Report - csv1v04.na1.hubspotlinks.com/Ctc/T7+113/csv1v04/VW8kPc1PYc68W6gDsHt1RFyqgW1RGk9h4QcYc0N3mxJ6_3pl37V1-WJV7CgBHjW8cs4Mk4QnT3KVYL9b12r41F6W12SVVP8mjJk-W7zHmnB9fZSFnW8q4qYq8g0mySV6PyQ82t6xt9W25M7hy2Cyc_GW21gztg88qHQrW2bD1MT4VgJSgVyJpXN4V9j6rW1_T0hX8qTmwbN3fHppfJ_K26W1qQWXx8pCjw5W6svxDk15MmypW4yhnkl6TBHcHW3G8bZW2FNf5nW3vSKJ-1mkqjDW8PZ_5l3tLRkRW8HYj425yLzhZW4ptM673DjRy6W8gmrxM33LW2YW6rs-wn46QfYVW3yF9888FtLxYW5yV6np5gHjs1W6

Report Overview

Submitted URL
csv1v04.na1.hubspotlinks.com/Ctc/T7+113/csv1v04/VW8kPc1PYc68W6gDsHt1RFyqgW1RGk9h4QcYc0N3mxJ6_3pl37V1-WJV7CgBHjW8cs4Mk4QnT3KVYL9b12r41F6W12SVVP8mjJk-W7zHmnB9fZSFnW8q4qYq8g0mySV6PyQ82t6xt9W25M7hy2Cyc_GW21gztg88qHQrW2bD1MT4VgJSgVyJpXN4V9j6rW1_T0hX8qTmwbN3fHppfJ_K26W1qQWXx8pCjw5W6svxDk15MmypW4yhnkl6TBHcHW3G8bZW2FNf5nW3vSKJ-1mkqjDW8PZ_5l3tLRkRW8HYj425yLzhZW4ptM673DjRy6W8gmrxM33LW2YW6rs-wn46QfYVW3yF9888FtLxYW5yV6np5gHjs1W6_Spy69hGL1GW63Q9cf5XxSFK36Km1
IP
104.18.37.211
ASN
#13335 CLOUDFLARENET
Submitted
2023-01-07 18:59:53
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
static.licdn.com	12070	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.3 kB	114 kB	95.101.11.57
accounts.google.com	81	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	484 B	1.7 kB	216.58.211.13
www.linkedin.com	608	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	26 kB	33 kB	13.107.42.14
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
csv1v04.na1.hubspotlinks.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	878 B	4.9 kB	104.18.37.211
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.88.25.203
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	142.250.74.131
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	480 B	104 kB	142.250.74.35
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.3 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	63 kB	34.120.237.76
platform.linkedin.com	3785	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	841 B	8.0 kB	95.101.11.48
ps.azurewaf.microsoft.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	779 B	13.107.238.53

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-01-07	medium	csv1v04.na1.hubspotlinks.com/Ctc/T7+113/csv1v04/VW8kPc1PYc68W6gDsHt1RFyqgW1RGk9h4QcYc0N3mxJ6_3pl37V1-WJV7CgBHjW8cs4Mk4QnT3KVYL9b12r41F6W12SVVP8mjJk-W7zHmnB9fZSFnW8q4qYq8g0mySV6PyQ82t6xt9W25M7hy2Cyc_GW21gztg88qHQrW2bD1MT4VgJSgVyJpXN4V9j6rW1_T0hX8qTmwbN3fHppfJ_K26W1qQWXx8pCjw5W6svxDk15MmypW4yhnkl6TBHcHW3G8bZW2FNf5nW3vSKJ-1mkqjDW8PZ_5l3tLRkRW8HYj425yLzhZW4ptM673DjRy6W8gmrxM33LW2YW6rs-wn46QfYVW3yF9888FtLxYW5yV6np5gHjs1W6_Spy69hGL1GW63Q9cf5XxSFK36Km1	LinkedIn Corporation

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	static.licdn.com/sc/h/avzjesp0yrbz0c8qa81r63x7m	186 kB	2023-03-08	2023-03-13
Pretty URL static.licdn.com/sc/h/avzjesp0yrbz0c8qa81r63x7m IP 95.101.11.57 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:51 Last Seen2023-03-13 06:52:58 Times Seen1 Hash b7eb9fe93fca3ce64dc595bc384eece2 d90bca3eeaae751326fea09793492b2148d76be5 8f31dc56914b010257901126859b48c6afae74dee334d67a3c3c83544a14503b Loading...

	static.licdn.com/sc/h/b39mllzjzea0ex5odqm0ojejf	559 kB	2023-03-08	2023-03-13
Pretty URL static.licdn.com/sc/h/b39mllzjzea0ex5odqm0ojejf IP 95.101.11.57 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:03:36 Last Seen2023-03-13 06:52:58 Times Seen1 Hash bb5617900e4830ae777df13fceafc85b 8e2b5acdef1c090ce32de1042cf3f0e60dcb0ae4 bf9d3121bb1d77452f7e91b254ce5c2bc09d4f4078a7be9744384e81b67ff65a Loading...

	static.licdn.com/sc/h/98lptr8kagfxge22q7k1fps8	223 kB	2023-03-07	2024-04-16
Pretty URL static.licdn.com/sc/h/98lptr8kagfxge22q7k1fps8 IP 95.101.11.57 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:07 Last Seen2024-04-16 12:21:51 Times Seen337 Hash 0455bdf0d67047723a204a280faf9148 462430ba34af9bb60fc8a3fa8cf04845d9d34df1 190472cc8b749d317cc6d4c27a5022d250df931fb04507c307ef640a452200da Loading...

	static.licdn.com/sc/h/5vm7gg2up6z612zbbmjfuk2co	50 kB	2023-03-07	2023-04-10
Pretty URL static.licdn.com/sc/h/5vm7gg2up6z612zbbmjfuk2co IP 95.101.11.57 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:01:46 Last Seen2023-04-10 14:54:02 Times Seen29 Hash 634a6770e0851dc42913e9523c6d72e8 8b08c38c219ad0daad36dc2b57e194a36a22491b 26c8a8f579effc0bdad5c032eb4c42bc8fe4c587af69a6141f212f64f3b01173 Loading...

	www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.IdpIFrameHttp.en_US.zbzz8TiKOgY.es5.O/d=1/rs=AOaEmlH7J7SipPY1FOfzZkFANnHs2vXVWQ/m=base	102 kB	2023-03-12	2023-03-12
Pretty URL www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.IdpIFrameHttp.en_US.zbzz8TiKOgY.es5.O/d=1/rs=AOaEmlH7J7SipPY1FOfzZkFANnHs2vXVWQ/m=base IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:21:29 Last Seen2023-03-12 21:28:04 Times Seen1 Hash 74a1de108799360a8f6d1be8493cefbe 50dbc9737f45736d15c5970f8685cd01cc78aca4 17ac15f734a50c4c42c0e49018451ea055ab4865b193f083ed6574905dadc976 Loading...

	accounts.google.com/o/oauth2/iframe#origin=https%3A%2F%2Fwww.linkedin.com&rpcToken=1423931945.309068	31 B	2023-03-07	2024-04-24
Pretty URL accounts.google.com/o/oauth2/iframe#origin=https%3A%2F%2Fwww.linkedin.com&rpcToken=1423931945.309068 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-24 19:12:54 Times Seen2601 Hash 671ffb739b15d1f76fe0bfda3211d6a4 cdd0e50d2d0ab5e871821f1e5b1245343edf17bf 1efcb4c5cb4522989514356d42b18a77598da23e50a212d4f74d084ff80b8c33 Loading...

	www.linkedin.com/company/18056569?utm_campaign=Security%20Ransomware&utm_medium=email&_hsmi=226656658&_hsenc=p2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU&utm_content=225582642&utm_source=hs_email	1.5 kB	2023-03-07	2023-04-05
Pretty URL www.linkedin.com/company/18056569?utm_campaign=Security%20Ransomware&utm_medium=email&_hsmi=226656658&_hsenc=p2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU&utm_content=225582642&utm_source=hs_email IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:07 Last Seen2023-04-05 02:02:33 Times Seen24 Hash 988c3655c0a85dbfaa88a1e626a8220b 1a8a9bd843588d10079f0d48e1c2f903116319d6 c32e03be5116f4f1cf206bd0256e96bf8c280526bfd0b247b3c2c7b015555c2b Loading...

	www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email	392 B	2023-03-07	2024-04-24
Pretty URL www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email IP 13.107.42.14 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:07 Last Seen2024-04-24 01:28:13 Times Seen1801 Hash e0a4dd818cea4496e55b30782ebd8da5 cf5eba9f6f20b2fa835908cf62af6f6b5bf62e8f 0dab6c146a09f20164cf3c68e3b3aeefa599fb74013ce407b41bbda7d6f70e10 Loading...

	static.licdn.com/sc/h/6m72nwm0qwbluhdie8pkavpnf	108 kB	2023-03-07	2023-07-20
Pretty URL static.licdn.com/sc/h/6m72nwm0qwbluhdie8pkavpnf IP 95.101.11.57 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:07 Last Seen2023-07-20 05:54:36 Times Seen109 Hash 6fc305c39f6393c4d9b00cf6dfec3d9b 23cb4da504dbb3c74a5c76d89afc66192658d27b da24b61af1e6da7f2389ece9a26cd05be607d766f49f4eb8a78f6d933419fb6a Loading...

	platform.linkedin.com/litms/utag/seo-directory-frontend/utag.js?cb=1673117700000	21 kB	2023-03-09	2023-03-13
Pretty URL platform.linkedin.com/litms/utag/seo-directory-frontend/utag.js?cb=1673117700000 IP 95.101.11.48 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 07:19:49 Last Seen2023-03-13 06:52:58 Times Seen1 Hash 7d9d3851ace805e4f6bac99097cb970b 06628090923e9e4886803035dca5415c04b91edf c52bb182e130910e41c549eccba3a3f9e64ba9d374693af87271eb4e2d8ca68d Loading...

