Report - www.xyz.com/

Report Overview

Submitted URL
www.xyz.com/
IP
52.8.203.224
ASN
#16509 AMAZON-02
Submitted
2022-09-01 21:44:30
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-07T10:01:43Z	1.6 kB	4.7 kB	142.250.74.130
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-07T06:08:40Z	574 B	702 B	142.251.1.154
gen.xyz	113365	2014-06-17T15:14:38Z	2023-02-14T03:26:44Z	425 B	2.0 kB	104.26.5.161
script.hotjar.com	887	2020-11-05T17:23:46Z	2023-03-07T06:42:38Z	364 B	66 kB	143.204.55.68
px.ads.linkedin.com	522	2018-06-15T13:29:56Z	2023-03-07T10:14:01Z	890 B	2.2 kB	13.107.42.14
www.xyz.com	unknown			331 B	475 B	52.8.203.224
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-07T08:27:55Z	352 B	43 kB	142.250.74.174
snap.licdn.com	1044	2014-10-06T10:43:45Z	2023-03-07T05:09:49Z	361 B	9.3 kB	23.36.76.121
static.ads-twitter.com	614	2018-06-24T00:08:39Z	2023-03-06T05:09:38Z	344 B	16 kB	151.101.84.157
www.google.com	7	2015-05-10T13:11:19Z	2023-03-07T06:15:59Z	356 B	20 kB	142.250.74.164
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-07T05:09:06Z	321 B	229 B	34.117.237.239
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-07T09:22:12Z	363 B	47 kB	142.250.74.72
analytics.twitter.com	526	2013-04-10T21:53:18Z	2023-03-06T05:09:39Z	699 B	559 B	104.244.42.3
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-07T05:09:18Z	4.6 kB	9.8 kB	142.250.74.3
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-07T05:09:11Z	353 B	93 kB	31.13.72.12
www.googleadservices.com	107	2012-06-26T16:53:06Z	2023-03-06T12:36:30Z	366 B	16 kB	172.217.21.162
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-07T07:41:56Z	1.6 kB	23 kB	142.250.74.3
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	558 B	499 B	31.13.72.36
www.linkedin.com	608	2015-06-18T18:10:03Z	2023-03-07T07:39:57Z	543 B	3.1 kB	13.107.42.14
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-07T05:09:06Z	758 B	2.7 kB	143.204.55.27
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-07T05:09:06Z	401 B	5.8 kB	143.204.55.110
vars.hotjar.com	1014	2020-11-05T11:13:14Z	2023-03-07T11:18:22Z	485 B	1.7 kB	143.204.55.20
t.co	569	2012-07-25T21:09:44Z	2023-03-06T05:09:39Z	682 B	539 B	104.244.42.5
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-07T05:09:07Z	594 B	127 B	34.213.140.56
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-07T05:09:22Z	3.2 kB	53 kB	34.120.237.76
static.hotjar.com	641	2014-11-01T06:14:27Z	2023-03-07T05:10:08Z	357 B	622 B	54.230.111.39
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-07T05:09:07Z	1.6 kB	7.7 kB	23.36.76.226
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-07T09:34:07Z	1.6 kB	3.4 kB	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-09-01	medium	xyz.com	Sinkholed

JavaScript (44)

	URL	Size	First Seen	Last Seen
	gen.xyz/wp-content/themes/xyz/js/jquery-ui.min.js?cache=022	240 kB	2023-03-07	2024-04-25
Pretty URL gen.xyz/wp-content/themes/xyz/js/jquery-ui.min.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:04:01 Last Seen2024-04-25 06:10:08 Times Seen4556 Hash d935d506ae9c8dd9e0f96706fbb91f65 7f650ee30c6a4d3eea04032039b20ff72997559b c4d8dbe77feb63e5a61bee0bead4e5f66e8fa6a927599bd1b74aced52467273c Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1662068662875&cv=9&fst=1662068662875&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=62740735.1662068661&hn=www.google.com&async=1&rfmt=3&fmt=4	2.3 kB	2023-03-07	2023-03-07
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1662068662875&cv=9&fst=1662068662875&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=62740735.1662068661&hn=www.google.com&async=1&rfmt=3&fmt=4 IP 142.250.74.130 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-07 12:05:48 Times Seen1 Hash 662107f2d44db9a63c11d9704643fe8d d3446ce3e91699c8b18dc320d62092d721f9385e 6074149eaca65b5b415dd6a843cf9269bbda5a84936245c8576256595f770251 Loading...

	gen.xyz/	384 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.5.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 836671b24b63c2f221bdf5a21fb40148 16fa940d6f9e9de3a444ad99fd7b7f688a5ce352 a502abed5c17ddc6a2a4b5132a38ad8ed35646e446b08872092a49da30b5fdc0 Loading...

	gen.xyz/	403 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.5.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash e61943f932762294e78ee14f170f4fb2 4b353cfef080082c7c8ad1f2c45ad6d5b2bba2bc a4a194ec96e5a7781b169b2ab4ec8d42e3fa48399388f93e48de9cffa0b25e06 Loading...

	gen.xyz/wp-includes/js/wp-emoji-release.min.js?ver=6.0.1	19 kB	2023-03-07	2024-04-25
Pretty URL gen.xyz/wp-includes/js/wp-emoji-release.min.js?ver=6.0.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 04:27:26 Times Seen38041 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	http:blank	580 B	2023-03-07	2023-03-07
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-07 12:05:48 Times Seen1 Hash c814f7ce9d76cf8cb8c457bbf61990a1 36cb1c949d09a26e4dce21900e3f5c30755ee32f d7bec644b31b7c823bf9944b6a9add82a53894227c2a56330e0ba44c5b3dda5d Loading...

	static.hotjar.com/c/hotjar-2663986.js?sv=6	4.6 kB	2023-03-07	2023-03-07
Pretty URL static.hotjar.com/c/hotjar-2663986.js?sv=6 IP 54.230.111.39 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-07 12:05:48 Times Seen1 Hash 98ab74e782d122b59cf901f267de1426 8c8a76f1c463d6a2f22969cbfa8b7d00da2234fe f900c93255a90b347a81c2bbf5080186d1aa9cbd98464bee9757c30dd475379c Loading...

	www.google.com/pagead/conversion_async.js	42 kB	2023-03-07	2023-03-17
Pretty URL www.google.com/pagead/conversion_async.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:19 Last Seen2023-03-17 12:30:23 Times Seen1 Hash 70049e468e315dbffce0c07753fca6f9 6c1cb5e25675de7746ed7dbb4d103aba9faabea0 94cc0d6d41e4b4bcde2f4f3d6292224215a698f20ffe7915c04cb55146537266 Loading...

	vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html	2.3 kB	2023-03-07	2023-03-17
Pretty URL vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html IP 143.204.55.20 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:30 Last Seen2023-03-17 10:41:48 Times Seen1 Hash 5865f399c24cc57cb46de74ac4a640ff 8381437171dd8dcc5fb411fa75059fb059eb6e0b 82ab863e1e4c6fe101da9839cd7977627f2fd9da5123a21d1cda32a15c9348aa Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 13:14:52 Times Seen37063279 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	gen.xyz/	2.2 kB	2023-03-07	2023-03-08
Pretty URL gen.xyz/ IP 104.26.5.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-08 13:49:59 Times Seen1 Hash 2c3cae4f7ed895a2c4bb122ceac2b04b 2c363b2a10a87148f5f193991e67a7aa5ffa2a08 82ed1c716ac626b37218f121bd8976104a395241daec712bd612092491e4b1a6 Loading...

	gen.xyz/wp-content/plugins/gravityforms/js/jquery.json-1.3.js?cache=022	4.9 kB	2023-03-07	2023-10-30
Pretty URL gen.xyz/wp-content/plugins/gravityforms/js/jquery.json-1.3.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-10-30 14:35:36 Times Seen7 Hash 6f1069afb41ed83274a60c2b17089c51 2ca09363c33ff1375bc8bc78577c2f2cfb1c0661 386089cf121ec8525a1d38e4a3663eb9ecb321f25cc5acc8b97a6a87b6ead070 Loading...

	gen.xyz/app/bower_components/datatables-tabletools/js/dataTables.tableTools.js?cache=022	84 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/app/bower_components/datatables-tabletools/js/dataTables.tableTools.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 43fb31345ea1d10e0b056622e4fb6d48 b6e3f2eb48e93fee5b845f27c5a386b2010b978a 2b38d1e7dc3a292d38e1f9af7272aa3562fe70b54ef0b1f62a23090c40528963 Loading...

	static.ads-twitter.com/uwt.js	57 kB	2023-03-07	2024-01-14
Pretty URL static.ads-twitter.com/uwt.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:30:10 Last Seen2024-01-14 12:48:17 Times Seen57 Hash d4de8398858246712016031c834bb061 49709126e0fcb914a62f3255ae3ffe45a3fbe0ae 41b758f84ab2dd5da6f7ba488813d17410ebb48bc2074d304c26d63c5ece003d Loading...

	gen.xyz/app/bower_components/datatables/media/js/jquery.dataTables.js?cache=022	436 kB	2023-03-07	2023-05-11
Pretty URL gen.xyz/app/bower_components/datatables/media/js/jquery.dataTables.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-05-11 11:06:21 Times Seen3 Hash 89714e2311c98d375b09050e68e686df bad157c0fde8e982d1ef06d302c038d8a5ec21ed 25369dbf8cd6c54a553e0586a11376d371d73d71f66564ffd88a7c1b2a13ace9 Loading...

	gen.xyz/	84 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.5.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash ee44fd63b47a5702de5e3de88230d6a2 9dff9764da87aa9fc6d268f69005d512b186bf6f 01851f22d81181abf5be23e3264d711f8026ed90023b4420406652e3fb88f257 Loading...

	gen.xyz/wp-content/themes/xyz/js/lib/datatables.local.js?ver=6.0.1	437 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/wp-content/themes/xyz/js/lib/datatables.local.js?ver=6.0.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 8d7f3f40d460d72615bb6311b0bb3ede e484b8feee6b982438a1e7cf199610f39e65e4e8 aad2385045abd7a0d542d55d0338369ecb7955198283baea2cec5ab8a28d4a7b Loading...

	gen.xyz/app/js/gen.js?v=022	2.0 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/app/js/gen.js?v=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash a18909a76ea838afea6e6c726a6ac86e b12e41f4c136d7ecded8f86a2117fc84e2983a9b 274a39282ded9f2e5a9ef5426b4bcfbf7ecde1aab1507391c0df0a217a25005d Loading...

	gen.xyz/wp-content/themes/xyz/js/punycode.js?cache=022	12 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/wp-content/themes/xyz/js/punycode.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 780cbb8b0cfebfe41d46a8c1fd5f2577 c41e1d416e32fb59087d04db55d65e5656131663 d0d94f52816ab288570a660d468d8f52b5c6cc9ec7521599d66d410996a66fef Loading...

	gen.xyz/	254 B	2023-03-07	2024-04-25
Pretty URL gen.xyz/ IP 104.26.5.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2024-04-25 12:11:35 Times Seen1583 Hash 38d526d4f322e3a550fe39e8206c36d5 f3a2c9e4f91a094f51c4499ad2d8aaa29dd791d5 eb9084d853891411ee7b809cca094411a91190f54f9bbf6adfad39ffaa6cbe49 Loading...

	gen.xyz/	3.2 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.5.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash bec938113199108723728a7dd956e313 44150726fac87607d61930de52ff0f736d09b1dc 0ed5b71269fe8ed889fbb841eeca5762bd2708626c835e548f6f13fd240be348 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-04-18
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-18 21:14:10 Times Seen840 Hash d40531c5e99a6f84e42535859476fe35 a901817d77b2fe5259c298c91bc65c54d7f8a1a9 a1925038db769477ab74b4df34350c35688a795bb718727b0f4292a4a78a6210 Loading...

	gen.xyz/wp-content/themes/xyz/js/theme.min.js?cache=022	19 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/wp-content/themes/xyz/js/theme.min.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 54849f7c74a1a4f89beaf9cada1f9ee8 087550e99db3b67f87aa12234c2a80aaf74baef9 fc19f414db4faca747fa01c1acdfcd0a187080f727f29175d3857cb54ad3af30 Loading...

	snap.licdn.com/li.lms-analytics/insight.min.js	7.8 kB	2023-03-07	2024-01-14
Pretty URL snap.licdn.com/li.lms-analytics/insight.min.js IP 23.36.76.121 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2024-01-14 12:48:17 Times Seen22 Hash 93e8a332e6a6de807c6ef9fdac9689ae 68a0ccb463d6abb247149a50e0a90ff32dd98ad0 b57839788686bf37d29f47bbe45ad8258085e3aebf54650ab389c0b515b977e1 Loading...

	www.google.com/pagead/1p-conversion/939580661/?random=1662068662877&cv=9&fst=1662068662877&num=1&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=62740735.1662068661&gtm_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4	43 B	2023-03-07	2024-04-20
Pretty URL www.google.com/pagead/1p-conversion/939580661/?random=1662068662877&cv=9&fst=1662068662877&num=1&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=62740735.1662068661&gtm_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2024-04-20 17:48:03 Times Seen63949 Hash ad8b6f08655797587cdec719a94efe59 182adf5a140796f81e930649d05654dbf22fd5b7 77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6 Loading...

	www.googleadservices.com/pagead/conversion_async.js	42 kB	2023-03-07	2023-03-17
Pretty URL www.googleadservices.com/pagead/conversion_async.js IP 172.217.21.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:41 Last Seen2023-03-17 12:27:18 Times Seen1 Hash 6b52040d41898aea7537de80bc45b021 0aa5450958f763d52c927f9ac36ec1025fa7e7e8 f6200e00f9bcf9a324c8c1a046c6bc624ebcaf1379faf13e4d76ae56ea0d1a11 Loading...

	gen.xyz/wp-content/themes/xyz/js/modernizr.custom.min.js?ver=2.8.3	9.9 kB	2023-03-07	2023-11-06
Pretty URL gen.xyz/wp-content/themes/xyz/js/modernizr.custom.min.js?ver=2.8.3 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:32 Last Seen2023-11-06 00:36:04 Times Seen13 Hash 333ed17397abc1cb3f95a56bc99175ee 3bb7f2d314eb569db4c616fe2b7894e6fd8d156e e754195c8dda039e2163e1164d065c6eb4fdc7a6b87dd2c4c29c8c577ec10034 Loading...

	gen.xyz/	426 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.5.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 2efc1378c9064381e764ab203b2704b5 883e5c9454d19c560b29f34638a4ca64d36613cf 2691d456011e71b4a7a0e2c2ed07dd55a086a2594c627b607ee9383ceac34c27 Loading...

	gen.xyz/wp-content/themes/xyz/js/lib/slick.min.js?cache=022	37 kB	2023-03-07	2024-04-07
Pretty URL gen.xyz/wp-content/themes/xyz/js/lib/slick.min.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2024-04-07 22:25:49 Times Seen235 Hash e89ab0412e152eb33cba77569a88297a 213f9015e6302ab4950519647baa4a48bd01b5c4 f295ebe06fc74dd639fc1d926abdea188a4c960b17266e73da205d034ac37f0e Loading...

	gen.xyz/app/bower_components/requirejs/require.js	83 kB	2023-03-07	2023-11-27
Pretty URL gen.xyz/app/bower_components/requirejs/require.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-11-27 05:52:19 Times Seen7 Hash 640929dac3c23a448d2eebc37bc32062 bb053e41b1df0fe25058666f5055154860df9bae cba8e7dbd7b7289150954fbce84d7b1213e4d7ba50e602c78aff3be8a10606c1 Loading...

	gen.xyz/	104 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.5.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash bed1bd3c3c8c36ecdd483d44e3222fa4 29aebfbb0ab91fdebf10e3b7936ec38224e2235b 61f59eff26bd9b08c056e9c1aa043055d7849eb3e0b46e6aaf430a4eeb141c8d Loading...

	www.googletagmanager.com/gtag/js?id=AW-939580661	116 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=AW-939580661 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-07 12:05:48 Times Seen1 Hash ac5b213c85b26710f4d038780f2dcc08 09f165e049807c756b8d0196c2544392828851ab 45a4359f5d90ef833240fe664beb2a8eb09aba4b99ac11720f35f6016913a575 Loading...

	gen.xyz/app/bower_components/jquery-migrate-official/dist/jquery-migrate.js?cache=022	18 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/app/bower_components/jquery-migrate-official/dist/jquery-migrate.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash b9a677088bc014840e05844b481dd835 5321b828654198d3a75374b9a529f38bab996889 67b010c8e18b0bafb1c2ded6b2101abcd5e4e6300990ef58000047f8f280f69b Loading...

	gen.xyz/	425 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.5.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 2fb3256ff4bc91dbbb18ce7ced45b563 1caa99b97dc244753613bd8236b67992c3ba2ef1 faf1ef5a1716e330c6980768327baa2b48a152007f3fec1c48d36fff352ec3ca Loading...

	gen.xyz/wp-content/plugins/gravityforms/js/gravityforms.js?cache=022	47 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/wp-content/plugins/gravityforms/js/gravityforms.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 97f5a84d21b6a9dcb2a8da1b3ad470fd 8c68c322dd935c668b0a459c67b148b88a0816cc 23775a2f8403312cd3521fd2dae3908faad9548397128fa260d480ebfdfbf34b Loading...

	gen.xyz/	38 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.5.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash e2f501ee4e5881de31ae499ae0e23124 f0060a310de1abe21ea0d401802c9a273022cc6b a29812874f6701f428a116f11dba401a83fb55cad51b479289bf01db328b91c9 Loading...

	gen.xyz/	1.4 kB	2023-03-07	2023-03-07
Pretty URL gen.xyz/ IP 104.26.5.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-07 12:05:48 Times Seen1 Hash f8bd19cea803cb1b4342b531638e1c66 3daf5b0d7c4f54dc55c8d31e5907c5539df9c399 b22c4c4113e59c8fc07eb402c06eaeefef7d7de6f21191a6936bbbe4fef7e76f Loading...

	gen.xyz/app/bower_components/jquery/dist/jquery.js?cache=022	272 kB	2023-03-07	2024-04-25
Pretty URL gen.xyz/app/bower_components/jquery/dist/jquery.js?cache=022 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-25 12:28:35 Times Seen58940 Hash 6a07da9fae934baf3f749e876bbfdd96 46a436eba01c79acdb225757ed80bf54bad6416b d8aa24ecc6cecb1a60515bc093f1c9da38a0392612d9ab8ae0f7f36e6eee1fad Loading...

	connect.facebook.net/en_US/fbevents.js	103 kB	2023-03-07	2023-03-17
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:42 Last Seen2023-03-17 10:42:01 Times Seen1 Hash e61c2ad4afdaf056d9fcbbef6171d5d4 cd5f9eb9f949d9df3ccc612aef7488323d47453d 6a0f07fac6fc58958b0e670e2d2927901e052938b2162c1553817aa4cbf5de2f Loading...

	gen.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-25
Pretty URL gen.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 12:50:40 Times Seen68622 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	gen.xyz/wp-content/themes/xyz/js/lib/countUp.js	8.1 kB	2023-03-07	2023-03-26
Pretty URL gen.xyz/wp-content/themes/xyz/js/lib/countUp.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 630b91f2f82777e44cea801a6d2fed28 f834a9d4fa517d58a50ce2c9f007b7df816662fb 1eb30085d1419ea37123d5a7fb1b5cf4ccbf5be4a14389972460185d02e1ea3c Loading...

	gen.xyz/	160 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.5.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash e7fc539bee0344fe0aa54476c514092e ac0ae8703b53f0d6be914d41d0d1c0a2bceebbaf 5008f8259e1f829a5f31a2bbc3ac7537ddf8a2347cf3d0e9e172e5cde0b72017 Loading...

	gen.xyz/	515 B	2023-03-07	2023-03-26
Pretty URL gen.xyz/ IP 104.26.5.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-26 10:36:23 Times Seen3 Hash 7d5aa9a1dd78c7c847b222cf58f1a8f5 b126f92163bf1a49ef123fcd3a47146d732ceb1b 0ba1fce9cbe98b8bdd18b80cf55ef6f7e915102cf74e6978965b3c58c3ebcd7a Loading...

	connect.facebook.net/signals/config/1729164704043487?v=2.9.79&r=stable	300 kB	2023-03-07	2023-03-07
Pretty URL connect.facebook.net/signals/config/1729164704043487?v=2.9.79&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:48 Last Seen2023-03-07 12:05:48 Times Seen1 Hash 243a86597c7d00c8a49e728723e6747b cb1785e71ccd31df7137f0a2380d2b9024d6b959 238300a9e55e2ee3eeeef4c629bf00979e9dd24578e485e1107a7d72d52d9eed Loading...

HTTP Transactions (58)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 01 Sep 2022 21:41:25 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dudq3U1lb141vCfN5imRl8cQ4S6hkH3cmBQmXNE14FGGJJFg3K5Fvg==
Age: 174

www.xyz.com/

52.8.203.224

301 Moved Permanently

241 B

URL HTTP/1.1
www.xyz.com/
IP
52.8.203.224:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
241 B (241 bytes)
Hash
37a3e84f855ce249326aee6a924cc82a
90102b83b36dd44688aa8d6bc352deb64de03169
67eb2485441493c49d7dfbbea1ab68027e7b1f68f03b482e0f5e99f30460388e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.xyz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx/1.15.12
Date: Thu, 01 Sep 2022 21:44:19 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.5.9-1ubuntu4.29
Location: https://gen.xyz/

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2378
Expires: Thu, 01 Sep 2022 22:23:57 GMT
Date: Thu, 01 Sep 2022 21:44:19 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
date: Thu, 01 Sep 2022 01:15:17 GMT
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ulLLTsrzdFok4bsN2UQ_HnQPcop9ZmDkvkSeGtTTEFLjxvf8UnnyKg==
age: 73743
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 01 Sep 2022 21:44:19 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 01 Sep 2022 20:57:05 GMT
Expires: Thu, 01 Sep 2022 21:07:02 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HznjwxLKFXG1Ms1oMAhFPDQl07FvwoNEAhcSE3sh0lwO5DcGeC1FoQ==
Age: 2834

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2eb022bbcb69557dc09477b624814e87
6030f2c630a01fbc027c887d31e696f84cc60c97
d7a508e276f0ca1b58b6af39720fb7ebb26fb38df50a159eb82d1d2542610b85

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5337
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:20 GMT
Last-Modified: Thu, 01 Sep 2022 20:15:23 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

34.213.140.56

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.213.140.56:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1sfZZnH9XUYXVyDG5wfg0g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RqaA2arEdcxdegrpyoh547lxS6U=

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7040539fecb815b0cc84c15e3e2e99df
761de2d6da86cb1df6bb1fdd85ad71f75a825bb4
b1edf3547f6db4798d46a116924942acc48ad56da1fd61f9951acf93053a6578

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7eeea334c1d08b7566e27373f5e446eb
5ef1a6897d3fa68e35cdb14fb768625ac1b67cba
680ba8df61c4901b1cb18977095904807c8f6d73ec228aad2f57e02a33179885

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=AW-939580661

142.250.74.72

200 OK

46 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=AW-939580661
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1615)
Size
46 kB (45978 bytes)
Hash
f940873f0c0e9c327c6262eb8d91be05
8e795e513795663b19a0d062b33abc0d05156ece
54eae12567172f759c59a21af0653f73b55f0cf268849e80521665807c7314e9

HTTP Headers

GET /gtag/js?id=AW-939580661 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Sep 2022 21:44:20 GMT
expires: Thu, 01 Sep 2022 21:44:20 GMT
cache-control: private, max-age=900
last-modified: Thu, 01 Sep 2022 21:04:49 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45978
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googleadservices.com/pagead/conversion_async.js

172.217.21.162

200 OK

16 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion_async.js
IP
172.217.21.162:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1623)
Size
16 kB (15690 bytes)
Hash
829e282923aa2cb30b0c1e31e2e01b16
a3ada4758442e99c7f64bb1dbbab7a5912bdba54
e82c9c9caf6d1eedfa809c7ef3440c39a0c56c141cdba84481eb26c67baf87f6

HTTP Headers

GET /pagead/conversion_async.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 01 Sep 2022 21:44:20 GMT
expires: Thu, 01 Sep 2022 21:44:20 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 13194339052015637803
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15690
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7040539fecb815b0cc84c15e3e2e99df
761de2d6da86cb1df6bb1fdd85ad71f75a825bb4
b1edf3547f6db4798d46a116924942acc48ad56da1fd61f9951acf93053a6578

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f65b9d8b116e36d37bd2a9dac9d19285
f3eb2aed55bd2d58e6316581099071fee6f9a6d9
51b3c1afe79e3c2fa5f8563953f367b34948f5a3c80675e082406ddfcfd7dca1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13574
Expires: Fri, 02 Sep 2022 01:30:35 GMT
Date: Thu, 01 Sep 2022 21:44:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

3.2 kB

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
3.2 kB (3150 bytes)
Hash
b92e9f7d94ac3bb6d914e09f492c67f3
44cde4cfa760d3b8102ce7c0eacc6d4f0e106e30
1f81b44d4e42cb51220e23fa77b2bd0ec5d48d0305c21fa055df8818f20d84e5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13574
Expires: Fri, 02 Sep 2022 01:30:35 GMT
Date: Thu, 01 Sep 2022 21:44:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

1.1 kB

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.1 kB (1082 bytes)
Hash
c0ceb172a1c7a1b30a019a70729036fb
655e38fe17cf408b3b580add6e92d203cdf45a6c
06e35977475b9ed4962b49c3d03efb901480310ca7863f03a4c5eb1696d59c98

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13574
Expires: Fri, 02 Sep 2022 01:30:35 GMT
Date: Thu, 01 Sep 2022 21:44:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13574
Expires: Fri, 02 Sep 2022 01:30:35 GMT
Date: Thu, 01 Sep 2022 21:44:21 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cfd0462-8823-4971-b883-caf554e900df.jpeg

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cfd0462-8823-4971-b883-caf554e900df.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8381 bytes)
Hash
62010c86472d14f87499b41dc46c12e4
d15de8ceb6fef98b46a87aec2e071c909efd2973
0fd93286e0381c85fa0db6cca62c4736b7a3837efcd035d25f7a4d948d9a0af0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cfd0462-8823-4971-b883-caf554e900df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8381
x-amzn-requestid: fcfbb9fb-66bd-40db-9088-d7c6110675bd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjbGLToAMF6Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-75d4a2991a1bbf266e81c2e2;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: _HYMbSu2Xdv2-CWi2SPHdhsGCkJbarEhaO0l3jmBjNaKYuaoZAUgyA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
age: 415
etag: "d15de8ceb6fef98b46a87aec2e071c909efd2973"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfd29a2d-3498-41a7-af26-6104f50c81c8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
data
Size
11 kB (10773 bytes)
Hash
d17b8ea91d797f834267bcd56e462699
d22d85f38abe7bb5e3e82281225c67c892c52d99
68ae53f28195d7b06a9b17240c5da2e5244e3518c48d5f0bbf345e40c4ebb016

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfd29a2d-3498-41a7-af26-6104f50c81c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10015
x-amzn-requestid: 28b44607-90c3-42b0-9a47-5ffd4f670347
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLlfGBqIAMFWqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112622-38788fd737d1b6a35acc1fee;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zMXXwsarlTt3JoospInef1pe4wZKTV_YmnM_ZXD79XLq1f9aZzSl1w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:38:30 GMT
age: 351
etag: "6f144e4e28ba6dfb56860b187a224cfbc23b50bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
data
Size
9.9 kB (9896 bytes)
Hash
7835d128c684a5521cabb30c37ab45d6
1a7c79c874dd9248542cadcf95876f1b70cd1fc3
fb06f52d7e29ae71c3379821ddc1bce7569f9cc6dce1f21a52692d68eed25445

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9642
x-amzn-requestid: 52c698d7-6419-4614-9c53-68a265266337
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjbEvgoAMFkKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-547a72850cce71da013383f5;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: I3pDTq3EeJJtzJFsAFaym7cV5nCrwFailDRzgA3QkAFOYj3xV43v2w==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
age: 415
etag: "67192f5be476ac4dada66dc9fbe26469d62e2d78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb286723e-5b07-4b35-8224-cdbe76a32724.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.6 kB (2625 bytes)
Hash
225b8d6b006bc34721fd5f986b3fb6f6
7b7e20e3036e32798cbcc251dacc89ac93085e4d
87b2404ad60df3c4421c4b1fae2d2c4c8391aec7ce809da223642fc0375044cd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb286723e-5b07-4b35-8224-cdbe76a32724.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2625
x-amzn-requestid: 45e03380-927b-4bc2-b53f-af2df7d8380c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLlfHq5IAMFQxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112622-5aa105d34993ee034a18138e;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NWdFB0r0k0sux6_q8ZoIVZP5cda-rGdiXXFMMVwkQpMe6hL6eG72LQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:38:30 GMT
age: 351
etag: "7b7e20e3036e32798cbcc251dacc89ac93085e4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

15 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
data
Size
15 kB (14618 bytes)
Hash
78227a9b2b66ff40aa5609b81e42f81c
a8e5e3acfe35dc9c79a3a3d2190dd3afcf7b39ae
4116599f7b98c01225a7b95cb86cd8c652df83b83be70aabab4c3f3a9150d2a0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6DJbsUGTdXT42cNLTDq6Uz28H2SDhwq6drdKP4axAHsBz471X7r_g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
age: 415
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

341 B

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409dfca9-6638-46e3-bd6c-98a42f043bc4.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size
341 B (341 bytes)
Hash
43d4a129d2ee272d2a0f78ca73dad063
4738e6583020bba0de44d0cb6046694384966836
4e194bdb73da2c2d99e6fbc4ad7062f92871e20d8b5279c07e65e41ad89c9450

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409dfca9-6638-46e3-bd6c-98a42f043bc4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9040
x-amzn-requestid: 24ba8357-3dbc-4609-8998-a358d3b4c4cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLleHKxIAMFqFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112622-2b67e5bd14e08d5c3ccf352f;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Ot2ovRarFg0nSndNjtz8HZJjZ4zlgAoCZvQY1QLbjAaNUSzf7A4tVQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:38:30 GMT
age: 351
etag: "05e3b1ca0471c4a754beefd5fa5cf88b8d86c141"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f4f9dc502e2ff07dd351da7bbc20e323
739b6c8334472846232b84b99989be93dc1582d4
0852238945d340493f33e498b75a893d24681f2687fdc05349476faccf426efd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2233
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:23 GMT
Last-Modified: Thu, 01 Sep 2022 21:07:10 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

snap.licdn.com/li.lms-analytics/insight.min.js

23.36.76.121

200 OK

9.0 kB

URL HTTP/2
snap.licdn.com/li.lms-analytics/insight.min.js
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

File type
data
Size
9.0 kB (9029 bytes)
Hash
9a0183f84c5d5086d77c020e82485d0b
bc7d7e0645f890773adacf860fafe9edc9e06880
1e3f5e54134b13c98d410f6c474ec79ce4e7e571ce616de6515c42de5a8d2c26

HTTP Headers

GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 20:23:36 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=63795
date: Thu, 01 Sep 2022 21:44:23 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

42 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
data
Size
42 kB (42260 bytes)
Hash
9a88dd493b249e7941ee6d023f590cac
5732bde9b88a1addac35fb2837864c6dc849a493
33671e943aaf6a81660c4b5afbcf7616f82f113152d92d7db9e264c82ffda50b

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Thu, 01 Sep 2022 20:41:12 GMT
expires: Thu, 01 Sep 2022 22:41:12 GMT
cache-control: public, max-age=7200
age: 3791
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

92 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
data
Size
92 kB (92108 bytes)
Hash
e505e57b83e7d5b48a95c252924473b2
4ddd305b6b752a19d0f51eb2c7737a6f56ff830e
ded26c3e42cec906f3bd3f0a0cd8214b938d7af07dedd871468653f77882a6e4

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: q8ryT//SPxw9rSzIaeg/icWZFU3fRU+YalwDVBLRoQ4rZkLqpW0ixZaDFwTVTLUJLBTOetdLrfY1MCqRRC+RFA==
content-length: 26752
x-fb-trip-id: 1904183273
date: Thu, 01 Sep 2022 21:44:23 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
67921e2bd7c620bdd4db5ed1e73d3146
1deaa030ab490c63f94bde4c7ada5e2f849fb506
7fcee2496cdc63c9779941621d9e61acd006910947ccb6c7e98f383b0bf4574c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

static.ads-twitter.com/uwt.js

151.101.84.157

200 OK

15 kB

URL HTTP/2
static.ads-twitter.com/uwt.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (57443), with no line terminators
Size
15 kB (15317 bytes)
Hash
1e9c4d503a9e162d8b549dc3d9c040e2
1fa99d7d7e878cdd45567af4b0c3c65542036c1d
f936c0124c595fe5d0c7858277f3a5f3bd104de39d36ac92557501fa1dec8563

HTTP Headers

GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Thu, 01 Sep 2022 21:44:23 GMT
x-served-by: cache-iad-kiad7000147-IAD, cache-bma1627-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f4f9dc502e2ff07dd351da7bbc20e323
739b6c8334472846232b84b99989be93dc1582d4
0852238945d340493f33e498b75a893d24681f2687fdc05349476faccf426efd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2233
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:23 GMT
Last-Modified: Thu, 01 Sep 2022 21:07:10 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

www.google.com/pagead/conversion_async.js

142.250.74.164

200 OK

19 kB

URL HTTP/2
www.google.com/pagead/conversion_async.js
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
data
Size
19 kB (19237 bytes)
Hash
aafc5f38d707f11192216be3cd470ff1
a20dc27c84b4573e386255c7279f0a0476c2820e
47beff7efc7200a17a68774e6e1c511f62ba0bdc5d974adb6c89e3da9c80c488

HTTP Headers

GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 01 Sep 2022 21:44:23 GMT
expires: Thu, 01 Sep 2022 21:44:23 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 15579141248118922429
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15687
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
dc076b754adaddcb000f3f987b6c5df2
01e9b40591692b8b2a6a94729e9481c7e600d248
9dbf2e71e1cbad91a71154b729e8ef496eda7544828a8bfd4f64e6dd70c4f64d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html

143.204.55.20

200 OK

1.0 kB

URL HTTP/2
vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html
IP
143.204.55.20:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Size
1.0 kB (1044 bytes)
Hash
0b3d3f4206ab84d8861a8cc4b2ddbe66
4561b7c0419b65db5c1314be2143bd1734e88d89
ec42652b198c82469afbe5e6e69312a25425c1fd38d379cf3761b328ecd48e4a

HTTP Headers

GET /box-1ada912494ba7fc7aca15fcef1c2a7ae.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Wed, 13 Jul 2022 08:33:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "0b3d3f4206ab84d8861a8cc4b2ddbe66"
last-modified: Wed, 13 Jul 2022 08:32:20 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Pry6ueYYK8_ogA0qZCmvy8RTSoVOEMFCdfk85M8SLSGR7ciihZJ7Ig==
age: 4367477
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

312 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
312 B (312 bytes)
Hash
5c08013eb230bb4e3b523ed5134925f2
9cd8fd3de19b7c409047e99c37c647a946bdfa6a
b10dd4be06c7afef8cc8ecc9096d270e8837e1a84bcacafbe8fc5b8d71d4a8d1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1953
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:23 GMT
Last-Modified: Thu, 01 Sep 2022 21:11:50 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 312

t.co/i/adsct?bci=3&eci=2&event_id=9bfddaeb-8b54-45df-9e9c-8feda9f50b30&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=feaf66a2-2b33-4216-a183-38ae37df15d9&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.27

104.244.42.5

200 OK

43 B

URL HTTP/2
t.co/i/adsct?bci=3&eci=2&event_id=9bfddaeb-8b54-45df-9e9c-8feda9f50b30&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=feaf66a2-2b33-4216-a183-38ae37df15d9&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.27
IP
104.244.42.5:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=9bfddaeb-8b54-45df-9e9c-8feda9f50b30&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=feaf66a2-2b33-4216-a183-38ae37df15d9&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.27 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 01 Sep 2022 21:44:23 GMT
server: tsa_o
set-cookie: muc_ads=54ee60a5-36af-409f-be6b-69bcf560ae70; Max-Age=63072000; Expires=Sat, 31 Aug 2024 21:44:23 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
strict-transport-security: max-age=0
x-response-time: 111
x-connection-hash: eb7852b060f2e64aafe0d536869a2e131ac5aecdb511afd374e23ea8d61e2b95
X-Firefox-Spdy: h2

script.hotjar.com/modules.07ac9b8d187d510db456.js

143.204.55.68

200 OK

65 kB

URL HTTP/2
script.hotjar.com/modules.07ac9b8d187d510db456.js
IP
143.204.55.68:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (48715)
Size
65 kB (65413 bytes)
Hash
fff5770f0de5c66c4269264cf792ec05
39fdb897caaa4b3d6baaee51c84f6d4ffda5e055
5a4eb0540987c1ad47a0f9080596d4476cb659f503c0b9ab0e5dddd54221deeb

HTTP Headers

GET /modules.07ac9b8d187d510db456.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 65413
date: Tue, 30 Aug 2022 12:30:07 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "fff5770f0de5c66c4269264cf792ec05"
last-modified: Tue, 30 Aug 2022 12:29:33 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZmxbohM7h4eGfLQ5GW2uehADOcvo35b-3rEyMsdrBjXKsJl6qISCMQ==
age: 206056
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
003e8a2cb35bb65683fccbf8bf7a9797
b26fbc7607825162686c7e164d51956addeb1a6c
a71ec1144878270f76c09c51967a1d24b7d82dd700e83216be1e814a74796403

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
003e8a2cb35bb65683fccbf8bf7a9797
b26fbc7607825162686c7e164d51956addeb1a6c
a71ec1144878270f76c09c51967a1d24b7d82dd700e83216be1e814a74796403

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
003e8a2cb35bb65683fccbf8bf7a9797
b26fbc7607825162686c7e164d51956addeb1a6c
a71ec1144878270f76c09c51967a1d24b7d82dd700e83216be1e814a74796403

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
995ff1fb34d2d3b1e0530b31782d5852
032124c31ee17aea71a85df3d11fc4d29c75e582
2f49db6d896035e49d40cc8b28a4e1a4ac71b3625ef361122a411918055cb4f3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5975
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:23 GMT
Last-Modified: Thu, 01 Sep 2022 20:04:48 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313

googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1662068662875&cv=9&fst=1662068662875&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=62740735.1662068661&hn=www.google.com&async=1&rfmt=3&fmt=4

142.250.74.130

200 OK

2.9 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1662068662875&cv=9&fst=1662068662875&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=62740735.1662068661&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
data
Size
2.9 kB (2921 bytes)
Hash
6cc6ff616af69d8b0717f3c25b698a3b
f557a6475df39e4beb744f8298fe80a7956a70ff
fadf1108000a5dd36f49467c7da5f53d868dcf4a0a5abc4ef74473e43951f7ab

HTTP Headers

GET /pagead/viewthroughconversion/939580661/?random=1662068662875&cv=9&fst=1662068662875&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=62740735.1662068661&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 01 Sep 2022 21:44:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1044
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 01-Sep-2022 21:59:23 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-51822516-1&cid=1137929995.1662068663&jid=711542554&gjid=2039297354&_gid=2130977737.1662068663&_u=IGBAgEABAAAAAE~&z=893125214

142.251.1.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-51822516-1&cid=1137929995.1662068663&jid=711542554&gjid=2039297354&_gid=2130977737.1662068663&_u=IGBAgEABAAAAAE~&z=893125214
IP
142.251.1.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-51822516-1&cid=1137929995.1662068663&jid=711542554&gjid=2039297354&_gid=2130977737.1662068663&_u=IGBAgEABAAAAAE~&z=893125214 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://gen.xyz
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://gen.xyz
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 01 Sep 2022 21:44:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1662068662877&cv=9&fst=1662068662877&num=1&fmt=3&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=62740735.1662068661&gtm_ee=1&hn=www.google.com&gcp=1&ct_cookie_present=1&async=1

142.250.74.130

200 OK

42 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/939580661/?random=1662068662877&cv=9&fst=1662068662877&num=1&fmt=3&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=62740735.1662068661&gtm_ee=1&hn=www.google.com&gcp=1&ct_cookie_present=1&async=1
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/viewthroughconversion/939580661/?random=1662068662877&cv=9&fst=1662068662877&num=1&fmt=3&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=62740735.1662068661&gtm_ee=1&hn=www.google.com&gcp=1&ct_cookie_present=1&async=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 01 Sep 2022 21:44:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 01-Sep-2022 21:59:23 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
003e8a2cb35bb65683fccbf8bf7a9797
b26fbc7607825162686c7e164d51956addeb1a6c
a71ec1144878270f76c09c51967a1d24b7d82dd700e83216be1e814a74796403

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
003e8a2cb35bb65683fccbf8bf7a9797
b26fbc7607825162686c7e164d51956addeb1a6c
a71ec1144878270f76c09c51967a1d24b7d82dd700e83216be1e814a74796403

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
77dcbad667fa753223ab404f9e5efc2e
8aa7da6ed9b77d478e9205e41c8b6fe0a973ae70
0a59d091c042b60cb2193e33754db4e8c2fd7c8e4abd5150a72db06cdc661a94

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

px.ads.linkedin.com/collect?v=2&fmt=js&pid=50162&time=1662068662789&url=https%3A%2F%2Fgen.xyz%2F

13.107.42.14

302 Found

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=50162&time=1662068662789&url=https%3A%2F%2Fgen.xyz%2F
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=50162&time=1662068662789&url=https%3A%2F%2Fgen.xyz%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D50162%26time%3D1662068662789%26url%3Dhttps%253A%252F%252Fgen.xyz%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQLUBFzcy68o-AAAAYL7AyXz37xsCwOTceU1bJKX5uRpFkUMCQmPy49UzrXlqvxBjN4aBSvNefoIVQ; Max-Age=2592000; Expires=Sat, 01 Oct 2022 21:44:23 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQJvETUtcNlpEQAAAYL7AyXzqGZNs4ph4d2ugFWj8_KXe-GHuon0nU9h1fAEEziACOcFrtkTD0BJCU1zwpXMow; Max-Age=2592000; Expires=Sat, 01 Oct 2022 21:44:23 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&ea4d99a3-ab79-4b35-8507-ef8fb6a0107e"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 01-Sep-2023 21:44:23 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2376:u=1:x=1:i=1662068663:t=1662155063:v=2:sig=AQG-VkA3tEupnvJdpBeh4vC2RbqXNAoj"; Expires=Fri, 02 Sep 2022 21:44:23 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXnpIRL/+oP0XegnYZgcQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 67AA4E134BE04AE8ABC602A6B5772653 Ref B: OSL30EDGE0317 Ref C: 2022-09-01T21:44:23Z
date: Thu, 01 Sep 2022 21:44:23 GMT
content-length: 0
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
77dcbad667fa753223ab404f9e5efc2e
8aa7da6ed9b77d478e9205e41c8b6fe0a973ae70
0a59d091c042b60cb2193e33754db4e8c2fd7c8e4abd5150a72db06cdc661a94

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/pagead/1p-conversion/939580661/?random=1662068662877&cv=9&fst=1662068662877&num=1&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=62740735.1662068661&gtm_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0

142.250.74.3

200 OK

63 B

URL HTTP/2
www.google.no/pagead/1p-conversion/939580661/?random=1662068662877&cv=9&fst=1662068662877&num=1&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=62740735.1662068661&gtm_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26

HTTP Headers

GET /pagead/1p-conversion/939580661/?random=1662068662877&cv=9&fst=1662068662877&num=1&label=_sg9CPzitd8CEPW5g8AD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&auid=62740735.1662068661&gtm_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gen.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 01 Sep 2022 21:44:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/pagead/1p-user-list/939580661/?random=1662068662875&cv=9&fst=1662066000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&async=1&fmt=3&is_vtc=1&random=1577598770&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y

142.250.74.3

200 OK

21 kB

URL HTTP/2
www.google.no/pagead/1p-user-list/939580661/?random=1662068662875&cv=9&fst=1662066000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&async=1&fmt=3&is_vtc=1&random=1577598770&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
21 kB (21143 bytes)
Hash
ed2a60175a50824bc89a647047cbd1bc
75831c928b8880995255b993a9cc8ceaff1fafa8
9e13d795f7992d0c0f7e992a2ce45d2a76c5bed96adffa720ae89f2aa6157627

HTTP Headers

GET /pagead/1p-user-list/939580661/?random=1662068662875&cv=9&fst=1662066000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa8t0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fgen.xyz%2F&tiba=.xyz%20Domain%20Names%20%7C%20Join%20Generation%20XYZ&async=1&fmt=3&is_vtc=1&random=1577598770&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 01 Sep 2022 21:44:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=9bfddaeb-8b54-45df-9e9c-8feda9f50b30&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=feaf66a2-2b33-4216-a183-38ae37df15d9&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.27

104.244.42.3

200 OK

43 B

URL HTTP/2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=9bfddaeb-8b54-45df-9e9c-8feda9f50b30&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=feaf66a2-2b33-4216-a183-38ae37df15d9&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.27
IP
104.244.42.3:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=9bfddaeb-8b54-45df-9e9c-8feda9f50b30&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=feaf66a2-2b33-4216-a183-38ae37df15d9&tw_document_href=https%3A%2F%2Fgen.xyz%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxecr&type=javascript&version=2.3.27 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 01 Sep 2022 21:44:23 GMT
server: tsa_o
set-cookie: personalization_id="v1_dNrSXSy1QcGEdrbbmABUBw=="; Max-Age=63072000; Expires=Sat, 31 Aug 2024 21:44:23 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 104
x-connection-hash: 4bee84c7e1698b9cb807f33ad596a8877fa6fd04b1ec883910b5b8ee35bc1c1e
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
77dcbad667fa753223ab404f9e5efc2e
8aa7da6ed9b77d478e9205e41c8b6fe0a973ae70
0a59d091c042b60cb2193e33754db4e8c2fd7c8e4abd5150a72db06cdc661a94

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:44:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.facebook.com/tr/?id=1729164704043487&ev=PageView&dl=https%3A%2F%2Fgen.xyz%2F&rl=&if=false&ts=1662068663506&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662068663505.147151118&it=1662068662851&coo=false&rqm=GET

31.13.72.36

200 OK

44 B

URL HTTP/2
www.facebook.com/tr/?id=1729164704043487&ev=PageView&dl=https%3A%2F%2Fgen.xyz%2F&rl=&if=false&ts=1662068663506&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662068663505.147151118&it=1662068662851&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type
GIF image data, version 89a, 1 x 1\012- data
Size
44 B (44 bytes)
Hash
b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa

HTTP Headers

GET /tr/?id=1729164704043487&ev=PageView&dl=https%3A%2F%2Fgen.xyz%2F&rl=&if=false&ts=1662068663506&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662068663505.147151118&it=1662068662851&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
date: Thu, 01 Sep 2022 21:44:24 GMT
expires: Thu, 01 Sep 2022 21:44:24 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie: 
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D50162%26time%3D1662068662789%26url%3Dhttps%253A%252F%252Fgen.xyz%252F%26liSync%3Dtrue

13.107.42.14

302 Found

0 B

URL HTTP/2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D50162%26time%3D1662068662789%26url%3Dhttps%253A%252F%252Fgen.xyz%252F%26liSync%3Dtrue
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D50162%26time%3D1662068662789%26url%3Dhttps%253A%252F%252Fgen.xyz%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gen.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=50162&time=1662068662789&url=https%3A%2F%2Fgen.xyz%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&b9142d07-fff7-46bb-8fcb-6605a7368885"; Domain=.linkedin.com; Expires=Fri, 01-Sep-2023 21:44:24 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2022090121442483ae1495-8610-49fa-8534-9e5c602abe2dAQFina9GTsgGdR7cwXm3VJ_kRlCih-VX"; Domain=.www.linkedin.com; Expires=Fri, 01-Sep-2023 21:44:24 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjIwNjg2NjQ7MjswMjG6irRtco/cPG2Ikvm8EVn4P31M+pr6JolCzhWSQoZq/w==; Domain=.linkedin.com; Expires=Tue, 28 Feb 2023 21:44:24 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2371:u=1:x=1:i=1662068664:t=1662155064:v=2:sig=AQHkuvu000ZH8G1GJNvC3M2bhmI43zVr"; Expires=Fri, 02 Sep 2022 21:44:24 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXnpIRQq8CBijyAmD/fSg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 3B709867210047C8A029BD810457BBE7 Ref B: OSL30EDGE0317 Ref C: 2022-09-01T21:44:24Z
date: Thu, 01 Sep 2022 21:44:23 GMT
content-length: 0
X-Firefox-Spdy: h2

px.ads.linkedin.com/collect?v=2&fmt=js&pid=50162&time=1662068662789&url=https%3A%2F%2Fgen.xyz%2F&liSync=true

13.107.42.14

200 OK

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=50162&time=1662068662789&url=https%3A%2F%2Fgen.xyz%2F&liSync=true
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=50162&time=1662068662789&url=https%3A%2F%2Fgen.xyz%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gen.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&29fe1ac1-c89b-4a48-8473-f51f335abc47"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 01-Sep-2023 21:44:24 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2336:u=1:x=1:i=1662068664:t=1662155064:v=2:sig=AQF8WTwACmWNDVqpV1P17p11wqfYzKim"; Expires=Fri, 02 Sep 2022 21:44:24 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXnpIRTNI8CB1zJE+gbdQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 01664F2A35E74396A9AB63FB15A3F18E Ref B: OSL30EDGE0317 Ref C: 2022-09-01T21:44:24Z
date: Thu, 01 Sep 2022 21:44:23 GMT
content-length: 0
X-Firefox-Spdy: h2

gen.xyz/

104.26.5.161

200 OK

0 B

URL HTTP/2
gen.xyz/
IP
104.26.5.161:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: gen.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Thu, 01 Sep 2022 21:44:20 GMT
content-type: text/html; charset=UTF-8
set-cookie: AWSALBTG=JhZZyYIwJKYBctYnPcK4GhVpGrt7Sdo2Tn3AJaTe4sn12Fc9XfZhffkP5AXmfTT87qASuAcpbUj7Vdmx6xP3y37dg9ofCfhqkagGWeACtKeVXAVIQKgheSZv/Xni+rQRguEcl9otHFVWC255bdrHX2o9xfXohkbNanZwteB2zM6P1c7Z0s8=; Expires=Thu, 08 Sep 2022 21:44:20 GMT; Path=/
AWSALBTGCORS=JhZZyYIwJKYBctYnPcK4GhVpGrt7Sdo2Tn3AJaTe4sn12Fc9XfZhffkP5AXmfTT87qASuAcpbUj7Vdmx6xP3y37dg9ofCfhqkagGWeACtKeVXAVIQKgheSZv/Xni+rQRguEcl9otHFVWC255bdrHX2o9xfXohkbNanZwteB2zM6P1c7Z0s8=; Expires=Thu, 08 Sep 2022 21:44:20 GMT; Path=/; SameSite=None; Secure
AWSALB=IA2Yx+9AVpVJeKub9AdqT4FNJ1s1Za5PEMmU7XRPcl1YtfQuUx99tNJtRe+W3GJQDC2xCl8yxEcVwV9d/ME3MfSnasLdQZuLP0M4Zazwagzii+XIk/HnNVJDnvVa; Expires=Thu, 08 Sep 2022 21:44:20 GMT; Path=/
AWSALBCORS=IA2Yx+9AVpVJeKub9AdqT4FNJ1s1Za5PEMmU7XRPcl1YtfQuUx99tNJtRe+W3GJQDC2xCl8yxEcVwV9d/ME3MfSnasLdQZuLP0M4Zazwagzii+XIk/HnNVJDnvVa; Expires=Thu, 08 Sep 2022 21:44:20 GMT; Path=/; SameSite=None; Secure
PHPSESSID=nnsvc48vkea5k8ka40ec7cn1lk; path=/; secure; HttpOnly
x-pingback: https://gen.xyz/xmlrpc.php
link: <https://gen.xyz/wp-json/>; rel="https://api.w.org/", <https://gen.xyz/wp-json/wp/v2/pages/4>; rel="alternate"; type="application/json", <https://gen.xyz/>; rel=shortlink
vary: Accept-Encoding
x-xyz-server: web3.gen.xyz
x-xyz-runtime: D=133263
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vYtt9LIA9275uGZ9ak0IToAs1ePTIpGH8guEdvc9OdymDTwE4XxAOszjZwYqomZUbpFWyo%2Fr4MfauSZoMr6mdicO%2Frd97g7durvTmeokJP0by%2BqOCvxWK64%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74412fc17bfc0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-2663986.js?sv=6

54.230.111.39

200 OK

0 B

URL HTTP/2
static.hotjar.com/c/hotjar-2663986.js?sv=6
IP
54.230.111.39:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/hotjar-2663986.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gen.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Thu, 01 Sep 2022 21:44:23 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=86400; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/98ab74e782d122b59cf901f267de1426
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: j7KveFAl4VYHdcsc1KYoa7yuEc3OxPJRRwOxmh9ZP-Cs5YYccEzqJw==
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (44)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations