0EZ_k0B_4eiIaega9XHV_112AA0wqsf-CQ2GKmssHgOc4NPyvUWKgrlK2a6Ma13ge5eLPhW1 HTTP/1.1
Host: 245-rjk-441.mktoresp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.catonetworks.com
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 09 Feb 2023 00:26:43 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Request-Id: a1eddee7-a6ff-4dd4-b6da-99223fdc439e
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Set-Cookie: BIGipServerPOOL-134.213.193.62-MUNCHKIN-80=!k+xfN6Fx60kMB7O9jRdq5/AJjPbVzbeZZhYVsJ5CdPfumC0D8EtNWbF7JYQqDj0uJa+v6/fZ8Jtntg==; path=/; Httponly; Secure
ocsp.usertrust.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash eff5075f7959ec465d50424d69666ea7
d7fb173d57276145bf217d1c83f2a1d605e66fa5
380464a69581bab338a470d6e14b09a1d59bea2f27b53aff57b88ed1f780bcea
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 00:26:43 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 05 Feb 2023 21:54:06 GMT
Expires: Sun, 12 Feb 2023 21:54:05 GMT
Etag: "d7fb173d57276145bf217d1c83f2a1d605e66fa5"
Cache-Control: max-age=603157,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1247
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796879a449fab515-OSL
go.catonetworks.com/favicon.ico
104.17.73.206302 Found 566 B URL HTTP/2 go.catonetworks.com/favicon.ico
IP 104.17.73.206:0
Hash cfff374db677a73cb23d11831a81a3a6
08d939fbb3a0e41c18bf3300d6c806eac8d44f00
2bca265efd06c2d8a9363118def7ab433f558e3569fee03226e5bc2cf8d16efc
GET /favicon.ico HTTP/1.1
Host: go.catonetworks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/Bad-clicks-123111223.html?mkt_tok=MjQ1LVJKSy00NDEAAAGJzzumzwKxPlgYJuFzZfmaUOlWJmzLMtYNUcAb0EZ_k0B_4eiIaega9XHV_112AA0wqsf-CQ2GKmssHgOc4NPyvUWKgrlK2a6Ma13ge5eLPhW1
Cookie: BIGipServerPOOL-31.222.131.4-442-na-LON05=!lbAKnUwh6Grna4e9jRdq5/AJjPbVzcwLk6VxWNjlqgcltq9IrlOEb11BLRpFuamjoiZwFHO8ILhl0JI=; __cf_bm=qm1KgfRUZL0EXhC1L4.fa_94tH1umQk_5qY3RgIhR.g-1675902402-0-AbrPUcPqLcTee5wOLaZzlFbG7MoJIdGm27mtsvNseqMl5J/Mo4cELKncrf64HQmr+pwfus2txfbMc3W5jeHw0kg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
date: Thu, 09 Feb 2023 00:26:43 GMT
content-type: text/html; charset=UTF-8
location: https://catonetworks.com
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: EXPIRED
expires: Thu, 09 Feb 2023 04:26:43 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 796879a23a5fb4f1-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 59274586b00249f3cbd2ff5dc9071563
76b59ad65277082e1811d339bf03d953037e0a25
7e6c2cd14a5c882d4a742f80bc48f2c9704ea2ca12e2e98f9f144ce230450eb0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6367
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:43 GMT
Last-Modified: Wed, 08 Feb 2023 22:40:36 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/s/gts1d4/fvDk_t48RfI
216.58.211.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/fvDk_t48RfI
IP 216.58.211.3:0
Hash 1325ecfd68073580f2d2b5e6c31dea14
a826947d2dff5841fc5fbdc5059339c6e91d9fbc
85dd3d300ea624cff622357678beb4cd569e0db7e908b7a931ae17f28c4db2b6
POST /s/gts1d4/fvDk_t48RfI HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:43 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/fvDk_t48RfI
216.58.211.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/fvDk_t48RfI
IP 216.58.211.3:0
Hash 1325ecfd68073580f2d2b5e6c31dea14
a826947d2dff5841fc5fbdc5059339c6e91d9fbc
85dd3d300ea624cff622357678beb4cd569e0db7e908b7a931ae17f28c4db2b6
POST /s/gts1d4/fvDk_t48RfI HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:43 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cookielaw.org/skins/6.14.0/default_flat_bottom_two_button_black/v2/css/optanon.css
104.16.148.64200 OK 5.6 kB URL HTTP/2 cdn.cookielaw.org/skins/6.14.0/default_flat_bottom_two_button_black/v2/css/optanon.css
IP 104.16.148.64:0
File type ASCII text, with very long lines (23545)
Hash 06e638f7a4a3e61007e0918d3eb32cd7
cfc47fe6fc633fd26f216697b630b7fccb07b327
7f966cf12d4a6497b05327ea7c9bd954ff0c6c12f71f3488babc9b543303ba62
GET /skins/6.14.0/default_flat_bottom_two_button_black/v2/css/optanon.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:43 GMT
content-type: text/css
content-length: 5553
content-encoding: gzip
content-md5: BuY496Sj5hAH4JGNPrMs1w==
last-modified: Wed, 24 Feb 2021 17:18:01 GMT
etag: 0x8D8D8E8238E619B
x-ms-request-id: 5e60eb38-401e-0111-536c-c4a9a8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 27724
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 796879a51d80b506-OSL
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.3.1.min.js
69.16.175.10200 OK 30 kB URL HTTP/2 code.jquery.com/jquery-3.3.1.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (65451)
Hash d549b312f7a7d228b4ec229a6547dfdc
0766794582ad530ec0f8c2595f741086afffa312
f6488b2915e0ceee723f4320492511d46c6ba1860d5975d085e6da8913f55f44
GET /jquery-3.3.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.catonetworks.com
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:43 GMT
content-encoding: gzip
content-length: 30288
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-1538f"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675902403.dop213.sk1.t,1675902403.cds020.sk1.hn,1675902403.cds240.sk1.c
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b3c355a44e5725acb81e7fa5f0240b5c
8a72ea105f99650f6f90703eed61a4e4c3a7f5fb
1089be1f15106c2aacba3f23d2a8e4381e326f3ebd0de741db7ba19a84152192
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1089BE1F15106C2AACBA3F23D2A8E4381E326F3EBD0DE741DB7BA19A84152192"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1850
Expires: Thu, 09 Feb 2023 00:57:33 GMT
Date: Thu, 09 Feb 2023 00:26:43 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 08d827599d6e17ec20d1e0ee75678fee
6a5ef595a553bf56a2d77580abf6c7e52d6c743c
8383c49e6fb801f926fe44ed60d2686b38c0232f47e2b989f7abdecfe6991519
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4006
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:43 GMT
Last-Modified: Wed, 08 Feb 2023 23:19:57 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
t.influ2.com/p/vt/?a=&clid=e9a53e22-2ce9-4c32-9989-6833112e4546&caid=&cb=1675902459943&s=&dt=&ref=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&d=0&da=0
216.58.207.211200 OK 597 B URL HTTP/2 t.influ2.com/p/vt/?a=&clid=e9a53e22-2ce9-4c32-9989-6833112e4546&caid=&cb=1675902459943&s=&dt=&ref=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&d=0&da=0
IP 216.58.207.211:0
File type JPEG image data, baseline, precision 8, 1x1, components 3\012- data
Hash bc775cab72715549ed16bc765bc775fa
9dd0752986a9a009472c74abbd59eb7d3b7c6b89
d267998c3594ce7f02341a5a8ef2b2705627f2552960e332d73747022406a30b
GET /p/vt/?a=&clid=e9a53e22-2ce9-4c32-9989-6833112e4546&caid=&cb=1675902459943&s=&dt=&ref=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&d=0&da=0 HTTP/1.1
Host: t.influ2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:43 GMT
content-type: image/jpeg
content-length: 597
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: R=8fcfe73752df3d8f802f115; Path=/; Domain=influ2.com; Expires=Fri, 09 Feb 2024 00:26:43 GMT; Secure; SameSite=None
via: 1.1 google
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/countries/EU?callback=jQuery331023537444351924608_1675902460169&_=1675902460170
104.18.27.85200 OK 32 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/countries/EU?callback=jQuery331023537444351924608_1675902460169&_=1675902460170
IP 104.18.27.85:0
File type ASCII text, with no line terminators
Hash 7d5a4a5b8f8821bbcef3e1fbab689b3e
22de111894f1677c38430070c07e38b256177072
b0817a0d6a87f2d42532035e42b20ea55cfaa5ca1092c761f5fc5e734790bdbf
GET /cookieconsentpub/v1/geo/countries/EU?callback=jQuery331023537444351924608_1675902460169&_=1675902460170 HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:43 GMT
content-type: text/javascript
content-length: 32
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 796879a618f70b45-OSL
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
95.101.11.48200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 95.101.11.48:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=23145
date: Thu, 09 Feb 2023 00:26:43 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 39f72ee961e1afed82fed52212ec6b65
557eae661c60433cfbbe14dbca5df31259e0c59b
b527888545839ca25e30f2fe8d409f3de6ab08d98a974dd14626b728e5ead13c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 996
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:43 GMT
Last-Modified: Thu, 09 Feb 2023 00:10:07 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
t.influ2.com/u/?cb=1675902459944
216.58.207.211200 OK 2.7 kB URL HTTP/2 t.influ2.com/u/?cb=1675902459944
IP 216.58.207.211:0
Hash 9c166f0e585dac7bf3c0fb0040ec224a
1ffbcf20f1372fe45898dd0106433b03d3a46ee6
a4aee182b71bf590545240e6b85f0dadb36aac6eb2cf6117fb1b26c33e3895a5
GET /u/?cb=1675902459944 HTTP/1.1
Host: t.influ2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.catonetworks.com
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:43 GMT
content-type: text/plain; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://go.catonetworks.com
set-cookie: R=8c9a7d3b797d7d82ce7db23c; Path=/; Domain=influ2.com; Expires=Fri, 09 Feb 2024 00:26:43 GMT; Secure; SameSite=None
content-encoding: gzip
via: 1.1 google
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: FAw0Mt4wm3Q6R9YDhAzoHWbtr1FEMIIlM4VjE3mI6X7HDe9ARs74fQjTEVXu4wPqL5KBRP6UB1kLqrhYSpWTjA==
content-length: 27843
x-fb-trip-id: 1679558926
date: Thu, 09 Feb 2023 00:26:43 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/936792988/?random=1675902460097&cv=11&fst=1675902460097&bg=ffffff&guid=ON&async=1>m=45be3280&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&auid=1767262792.1675902460&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.34200 OK 870 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/936792988/?random=1675902460097&cv=11&fst=1675902460097&bg=ffffff&guid=ON&async=1>m=45be3280&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&auid=1767262792.1675902460&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.34:0
File type ASCII text, with very long lines (1837), with no line terminators
Hash 3096b4e4fe9af04f3e3db9c786f5c435
48208eca417b7faa509216da8894fb0c583aee29
24cadbf569ea62d77a455064fcbc11bf42ae5308ee0378542fe50bc619256c14
GET /pagead/viewthroughconversion/936792988/?random=1675902460097&cv=11&fst=1675902460097&bg=ffffff&guid=ON&async=1>m=45be3280&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&auid=1767262792.1675902460&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 09 Feb 2023 00:26:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 870
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 09-Feb-2023 00:41:43 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
script.hotjar.com/modules.14cb8958c3e3566a4606.js
54.230.111.73200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.14cb8958c3e3566a4606.js
IP 54.230.111.73:0
File type Unicode text, UTF-8 text, with very long lines (48770)
Hash 5331176444d8700436c501005f6a0731
d0f73de83bc0720ec98240ab04878a317491d640
07c3a5946b698fa789f6f4f6924761ffbc6808e145cba46c657092f9b36fee8a
GET /modules.14cb8958c3e3566a4606.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68072
date: Wed, 08 Feb 2023 15:48:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "5331176444d8700436c501005f6a0731"
last-modified: Wed, 08 Feb 2023 15:47:26 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fwUdF-5IBaSVxaZBULA3WloOOskhSQwfdKcJT0KVnAYR3z-pTYUS3g==
age: 31117
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-63909158-2&cid=524227720.1675902460&jid=1648395366&gjid=1555881732&_gid=1965654270.1675902460&_u=YGBAgEABQAAAAEAAI~&z=789835276
74.125.205.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-63909158-2&cid=524227720.1675902460&jid=1648395366&gjid=1555881732&_gid=1965654270.1675902460&_u=YGBAgEABQAAAAEAAI~&z=789835276
IP 74.125.205.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-63909158-2&cid=524227720.1675902460&jid=1648395366&gjid=1555881732&_gid=1965654270.1675902460&_u=YGBAgEABQAAAAEAAI~&z=789835276 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://go.catonetworks.com
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://go.catonetworks.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 09 Feb 2023 00:26:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
app-lon05.marketo.com/js/forms2/js/forms2.min.js
104.16.96.80200 OK 71 kB URL HTTP/2 app-lon05.marketo.com/js/forms2/js/forms2.min.js
IP 104.16.96.80:0
Hash bc2a1797d6dd3ff831daff0b47c00542
14ae18b509dd03dca3b8eaf62ba743e2de3debc5
6aa94be0d75753bade24af2fcfe950b52b65c9a140bf95702d03da547ad40896
GET /js/forms2/js/forms2.min.js HTTP/1.1
Host: app-lon05.marketo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:43 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 20:56:20 GMT
etag: "e00f43-33e51-5f217594de500"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
cf-cache-status: HIT
age: 292
expires: Thu, 09 Feb 2023 04:26:43 GMT
cache-control: public, max-age=14400
set-cookie: __cf_bm=xKyeKuuS_iaOFwXiIsrSPXmwCBFX0pp3qlKrmmmCIrI-1675902403-0-AWymYLPApPHGerfxlZ869psKp6R+VFL8emBHZymoNX5+o7EmY26nJjBD6guJwtU7Ns9m8nyjQ16+enmHua6rls8=; path=/; expires=Thu, 09-Feb-23 00:56:43 GMT; domain=.app-lon05.marketo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 796879a3e80e1bfa-OSL
X-Firefox-Spdy: h2
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
54.230.111.71200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 54.230.111.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
accept-ranges: bytes
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
date: Fri, 03 Feb 2023 13:46:47 GMT
cache-control: max-age=31536000
etag: "112fdf47cdb80b9ce3d033ed09717460"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8hUalJEEZJkYoscG_1LtkwE1gGqKyqcWrjsaTn5MnvQ5Fz9jpHg0bg==
age: 472597
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 50ca5deab68ba881743e691a693819f1
fd6b74d17a961f751a8edf09fcfaab273f0a7408
139c5ed1fd10f67669a5de174c5ffb02411f96463217781882c9d22b050a02d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 84889b914548f7820766f27a40699cfa
bc674cdb5819759b5ecd5aabfde47f56127f5d89
e2a69fe4edd028d00a8a744b62ef51dada2aff144da0cd9813efc887a11f70a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
px.ads.linkedin.com/collect?v=2&fmt=js&pid=25344&time=1675902460489&url=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=25344&time=1675902460489&url=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=25344&time=1675902460489&url=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D25344%26time%3D1675902460489%26url%3Dhttps%253A%252F%252Fgo.catonetworks.com%252FBad-clicks-123111223.html%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQIwgoC4j1Kp7wAAAYYzkUWrW6gNeSQLyCnEb_V1yQy2PPNV8NGCq75UxdTiAoi5JBDdp3Yvh4XV3Q; Max-Age=2592000; Expires=Sat, 11 Mar 2023 00:26:44 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKLB1XpIocTywAAAYYzkUWrO159JzESQ6ESv8PreUiXgW3A-vUuMSpKpKRy5_p53DBCUYwQ-RX3xa0TckpkCw; Max-Age=2592000; Expires=Sat, 11 Mar 2023 00:26:44 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
bcookie="v=2&b74381cd-241a-41d5-8ae1-ee069b369125"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 09-Feb-2024 00:26:44 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675902404:t=1675988804:v=2:sig=AQFNZHs5Q8twcC9-cMaapvaQ8F-Pea6s"; Expires=Fri, 10 Feb 2023 00:26:44 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAX0OW94F+AGrax0EAJbWQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 209C813456C845AAB33EB2742F08F244 Ref B: OSL30EDGE0311 Ref C: 2023-02-09T00:26:43Z
date: Thu, 09 Feb 2023 00:26:43 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 84889b914548f7820766f27a40699cfa
bc674cdb5819759b5ecd5aabfde47f56127f5d89
e2a69fe4edd028d00a8a744b62ef51dada2aff144da0cd9813efc887a11f70a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/936792988/?random=1675902460097&cv=11&fst=1675900800000&bg=ffffff&guid=ON&async=1>m=45be3280&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2967834457&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/936792988/?random=1675902460097&cv=11&fst=1675900800000&bg=ffffff&guid=ON&async=1>m=45be3280&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2967834457&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/936792988/?random=1675902460097&cv=11&fst=1675900800000&bg=ffffff&guid=ON&async=1>m=45be3280&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2967834457&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 09 Feb 2023 00:26:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14212
Expires: Thu, 09 Feb 2023 04:23:36 GMT
Date: Thu, 09 Feb 2023 00:26:44 GMT
Connection: keep-alive
www.google.com/pagead/1p-user-list/936792988/?random=1675902460097&cv=11&fst=1675900800000&bg=ffffff&guid=ON&async=1>m=45be3280&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2967834457&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/936792988/?random=1675902460097&cv=11&fst=1675900800000&bg=ffffff&guid=ON&async=1>m=45be3280&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2967834457&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/936792988/?random=1675902460097&cv=11&fst=1675900800000&bg=ffffff&guid=ON&async=1>m=45be3280&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2967834457&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 09 Feb 2023 00:26:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14212
Expires: Thu, 09 Feb 2023 04:23:36 GMT
Date: Thu, 09 Feb 2023 00:26:44 GMT
Connection: keep-alive
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-63909158-2&cid=524227720.1675902460&jid=1648395366&_u=YGBAgEABQAAAAEAAI~&z=1415899550
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-63909158-2&cid=524227720.1675902460&jid=1648395366&_u=YGBAgEABQAAAAEAAI~&z=1415899550
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-63909158-2&cid=524227720.1675902460&jid=1648395366&_u=YGBAgEABQAAAAEAAI~&z=1415899550 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 09 Feb 2023 00:26:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3509a9bb-f5d1-4723-96d3-e2a87a28bbf4.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3509a9bb-f5d1-4723-96d3-e2a87a28bbf4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6c45da743665658afcfbf2309e1594b
04d025452dcec571f3eb6068499290d86e0c4c30
3ddfcf83ea18ba20700364c7095750a142a15575c988ba5688ed2f4dbbba4ee8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3509a9bb-f5d1-4723-96d3-e2a87a28bbf4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6471
x-amzn-requestid: ab4c8119-a2f0-4b3d-bbed-b34c5a0a7a30
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ACiGaGsjoAMFmZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e416f5-7298e0530bee8f997b552e6e;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 21:41:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b74bFyh7eYS-pBQhcW3BItLbjUzmTdCMoKd_lpXXwqVWyfhfdKUP0A==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:46:24 GMT
age: 9620
etag: "04d025452dcec571f3eb6068499290d86e0c4c30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 95081172f8e19d19921acc802488e019
8531c150cb11de44361a95624b11cf46b9e0ba02
7a2d8f012c7d590f3f39ad834d4f3f9fb729143b7395bc588bd608b5bdee039b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15019
x-amzn-requestid: 574e3e2c-2fbe-4215-9500-021147338832
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f583LHiioAMFqkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a82d-4f12aac524c39f822ca4f422;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:11:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _3jIo3Giw3zmTmnSkJArAllT6uigN7EEzLPfkGpd6168_mSdqdk_Cg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 12:41:28 GMT
age: 42316
etag: "8531c150cb11de44361a95624b11cf46b9e0ba02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ec996f6-8867-41f0-9850-ad04d05e22e6.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ec996f6-8867-41f0-9850-ad04d05e22e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 464812429ec9f5c766def4ac26e86e4f
170a5d6fcaa69c78896ed8a37442a27c6309c09a
1248df6127626b254420b6ddabba6fba12066c9b7f314386c25ac51781f59060
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ec996f6-8867-41f0-9850-ad04d05e22e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10472
x-amzn-requestid: 59fad1e7-a094-4e59-91b7-db07c2fcaf8c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJsXF3xIAMFYgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcb5-185f9ba85db3733235745075;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:01:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KTst91LBkqbuZYp1NJAkfTuFFfXSDjBpvD6PeCATnq7OkNiibKUAuw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 09:11:17 GMT
age: 54927
etag: "170a5d6fcaa69c78896ed8a37442a27c6309c09a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14212
Expires: Thu, 09 Feb 2023 04:23:36 GMT
Date: Thu, 09 Feb 2023 00:26:44 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash e16bd1e3db802475d004db4848aac479
a5a12ea5f5248f1b62853556ed0be62943d2b05a
69faf1e0511e25eb2f083c93cc7507df1da055641b0b761eca358e1683806cbd
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=163982
Date: Thu, 09 Feb 2023 00:26:44 GMT
Etag: "63e41323-1d7"
Expires: Fri, 10 Feb 2023 21:59:46 GMT
Last-Modified: Wed, 08 Feb 2023 21:24:51 GMT
Server: ECS (dcb/7F83)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: K0wvDvVMw0H2gUf9NpSW0BEfj5q9jXK6-Y4bWNmF1Z3apQtIcEcSxg==
Age: 2095
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10fd2f55fa0cfb8616ded6ddc2bb511a
996ed68f1b9770a19a97f6c8d359e338b8c8b3ca
e552d31a5e531386b9830bb58486f09bfcb3400676f726f93fdbea08336a09da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3599
x-amzn-requestid: 658f8678-b67d-4f98-b728-cf9cbad3aa86
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ABI38GUpIAMFY0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e38832-2ab19d0f2345fc7515775298;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 11:32:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8ZayLRkBd16PmZsswU0N4ZLVFphVFlgPRloMdqF_U6WMcyvZptmpA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:45:46 GMT
etag: "996ed68f1b9770a19a97f6c8d359e338b8c8b3ca"
content-type: image/jpeg
age: 9658
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/17.22abfce0.chunk.css
54.230.111.119200 OK 24 B URL HTTP/2 js.driftt.com/core/assets/css/17.22abfce0.chunk.css
IP 54.230.111.119:0
File type ASCII text, with no line terminators
Hash 0c5dad92482d9a7c7c253510f5082465
534b458f99b4d0bb90c2cf2c4bb3703ef44a52bf
5dbaf0a4ff0f8ac8c1b67550eee84390b089604ffaf71183e417636c7e183ac5
GET /core/assets/css/17.22abfce0.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 24
server: istio-envoy
date: Thu, 26 Jan 2023 20:13:51 GMT
last-modified: Tue, 11 Oct 2022 19:09:27 GMT
etag: "0c5dad92482d9a7c7c253510f5082465"
x-amz-server-side-encryption: AES256
x-amz-version-id: eR0JFDWwyA3gsnd_XajqmmtDUbC85CBL
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 22
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ni0qI_7tvkKdD44djQSB2Cvr5Y4_PzjspNq5fYWk_TL64rkd3C2tvQ==
age: 1138373
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash e16bd1e3db802475d004db4848aac479
a5a12ea5f5248f1b62853556ed0be62943d2b05a
69faf1e0511e25eb2f083c93cc7507df1da055641b0b761eca358e1683806cbd
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=167611
Date: Thu, 09 Feb 2023 00:26:44 GMT
Etag: "63e41323-1d7"
Expires: Fri, 10 Feb 2023 23:00:15 GMT
Last-Modified: Wed, 08 Feb 2023 21:24:51 GMT
Server: ECS (dcb/7EED)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cXLR4skq6oVo3VtPl-z-htqiRVwmp0I1ayorvwjvPN8TpLmlUpALOA==
Age: 5724
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa565275-3a2e-4292-b935-18f8fc648689.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa565275-3a2e-4292-b935-18f8fc648689.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ebad32ed6e84736b26623ed3d9b6cfe7
f9ddc5333953bafc7de7c971a693771a179e8bab
c8cc0ee6bcc93f226bcf774f1354e094bd6715c86e680be7523c84e457b7922d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa565275-3a2e-4292-b935-18f8fc648689.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8637
x-amzn-requestid: 4c5e9f29-7c4f-4cfa-88b1-8600082e85c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fswg7GLaoAMFi6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db6138-5a2a4dd242aff1ac3d8b11db;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 07:07:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I2j2a4tlZ-MG2RAk67dXyHFki0WRjBCoUOjrt8vxlFn2RO79Hwv7kA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:34:45 GMT
age: 10319
etag: "f9ddc5333953bafc7de7c971a693771a179e8bab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F396748b7-25c0-4112-960c-9c86d5ad28f9.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F396748b7-25c0-4112-960c-9c86d5ad28f9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5fc553a8677d9c0bf4835a0c29a7345c
ec8541dd8ae32e1cf597d40cc1d9d04aefb46ba8
e821faf86e44f2b9c9d5bd8cd3575c0a99acfc58774077034c413e345a7c0c0c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F396748b7-25c0-4112-960c-9c86d5ad28f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7451
x-amzn-requestid: a900a5b4-85cd-4817-8e70-2516eb33a0a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fox8IHMuIAMFdHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9c9e7-1122726b315a7c5623d1ff3f;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 02:09:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JFPF2xZJ9QIqJbOEjTi5gt2aflnM9HVaWp8FpRAIIeDf59cJzbp6kw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:46:36 GMT
age: 9608
etag: "ec8541dd8ae32e1cf597d40cc1d9d04aefb46ba8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 44fc0cb48c26edb9ce36736707b9182a
62de7faa3e8171c0d38a2e03a604d2545a3ede7f
9e511ad6ed9e7c5f28f573422e3891d2f4e5c2ba5107f7eda808c529a95931a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vc.hotjar.io/sessions/2750964?s=0.25&r=0.050144695372157266
54.230.111.64204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/2750964?s=0.25&r=0.050144695372157266
IP 54.230.111.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/2750964?s=0.25&r=0.050144695372157266 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.catonetworks.com
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Thu, 09 Feb 2023 00:26:44 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2SgN3RuOSQ2dkrV1j0nXfM-eUnQTtiF2ETa2VrotdgzqFBh0prb7PQ==
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=807692536254583&ev=PageView&dl=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&rl=&if=false&ts=1675902460921&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675902460921.289630502&it=1675902460601&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=807692536254583&ev=PageView&dl=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&rl=&if=false&ts=1675902460921&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675902460921.289630502&it=1675902460601&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=807692536254583&ev=PageView&dl=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&rl=&if=false&ts=1675902460921&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675902460921.289630502&it=1675902460601&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 09 Feb 2023 00:26:44 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash b7e30f8419d69ce02a1f96b895cabac8
1de1962de5a350f1a905de3c61c01085eae52ec5
e30bea7507c8e32e8b2e7d6f54e9cd86e99d1198a5cb468221ae4cae33ee2085
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 09 Feb 2023 00:26:44 GMT
Last-Modified: Wed, 08 Feb 2023 22:51:54 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: whodLtUKoy_ZVVAk7D8BzKS-RvDB2gMRuvxhChz5BPurVvl8FMaYZg==
Age: 5690
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D25344%26time%3D1675902460489%26url%3Dhttps%253A%252F%252Fgo.catonetworks.com%252FBad-clicks-123111223.html%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D25344%26time%3D1675902460489%26url%3Dhttps%253A%252F%252Fgo.catonetworks.com%252FBad-clicks-123111223.html%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D25344%26time%3D1675902460489%26url%3Dhttps%253A%252F%252Fgo.catonetworks.com%252FBad-clicks-123111223.html%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go.catonetworks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=25344&time=1675902460489&url=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html&liSync=true
set-cookie: bcookie="v=2&a8d3bbbb-c383-44ec-8973-68d39a6189d3"; Domain=.linkedin.com; Expires=Fri, 09-Feb-2024 00:26:44 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202302090026441a5fa836-6854-4eda-8c0b-86cc87b9593bAQHPI61sqiPL0PM_mzBQMmLbia441xml"; Domain=.www.linkedin.com; Expires=Fri, 09-Feb-2024 00:26:44 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzU5MDI0MDQ7MjswMjE6EkXVwJao+aPk3vmKnnehab+aOn273DE0092X3lvyow==; Domain=.linkedin.com; Expires=Tue, 08 Aug 2023 00:26:44 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675902404:t=1675988804:v=2:sig=AQFNZHs5Q8twcC9-cMaapvaQ8F-Pea6s"; Expires=Fri, 10 Feb 2023 00:26:44 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAX0OW98VDONMZqOkwwxwQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 7F5A555511E3435DBDE6459D892D2977 Ref B: OSL30EDGE0311 Ref C: 2023-02-09T00:26:44Z
date: Thu, 09 Feb 2023 00:26:43 GMT
content-length: 0
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/0.0b2ebd4a.chunk.js
54.230.111.119200 OK 3.0 kB URL HTTP/2 js.driftt.com/core/assets/js/0.0b2ebd4a.chunk.js
IP 54.230.111.119:0
Hash a3a4a5e4d862ceecf8cf5bd0848cab2c
33845c506e2a77b959ec0143d4469898cdc5e20c
2d36a3121c27f866cdc58818f302f42052c5cbd044a0eaa6f6f8637737afa500
GET /core/assets/js/0.0b2ebd4a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Sat, 28 Jan 2023 03:20:43 GMT
last-modified: Fri, 27 Jan 2023 17:00:19 GMT
etag: W/"c5efcdc9e465604f32cf24af10fd6c13"
x-amz-server-side-encryption: AES256
x-amz-version-id: bxbBo6tiShmSVkJPl3yRp.s0jVilttxU
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 29
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: P-iGHJHFyLTWEZVAu7LQ5LSLzdTuDvRWNw3EJsGlthc3ClWq9nOUcQ==
age: 1026361
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/10.33fd2576.chunk.js
54.230.111.119200 OK 62 kB URL HTTP/2 js.driftt.com/core/assets/js/10.33fd2576.chunk.js
IP 54.230.111.119:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 39cf85ddd64b1c0cc962d715f6201c8d
a5a18809f4f96e05047f7247647da73636e18d0f
5878fd9384fde576d54b4b54df255afe004efc7e04da45fe60cb7f4fa04465a3
GET /core/assets/js/10.33fd2576.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 19:00:18 GMT
last-modified: Wed, 08 Feb 2023 18:35:25 GMT
etag: W/"8c4bb27fba945df0bdfe8d25049c6d28"
x-amz-server-side-encryption: AES256
x-amz-version-id: IVJsPh8FSYTZvAmmR6w9_4RI7KWYSk3e
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 24
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p50jHSwEF-jbc3eOZ4oxIxMvaGPclnMwk2VtFKXNb_3LqQmVX3nJYA==
age: 19586
X-Firefox-Spdy: h2
5d302896aaae1c0db6c9dff3.services.infinigrow.com/setcookie2
54.230.111.75204 No Content 0 B URL HTTP/2 5d302896aaae1c0db6c9dff3.services.infinigrow.com/setcookie2
IP 54.230.111.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /setcookie2 HTTP/1.1
Host: 5d302896aaae1c0db6c9dff3.services.infinigrow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://go.catonetworks.com/
Origin: https://go.catonetworks.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 09 Feb 2023 00:26:44 GMT
x-amzn-requestid: e34c6456-8e5f-42fd-9c76-794058519556
access-control-allow-origin: https://go.catonetworks.com
access-control-allow-headers: Origin,Content-Length,Content-Type
x-amz-apigw-id: AC6WxGYbvHcFSsA=
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,HEAD
x-amzn-trace-id: Root=1-63e43dc4-27d5801d1501d756366af001;Sampled=0
access-control-max-age: 43200
access-control-allow-credentials: true
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NQco5SQr0wcAk_xBP9cQD5GzUFX-r4TJtuxJIaji0BCpczIA47Jtuw==
X-Firefox-Spdy: h2
catonetworks.com/
45.60.110.90301 Moved Permanently 162 B IP 45.60.110.90:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: catonetworks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go.catonetworks.com/
Connection: keep-alive
Cookie: _mkto_trk=id:245-RJK-441&token:_mch-catonetworks.com-1675902459615-67377; _gcl_au=1.1.1767262792.1675902460
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 09 Feb 2023 00:26:44 GMT
content-type: text/html
content-length: 162
location: https://www.catonetworks.com/
set-cookie: nlbi_947512=GF88aPrGOUSxSgA3p5CRTQAAAADNRpu7K+g5heC4O/aw9TAO; path=/; Domain=.catonetworks.com; Secure; SameSite=None
visid_incap_947512=JdeF2NM6Su6PYPEJrYrUbMM95GMAAAAAQUIPAAAAAAAkBx8HwZ1VN6xTc3F2ySbk; expires=Thu, 08 Feb 2024 06:18:09 GMT; HttpOnly; path=/; Domain=.catonetworks.com; Secure; SameSite=None
incap_ses_674_947512=1a1oRXfwdgYTWOIES4haCcQ95GMAAAAAGGa8S5P92WeWObpLW69ofA==; path=/; Domain=.catonetworks.com; Secure; SameSite=None
strict-transport-security: max-age=31536000
x-cdn: Imperva
x-iinfo: 4-31378806-31378846 nNNN RT(1675902403458 254) q(0 0 3 0) r(4 5) U11
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/2750964/visit-data?sv=7
34.253.22.133200 OK 566 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/2750964/visit-data?sv=7
IP 34.253.22.133:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2b9edfe79bc24f2f21686218d2c7edcc
bf694c0450d6dbccccdd1c87e1d00f80e07fac43
4b4d91dbd385b76b4b695e51a41246243e11b288ce27f1e3dbd1cd104bcce9c8
POST /api/v2/client/sites/2750964/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 112
Origin: https://go.catonetworks.com
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:44 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 1231e29c2a5abc47f79ed4fcf4dd3b16
645d4d833c7b7ce9d1d1efdcbcd4573cf3e13fa2
6b5d9380453b28d59f00fcb15fc2346eaa303c1ac9984ae2173c9375b16c1189
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 09 Feb 2023 00:26:45 GMT
Last-Modified: Wed, 08 Feb 2023 22:38:45 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lgH2u3WBTSfhrqWbFAaiSsGc_FSWk8MOpEnl9wQRh5o3R7KY6LR4lg==
Age: 6480
bootstrap.api.drift.com/widget_bootstrap/ping
34.193.113.164200 OK 13 B URL HTTP/2 bootstrap.api.drift.com/widget_bootstrap/ping
IP 34.193.113.164:0
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /widget_bootstrap/ping HTTP/1.1
Host: bootstrap.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:45 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: driftd8d808c44d79881f09fe5fe6c5c
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/3.07aa08a5.chunk.css
54.230.111.119200 OK 4.2 kB URL HTTP/2 js.driftt.com/core/assets/css/3.07aa08a5.chunk.css
IP 54.230.111.119:0
Hash 65e0fe679d401555d956361c3b4b0d52
31abea20b59f22d49f475d03552b14060d31d32b
37e82945a2422b3ca88188cb85948463903cf6152585481274e317598a4b1156
GET /core/assets/css/3.07aa08a5.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675902459382
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Thu, 05 Jan 2023 03:03:55 GMT
last-modified: Thu, 29 Dec 2022 16:49:54 GMT
etag: W/"189aeffd571884559dababa22c66d75a"
x-amz-server-side-encryption: AES256
x-amz-version-id: cLzhtaoyHBY3wArkFjIQo58tr5JO.o0k
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 47
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9ktx7toaqNQs_QqGQ4kHSch3qQEY9c_FmAVM6eac3LnHvU96jpb5Ow==
age: 3014569
X-Firefox-Spdy: h2
bootstrap.api.drift.com/widget_bootstrap/ping
34.193.113.164200 OK 147 B URL HTTP/2 bootstrap.api.drift.com/widget_bootstrap/ping
IP 34.193.113.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b94c1b5edeb6b6821768b964a3ce0b59
ba582490f8e3490ae183609f55d2636728747a25
9a52bcf70c15c8ca55ad53d4f1cf3ab528a2f0a684aaf6de4a81171262e7ba9f
POST /widget_bootstrap/ping HTTP/1.1
Host: bootstrap.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 92
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:45 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 8fcce7561d1913b0
vary: Accept-Encoding
content-length: 147
x-envoy-upstream-service-time: 4
server: istio-envoy
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/widget/init/v2
34.193.113.164200 OK 13 B URL HTTP/2 metrics.api.drift.com/monitoring/metrics/widget/init/v2
IP 34.193.113.164:0
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /monitoring/metrics/widget/init/v2 HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:45 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: driftf1247e24e47a6f8e3752c6de833
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/widget/init/v2
34.193.113.164200 OK 25 B URL HTTP/2 metrics.api.drift.com/monitoring/metrics/widget/init/v2
IP 34.193.113.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 61228f8f544358e9ea1f463f01b5853c
582766f30c82dc2df6938c8e16455fa5e329afb1
f8c91e009d219173c41b4c0b6e43ad28081f7580df6cb99a76aa0a476390ca47
POST /monitoring/metrics/widget/init/v2 HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization:
Content-Length: 384
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:45 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 5f226356e5e8fd00
vary: Accept-Encoding
content-length: 25
x-envoy-upstream-service-time: 13
server: istio-envoy
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/main~493df0b3.bfaa8bf7.chunk.js
54.230.111.119200 OK 8.2 kB URL HTTP/2 js.driftt.com/core/assets/js/main~493df0b3.bfaa8bf7.chunk.js
IP 54.230.111.119:0
File type Unicode text, UTF-8 text, with very long lines (22651), with no line terminators
Hash d058196cc25a446eb54f90a28ef60f75
a1f7cf40aa4bfd35aa34a0f2e7fe33218378c985
a068b55c3a3bfdba66b5a4e0f8eb882fef1107860feb3badba8de51f8af6c29c
GET /core/assets/js/main~493df0b3.bfaa8bf7.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:22 GMT
etag: W/"f380dbfcbb0e3e9e079d70231be1cff3"
x-amz-server-side-encryption: AES256
x-amz-version-id: tVIOQ5knB_pnUIzARn2A1QNlFnrQ08ww
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 22
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: a-oMnPoxcol79lYGIrHikbIQWmdYceMqNezC3Jpp9B7XmAqVkkj3ag==
age: 1062108
X-Firefox-Spdy: h2
dss6ntp5q2r0o.cloudfront.net/2.9.0/infinigrow.js
54.230.245.112200 OK 26 kB URL HTTP/2 dss6ntp5q2r0o.cloudfront.net/2.9.0/infinigrow.js
IP 54.230.245.112:0
File type ASCII text, with very long lines (65223)
Hash 10bf7e4d1d126d455010c1f754a7b102
16930fcfa6768641511619a70f333f9f1470a83b
18ebaf56bdeb98098a0de1e3976730792d37eb3efaf295964a6d1885826ce67f
GET /2.9.0/infinigrow.js HTTP/1.1
Host: dss6ntp5q2r0o.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sun, 24 Jun 2018 15:14:02 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 05:29:41 GMT
etag: W/"2f70fa2239343e20deb5c199873fbed1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LOwfyyCprcXR14ZP-1VJJN4msjNZLpHoeOpq7gj147AXNP2twez5BQ==
age: 68225
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 78441d723a62c16648b4a6d0901d47af
3c126e06a7bd52e4aff1a148ba275f4aa57d2269
cc40d9f088c4aad51e2062ff4bd721e57a56ebd348acd87f1179708445076015
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=111670
Date: Thu, 09 Feb 2023 00:26:46 GMT
Etag: "63e3431e-1d7"
Expires: Fri, 10 Feb 2023 07:27:56 GMT
Last-Modified: Wed, 08 Feb 2023 06:37:18 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZhvLjpWdyxcGscIyKDFXcW6xpLYH9RNTfyGHluGK296dT5AoVV5rug==
Age: 3038
5d302896aaae1c0db6c9dff3.services.infinigrow.com/com.snowplowanalytics.snowplow/tp2
54.230.111.75200 OK 2 B URL HTTP/2 5d302896aaae1c0db6c9dff3.services.infinigrow.com/com.snowplowanalytics.snowplow/tp2
IP 54.230.111.75:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: 5d302896aaae1c0db6c9dff3.services.infinigrow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1751
Origin: https://go.catonetworks.com
Connection: keep-alive
Referer: https://go.catonetworks.com/
Cookie: _mkto_trk=id%3A245-RJK-441%26token%3A_mch-catonetworks.com-1675902459615-67377; __ig_cookies=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
content-length: 2
date: Thu, 09 Feb 2023 00:26:46 GMT
x-amzn-requestid: 2f988f9c-5440-4bfd-b81d-17bffca57b31
access-control-allow-origin: https://go.catonetworks.com
x-amzn-remapped-content-length: 2
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
set-cookie: sp=34fe68a7-2fbe-49b7-9601-3f35d46f0a46; Expires=Fri, 09 Feb 2024 00:26:46 GMT; Domain=infinigrow.com; Path=/
x-amz-apigw-id: AC6XAEVJvHcF_bA=
vary: Origin
x-amzn-remapped-server: akka-http/10.0.9
x-amzn-trace-id: Root=1-63e43dc6-186097ff7a749fba49ddc70b;Sampled=0
x-amzn-remapped-date: Thu, 09 Feb 2023 00:26:46 GMT
access-control-allow-credentials: true
x-cache: Miss from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cD5j9YE_WkleAOHh1zX_2pg6fDX50XIcaRAIXDpwVfUZxUcP_iJT1g==
X-Firefox-Spdy: h2
132568-18.chat.api.drift.com/ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAUMTMyNTY4LTE3MjIzMzExMzA1LTRkAAZvcmdfaWRtAAAABjEzMjU2OGQACXNjb3BlX3NldG0AAAAEbGVhZGQAB3VzZXJfaWRtAAAACzE3MjIzMzExMzA1ZAAJdXNlcl90eXBlZAAEbGVhZG4GADxMkTOGAWIAAVGA.oqzpEDIZes2Y6qqPQJ0RkU_1tOCidJoFNkgxVfi2ToQ&remote_ip=18.232.245.220&vsn=2.0.0
54.210.99.219101 Switching Protocols 0 B URL HTTP/1.1 132568-18.chat.api.drift.com/ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAUMTMyNTY4LTE3MjIzMzExMzA1LTRkAAZvcmdfaWRtAAAABjEzMjU2OGQACXNjb3BlX3NldG0AAAAEbGVhZGQAB3VzZXJfaWRtAAAACzE3MjIzMzExMzA1ZAAJdXNlcl90eXBlZAAEbGVhZG4GADxMkTOGAWIAAVGA.oqzpEDIZes2Y6qqPQJ0RkU_1tOCidJoFNkgxVfi2ToQ&remote_ip=18.232.245.220&vsn=2.0.0
IP 54.210.99.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAUMTMyNTY4LTE3MjIzMzExMzA1LTRkAAZvcmdfaWRtAAAABjEzMjU2OGQACXNjb3BlX3NldG0AAAAEbGVhZGQAB3VzZXJfaWRtAAAACzE3MjIzMzExMzA1ZAAJdXNlcl90eXBlZAAEbGVhZG4GADxMkTOGAWIAAVGA.oqzpEDIZes2Y6qqPQJ0RkU_1tOCidJoFNkgxVfi2ToQ&remote_ip=18.232.245.220&vsn=2.0.0 HTTP/1.1
Host: 132568-18.chat.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://js.driftt.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cUiuaNAoweeawR6x23alhA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Thu, 09 Feb 2023 00:26:46 GMT
Connection: upgrade
cache-control: max-age=0, private, must-revalidate
sec-websocket-accept: 05cl9IKdqx4qu2yahrQymPSxgSQ=
server: Cowboy
upgrade: websocket
event.api.drift.com/track
34.193.113.164200 OK 13 B URL HTTP/2 event.api.drift.com/track
IP 34.193.113.164:0
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /track HTTP/1.1
Host: event.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:46 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift657538c4d48a59f3d910dae8f1f
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 0333fa3e34f17f01e9829bd8ee662c23
be4c7a8599038facc49c73d6d14451023bc919e7
8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
event.api.drift.com/track
34.193.113.164200 OK 507 B URL HTTP/2 event.api.drift.com/track
IP 34.193.113.164:0
File type JSON data\012- , ASCII text, with very long lines (507), with no line terminators
Hash e936f82e88f338b9d1bfe027c2a40f92
2781cc78aee407bd067dd03546ca7c957d2e273e
82219fca6e4e9fe5b4983d2d436d1a404a6e689d099b24bb1c74e0b4dcab3758
POST /track HTTP/1.1
Host: event.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNzIyMzMxMTMwNSIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjEzMjU2OCIsImV4cCI6MTcwNzQzODQwNSwiaWF0IjoxNjc1OTAyNDA1fQ.h3Uqkp3F2bsXvXmOtlK22ZuC5i3qjIyG0JhuPNa9-PyTVLZDvVQI2tdwHgzJMOgT8EGVvBsr35bNCln6OCnGaQ
Content-Length: 363
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:46 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 2a317dbcd26db3ff
content-length: 507
x-envoy-upstream-service-time: 2
server: istio-envoy
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/58.36b20a21.chunk.js
54.230.111.119200 OK 7.6 kB URL HTTP/2 js.driftt.com/core/assets/js/58.36b20a21.chunk.js
IP 54.230.111.119:0
Hash 47d45cf23769c22eb60fe13b320730ee
b378e32b85a988e88c7011fa8286cac54b5e476a
493f01b3a44153ab98d8b700ff32be548e420a7def798f439ce5535ee63b7b97
GET /core/assets/js/58.36b20a21.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 19:00:20 GMT
last-modified: Wed, 08 Feb 2023 18:35:27 GMT
etag: W/"b091ec3d1a93eca66eb198479aa461ee"
x-amz-server-side-encryption: AES256
x-amz-version-id: v_7bV8jGy5xgH0L8fikmzYT57QNQLtjy
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: R78t7V1s8UDGuNIl1me1gZgoFsPYyirEhryAjkPGzhgdrlj0xR6A5A==
age: 19586
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.driftt.com/core/assets/css/29.9bf46b67.chunk.css
54.230.111.119200 OK 109 kB URL HTTP/2 js.driftt.com/core/assets/css/29.9bf46b67.chunk.css
IP 54.230.111.119:0
Size 109 kB (109448 bytes)
Hash 9a821a8cf7d34de19e5352fd44ee43fd
1059d545fa685a173f2964c8961be32e1eea4203
753209f0024271ea748c2ac7a87ff8111d229990f3fef79e40510ca53d504f90
GET /core/assets/css/29.9bf46b67.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: W/"4f21faf2ba450e5fcdf7eda90813e185"
x-amz-server-side-encryption: AES256
x-amz-version-id: qzro7282BXz7SnLdWr3hLeI1pZAqJ2A1
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 19
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QX_-I2O3xJuj_dYIpT4LjT_1JVS4J4F2Cok1zqWmRnrw2kPgIHZ86Q==
age: 1062107
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 00:26:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
presence.api.drift.com/ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAFDEzMjU2OC0xNzIyMzMxMTMwNS00ZAAGb3JnX2lkbQAAAAYxMzI1NjhkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsxNzIyMzMxMTMwNWQACXVzZXJfdHlwZWQABGxlYWRkAAZzaWduZWRuBgA_TJEzhgE.8nipcJz9bXNFquFVvd1Qv33bY4rcrWrBUT0ArG_G1Ek&remote_ip=18.232.245.220&vsn=2.0.0
54.85.240.191101 Switching Protocols 0 B URL HTTP/1.1 presence.api.drift.com/ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAFDEzMjU2OC0xNzIyMzMxMTMwNS00ZAAGb3JnX2lkbQAAAAYxMzI1NjhkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsxNzIyMzMxMTMwNWQACXVzZXJfdHlwZWQABGxlYWRkAAZzaWduZWRuBgA_TJEzhgE.8nipcJz9bXNFquFVvd1Qv33bY4rcrWrBUT0ArG_G1Ek&remote_ip=18.232.245.220&vsn=2.0.0
IP 54.85.240.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAFDEzMjU2OC0xNzIyMzMxMTMwNS00ZAAGb3JnX2lkbQAAAAYxMzI1NjhkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsxNzIyMzMxMTMwNWQACXVzZXJfdHlwZWQABGxlYWRkAAZzaWduZWRuBgA_TJEzhgE.8nipcJz9bXNFquFVvd1Qv33bY4rcrWrBUT0ArG_G1Ek&remote_ip=18.232.245.220&vsn=2.0.0 HTTP/1.1
Host: presence.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://js.driftt.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CLL3he/Lio56IGMEOF+Hqg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
cache-control: max-age=0, private, must-revalidate
connection: Upgrade
date: Thu, 09 Feb 2023 00:26:46 GMT
sec-websocket-accept: E19FlaelzlK7gJrnCm2Lk7Pmd64=
server: Cowboy
upgrade: websocket
js.driftt.com/core/assets/js/52.b1edaf4a.chunk.js
54.230.111.119200 OK 13 kB URL HTTP/2 js.driftt.com/core/assets/js/52.b1edaf4a.chunk.js
IP 54.230.111.119:0
Hash 0bee6eeabb4ec7243e742fc14cf6f2b4
8859a8f40441dfdfb7017cebf1bc6f1b34302ba7
b56eb5f6d5cd4b48bdfe0187c0ac18d1c68d1dd18ddcd8eae0e3cfb966d0c018
GET /core/assets/js/52.b1edaf4a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"cd29b9bc973e48a7fcd0ee7153bdf03b"
x-amz-server-side-encryption: AES256
x-amz-version-id: TtzAkuiFg5ajpar.KJembGW97mIyyYtK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KZk3DibJcpoNXVHimEde8l5fpfWIXBihyXs0SYu2HGtpY3ZNePxIIQ==
age: 1062108
X-Firefox-Spdy: h2
connect.facebook.net/signals/config/807692536254583?v=2.9.95&r=stable
157.240.205.11200 OK 110 kB URL HTTP/2 connect.facebook.net/signals/config/807692536254583?v=2.9.95&r=stable
IP 157.240.205.11:0
Size 110 kB (110284 bytes)
Hash 8d41d3c59e949f2063f85b5cc55f2fb4
a795282f07f5d4abcc42948dd02161bee625c361
707e4485e5405b57d4d0877a45b720cd1170608ee60ac86785153569981309ba
GET /signals/config/807692536254583?v=2.9.95&r=stable HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 7bNx/MF4WrFieYZCyAzx5PmwO7LY+A74kueGkXf3lvLc7Etn7HtPdKtR1EC09IeBpm+rXzsZ9FNZYMp3+EDiVw==
priority: u=3,i
x-fb-trip-id: 1679558926
date: Thu, 09 Feb 2023 00:26:44 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/38.11d2b6a7.chunk.css
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/css/38.11d2b6a7.chunk.css
IP 54.230.111.119:0
GET /core/assets/css/38.11d2b6a7.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675902459382
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: W/"87532c4db85f1429fa6d759bc3332f36"
x-amz-server-side-encryption: AES256
x-amz-version-id: hzHYKpyiaZmITNnBC_LqpsxusmNF7FFl
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 15
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6eQ1rHvq9EZ30Xuo3kml3dDOrQvwtVY2NqVOYVGl-KLPZy-JfZ6uUg==
age: 1062107
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/35.2db13da8.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/35.2db13da8.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/35.2db13da8.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675902459382
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"b335cb429753b2c3dabe45686f46aee9"
x-amz-server-side-encryption: AES256
x-amz-version-id: cZsJMbphr0g_Rs503LmupKJPT7bBS_rp
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EzXTblMSuafeapQg0q5CHGq6e7398F6hFVsu0LvRmAt8b3j8Or-zYg==
age: 1062107
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/9.4a3e9801.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/9.4a3e9801.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/9.4a3e9801.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:22 GMT
etag: W/"c6f58dd3d60f07462254b842dd4f9ca1"
x-amz-server-side-encryption: AES256
x-amz-version-id: hzm2Healt7ZjvNDM3nYQ47BRwWjFuLrw
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JINjRf0K_HVrH5EPV0x4tRnweOePK5ufy3O0tbiu6XorFKdAT0IrgA==
age: 1062108
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/17.938ddc32.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/17.938ddc32.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/17.938ddc32.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 07 Feb 2023 19:52:13 GMT
last-modified: Tue, 07 Feb 2023 18:24:51 GMT
etag: W/"6e1f76499cde58fd41e91c5a37d51f07"
x-amz-server-side-encryption: AES256
x-amz-version-id: DcqAdrJmepmz_M9pKA9h2j5OvJGa2cKf
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TBpwb-Vic3EAxF5FTQ4bjLXNE7m17AE9Zi0aIYAy50mz2U5Oq6VoQQ==
age: 102871
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/43.7ac85d58.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/43.7ac85d58.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/43.7ac85d58.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"48be1563378f7c36bdadc0f2eb616856"
x-amz-server-side-encryption: AES256
x-amz-version-id: nlt9wYKKCayMlGWQHqpz8g8qDzXbqs5K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: k6n5-s8JGXb5BcryNIimVe5MZ-dsCRNxqaCuPw0GVKH85dUYFC7eBA==
age: 1062108
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/10.18bfca70.chunk.css
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/css/10.18bfca70.chunk.css
IP 54.230.111.119:0
GET /core/assets/css/10.18bfca70.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: W/"dd670379de64b0621ee84574f3b8e73d"
x-amz-server-side-encryption: AES256
x-amz-version-id: W.Ed7skdAN0dSG59eVgsVvIsNBx.BMsL
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 20
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VsgtTIn-xFTZnVUACT3szoinYAXKQmSGX6FVXPIvaAHAVTAm2iBIwg==
age: 1062107
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/26.5f645a85.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/26.5f645a85.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/26.5f645a85.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 19:00:18 GMT
last-modified: Wed, 08 Feb 2023 18:35:26 GMT
etag: W/"5609cee09879a7d8df8c020e751c4c9d"
x-amz-server-side-encryption: AES256
x-amz-version-id: LXU20jDKZmjlR53NMIdEuloBcrFHQHyo
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 21
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bxCxdvHVAVcLAzDN7EZbqsTnii8s5zb4v_PUfh35FCWugQwPFFWCDA==
age: 19586
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/29.43f0ec90.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/29.43f0ec90.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/29.43f0ec90.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"bbca5d42d17f354ba709da59e093f2e7"
x-amz-server-side-encryption: AES256
x-amz-version-id: YttOPnMbgeCzGpP2GWR5vyLPUID5po5b
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 23
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hZ7Kz_INDOKMiGtFGwN-MIYKu-MP1iwsM4_SuMwm7B0GaotIEWF69g==
age: 1062107
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/1.502906a3.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/1.502906a3.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/1.502906a3.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675902459382
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 19:00:19 GMT
last-modified: Wed, 08 Feb 2023 18:35:25 GMT
etag: W/"de18fcd9afa920d48db7b5e32d4f0207"
x-amz-server-side-encryption: AES256
x-amz-version-id: PL5XzY3ro33dGy_JaFgmckrMuv3awd.l
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 28
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vityWtSvaO_pURNt-7ncQgxPEzzfz2OwKCiFfln6Ax4P5eoXN35n8Q==
age: 19585
X-Firefox-Spdy: h2
static.oktopost.com/oktrk.js
54.230.111.65200 OK 0 B URL HTTP/2 static.oktopost.com/oktrk.js
IP 54.230.111.65:0
GET /oktrk.js HTTP/1.1
Host: static.oktopost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 27 Jan 2020 09:47:41 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 13:47:27 GMT
etag: W/"57315c24d6fec75c4d46a8cc3fa6e0d5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LfsxRbDJISIdFbTdqwg0ChHP7w5nGOsOTz5yFev2SXz_XqX31a5XCw==
age: 38357
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/30.57dfb56c.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/30.57dfb56c.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/30.57dfb56c.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"b8addee34a5cd2241740a2e3094039b3"
x-amz-server-side-encryption: AES256
x-amz-version-id: PRu.RNHym52TA_hlIcQB1Vv5VUA1vVKS
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0LjUFU5yzltaR4O0Qf1_3G3uzFKgEoHYsGZ-So-RWnJMx_FJsuIHmA==
age: 1062108
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/18.c30208b5.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/18.c30208b5.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/18.c30208b5.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 19:00:18 GMT
last-modified: Wed, 08 Feb 2023 18:35:26 GMT
etag: W/"f7d574ded6fe2e85c9ad827112254f1a"
x-amz-server-side-encryption: AES256
x-amz-version-id: xvb8GHQbRCL4LFr92XoLIaKihQOwgN1C
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GRf7o5Y_w4iRbTJhzrrMImqlN-bPYcK0YxDkJMw26mcFyKQHltdctA==
age: 19586
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/27.f44ab9c1.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/27.f44ab9c1.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/27.f44ab9c1.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"768714622a8a2db20ece85777ba47642"
x-amz-server-side-encryption: AES256
x-amz-version-id: wrgwLo8Ut7GsYvCwhzW617Km3EuBTw6K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 24
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lcJHj-joHmKr1Cs6f8aE9JcuBdSchZMXnqoMhi_q8kairoyktwwjWQ==
age: 1062107
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/19.8e79a39a.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/19.8e79a39a.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/19.8e79a39a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"c478a5bb4d7885e2b9250c6beeb4fd6d"
x-amz-server-side-encryption: AES256
x-amz-version-id: uwUNfVtyHdRKYycXgamRNBkk5aCRrwjq
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1wPQt5Lc5lCTF0ywUY1z9UWXk1iWCENknbobaxHoZasO_55adfcPKA==
age: 1062108
X-Firefox-Spdy: h2
pages.catonetworks.com/MjQ1LVJKSy00NDEAAAGJzzumz8Invoqvuo73j_gV0Dz98E1ZOMNskN9ozIxQxVY5lPQzioPh8DiHoYNqXsOZMOpNiXw=
104.17.72.206302 Found 0 B URL HTTP/2 pages.catonetworks.com/MjQ1LVJKSy00NDEAAAGJzzumz8Invoqvuo73j_gV0Dz98E1ZOMNskN9ozIxQxVY5lPQzioPh8DiHoYNqXsOZMOpNiXw=
IP 104.17.72.206:0
GET /MjQ1LVJKSy00NDEAAAGJzzumz8Invoqvuo73j_gV0Dz98E1ZOMNskN9ozIxQxVY5lPQzioPh8DiHoYNqXsOZMOpNiXw= HTTP/1.1
Host: pages.catonetworks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Thu, 09 Feb 2023 00:26:41 GMT
content-type: text/html;charset=UTF-8
x-request-id: b5c5b06c4d5a2a69
cache-control: private, no-cache, no-store, max-age=0
referrer-policy: strict-origin
x-frame-options: SAMEORIGIN
content-security-policy: default-src 'self'; img-src 'self';script-src 'self' 'sha256-UARxJQP/xvANYbVGsUdNwGDgaO2R/734pSwQlevDTOI=';object-src 'none';form-action:'none';frame-src:'none'
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=ixu0IxBPrro7PGqky6GwcaC184f7Vjt0iEMhISZwMl4-1675902401-0-AWab1wG2MEkneRgG1jWJHLxz9+1dKBEbPDGhq9VfPKZzdFuBfEm8iefBGia48KyplMCEY9UIplKUTmWDsYMSLsg=; path=/; expires=Thu, 09-Feb-23 00:56:41 GMT; domain=.pages.catonetworks.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 796879984c02fab4-OSL
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/15.699b0dc7.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/15.699b0dc7.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/15.699b0dc7.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"43d1442a9d30453da9eaeb12b9daafff"
x-amz-server-side-encryption: AES256
x-amz-version-id: jUF4GGgcG34JdLv0MHXRHyWvmwH3OQeO
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 94Cn4vA00eAj6idcGgTA3_ncWsOvRMTXHFCsn_yiMfsCdsEKbeS3eQ==
age: 1062106
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/36.b49bf23f.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/36.b49bf23f.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/36.b49bf23f.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"4ae92c53ef226eb2a201fc855ccb7835"
x-amz-server-side-encryption: AES256
x-amz-version-id: SWSsVLzyOcOhQhmvR.pbvKyQeo7W0A10
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AV1skz0xGN2r0QBvOo7OjWPuoqcYCD829m6iJxPYPEDWvpuN3xdvEQ==
age: 1062107
X-Firefox-Spdy: h2
ws.zoominfo.com/pixel/vT1TFTPoMe2UEfx3OJ1H
104.16.168.82200 OK 0 B URL HTTP/2 ws.zoominfo.com/pixel/vT1TFTPoMe2UEfx3OJ1H
IP 104.16.168.82:0
GET /pixel/vT1TFTPoMe2UEfx3OJ1H HTTP/1.1
Host: ws.zoominfo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:43 GMT
content-type: text/javascript
vary: Accept-Encoding
x-powered-by: Express
x-content-type-options: nosniff
access-control-allow-headers: Content-Type,cf-ipcountry,service-version,x-appengine-user-ip,x-forwarded-for, x-ws-collect-type
access-control-allow-credentials: true
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: visitorId=b28874de4a9ef5c61b832df25d082fdb594e9932d03331d4396da28735713f69; Max-Age=31536000; Domain=ws.zoominfo.com; Path=/; Expires=Fri, 09 Feb 2024 00:26:43 GMT; Secure; SameSite=None
__cf_bm=uWPOu4Rlr6uHWATYwPrFkXyHrYqVtuj2Lp3BSb.JA4c-1675902403-0-AZZWhEvdK96+emDG+UCsIdpPrvP2i3yPEGAJPgBpHrGRhPzw0EACA36cG1MOgXUxWcMlqPscl4GRehk/H98koec=; path=/; expires=Thu, 09-Feb-23 00:56:43 GMT; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
_cfuvid=zDFHcMTtjPwravvTa6c8qcCTYPTp9DGlZuGsWD2tZAw-1675902403298-0-604800000; path=/; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 796879a38d0f0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/12.d33926cb.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/12.d33926cb.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/12.d33926cb.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"bdcb035523ec144399213aa65a8430ff"
x-amz-server-side-encryption: AES256
x-amz-version-id: KyS4g55V4uBz7fjaZ0R1pHyOHsEBkZV6
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 27
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hMuqWBHfTJpA-_txW7OJeHbZaSOqKi8qVImzRjgchQVkUfGrC0q3Kg==
age: 1062106
X-Firefox-Spdy: h2
js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675902459382
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675902459382
IP 54.230.111.119:0
GET /core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675902459382 HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: istio-envoy
last-modified: Wed, 08 Feb 2023 19:00:19 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: anVnAvkfgn5J6cuZXMyTKehe9MUtP13K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
x-envoy-upstream-service-time: 16
date: Thu, 09 Feb 2023 00:26:43 GMT
cache-control: no-cache
etag: W/"91bbc65a16f226622a581aaaf53cafa1"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: as1tf_gl_uUPoD3HirM-Su6k_QIcVndsLaGWZvkdeXcyKyIAm0t13g==
X-Firefox-Spdy: h2
js.driftt.com/include/1675902600000/fa7d7sd6c2rc.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/include/1675902600000/fa7d7sd6c2rc.js
IP 54.230.111.119:0
GET /include/1675902600000/fa7d7sd6c2rc.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.catonetworks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Thu, 09 Feb 2023 00:26:43 GMT
last-modified: Wed, 08 Feb 2023 19:00:37 GMT
etag: W/"35f0d0262832a8a44cb80d6b93f49b1e"
x-amz-server-side-encryption: AES256
x-amz-version-id: M4dLytCbVJlfY.O0vg3Ja12ujbZHwmlt
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: g8qD0l2_b-Twkr3fEnTo7RHV8G1PDh0IuSseCassvASPA_E20Ih1hA==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/25.22647a55.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/25.22647a55.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/25.22647a55.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"2ce6c446f71a395ff41647c9ba4b9c19"
x-amz-server-side-encryption: AES256
x-amz-version-id: 3Dq5XEj76miHFBtzwx_L1gh4_UbdDQYk
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FNcF6pUUzpuhQKYC6j0zuZ_67Vl_TGYBOg0zR2aKESMeL9Z8IEz2wg==
age: 1062107
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/50.de3b5864.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/50.de3b5864.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/50.de3b5864.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"114785899ceb423273fcc17aaad202e9"
x-amz-server-side-encryption: AES256
x-amz-version-id: 1DnDsXjV5U2x4yjXf3GCnDIDPlyIffBu
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xJT7iNdlZzyJ9gLrmBCkQ1CDAqVcbNFKEP1yP1EOEdnglcg5Gf-0hw==
age: 1062107
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/23.80529f14.chunk.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/23.80529f14.chunk.js
IP 54.230.111.119:0
GET /core/assets/js/23.80529f14.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"97c3ca9aaa6fb76a1426ad11ca2061f7"
x-amz-server-side-encryption: AES256
x-amz-version-id: f7GnPSzVZVNA1fDLl2EjAyXSbixH0oiD
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: f0jcgKinhuryKrb_hz8FAzyCQI0ERceV6KfO0DqFC4iA9MUZsu6QyA==
age: 1062106
X-Firefox-Spdy: h2
go.catonetworks.com/Bad-clicks-123111223.html?mkt_tok=MjQ1LVJKSy00NDEAAAGJzzumzwKxPlgYJuFzZfmaUOlWJmzLMtYNUcAb0EZ_k0B_4eiIaega9XHV_112AA0wqsf-CQ2GKmssHgOc4NPyvUWKgrlK2a6Ma13ge5eLPhW1
104.17.73.206200 OK 0 B URL HTTP/2 go.catonetworks.com/Bad-clicks-123111223.html?mkt_tok=MjQ1LVJKSy00NDEAAAGJzzumzwKxPlgYJuFzZfmaUOlWJmzLMtYNUcAb0EZ_k0B_4eiIaega9XHV_112AA0wqsf-CQ2GKmssHgOc4NPyvUWKgrlK2a6Ma13ge5eLPhW1
IP 104.17.73.206:0
GET /Bad-clicks-123111223.html?mkt_tok=MjQ1LVJKSy00NDEAAAGJzzumzwKxPlgYJuFzZfmaUOlWJmzLMtYNUcAb0EZ_k0B_4eiIaega9XHV_112AA0wqsf-CQ2GKmssHgOc4NPyvUWKgrlK2a6Ma13ge5eLPhW1 HTTP/1.1
Host: go.catonetworks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 00:26:42 GMT
content-type: text/html; charset=utf-8
p3p: CP="CAO CURa ADMa DEVa TAIa OUR IND UNI COM NAV INT"
x-asset-type: LP
vary: *,Accept-Encoding
x-content-type-options: nosniff
x-cache-status: BYPASS
x-mkto-nginx-cache: false
cf-cache-status: DYNAMIC
set-cookie: BIGipServerPOOL-31.222.131.4-442-na-LON05=!lbAKnUwh6Grna4e9jRdq5/AJjPbVzcwLk6VxWNjlqgcltq9IrlOEb11BLRpFuamjoiZwFHO8ILhl0JI=;Path=/;Version=1;Secure;Httponly
__cf_bm=qm1KgfRUZL0EXhC1L4.fa_94tH1umQk_5qY3RgIhR.g-1675902402-0-AbrPUcPqLcTee5wOLaZzlFbG7MoJIdGm27mtsvNseqMl5J/Mo4cELKncrf64HQmr+pwfus2txfbMc3W5jeHw0kg=; path=/; expires=Thu, 09-Feb-23 00:56:42 GMT; domain=.go.catonetworks.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7968799d1f3db4f1-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/runtime~main.d3d0cfc4.js
54.230.111.119200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/runtime~main.d3d0cfc4.js
IP 54.230.111.119:0
GET /core/assets/js/runtime~main.d3d0cfc4.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=fa7d7sd6c2rc&eId=fa7d7sd6c2rc®ion=US&forceShow=false&skipCampaigns=false&sessionId=d5cde1b0-5f76-465d-805c-8e76196d360d&sessionStarted=1675902460.456&campaignRefreshToken=47dce6b6-22b8-427b-b858-bcef3bfafaf9&hideController=false&pageLoadStartTime=1675902459382&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgo.catonetworks.com%2FBad-clicks-123111223.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 19:00:18 GMT
last-modified: Wed, 08 Feb 2023 18:35:28 GMT
etag: W/"97f543911fc43e93f244f837ddd08e51"
x-amz-server-side-encryption: AES256
x-amz-version-id: 3kWkyAZY1NFWQ.T0mYtcdv_vl43nozxI
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1d8-0x_za0pCaxhSaISLnYDmSPwjnohcGu-J1L2DhtNVV38FUeZq9Q==
age: 19586
X-Firefox-Spdy: h2