	csv1v04.na1.hubspotlinks.com/Ctc/T7+113/csv1v04/VW8kPc1PYc68W6gDsHt1RFyqgW1RGk9h4QcYc0N3mxJ6_3pl37V1-WJV7CgBHjW8cs4Mk4QnT3KVYL9b12r41F6W12SVVP8mjJk-W7zHmnB9fZSFnW8q4qYq8g0mySV6PyQ82t6xt9W25M7hy2Cyc_GW21gztg88qHQrW2bD1MT4VgJSgVyJpXN4V9j6rW1_T0hX8qTmwbN3fHppfJ_K26W1qQWXx8pCjw5W6svxDk15MmypW4yhnkl6TBHcHW3G8bZW2FNf5nW3vSKJ-1mkqjDW8PZ_5l3tLRkRW8HYj425yLzhZW4ptM673DjRy6W8gmrxM33LW2YW6rs-wn46QfYVW3yF9888FtLxYW5yV6np5gHjs1W6_Spy69hGL1GW63Q9cf5XxSFK36Km1	3.9 kB	2023-03-12	2023-03-12
Pretty URL csv1v04.na1.hubspotlinks.com/Ctc/T7+113/csv1v04/VW8kPc1PYc68W6gDsHt1RFyqgW1RGk9h4QcYc0N3mxJ6_3pl37V1-WJV7CgBHjW8cs4Mk4QnT3KVYL9b12r41F6W12SVVP8mjJk-W7zHmnB9fZSFnW8q4qYq8g0mySV6PyQ82t6xt9W25M7hy2Cyc_GW21gztg88qHQrW2bD1MT4VgJSgVyJpXN4V9j6rW1_T0hX8qTmwbN3fHppfJ_K26W1qQWXx8pCjw5W6svxDk15MmypW4yhnkl6TBHcHW3G8bZW2FNf5nW3vSKJ-1mkqjDW8PZ_5l3tLRkRW8HYj425yLzhZW4ptM673DjRy6W8gmrxM33LW2YW6rs-wn46QfYVW3yF9888FtLxYW5yV6np5gHjs1W6_Spy69hGL1GW63Q9cf5XxSFK36Km1 IP 104.18.37.211 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 17:11:59 Last Seen2023-03-12 17:11:59 Times Seen1 Hash 17fd8209c8cd0b1c488b6967319ddb09 09a8c41cc546b818dee96666b64bf0c0dd181358 53bed72030f8a8392e84176a323284f035da81f550999c5331d64c7780065ef6 Loading...

HTTP Transactions (61)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b782882bdabaf3b08e64120922b4a4b7
2035ed7fc9fb5b6ee9715601ba43de5f94d0c0e9
3fe7d1a9a55b86ec25d02634749ccfae11f3477033ba8cd7ac4131b7948ba619

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FE7D1A9A55B86EC25D02634749CCFAE11F3477033BA8CD7AC4131B7948BA619"
Last-Modified: Sat, 07 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15933
Expires: Sat, 07 Jan 2023 23:25:14 GMT
Date: Sat, 07 Jan 2023 18:59:41 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e4bdd77c0369662aa71ce2d01fd3edab
0ab1c5857e200e7e7946424c2c844537bfbb9775
a163c19fcc8fcf985e8df6ad4bd7ce73912b3df892d8236c70f9bc80820b26da

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A163C19FCC8FCF985E8DF6AD4BD7CE73912B3DF892D8236C70F9BC80820B26DA"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9974
Expires: Sat, 07 Jan 2023 21:45:55 GMT
Date: Sat, 07 Jan 2023 18:59:41 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
0329d65a844ecfa4cbccafedee37e5dc
03b01843d50c60377e6e860a0ce995d3aefe4ee5
7da169e6096d0df2ca27c1c51291e2ecbbe35eb9d1b4555258b38702563b8874

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4494
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:59:41 GMT
Last-Modified: Sat, 07 Jan 2023 17:44:47 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 07 Jan 2023 18:48:08 GMT
content-type: application/json
age: 693
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
600f7ba6e1a6fbbd176cd2df19b1e4d9
cdd72b25fd91ee980aba193b12e890096e4fe852
860214860947dfbe26099f018747154823b175fceb2821a390cc655da191a6d0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "860214860947DFBE26099F018747154823B175FCEB2821A390CC655DA191A6D0"
Last-Modified: Thu, 05 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10186
Expires: Sat, 07 Jan 2023 21:49:27 GMT
Date: Sat, 07 Jan 2023 18:59:41 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: ZtEWtUQXKZIT72DtTWDu1CDN+WIr67nmB5WVPAX90i2XJmsW+eJc6aMnlarfz7XGLwZKLv44q9M=
x-amz-request-id: 55BKTPJ69YDR42Z5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 07 Jan 2023 18:00:30 GMT
age: 3551
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 07 Jan 2023 18:59:41 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 07 Jan 2023 18:33:40 GMT
age: 1562
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
8589b6a84dd5a09ec546aff38bbd2515
1c3a3d8a69ae7a3ebda64292caf0e0f5968e81f7
f013da155203f0509d56e8174c2ae5ed23aad413b4391f276efd388519743b17

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2743
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:59:42 GMT
Last-Modified: Sat, 07 Jan 2023 18:13:59 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

csv1v04.na1.hubspotlinks.com/Ctc/T7+113/csv1v04/VW8kPc1PYc68W6gDsHt1RFyqgW1RGk9h4QcYc0N3mxJ6_3pl37V1-WJV7CgBHjW8cs4Mk4QnT3KVYL9b12r41F6W12SVVP8mjJk-W7zHmnB9fZSFnW8q4qYq8g0mySV6PyQ82t6xt9W25M7hy2Cyc_GW21gztg88qHQrW2bD1MT4VgJSgVyJpXN4V9j6rW1_T0hX8qTmwbN3fHppfJ_K26W1qQWXx8pCjw5W6svxDk15MmypW4yhnkl6TBHcHW3G8bZW2FNf5nW3vSKJ-1mkqjDW8PZ_5l3tLRkRW8HYj425yLzhZW4ptM673DjRy6W8gmrxM33LW2YW6rs-wn46QfYVW3yF9888FtLxYW5yV6np5gHjs1W6_Spy69hGL1GW63Q9cf5XxSFK36Km1

104.18.37.211

200 OK

4.5 kB

URL HTTP/2
csv1v04.na1.hubspotlinks.com/Ctc/T7+113/csv1v04/VW8kPc1PYc68W6gDsHt1RFyqgW1RGk9h4QcYc0N3mxJ6_3pl37V1-WJV7CgBHjW8cs4Mk4QnT3KVYL9b12r41F6W12SVVP8mjJk-W7zHmnB9fZSFnW8q4qYq8g0mySV6PyQ82t6xt9W25M7hy2Cyc_GW21gztg88qHQrW2bD1MT4VgJSgVyJpXN4V9j6rW1_T0hX8qTmwbN3fHppfJ_K26W1qQWXx8pCjw5W6svxDk15MmypW4yhnkl6TBHcHW3G8bZW2FNf5nW3vSKJ-1mkqjDW8PZ_5l3tLRkRW8HYj425yLzhZW4ptM673DjRy6W8gmrxM33LW2YW6rs-wn46QfYVW3yF9888FtLxYW5yV6np5gHjs1W6_Spy69hGL1GW63Q9cf5XxSFK36Km1
IP
104.18.37.211:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1183)
Size
4.5 kB (4487 bytes)
Hash
2637c7ce92d9658a3ecbd16a9be65fb0
5c2d17ccf77256476331fdb09dd38b5665b48a3c
88f2b6f6d84f26fbdb1215b6a9c309451dec0000730bc5460da3f27b7c1da8b2

Detections

Analyzer	Verdict	Alert
openphish	LinkedIn Corporation

HTTP Headers

GET /Ctc/T7+113/csv1v04/VW8kPc1PYc68W6gDsHt1RFyqgW1RGk9h4QcYc0N3mxJ6_3pl37V1-WJV7CgBHjW8cs4Mk4QnT3KVYL9b12r41F6W12SVVP8mjJk-W7zHmnB9fZSFnW8q4qYq8g0mySV6PyQ82t6xt9W25M7hy2Cyc_GW21gztg88qHQrW2bD1MT4VgJSgVyJpXN4V9j6rW1_T0hX8qTmwbN3fHppfJ_K26W1qQWXx8pCjw5W6svxDk15MmypW4yhnkl6TBHcHW3G8bZW2FNf5nW3vSKJ-1mkqjDW8PZ_5l3tLRkRW8HYj425yLzhZW4ptM673DjRy6W8gmrxM33LW2YW6rs-wn46QfYVW3yF9888FtLxYW5yV6np5gHjs1W6_Spy69hGL1GW63Q9cf5XxSFK36Km1 HTTP/1.1
Host: csv1v04.na1.hubspotlinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Sat, 07 Jan 2023 18:59:42 GMT
content-type: text/html;charset=utf-8
x-robots-tag: none
referrer-policy: no-referrer
vary: origin
x-hubspot-correlation-id: 1f5dd532-9d4d-4186-aa36-06458ad6e942
access-control-allow-credentials: false
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 785eee99b95fb518-OSL
content-encoding: br
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.88.25.203

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.88.25.203:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zm4UoWMtNt2K0YmHynXbGA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: N/VX874N3z+h4b6UUtJT/koiNCM=

www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email

13.107.42.14

200 OK

8.4 kB

URL HTTP/2
www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (948)
Size
8.4 kB (8393 bytes)
Hash
fcd225d704f48cbfce56d234ab585874
1305e22b16718fa5125a949d136179c537145918
9175c69f18497c80331edde4b0d8b78a701cc803aa651f4f3613ab256ba742a4

HTTP Headers

GET /authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/company/18056569?utm_campaign=Security%20Ransomware&utm_medium=email&_hsmi=226656658&_hsenc=p2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU&utm_content=225582642&utm_source=hs_email
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_gc=MTswOzE2NTMzNTk5NDI7MjswMjGUwmdulP1Odielt+uL7VqWyUjl6vuj1QmpUWsBM00u7Q==; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQHKRUbqWHx1DgAAAYWNml0w5yyKeimVxO2txE5IutESdDvr4chDD4-50LlGhpnkkGyX9TrsqFRWlRsMfvhMBi_BPh6rbhpI0L_16wUCATzJSUuqVwNGwfwzLyBBFTySDvp9SQ-FQYM4Sm-puKDpeADAByWThNnOIUYMnXSRfh54f_mTK57IujQprUpOTTFlVlUEmT2jfrzfg1xFJGxNCbAcN4qVvA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-length: 8393
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
set-cookie: fid=AQH9-nWg-ahSrgAAAYWNml_8stfBArdZsHbfHmeXFufaUxwiT_P086wWbYSHgQ0jP3uVOyvDUpzh6A; Max-Age=604800; Expires=Sat, 14 Jan 2023 18:59:42 GMT; Path=/
JSESSIONID=ajax:0370192343410261322; Domain=.www.linkedin.com; Path=/; Secure; SameSite=None
lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; Domain=.linkedin.com; Expires=Sun, 07-Jan-2024 18:59:42 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; Domain=.www.linkedin.com; Expires=Sun, 07-Jan-2024 18:59:42 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=; Domain=.linkedin.com; Expires=Thu, 01 Jan 1970 00:00:00 UTC; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2462:u=1:x=1:i=1673117982:t=1673204382:v=2:sig=AQF-uhqEre8fDWp-lwU_hDih_IR9-ogy"; Expires=Sun, 08 Jan 2023 18:59:42 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
x-fs-uuid: 0005f1b123068dcb216cbe505967151d
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXxsSMGjcshbL5QWWcVHQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: C552AE1A19A84A32BE15887C138AD7D4 Ref B: OSL30EDGE0211 Ref C: 2023-01-07T18:59:42Z
date: Sat, 07 Jan 2023 18:59:41 GMT
X-Firefox-Spdy: h2

static.licdn.com/sc/h/84y7li75duusderb9uyzdnul0

95.101.11.57

200 OK

39 kB

URL HTTP/2
static.licdn.com/sc/h/84y7li75duusderb9uyzdnul0
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
39 kB (39429 bytes)
Hash
c44998e42da88ccb6552ea478c870263
45629dcf710aac0f8beb9eb33a4620ba74e6d13b
340c5ca84057a68afcc5b0bea2b6ae8d2a38de04820451b797011294590108fc

HTTP Headers

GET /sc/h/84y7li75duusderb9uyzdnul0 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Play
expires: Wed, 06 Dec 2023 00:32:21 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/css
x-li-fabric: prod-lor1
x-fs-uuid: 0005ef1defed27a2d6d85d58d22ec427
x-li-source-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXvHe/tJ6LW2F1Y0i7EJw==
remote-cache-status: TCP_HIT, TCP_HIT
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 39429
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/al2o9zrvru7aqj8e1x2rzsrca

95.101.11.57

200 OK

1.4 kB

URL HTTP/2
static.licdn.com/sc/h/al2o9zrvru7aqj8e1x2rzsrca
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel\012- data
Size
1.4 kB (1446 bytes)
Hash
4261f70f4cf08dd726ad76a6aed67cf4
beb48108393dc1fb18c05d183cca94343919dc36
e2e5eb50f0a4b47de523471fc46fd0122bc1b8568aca14545056b899108f528f

HTTP Headers

GET /sc/h/al2o9zrvru7aqj8e1x2rzsrca HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Wed, 20 Apr 2022 18:38:58 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/x-icon
x-fs-uuid: 51dc0021efa477165078f2ca252b0000
x-li-fabric: prod-ltx1
x-li-pop: prod-eda6
x-li-proto: http/1.1
x-li-uuid: UdwAIe+kdxZQePLKJSsAAA==
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 1446
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/gs508lg3t2o81tq7pmcgn6m2

95.101.11.57

200 OK

274 B

URL HTTP/2
static.licdn.com/sc/h/gs508lg3t2o81tq7pmcgn6m2
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
274 B (274 bytes)
Hash
07dfbaf5f85030efc27e4a012488e13a
b4e6ac4f3dcd094bd4d326b537960328200384f6
5843ed3527bc1e0e105b4e4b15fbbff78c6d44efa024e2ae4a08a0e8c82e5d4c

HTTP Headers

GET /sc/h/gs508lg3t2o81tq7pmcgn6m2 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
expires: Wed, 15 Mar 2023 06:38:54 GMT
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
cache-control: max-age=31536000, immutable
unused62: 8096267
server: Play
x-li-static-content: 1
content-type: image/svg+xml
x-fs-uuid: 5a66db2eefa47716900e9795272b0000
x-li-fabric: prod-ltx1
x-li-pop: prod-eda6
x-li-proto: http/1.1
x-li-uuid: WmbbLu+kdxaQDpeVJysAAA==
content-length: 274
remote-cache-status: TCP_HIT
date: Sat, 07 Jan 2023 18:59:43 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/5oas73nreunfgygkpe5iwmgrs

95.101.11.57

200 OK

391 B

URL HTTP/2
static.licdn.com/sc/h/5oas73nreunfgygkpe5iwmgrs
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
391 B (391 bytes)
Hash
5fdb7b403b3a41faa26c73b1aaaf7668
c46a275d28b78b77460e42ba248317378a91b70e
55e3d046df49b2754cec5ecee990e526dbb272e70eb5bea625b4e68e64ce1715

HTTP Headers

GET /sc/h/5oas73nreunfgygkpe5iwmgrs HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
expires: Wed, 15 Mar 2023 06:44:11 GMT
cache-control: max-age=31536000, immutable
x-li-fabric: prod-lor1
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXaPB/lxS6DQU9aWrGlQw==
server: Play
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/svg+xml
x-fs-uuid: 8a4340de2da5771690b181aa7e2b0000
content-length: 391
remote-cache-status: TCP_HIT, TCP_HIT
date: Sat, 07 Jan 2023 18:59:43 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/8fkga714vy9b2wk5auqo5reeb

95.101.11.57

200 OK

1.2 kB

URL HTTP/2
static.licdn.com/sc/h/8fkga714vy9b2wk5auqo5reeb
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (664)
Size
1.2 kB (1209 bytes)
Hash
c1e1c64d789b81d27d6bb19ac7b2e7f7
75a1bf886b4f3aba8a9ed666ecd558b0b7f9d418
1b11ad6ab9bc256f2e2bb1d6bf3904af5cfa724a393302af36e540dd7df39eed

HTTP Headers

GET /sc/h/8fkga714vy9b2wk5auqo5reeb HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Tue, 19 Apr 2022 23:57:19 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/svg+xml
x-fs-uuid: 1bd23adfb96777166068f1c3842b0000
x-li-fabric: prod-lva1
x-li-pop: prod-edc2
x-li-proto: http/1.1
x-li-uuid: G9I637lndxZgaPHDhCsAAA==
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 1209
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/b4jgwnrrzl0qfc47qjfws95pj

95.101.11.57

200 OK

820 B

URL HTTP/2
static.licdn.com/sc/h/b4jgwnrrzl0qfc47qjfws95pj
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
820 B (820 bytes)
Hash
bbef0b818a81de5579827911c1af5127
59f7afad4f4b744adacbeff7b6598d197a06d9d8
affe486de5aeb7dcfa7eaa5a69b6866b138243413e68600554a32958420576f3

HTTP Headers

GET /sc/h/b4jgwnrrzl0qfc47qjfws95pj HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
expires: Wed, 15 Mar 2023 06:40:34 GMT
cache-control: max-age=31536000, immutable
x-li-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXaPBL2/B2F8x4vikAsJA==
server: Play
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/svg+xml
x-fs-uuid: ee407623f6a47716006000e5862b0000
content-length: 820
remote-cache-status: TCP_HIT, TCP_HIT
date: Sat, 07 Jan 2023 18:59:43 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/b4jgwnrrzl0qfc47qjfws95pj

95.101.11.57

200 OK

820 B

URL HTTP/2
static.licdn.com/sc/h/b4jgwnrrzl0qfc47qjfws95pj
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
820 B (820 bytes)
Hash
bbef0b818a81de5579827911c1af5127
59f7afad4f4b744adacbeff7b6598d197a06d9d8
affe486de5aeb7dcfa7eaa5a69b6866b138243413e68600554a32958420576f3

HTTP Headers

GET /sc/h/b4jgwnrrzl0qfc47qjfws95pj HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
expires: Wed, 15 Mar 2023 06:40:34 GMT
cache-control: max-age=31536000, immutable
x-li-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXaPBL2/B2F8x4vikAsJA==
server: Play
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/svg+xml
x-fs-uuid: ee407623f6a47716006000e5862b0000
content-length: 820
remote-cache-status: TCP_HIT, TCP_HIT
date: Sat, 07 Jan 2023 18:59:43 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/ddi43qwelxeqjxdd45pe3fvs1

95.101.11.57

200 OK

903 B

URL HTTP/2
static.licdn.com/sc/h/ddi43qwelxeqjxdd45pe3fvs1
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (355)
Size
903 B (903 bytes)
Hash
52607677c7773adecb8d49e15826c534
e0967a35189a8d07f382d215e9f9a877bc6727b5
2c385e5a99ad80990a4e9d8df2113ffb5cddf19a809eb5d7e6cac9b4c120750c

HTTP Headers

GET /sc/h/ddi43qwelxeqjxdd45pe3fvs1 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Wed, 20 Apr 2022 18:39:25 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/svg+xml
x-fs-uuid: e407d770f5a477162074ae6e852b0000
x-li-fabric: prod-ltx1
x-li-pop: prod-eda6
x-li-proto: http/1.1
x-li-uuid: 5AfXcPWkdxYgdK5uhSsAAA==
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 903
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/ddi43qwelxeqjxdd45pe3fvs1

95.101.11.57

200 OK

903 B

URL HTTP/2
static.licdn.com/sc/h/ddi43qwelxeqjxdd45pe3fvs1
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (355)
Size
903 B (903 bytes)
Hash
52607677c7773adecb8d49e15826c534
e0967a35189a8d07f382d215e9f9a877bc6727b5
2c385e5a99ad80990a4e9d8df2113ffb5cddf19a809eb5d7e6cac9b4c120750c

HTTP Headers

GET /sc/h/ddi43qwelxeqjxdd45pe3fvs1 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Wed, 20 Apr 2022 18:39:25 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/svg+xml
x-fs-uuid: e407d770f5a477162074ae6e852b0000
x-li-fabric: prod-ltx1
x-li-pop: prod-eda6
x-li-proto: http/1.1
x-li-uuid: 5AfXcPWkdxYgdK5uhSsAAA==
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 903
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/84y7li75duusderb9uyzdnul0

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/84y7li75duusderb9uyzdnul0
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/84y7li75duusderb9uyzdnul0 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Wed, 06 Dec 2023 00:32:52 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/css
x-li-fabric: prod-lva1
x-fs-uuid: 0005ef1e48bf4feac4ca78aaacbe4f57
x-li-source-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXvHki/T+rEyniqrL5PVw==
x-edgeconnect-midmile-rtt: 6
x-edgeconnect-origin-mex-latency: 180
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 20
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/b39mllzjzea0ex5odqm0ojejf

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/b39mllzjzea0ex5odqm0ojejf
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/b39mllzjzea0ex5odqm0ojejf HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Wed, 06 Dec 2023 00:57:12 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-length: 0
content-type: text/javascript
x-li-fabric: prod-lor1
x-fs-uuid: 0005ef1e48bf56f5e2f4c344d15c1be3
x-li-source-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXvHki/VvXi9MNE0Vwb4w==
x-edgeconnect-midmile-rtt: 6
x-edgeconnect-origin-mex-latency: 213
date: Sat, 07 Jan 2023 18:59:43 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/avzjesp0yrbz0c8qa81r63x7m

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/avzjesp0yrbz0c8qa81r63x7m
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/avzjesp0yrbz0c8qa81r63x7m HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Fri, 17 Nov 2023 23:09:42 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005edb2af31c7af3acd14ce221ab9ce
x-li-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXtsq8xx686zRTOIhq5zg==
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 20
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/al2o9zrvru7aqj8e1x2rzsrca

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/al2o9zrvru7aqj8e1x2rzsrca
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/al2o9zrvru7aqj8e1x2rzsrca HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Wed, 20 Apr 2022 18:38:58 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/x-icon
x-fs-uuid: 51dc0021efa477165078f2ca252b0000
x-li-fabric: prod-ltx1
x-li-pop: prod-eda6
x-li-proto: http/1.1
x-li-uuid: UdwAIe+kdxZQePLKJSsAAA==
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 1446
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/1k1xa20mhrefbm4mu6uim2qxw

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/1k1xa20mhrefbm4mu6uim2qxw
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/1k1xa20mhrefbm4mu6uim2qxw HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Fri, 17 Nov 2023 23:09:42 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005edb2af31ed9992c0f5260224d0fd
x-li-fabric: prod-lor1
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXtsq8x7ZmSwPUmAiTQ/Q==
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 07 Jan 2023 18:59:43 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/6m72nwm0qwbluhdie8pkavpnf

95.101.11.57

200 OK

37 kB

URL HTTP/2
static.licdn.com/sc/h/6m72nwm0qwbluhdie8pkavpnf
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (594)
Size
37 kB (36578 bytes)
Hash
a0a26f9898197d9cf4ea0c2108cc9228
733bc125b057c0099996a369504fa1cf8d6b09e7
cec1d615dc73d04aa7caf3785e9bad6543160307ce329e62605c46f796f0017f

HTTP Headers

GET /sc/h/6m72nwm0qwbluhdie8pkavpnf HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Tue, 20 Sep 2022 19:18:29 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 5bc31937e29da616401c4a8acb2a0000
x-li-fabric: prod-lva1
x-li-pop: prod-edc2
x-li-proto: http/1.1
x-li-uuid: W8MZN+KdphZAHEqKyyoAAA==
remote-cache-status: TCP_HIT, TCP_HIT
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 36578
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/5vm7gg2up6z612zbbmjfuk2co

95.101.11.57

200 OK

17 kB

URL HTTP/2
static.licdn.com/sc/h/5vm7gg2up6z612zbbmjfuk2co
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (50281)
Size
17 kB (16800 bytes)
Hash
b81057bab616fc98e7def69ea7843e81
1710c47ec94f53d04322c7ef877accaedf4fd3d0
a1a8fd6fbd57e85005f1779b25f653ae8ec87f8801d531f1603dde982ae7133d

HTTP Headers

GET /sc/h/5vm7gg2up6z612zbbmjfuk2co HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Wed, 28 Jun 2023 17:56:36 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005e285c1fa92c1252109c9c9926b5e
x-li-fabric: prod-lva1
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXihcH6ksElIQnJyZJrXg==
remote-cache-status: TCP_HIT
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 16800
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

www.linkedin.com/directory/api/ingraphs/gauge

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/directory/api/ingraphs/gauge
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /directory/api/ingraphs/gauge HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-li-pageInstance: urn:li:page:auth_wall_desktop_company_jsbeacon;YA0Wz9lcTBKjXww1VtjDTw==
Csrf-Token: ajax:0370192343410261322
Content-Length: 97
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQHKRUbqWHx1DgAAAYWNml0w5yyKeimVxO2txE5IutESdDvr4chDD4-50LlGhpnkkGyX9TrsqFRWlRsMfvhMBi_BPh6rbhpI0L_16wUCATzJSUuqVwNGwfwzLyBBFTySDvp9SQ-FQYM4Sm-puKDpeADAByWThNnOIUYMnXSRfh54f_mTK57IujQprUpOTTFlVlUEmT2jfrzfg1xFJGxNCbAcN4qVvA==; fid=AQH9-nWg-ahSrgAAAYWNml_8stfBArdZsHbfHmeXFufaUxwiT_P086wWbYSHgQ0jP3uVOyvDUpzh6A; JSESSIONID=ajax:0370192343410261322; lang=v=2&lang=en-us; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2462:u=1:x=1:i=1673117982:t=1673204382:v=2:sig=AQF-uhqEre8fDWp-lwU_hDih_IR9-ogy"
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: li_gc=MTswOzE2NzMxMTc5ODM7MjswMjEQYbEUtgRCi1zVoI+vq1pKaPDOQfq6R29XKGMaMDHLzw==; Domain=.linkedin.com; Expires=Thu, 06 Jul 2023 18:59:43 GMT; Path=/; Secure; SameSite=None
x-fs-uuid: 0005f1b1231714704adf283dffafa0c3
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXxsSMXFHBK3yg9/6+gww==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 435886FC119B4758B65641C14A181C77 Ref B: OSL30EDGE0211 Ref C: 2023-01-07T18:59:43Z
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 0
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
15d71d16973e737741f664044f4281ba
2529884d0c4b41752d8cdbed4d1ca996820e6f0d
cc93cc0cd6a9fa4032b9a8d1d80e081a1baff7457a72804c87dfe9024b1b943e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:59:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.linkedin.com/litms/api/metadata/user

13.107.42.14

200 OK

226 B

URL HTTP/2
www.linkedin.com/litms/api/metadata/user
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JSON data\012- , ASCII text, with very long lines (345), with no line terminators
Size
226 B (226 bytes)
Hash
34f79ca813bef4510700273db4ef17d8
0b6a9f3f43a59a7487c68456c52bf507f81cca1d
292a8a11e91a11e0d307cbc378306adadc29e7f6641c7f4827c9e42d9aa447ae

HTTP Headers

GET /litms/api/metadata/user HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQHKRUbqWHx1DgAAAYWNml0w5yyKeimVxO2txE5IutESdDvr4chDD4-50LlGhpnkkGyX9TrsqFRWlRsMfvhMBi_BPh6rbhpI0L_16wUCATzJSUuqVwNGwfwzLyBBFTySDvp9SQ-FQYM4Sm-puKDpeADAByWThNnOIUYMnXSRfh54f_mTK57IujQprUpOTTFlVlUEmT2jfrzfg1xFJGxNCbAcN4qVvA==; fid=AQH9-nWg-ahSrgAAAYWNml_8stfBArdZsHbfHmeXFufaUxwiT_P086wWbYSHgQ0jP3uVOyvDUpzh6A; JSESSIONID=ajax:0370192343410261322; lang=v=2&lang=en-us; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2462:u=1:x=1:i=1673117982:t=1673204382:v=2:sig=AQF-uhqEre8fDWp-lwU_hDih_IR9-ogy"
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-length: 226
content-type: application/json
content-encoding: gzip
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Origin,Accept-Encoding
set-cookie: li_gc=MTswOzE2NzMxMTc5ODM7MjswMjEQYbEUtgRCi1zVoI+vq1pKaPDOQfq6R29XKGMaMDHLzw==; Domain=.linkedin.com; Expires=Thu, 06 Jul 2023 18:59:43 GMT; Path=/; Secure; SameSite=None
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXxsSMYW0NJ1CWmZeVj/Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: FEED62D3760D47A2BB059BF05ADC85CB Ref B: OSL30EDGE0211 Ref C: 2023-01-07T18:59:43Z
date: Sat, 07 Jan 2023 18:59:43 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
910d902590c4dce2c5fde148d455a94c
05617b6a2fd1a7eb4fcb098a7ce48011d3f835bc
3bfd7cff0474a36458748e4cc6dfa647fdd7bd8b4fa792079042a04c7dffe0b1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:59:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16159
Expires: Sat, 07 Jan 2023 23:29:03 GMT
Date: Sat, 07 Jan 2023 18:59:44 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16159
Expires: Sat, 07 Jan 2023 23:29:03 GMT
Date: Sat, 07 Jan 2023 18:59:44 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe337b2fa-7f8d-45d1-9c3b-36a6e16363af.webp

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe337b2fa-7f8d-45d1-9c3b-36a6e16363af.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13620 bytes)
Hash
3356bee662c2ea20cbebff5293e73340
625cfd3806740998c859fef8c1153efea72f5342
cd973426a15b28fa2c141e927ebf4e12faa05665780a3cd5010f874769b336e7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe337b2fa-7f8d-45d1-9c3b-36a6e16363af.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 13620
x-amzn-requestid: 0858cbd0-5965-477b-9d5f-015243f86e12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ePk56F4JoAMF5Uw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b61b72-705a9ad403bb7795397926fd;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 00:36:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DoKiNkOKV6r5zqczq2ckoyb9UJyMABXfyn6WE1NerYovg8yg-AeePQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 10:11:59 GMT
age: 31665
etag: "625cfd3806740998c859fef8c1153efea72f5342"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb5ffe4f-5ae5-4938-b3ca-b004d549afe4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6801 bytes)
Hash
b068b261514833df29c3081c7681bc1e
d55b98ad8b8720a934ce41132d3e5821f7956511
e9852eb569b9f28d070ba51af9dc8a36698ed9b5afa771d123ce89391f9d7d00

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb5ffe4f-5ae5-4938-b3ca-b004d549afe4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6801
x-amzn-requestid: 974e4e95-8a57-4d85-b587-aa37bab3faf6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eVxGDEf3IAMF52Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b89559-2984a4fb36910d535abe2856;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 21:40:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 1_FaLJqdAPcmO1By5BQa71NxFK2ELnXpwXqs-9BMPSdRTxrGRhnJUQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 74ab105148338444981d1b2277ffd9c4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 21:49:18 GMT
age: 76226
etag: "d55b98ad8b8720a934ce41132d3e5821f7956511"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1787721-cbc0-4d0c-9ab8-c2bf14e3c622.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10064 bytes)
Hash
65a13b7b11843a364e80dbc2d54345ff
5b24f4bf17da840e61d96b0ed7452911539dbf67
8dea14e05eb2a0c850fe9441b605f50ec6206baf57da4293f2297cab0a82fe37

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1787721-cbc0-4d0c-9ab8-c2bf14e3c622.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10064
x-amzn-requestid: 7b970f82-e9fa-43e8-8757-60ae808a2cff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eP6kCEsSIAMFVBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b63e19-4884229c1545eef72380e7d2;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 03:03:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wWDCvYZY8VpfF4a5AWmjrZZx3vzUv7qWCz_g9vNlkMz5Sy3NaaWMVQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 03:33:10 GMT
age: 55594
etag: "5b24f4bf17da840e61d96b0ed7452911539dbf67"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5578 bytes)
Hash
e832123ea0c92a446b5894e75efc86ae
bb438ca635b43819701067ef07a3d910ad29a0c7
e1b0c6cd873f304de15664f96af6b6914e13fbbfb3e2179ba43369e116446773

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5578
x-amzn-requestid: 93353c3e-1b26-424c-b4c6-0d113703edd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eFvpBFGvIAMFobw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b22c9f-1d07cff31ae39320693642f0;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 01:00:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vIFVXgt2RmoplkAVOtUrOkXj3LmhRw-XEPe7fugZ2-mv_iDY07XzUg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 08:42:42 GMT
age: 37022
etag: "bb438ca635b43819701067ef07a3d910ad29a0c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82e9dc28-a1b8-4185-9eb1-6856bb670646.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10695 bytes)
Hash
3c0fd17757d97ed3b4570387623f465f
889b2e3d0db6f9bc03393ff59a5eb7bee816cac3
1035a9d3c973762adfc08529b59642c3839ef95a7e8cfcced63e61ec154ad092

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82e9dc28-a1b8-4185-9eb1-6856bb670646.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10695
x-amzn-requestid: ae69c1c3-22f6-49de-91ec-8e7a854e4b27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eGCNWFo5IAMFUKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b24a55-75032a3e7ab3eb897382cad4;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 03:07:01 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: kkpb41RwNIWi4GQrpRiCAGUGsFyv9v-lpjPdStHiI1KxfkRi4tFCOQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b2d3922a177f6cecf9222a78a0a1ad32.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 21:59:50 GMT
age: 75594
etag: "889b2e3d0db6f9bc03393ff59a5eb7bee816cac3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc669500c-8275-41bd-b6b4-d69a9275759e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.8 kB (9770 bytes)
Hash
ccdaacaeb226b8983f1b55d507ae524d
782045319594ae6857c39fd1b952e4d4751aab14
1e7c4ec9e00c156bb1e199b459c2c55bcff909e21718ae28458ab50413112aa6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc669500c-8275-41bd-b6b4-d69a9275759e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9770
x-amzn-requestid: eaf4c707-3e01-4438-8b4f-31206790e907
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eScvCHsHIAMFSXw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b74193-58158d857b40d7fd411f6c0c;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 21:30:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: efXBHjn8uw-4s557QTErT8Z1x4BS9ZW15fswtdR6us7cPNJxIqNeRQ==
via: 1.1 6ca7826fb0f4c565b1af9c7737725c48.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 22:15:04 GMT
age: 74680
etag: "782045319594ae6857c39fd1b952e4d4751aab14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8b64a17d9b8c33515817fc19dd6f60d7
a752305109964bc1ef3537debed9c40c44198cea
8f7b7d229100176e82780eb0c3808b410b078025237210d8b5037c30ac3b0987

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:59:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.IdpIFrameHttp.en_US.zbzz8TiKOgY.es5.O/d=1/rs=AOaEmlH7J7SipPY1FOfzZkFANnHs2vXVWQ/m=base

142.250.74.35

200 OK

102 kB

URL HTTP/2
www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.IdpIFrameHttp.en_US.zbzz8TiKOgY.es5.O/d=1/rs=AOaEmlH7J7SipPY1FOfzZkFANnHs2vXVWQ/m=base
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1852)
Size
102 kB (102532 bytes)
Hash
74a1de108799360a8f6d1be8493cefbe
50dbc9737f45736d15c5970f8685cd01cc78aca4
17ac15f734a50c4c42c0e49018451ea055ab4865b193f083ed6574905dadc976

HTTP Headers

GET /_/mss/boq-identity/_/js/k=boq-identity.IdpIFrameHttp.en_US.zbzz8TiKOgY.es5.O/d=1/rs=AOaEmlH7J7SipPY1FOfzZkFANnHs2vXVWQ/m=base HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/identity-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/identity-boq-js-css-signers"
report-to: {"group":"boq-infra/identity-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/identity-boq-js-css-signers"}]}
content-length: 102532
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jan 2023 16:57:00 GMT
expires: Fri, 05 Jan 2024 16:57:00 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Wed, 28 Dec 2022 19:40:25 GMT
content-type: text/javascript; charset=UTF-8
age: 180164
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

platform.linkedin.com/litms/utag/seo-directory-frontend/utag.js?cb=1673117700000

95.101.11.48

200 OK

7.2 kB

URL HTTP/2
platform.linkedin.com/litms/utag/seo-directory-frontend/utag.js?cb=1673117700000
IP
95.101.11.48:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (20739), with no line terminators
Size
7.2 kB (7228 bytes)
Hash
1a41883e93362f4c343ace4bd4e78c47
4c90a888f691409a3c7337ec41d5c60cc96fe70c
3022ad96f715c9084b0a1efb918798caceaf9f2d915dfc17c2450dfe4c285122

HTTP Headers

GET /litms/utag/seo-directory-frontend/utag.js?cb=1673117700000 HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; rtc=AQHKRUbqWHx1DgAAAYWNml0w5yyKeimVxO2txE5IutESdDvr4chDD4-50LlGhpnkkGyX9TrsqFRWlRsMfvhMBi_BPh6rbhpI0L_16wUCATzJSUuqVwNGwfwzLyBBFTySDvp9SQ-FQYM4Sm-puKDpeADAByWThNnOIUYMnXSRfh54f_mTK57IujQprUpOTTFlVlUEmT2jfrzfg1xFJGxNCbAcN4qVvA==; lang=v=2&lang=en-us; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2462:u=1:x=1:i=1673117982:t=1673204382:v=2:sig=AQF-uhqEre8fDWp-lwU_hDih_IR9-ogy"
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
etag: "52b03167201712370f261020f6fa2c1f9c6ce5dc"
server: Play
accept-ranges: bytes
cache-control: max-age=300
last-modified: Sat, 07 Jan 2023 16:33:06 GMT
content-encoding: gzip
content-length: 7228
content-type: application/javascript; charset=utf-8
x-li-fabric: prod-lor1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
x-li-uuid: AAXxsQbjJZEumNtoc1+1uw==
date: Sat, 07 Jan 2023 18:59:44 GMT
vary: Accept-Encoding
x-cdn-client-ip-version: IPV4
x-cdn: AKAM
X-Firefox-Spdy: h2

www.linkedin.com/sc/h/bxullzz73p3hhf78t6sj3w6pb

13.107.42.14

200 OK

1.7 kB

URL HTTP/2
www.linkedin.com/sc/h/bxullzz73p3hhf78t6sj3w6pb
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (523)
Size
1.7 kB (1672 bytes)
Hash
526e654805f1fc57a5a9923b00c509b5
195cf74d9fa852a646de70aa3388e31c2583f4a3
498d56bddf2407a18dc16b84b3dc418c0fcddc7909de19c6617e286f02dca6ef

HTTP Headers

GET /sc/h/bxullzz73p3hhf78t6sj3w6pb HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQHKRUbqWHx1DgAAAYWNml0w5yyKeimVxO2txE5IutESdDvr4chDD4-50LlGhpnkkGyX9TrsqFRWlRsMfvhMBi_BPh6rbhpI0L_16wUCATzJSUuqVwNGwfwzLyBBFTySDvp9SQ-FQYM4Sm-puKDpeADAByWThNnOIUYMnXSRfh54f_mTK57IujQprUpOTTFlVlUEmT2jfrzfg1xFJGxNCbAcN4qVvA==; fid=AQH9-nWg-ahSrgAAAYWNml_8stfBArdZsHbfHmeXFufaUxwiT_P086wWbYSHgQ0jP3uVOyvDUpzh6A; JSESSIONID=ajax:0370192343410261322; lang=v=2&lang=en-us; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2462:u=1:x=1:i=1673117982:t=1673204382:v=2:sig=AQF-uhqEre8fDWp-lwU_hDih_IR9-ogy"; li_gc=MTswOzE2NzMxMTc5ODM7MjswMjEQYbEUtgRCi1zVoI+vq1pKaPDOQfq6R29XKGMaMDHLzw==
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=31536000, immutable
content-length: 1672
content-type: text/javascript
content-encoding: gzip
expires: Sun, 07 Jan 2024 18:59:23 GMT
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
vary: Accept-Encoding
x-li-static-content: 1
access-control-allow-origin: *
x-fs-uuid: 0005f1b121e4adebacf13311c151450d
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-cdn-client-ip-version: IPV6
x-cdn-proto: HTTP1
x-li-uuid: AAXxsSMcWNj376n1XISx0w==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 7ADB142C3DDA44C4977414E949658C51 Ref B: OSL30EDGE0211 Ref C: 2023-01-07T18:59:44Z
date: Sat, 07 Jan 2023 18:59:43 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
294742535da40d02498d9e1c865d4014
99d45ec581ccba41915745f22da696aa9c5758ea
645f09beffda2d924626cedd5aa832a5a0e1b136ddf3fdc0b65fd9526f8b5531

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:59:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ps.azurewaf.microsoft.com/event?correlationId=f5f71035-edb8-42eb-b56b-afbbbfccbfb1&type=ping

13.107.238.53

204 No Content

0 B

URL HTTP/2
ps.azurewaf.microsoft.com/event?correlationId=f5f71035-edb8-42eb-b56b-afbbbfccbfb1&type=ping
IP
13.107.238.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /event?correlationId=f5f71035-edb8-42eb-b56b-afbbbfccbfb1&type=ping HTTP/1.1
Host: ps.azurewaf.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: *
request-context: appId=cid-v1:b972f5ff-0dbf-487c-8b8c-19607927d2c0
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0IMG5YwAAAAB/AUPeEYcsT6jhTSAWPPsSU1ZHMjBFREdFMDUwOQAzNmQyZWNiZi02MGQwLTQ5YWUtOWEyNy02YmZhOGI1MGU0OGQ=
date: Sat, 07 Jan 2023 18:59:43 GMT
X-Firefox-Spdy: h2

www.linkedin.com/platform-telemetry/li/collect

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/platform-telemetry/li/collect
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /platform-telemetry/li/collect HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 1896
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQHKRUbqWHx1DgAAAYWNml0w5yyKeimVxO2txE5IutESdDvr4chDD4-50LlGhpnkkGyX9TrsqFRWlRsMfvhMBi_BPh6rbhpI0L_16wUCATzJSUuqVwNGwfwzLyBBFTySDvp9SQ-FQYM4Sm-puKDpeADAByWThNnOIUYMnXSRfh54f_mTK57IujQprUpOTTFlVlUEmT2jfrzfg1xFJGxNCbAcN4qVvA==; fid=AQH9-nWg-ahSrgAAAYWNml_8stfBArdZsHbfHmeXFufaUxwiT_P086wWbYSHgQ0jP3uVOyvDUpzh6A; JSESSIONID=ajax:0370192343410261322; lang=v=2&lang=en-us; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2462:u=1:x=1:i=1673117982:t=1673204382:v=2:sig=AQF-uhqEre8fDWp-lwU_hDih_IR9-ogy"; li_gc=MTswOzE2NzMxMTc5ODM7MjswMjEQYbEUtgRCi1zVoI+vq1pKaPDOQfq6R29XKGMaMDHLzw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: fcookie=AQHhX285FxOjcwAAAYWNmmW8kvKKZBwizb4qqv4ZVR9SaAb4m3Z3xIEoDEB63Z5FHHTltK2Ut2HKHxc0QsjH-8WSRD4__R-R6GpWz-XgQroYxuNUPDuB0c_MBFL3rhIRAVHpnrTFJoyzMgRO4f2ZglsDYpV1G_JFI4bqVDbDiBeKuh9dCuexH4VE78TuJOWrzEMCk5s00Oci9ZvL4Cy3PPXsuQSuwQSfXJ9_1OnRFxXlnG8G8Lz3_Gb1ZEVH4kibr8qqcDYvkbQ1f5UCa+uFuhfdWV7Ma2uBTJ9yMwbJ2NE4R9eHGB9srX197Acq8yKt4plOef/CwrVWHEDWTQwbFzg4X6OIZGykSDvbOg==; Max-Age=604800; Expires=Sat, 14 Jan 2023 18:59:44 GMT; SameSite=None; Path=/; Secure
bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; domain=.linkedin.com; Path=/; Secure; Expires=Sun, 07-Jan-2024 18:59:44 GMT; SameSite=None
bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; domain=.www.linkedin.com; Path=/; Secure; Expires=Sun, 07-Jan-2024 18:59:44 GMT; HttpOnly; SameSite=None
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXxsSMcWmTdKRl4jeecEg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 7F17F9262E9F466EA8465B4AD1F97C13 Ref B: OSL30EDGE0211 Ref C: 2023-01-07T18:59:44Z
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 12459
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQHKRUbqWHx1DgAAAYWNml0w5yyKeimVxO2txE5IutESdDvr4chDD4-50LlGhpnkkGyX9TrsqFRWlRsMfvhMBi_BPh6rbhpI0L_16wUCATzJSUuqVwNGwfwzLyBBFTySDvp9SQ-FQYM4Sm-puKDpeADAByWThNnOIUYMnXSRfh54f_mTK57IujQprUpOTTFlVlUEmT2jfrzfg1xFJGxNCbAcN4qVvA==; fid=AQH9-nWg-ahSrgAAAYWNml_8stfBArdZsHbfHmeXFufaUxwiT_P086wWbYSHgQ0jP3uVOyvDUpzh6A; JSESSIONID=ajax:0370192343410261322; lang=v=2&lang=en-us; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2462:u=1:x=1:i=1673117982:t=1673204382:v=2:sig=AQF-uhqEre8fDWp-lwU_hDih_IR9-ogy"; li_gc=MTswOzE2NzMxMTc5ODM7MjswMjEQYbEUtgRCi1zVoI+vq1pKaPDOQfq6R29XKGMaMDHLzw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXxsSMddMXAaMsMZgdbJA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 452B3A4421D34C78803C97A74DA2BB39 Ref B: OSL30EDGE0211 Ref C: 2023-01-07T18:59:44Z
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/directory/api/ingraphs/counter

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/directory/api/ingraphs/counter
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /directory/api/ingraphs/counter HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Csrf-Token: ajax:0370192343410261322
Content-Length: 99
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQHKRUbqWHx1DgAAAYWNml0w5yyKeimVxO2txE5IutESdDvr4chDD4-50LlGhpnkkGyX9TrsqFRWlRsMfvhMBi_BPh6rbhpI0L_16wUCATzJSUuqVwNGwfwzLyBBFTySDvp9SQ-FQYM4Sm-puKDpeADAByWThNnOIUYMnXSRfh54f_mTK57IujQprUpOTTFlVlUEmT2jfrzfg1xFJGxNCbAcN4qVvA==; fid=AQH9-nWg-ahSrgAAAYWNml_8stfBArdZsHbfHmeXFufaUxwiT_P086wWbYSHgQ0jP3uVOyvDUpzh6A; JSESSIONID=ajax:0370192343410261322; lang=v=2&lang=en-us; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2462:u=1:x=1:i=1673117982:t=1673204382:v=2:sig=AQF-uhqEre8fDWp-lwU_hDih_IR9-ogy"; li_gc=MTswOzE2NzMxMTc5ODM7MjswMjEQYbEUtgRCi1zVoI+vq1pKaPDOQfq6R29XKGMaMDHLzw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-fs-uuid: 0005f1b1231d956cbc35004046b94302
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXxsSMdlWy8NQBARrlDAg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A97E495515294842B0732AB592132032 Ref B: OSL30EDGE0211 Ref C: 2023-01-07T18:59:44Z
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 0
X-Firefox-Spdy: h2

ps.azurewaf.microsoft.com/event?correlationId=f5f71035-edb8-42eb-b56b-afbbbfccbfb1&type=ping

13.107.238.53

200 OK

0 B

URL HTTP/2
ps.azurewaf.microsoft.com/event?correlationId=f5f71035-edb8-42eb-b56b-afbbbfccbfb1&type=ping
IP
13.107.238.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /event?correlationId=f5f71035-edb8-42eb-b56b-afbbbfccbfb1&type=ping HTTP/1.1
Host: ps.azurewaf.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 923
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
request-context: appId=cid-v1:b972f5ff-0dbf-487c-8b8c-19607927d2c0
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0IMG5YwAAAACb7r5T+U/vTYH/TGs81MipU1ZHMjBFREdFMDUwOQAzNmQyZWNiZi02MGQwLTQ5YWUtOWEyNy02YmZhOGI1MGU0OGQ=
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 16043
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQHKRUbqWHx1DgAAAYWNml0w5yyKeimVxO2txE5IutESdDvr4chDD4-50LlGhpnkkGyX9TrsqFRWlRsMfvhMBi_BPh6rbhpI0L_16wUCATzJSUuqVwNGwfwzLyBBFTySDvp9SQ-FQYM4Sm-puKDpeADAByWThNnOIUYMnXSRfh54f_mTK57IujQprUpOTTFlVlUEmT2jfrzfg1xFJGxNCbAcN4qVvA==; fid=AQH9-nWg-ahSrgAAAYWNml_8stfBArdZsHbfHmeXFufaUxwiT_P086wWbYSHgQ0jP3uVOyvDUpzh6A; JSESSIONID=ajax:0370192343410261322; lang=v=2&lang=en-us; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2462:u=1:x=1:i=1673117982:t=1673204382:v=2:sig=AQF-uhqEre8fDWp-lwU_hDih_IR9-ogy"; li_gc=MTswOzE2NzMxMTc5ODM7MjswMjEQYbEUtgRCi1zVoI+vq1pKaPDOQfq6R29XKGMaMDHLzw==; fcookie=AQHhX285FxOjcwAAAYWNmmW8kvKKZBwizb4qqv4ZVR9SaAb4m3Z3xIEoDEB63Z5FHHTltK2Ut2HKHxc0QsjH-8WSRD4__R-R6GpWz-XgQroYxuNUPDuB0c_MBFL3rhIRAVHpnrTFJoyzMgRO4f2ZglsDYpV1G_JFI4bqVDbDiBeKuh9dCuexH4VE78TuJOWrzEMCk5s00Oci9ZvL4Cy3PPXsuQSuwQSfXJ9_1OnRFxXlnG8G8Lz3_Gb1ZEVH4kibr8qqcDYvkbQ1f5UCa+uFuhfdWV7Ma2uBTJ9yMwbJ2NE4R9eHGB9srX197Acq8yKt4plOef/CwrVWHEDWTQwbFzg4X6OIZGykSDvbOg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXxsSMjWRvcz0yfhGo+GA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 70AC912FAA294B07B3B65F2D0090FB72 Ref B: OSL30EDGE0211 Ref C: 2023-01-07T18:59:44Z
date: Sat, 07 Jan 2023 18:59:43 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1539
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQHKRUbqWHx1DgAAAYWNml0w5yyKeimVxO2txE5IutESdDvr4chDD4-50LlGhpnkkGyX9TrsqFRWlRsMfvhMBi_BPh6rbhpI0L_16wUCATzJSUuqVwNGwfwzLyBBFTySDvp9SQ-FQYM4Sm-puKDpeADAByWThNnOIUYMnXSRfh54f_mTK57IujQprUpOTTFlVlUEmT2jfrzfg1xFJGxNCbAcN4qVvA==; fid=AQH9-nWg-ahSrgAAAYWNml_8stfBArdZsHbfHmeXFufaUxwiT_P086wWbYSHgQ0jP3uVOyvDUpzh6A; JSESSIONID=ajax:0370192343410261322; lang=v=2&lang=en-us; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2462:u=1:x=1:i=1673117982:t=1673204382:v=2:sig=AQF-uhqEre8fDWp-lwU_hDih_IR9-ogy"; li_gc=MTswOzE2NzMxMTc5ODM7MjswMjEQYbEUtgRCi1zVoI+vq1pKaPDOQfq6R29XKGMaMDHLzw==; fcookie=AQHhX285FxOjcwAAAYWNmmW8kvKKZBwizb4qqv4ZVR9SaAb4m3Z3xIEoDEB63Z5FHHTltK2Ut2HKHxc0QsjH-8WSRD4__R-R6GpWz-XgQroYxuNUPDuB0c_MBFL3rhIRAVHpnrTFJoyzMgRO4f2ZglsDYpV1G_JFI4bqVDbDiBeKuh9dCuexH4VE78TuJOWrzEMCk5s00Oci9ZvL4Cy3PPXsuQSuwQSfXJ9_1OnRFxXlnG8G8Lz3_Gb1ZEVH4kibr8qqcDYvkbQ1f5UCa+uFuhfdWV7Ma2uBTJ9yMwbJ2NE4R9eHGB9srX197Acq8yKt4plOef/CwrVWHEDWTQwbFzg4X6OIZGykSDvbOg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXxsSMmiS71txRR3I5mPg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: C28C6C041CF94015BE7E0E6B9C9C63D9 Ref B: OSL30EDGE0211 Ref C: 2023-01-07T18:59:44Z
date: Sat, 07 Jan 2023 18:59:44 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1522
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQHKRUbqWHx1DgAAAYWNml0w5yyKeimVxO2txE5IutESdDvr4chDD4-50LlGhpnkkGyX9TrsqFRWlRsMfvhMBi_BPh6rbhpI0L_16wUCATzJSUuqVwNGwfwzLyBBFTySDvp9SQ-FQYM4Sm-puKDpeADAByWThNnOIUYMnXSRfh54f_mTK57IujQprUpOTTFlVlUEmT2jfrzfg1xFJGxNCbAcN4qVvA==; fid=AQH9-nWg-ahSrgAAAYWNml_8stfBArdZsHbfHmeXFufaUxwiT_P086wWbYSHgQ0jP3uVOyvDUpzh6A; JSESSIONID=ajax:0370192343410261322; lang=v=2&lang=en-us; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2462:u=1:x=1:i=1673117982:t=1673204382:v=2:sig=AQF-uhqEre8fDWp-lwU_hDih_IR9-ogy"; li_gc=MTswOzE2NzMxMTc5ODM7MjswMjEQYbEUtgRCi1zVoI+vq1pKaPDOQfq6R29XKGMaMDHLzw==; fcookie=AQHhX285FxOjcwAAAYWNmmW8kvKKZBwizb4qqv4ZVR9SaAb4m3Z3xIEoDEB63Z5FHHTltK2Ut2HKHxc0QsjH-8WSRD4__R-R6GpWz-XgQroYxuNUPDuB0c_MBFL3rhIRAVHpnrTFJoyzMgRO4f2ZglsDYpV1G_JFI4bqVDbDiBeKuh9dCuexH4VE78TuJOWrzEMCk5s00Oci9ZvL4Cy3PPXsuQSuwQSfXJ9_1OnRFxXlnG8G8Lz3_Gb1ZEVH4kibr8qqcDYvkbQ1f5UCa+uFuhfdWV7Ma2uBTJ9yMwbJ2NE4R9eHGB9srX197Acq8yKt4plOef/CwrVWHEDWTQwbFzg4X6OIZGykSDvbOg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXxsSM12s51XSueV4PWSA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: DBD9ADE6F4A3452AADBAC40B1C8F5885 Ref B: OSL30EDGE0211 Ref C: 2023-01-07T18:59:45Z
date: Sat, 07 Jan 2023 18:59:45 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1522
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQHKRUbqWHx1DgAAAYWNml0w5yyKeimVxO2txE5IutESdDvr4chDD4-50LlGhpnkkGyX9TrsqFRWlRsMfvhMBi_BPh6rbhpI0L_16wUCATzJSUuqVwNGwfwzLyBBFTySDvp9SQ-FQYM4Sm-puKDpeADAByWThNnOIUYMnXSRfh54f_mTK57IujQprUpOTTFlVlUEmT2jfrzfg1xFJGxNCbAcN4qVvA==; fid=AQH9-nWg-ahSrgAAAYWNml_8stfBArdZsHbfHmeXFufaUxwiT_P086wWbYSHgQ0jP3uVOyvDUpzh6A; JSESSIONID=ajax:0370192343410261322; lang=v=2&lang=en-us; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2462:u=1:x=1:i=1673117982:t=1673204382:v=2:sig=AQF-uhqEre8fDWp-lwU_hDih_IR9-ogy"; li_gc=MTswOzE2NzMxMTc5ODM7MjswMjEQYbEUtgRCi1zVoI+vq1pKaPDOQfq6R29XKGMaMDHLzw==; fcookie=AQHhX285FxOjcwAAAYWNmmW8kvKKZBwizb4qqv4ZVR9SaAb4m3Z3xIEoDEB63Z5FHHTltK2Ut2HKHxc0QsjH-8WSRD4__R-R6GpWz-XgQroYxuNUPDuB0c_MBFL3rhIRAVHpnrTFJoyzMgRO4f2ZglsDYpV1G_JFI4bqVDbDiBeKuh9dCuexH4VE78TuJOWrzEMCk5s00Oci9ZvL4Cy3PPXsuQSuwQSfXJ9_1OnRFxXlnG8G8Lz3_Gb1ZEVH4kibr8qqcDYvkbQ1f5UCa+uFuhfdWV7Ma2uBTJ9yMwbJ2NE4R9eHGB9srX197Acq8yKt4plOef/CwrVWHEDWTQwbFzg4X6OIZGykSDvbOg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXxsSNUZHvHQ8xo9nKuCg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 868C6AD89C6547DEAE12402D13DDC98F Ref B: OSL30EDGE0211 Ref C: 2023-01-07T18:59:47Z
date: Sat, 07 Jan 2023 18:59:47 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1522
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQHKRUbqWHx1DgAAAYWNml0w5yyKeimVxO2txE5IutESdDvr4chDD4-50LlGhpnkkGyX9TrsqFRWlRsMfvhMBi_BPh6rbhpI0L_16wUCATzJSUuqVwNGwfwzLyBBFTySDvp9SQ-FQYM4Sm-puKDpeADAByWThNnOIUYMnXSRfh54f_mTK57IujQprUpOTTFlVlUEmT2jfrzfg1xFJGxNCbAcN4qVvA==; fid=AQH9-nWg-ahSrgAAAYWNml_8stfBArdZsHbfHmeXFufaUxwiT_P086wWbYSHgQ0jP3uVOyvDUpzh6A; JSESSIONID=ajax:0370192343410261322; lang=v=2&lang=en-us; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2462:u=1:x=1:i=1673117982:t=1673204382:v=2:sig=AQF-uhqEre8fDWp-lwU_hDih_IR9-ogy"; li_gc=MTswOzE2NzMxMTc5ODM7MjswMjEQYbEUtgRCi1zVoI+vq1pKaPDOQfq6R29XKGMaMDHLzw==; fcookie=AQHhX285FxOjcwAAAYWNmmW8kvKKZBwizb4qqv4ZVR9SaAb4m3Z3xIEoDEB63Z5FHHTltK2Ut2HKHxc0QsjH-8WSRD4__R-R6GpWz-XgQroYxuNUPDuB0c_MBFL3rhIRAVHpnrTFJoyzMgRO4f2ZglsDYpV1G_JFI4bqVDbDiBeKuh9dCuexH4VE78TuJOWrzEMCk5s00Oci9ZvL4Cy3PPXsuQSuwQSfXJ9_1OnRFxXlnG8G8Lz3_Gb1ZEVH4kibr8qqcDYvkbQ1f5UCa+uFuhfdWV7Ma2uBTJ9yMwbJ2NE4R9eHGB9srX197Acq8yKt4plOef/CwrVWHEDWTQwbFzg4X6OIZGykSDvbOg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXxsSNy49DF+DA7587wyw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 954C6CDEE1F347CC9C3D674E9B5BEF8B Ref B: OSL30EDGE0211 Ref C: 2023-01-07T18:59:49Z
date: Sat, 07 Jan 2023 18:59:49 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/directory/api/ingraphs/gauge?csrfToken=ajax%3A0370192343410261322

13.107.42.14

200 OK

0 B

URL HTTP/2
www.linkedin.com/directory/api/ingraphs/gauge?csrfToken=ajax%3A0370192343410261322
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /directory/api/ingraphs/gauge?csrfToken=ajax%3A0370192343410261322 HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 89
Origin: https://www.linkedin.com
Connection: keep-alive
Referer: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQHmX7bm-z-EiAAAAYWNml0w4nn8FtdkHZ7TnO5Uc3a1gX2l__AR7FAknKv4GLi1y4PafrsXUnOcRV31x7hO-LaklwwpMehTlBkAIENVtrVN4qcEdV4Sdjq2m30pvgp88P5EJ6A=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2F18056569%3Futm_campaign%3DSecurity%2520Ransomware%26utm_medium%3Demail%26_hsmi%3D226656658%26_hsenc%3Dp2ANqtz-8444z-7M4Sz7MGDCdpaY3GIDsHrp7psqrDfWc0o8sSY3zoxKJlZb5OJGpubP3mxFIUWfp4D-jeBimfYi8uhukwyWgybnNKe2QQyeW3273jOE6iFIU%26utm_content%3D225582642%26utm_source%3Dhs_email
Cookie: bcookie="v=2&1d0aa250-bc37-4bc5-8e41-a8c24db1f237"; bscookie="v=1&2022052402390220657ab3-a47f-4a36-8a7c-2aab5758f00aAQGP2qunaPAL0pAZ3hGPqJVWhlRgfmja"; li_alerts=e30=; G_ENABLED_IDPS=google; li_rm=AQHPCLH_VZaJvAAAAYEyL9reCWmsMQ_NRC7m6HYFYbBLs5J_yXaiwENf4PbW6OnKwU8m8m4Huxxbec1J4OmwjdroR-0bHjNTs7BYesg49EEQCjRrc8EkjFfZ; rtc=AQHKRUbqWHx1DgAAAYWNml0w5yyKeimVxO2txE5IutESdDvr4chDD4-50LlGhpnkkGyX9TrsqFRWlRsMfvhMBi_BPh6rbhpI0L_16wUCATzJSUuqVwNGwfwzLyBBFTySDvp9SQ-FQYM4Sm-puKDpeADAByWThNnOIUYMnXSRfh54f_mTK57IujQprUpOTTFlVlUEmT2jfrzfg1xFJGxNCbAcN4qVvA==; fid=AQH9-nWg-ahSrgAAAYWNml_8stfBArdZsHbfHmeXFufaUxwiT_P086wWbYSHgQ0jP3uVOyvDUpzh6A; JSESSIONID=ajax:0370192343410261322; lang=v=2&lang=en-us; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2462:u=1:x=1:i=1673117982:t=1673204382:v=2:sig=AQF-uhqEre8fDWp-lwU_hDih_IR9-ogy"; li_gc=MTswOzE2NzMxMTc5ODM7MjswMjEQYbEUtgRCi1zVoI+vq1pKaPDOQfq6R29XKGMaMDHLzw==; fcookie=AQHhX285FxOjcwAAAYWNmmW8kvKKZBwizb4qqv4ZVR9SaAb4m3Z3xIEoDEB63Z5FHHTltK2Ut2HKHxc0QsjH-8WSRD4__R-R6GpWz-XgQroYxuNUPDuB0c_MBFL3rhIRAVHpnrTFJoyzMgRO4f2ZglsDYpV1G_JFI4bqVDbDiBeKuh9dCuexH4VE78TuJOWrzEMCk5s00Oci9ZvL4Cy3PPXsuQSuwQSfXJ9_1OnRFxXlnG8G8Lz3_Gb1ZEVH4kibr8qqcDYvkbQ1f5UCa+uFuhfdWV7Ma2uBTJ9yMwbJ2NE4R9eHGB9srX197Acq8yKt4plOef/CwrVWHEDWTQwbFzg4X6OIZGykSDvbOg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-fs-uuid: 0005f1b1237cf2884a434db2066fd893
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXxsSN88ohKQ02yBm/Ykw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 981D790968534142B5E84A66BEE1505C Ref B: OSL30EDGE0211 Ref C: 2023-01-07T18:59:50Z
date: Sat, 07 Jan 2023 18:59:49 GMT
content-length: 0
X-Firefox-Spdy: h2

accounts.google.com/o/oauth2/iframe

216.58.211.13

200 OK

0 B

URL HTTP/2
accounts.google.com/o/oauth2/iframe
IP
216.58.211.13:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /o/oauth2/iframe HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 07 Jan 2023 18:59:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/IdpIFrameHttp/cspreport, script-src 'nonce-30QfIY7G9uJ96HVjW6DI0w' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/IdpIFrameHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/IdpIFrameHttp/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-embedder-policy: require-corp
report-to: {"group":"IdpIFrameHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/IdpIFrameHttp/external"}]}
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin; report-to="IdpIFrameHttp"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static.licdn.com/sc/h/1k1xa20mhrefbm4mu6uim2qxw

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/1k1xa20mhrefbm4mu6uim2qxw
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sc/h/1k1xa20mhrefbm4mu6uim2qxw HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Play
expires: Fri, 17 Nov 2023 23:09:42 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005edb2af31ed9992c0f5260224d0fd
x-li-fabric: prod-lor1
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXtsq8x7ZmSwPUmAiTQ/Q==
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 07 Jan 2023 18:59:43 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/avzjesp0yrbz0c8qa81r63x7m

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/avzjesp0yrbz0c8qa81r63x7m
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sc/h/avzjesp0yrbz0c8qa81r63x7m HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Play
expires: Fri, 17 Nov 2023 23:09:42 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005edb2af31c7af3acd14ce221ab9ce
x-li-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXtsq8xx686zRTOIhq5zg==
remote-cache-status: TCP_HIT
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 07 Jan 2023 18:59:43 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/b39mllzjzea0ex5odqm0ojejf

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/b39mllzjzea0ex5odqm0ojejf
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sc/h/b39mllzjzea0ex5odqm0ojejf HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Play
expires: Wed, 06 Dec 2023 00:32:22 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-li-fabric: prod-lor1
x-fs-uuid: 0005ef1deff79f6a02b4b13fc4b8ca64
x-li-source-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXvHe/3n2oCtLE/xLjKZA==
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 07 Jan 2023 18:59:43 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/98lptr8kagfxge22q7k1fps8

95.101.11.57

200 OK

0 B

URL HTTP/2
static.licdn.com/sc/h/98lptr8kagfxge22q7k1fps8
IP
95.101.11.57:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sc/h/98lptr8kagfxge22q7k1fps8 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Play
expires: Tue, 26 Jul 2022 16:09:31 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 27a9e172126395160021dd2f132b0000
x-li-fabric: prod-lva1
x-li-pop: prod-edc2
x-li-proto: http/1.1
x-li-uuid: J6nhchJjlRYAId0vEysAAA==
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 07 Jan 2023 18:59:43 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations