Report - bitly.ws/?redirect=C2Bp

Report Overview

Submitted URL
bitly.ws/?redirect=C2Bp
IP
185.11.100.204
ASN
#29522 Cyber_Folks S.A.
Submitted
2023-03-25 07:45:16
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	3.0 kB	8.5 kB	23.36.76.226
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-29T11:19:48Z	490 B	18 kB	216.58.207.227
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	782 B	2.4 kB	35.241.9.150
browser.sentry-cdn.com	4393	2018-07-13T13:42:06Z	2023-03-29T10:48:21Z	380 B	29 kB	151.101.66.217
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-29T09:08:31Z	571 B	591 B	173.194.221.154
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-29T10:24:16Z	488 B	5.2 kB	142.250.74.162
surveyheartmedia.s3.ap-south-1.amazonaws.com	825511	2020-06-05T17:19:28Z	2023-03-23T02:56:24Z	818 B	468 kB	3.5.210.175
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
bitly.ws	365777	2018-04-13T12:37:54Z	2023-03-29T19:28:34Z	354 B	297 B	185.11.100.204
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-29T05:09:04Z	3.1 kB	6.3 kB	216.58.211.3
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	3.2 kB	47 kB	34.120.237.76
pagead2.googlesyndication.com	101	2021-02-20T16:52:05Z	2023-03-29T10:25:49Z	354 B	49 kB	142.250.74.66
o588651.ingest.sentry.io	823947	2021-05-30T18:04:41Z	2023-03-23T02:56:13Z	533 B	471 B	34.120.195.249
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350 B	1.0 kB	54.230.245.118
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	127 B	35.165.55.126
ocsp.godaddy.com	698	2012-05-20T21:28:57Z	2023-03-29T05:12:39Z	340 B	2.3 kB	192.124.249.41
surveyheart.com	142293	2015-11-23T13:25:23Z	2023-03-25T03:40:30Z	1.2 kB	1.0 MB	3.7.200.187
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-29T05:44:04Z	700 B	91 kB	142.250.74.40
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-29T10:13:53Z	731 B	2.2 kB	172.217.21.170
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-29T06:01:47Z	337 B	21 kB	216.239.38.178

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-25 07:45:15	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (bitly .ws)
2023-03-25 07:45:15	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (bitly .ws)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	surveyheart.com/form/641cf6a1d4d83b07c4c4397a	305 B	2023-03-08	2023-03-29
Pretty URL surveyheart.com/form/641cf6a1d4d83b07c4c4397a IP 3.7.200.187 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:25:55 Last Seen2023-03-29 22:08:38 Times Seen3 Hash 1ecad47cab8c9027c235d96d72abe327 ac33d9796981436eae9fbae15e552074158f4f77 35d627c917c4a4ba7aabbec957343753eafa63c62f43616f9c2d86689298619d Loading...

	www.googletagmanager.com/gtag/js?id=UA-112010057-3	115 kB	2023-03-29	2023-03-29
Pretty URL www.googletagmanager.com/gtag/js?id=UA-112010057-3 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 22:08:38 Last Seen2023-03-29 22:08:38 Times Seen1 Hash b7e5fe9b8a6b4a6f92c0aa5fa74fb0f7 023ea3ac54b88ffe7fc2b4a038cdbac124d44bb0 02775e12bd4e3b90e5bb8a7687c83eeb4cc20b42f98925ad6eae8ef287576888 Loading...

	surveyheart.com/dist/js/form_new.js	3.7 MB	2023-03-13	2023-03-29
Pretty URL surveyheart.com/dist/js/form_new.js IP 3.7.200.187 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:52:11 Last Seen2023-03-29 22:08:38 Times Seen3 Hash 964ae1c3bf673fd82cf186bc5f7c1c7c 35359952ccf117e0d289096a53be0bd8f5ee19be 80b13374174bacca9a17d9fc83069524433feae29f07b2707ef98c4145a63cec Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 216.239.38.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	browser.sentry-cdn.com/6.3.5/bundle.tracing.min.js	93 kB	2023-03-08	2024-04-13
Pretty URL browser.sentry-cdn.com/6.3.5/bundle.tracing.min.js IP 151.101.66.217 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:25:55 Last Seen2024-04-13 05:55:43 Times Seen29 Hash 3d6134db13c438e835268febe8e5982d 68fc1377c632518b3673a5451252d11ac8174573 95452478d798faa9db5f23a8cf358c1e82f3082fc8104679b7eb73f75c287427 Loading...

	surveyheart.com/form/641cf6a1d4d83b07c4c4397a	5.5 kB	2023-03-29	2023-03-29
Pretty URL surveyheart.com/form/641cf6a1d4d83b07c4c4397a IP 3.7.200.187 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 22:08:38 Last Seen2023-03-29 22:08:38 Times Seen1 Hash d42141f57d388ba90f9afa07d48b3d74 1684ae6fcfd91cb2db197269a97a8b57e9a0ab99 0b25b2a45f8b9cf21e4bcd97a96eed79af028c0e96a246155ee69267e69d86a6 Loading...

	www.googletagmanager.com/gtag/js?id=UA-112010057-1	115 kB	2023-03-29	2023-03-29
Pretty URL www.googletagmanager.com/gtag/js?id=UA-112010057-1 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 22:08:38 Last Seen2023-03-29 22:08:38 Times Seen1 Hash 58257b83c53cd8d7e96b7a917b763960 c463bf017c1fed7c7156f7871e54f4231fbe8e66 3c4de28badae67d5b7ea8e614913d948218a38f8c79aae7201323f78941060a4 Loading...

	surveyheart.com/form/641cf6a1d4d83b07c4c4397a	385 B	2023-03-08	2023-03-29
Pretty URL surveyheart.com/form/641cf6a1d4d83b07c4c4397a IP 3.7.200.187 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:25:55 Last Seen2023-03-29 22:08:38 Times Seen3 Hash f24f3ab0d5196b603a211d409a3ff6e0 6cbff9bfc7e090169ebde1fe15dcf990488d4fa5 98b00ec074c9185ef8e6cab55988d1645c32f26bac2cc74c86d3ee65fa3f1f1c Loading...

	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	143 kB	2023-03-29	2023-03-29
Pretty URL pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 142.250.74.66 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 22:08:38 Last Seen2023-03-29 22:08:38 Times Seen1 Hash d4648e3fa8d7d57c0d0648b92966c234 3431b049b7affdd0d8f9b6117353ae9eb3148d5b 82904fcaf668dbbd64b028b0cc8ce0bba16054c1980693defa88b3e9ccd111c9 Loading...

	googleads.g.doubleclick.net/pagead/html/r20230322/r20190131/zrt_lookup.html	10 kB	2023-03-14	2023-04-05
Pretty URL googleads.g.doubleclick.net/pagead/html/r20230322/r20190131/zrt_lookup.html IP 142.250.74.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:29:45 Last Seen2023-04-05 02:11:59 Times Seen4625 Hash a969ec2e827cf3b8a9dc2ccd439733c2 189a089bc848f30d70479c6c0da113c13a83f99b 84f8183c57907d5d6223e8bea02deea39c65caf1371df19b3e6e82cb983da1f1 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 0b0c5117f98c674fff9332fa5480e908	31 B	2023-03-07	2023-11-21
Pretty Observations First Seen2023-03-07 01:02:07 Last Seen2023-11-21 03:43:28 Times Seen7759 Hash 0b0c5117f98c674fff9332fa5480e908 233966d6919f909d7c5fa065bacd49fde58eeb73 6e4c074bba968f3a2899edcbccf9e893ebdad7a5a533463e4d9630f28f3baed1 Loading...

HTTP Transactions (48)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 5d9435c884bf4a0777fdf4b57079ae09 7f04b9db47ffeec90ac6397416b7553e5336a550 fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084" Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2991 Expires: Sat, 25 Mar 2023 08:34:54 GMT Date: Sat, 25 Mar 2023 07:45:03 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash dfd491ebe7381221b3674c2c8bf9e566 d2ac5badf17f348c28a52e9db10e6eb80e5a231a 34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C" Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11709 Expires: Sat, 25 Mar 2023 11:00:12 GMT Date: Sat, 25 Mar 2023 07:45:03 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 84db75194692d4afe13196bda6f22da8 4c1f49bc973a4917f146d93c8d598344edc021f6 a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sat, 25 Mar 2023 07:15:21 GMT content-type: application/json age: 1782 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash dc2752d83fbed82852248898a132467a b27a6b4af2e07663a58cafb641513f7224c7a7c3 ea7838393d83805a7b8a2b01bd09e4423617c4da285b983a11e9ba36266810d5 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "EA7838393D83805A7B8A2B01BD09E4423617C4DA285B983A11E9BA36266810D5" Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18694 Expires: Sat, 25 Mar 2023 12:56:37 GMT Date: Sat, 25 Mar 2023 07:45:03 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: k0CWAMy2fa1vjYXQtZO2MeVhbMeSSM2BpLUM+fOqtJ1L+w0gLoih11dfcqmA1TdSk9Z/Y/3hCvU= x-amz-request-id: YJ9FTRKKWGBCPPWD x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sat, 25 Mar 2023 07:00:41 GMT age: 2662 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Sat, 25 Mar 2023 07:45:03 GMT content-type: application/json content-length: 12 vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-credentials: true access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sat, 25 Mar 2023 07:14:33 GMT age: 1831 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 717ebcc65cb1390c2509851bac7b5878 1e04e3058329f3809bc01022d441172dcacc1aaa 3c8d41efe14dc75e001ce50aae65e133d90bcb2e2f86b2426cefe7abe4c7b588 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "3C8D41EFE14DC75E001CE50AAE65E133D90BCB2E2F86B2426CEFE7ABE4C7B588" Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5488 Expires: Sat, 25 Mar 2023 09:16:32 GMT Date: Sat, 25 Mar 2023 07:45:04 GMT Connection: keep-alive`

	bitly.ws/?redirect=C2Bp	185.11.100.204	301 Moved Permanently	2 B
URL HTTP/1.1 bitly.ws/?redirect=C2Bp IP 185.11.100.204:0 ASN #29522 Cyber_Folks S.A. File type ASCII text, with CRLF line terminators Size 2 B (2 bytes) Hash 81051bcc2cf1bedf378224b0a93e2877 ba8ab5a0280b953aa97435ff8946cbcbb2755a27 7eb70257593da06f682a3ddda54a9d260d4fc514f645237f5ca74b08f8da61a6 HTTP Headers `GET /?redirect=C2Bp HTTP/1.1 Host: bitly.ws User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently date: Sat, 25 Mar 2023 07:45:03 GMT server: Apache x-powered-by: PHP/5.5.38 location: https://surveyheart.com/form/641cf6a1d4d83b07c4c4397a cache-control: max-age=0 expires: Sat, 25 Mar 2023 07:45:03 GMT transfer-encoding: chunked content-type: text/html`

	push.services.mozilla.com/	35.165.55.126	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 35.165.55.126:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: B7h8Cwkn4NgHvFQpdKEaNA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: Bos7bo2peg44/LDVFKh+S+Y0oXE=`

	ocsp.godaddy.com/	192.124.249.41	200 OK	1.8 kB
URL HTTP/1.1 ocsp.godaddy.com/ IP 192.124.249.41:0 ASN #30148 SUCURI-SEC File type data Size 1.8 kB (1777 bytes) Hash bb6f1438242333fd84bc51782dc1f6c2 60bc2ba5cb38892625961df2747239d46ef47d91 ba55cf8cd25286dbfba2c6356c079f5d08d1e87cde184032c756cd8eb3100099 HTTP Headers `POST / HTTP/1.1 Host: ocsp.godaddy.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 75 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: Sucuri/Cloudproxy Date: Sat, 25 Mar 2023 07:45:05 GMT Content-Type: application/ocsp-response Content-Length: 1777 Connection: keep-alive X-Sucuri-ID: 19041 Content-Transfer-Encoding: Binary Cache-Control: public, no-transform, must-revalidate Last-Modified: Fri, 24 Mar 2023 20:45:17 GMT Expires: Sat, 25 Mar 2023 20:45:17 GMT ETag: "60bc2ba5cb38892625961df2747239d46ef47d91" P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"`

	surveyheart.com/form/641cf6a1d4d83b07c4c4397a	3.7.200.187	200 OK	5.7 kB
URL HTTP/1.1 surveyheart.com/form/641cf6a1d4d83b07c4c4397a IP 3.7.200.187:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5464) Size 5.7 kB (5672 bytes) Hash abfe9757d7a850b8d6a808e57e58f293 ec42badfb7285c8d8d8ee4999593118f08509bed f45407ccdc670e3d2efa4e8a47ff23341496c6afcbe3d5cac9a9934558bf2d87 HTTP Headers `GET /form/641cf6a1d4d83b07c4c4397a HTTP/1.1 Host: surveyheart.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/1.1 200 OK Server: nginx/1.14.0 (Ubuntu) Date: Sat, 25 Mar 2023 07:45:05 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive X-DNS-Prefetch-Control: off Expect-CT: max-age=0 X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=15552000; includeSubDomains X-Download-Options: noopen X-Content-Type-Options: nosniff X-Permitted-Cross-Domain-Policies: none Referrer-Policy: no-referrer X-XSS-Protection: 0 X-Powered-By: Express ETag: W/"2145-/U4aI7dXgR9BFLtYLQ5DBM3CU4U" Vary: Accept-Encoding Content-Encoding: gzip

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 4355291ec58b85ddde02c2446ecb2bb4 4ad43e10f82193f83e862e8a78f3e46de9490ac4 e32fd5635627751770ee13e8f77b14b2555163cfc2d7db98aa8edb5b4bae4d9a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 25 Mar 2023 07:45:05 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 3a85d9c2de0b1015b62c81a1ab7fe625 389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238 717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 25 Mar 2023 07:45:05 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 3a85d9c2de0b1015b62c81a1ab7fe625 389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238 717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 25 Mar 2023 07:45:05 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 4355291ec58b85ddde02c2446ecb2bb4 4ad43e10f82193f83e862e8a78f3e46de9490ac4 e32fd5635627751770ee13e8f77b14b2555163cfc2d7db98aa8edb5b4bae4d9a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 25 Mar 2023 07:45:05 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	browser.sentry-cdn.com/6.3.5/bundle.tracing.min.js	151.101.66.217	200 OK	28 kB
URL HTTP/2 browser.sentry-cdn.com/6.3.5/bundle.tracing.min.js IP 151.101.66.217:0 ASN #54113 FASTLY File type ASCII text, with very long lines (65430) Size 28 kB (28391 bytes) Hash 3abdd6e4253eae66b666d0886a4950a3 816fa0d160493a9ba1a5cdda9ed0e886cbbc0a16 da8dd2888581163d31c839580b81a6c18aeb37ffff7623faf627a05354cece6e HTTP Headers `GET /6.3.5/bundle.tracing.min.js HTTP/1.1 Host: browser.sentry-cdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://surveyheart.com Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK cache-control: public, max-age=31536000 expires: Wed, 17 Jan 2024 16:29:24 GMT last-modified: Fri, 30 Apr 2021 13:15:51 GMT etag: "3abdd6e4253eae66b666d0886a4950a3" content-type: application/javascript; charset=utf-8 content-encoding: gzip accept-ranges: bytes date: Sat, 25 Mar 2023 07:45:05 GMT age: 5757341 vary: Accept-Encoding access-control-allow-origin: * server: Fastly strict-transport-security: max-age=31536000; includeSubDomains content-length: 28391 X-Firefox-Spdy: h2`

	www.googletagmanager.com/gtag/js?id=UA-112010057-3	142.250.74.40	200 OK	45 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-112010057-3 IP 142.250.74.40:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (2206) Size 45 kB (44779 bytes) Hash 26dc37f85f31a66d369fd1e0e7db6e36 12ecd17662435378b133e7cc28e95c93a7f95c1d 3806ba39ceea856bb4e66634d9096f76ff9ecb9de8a5a95f9c3a8486d6a965f2 HTTP Headers `GET /gtag/js?id=UA-112010057-3 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sat, 25 Mar 2023 07:45:05 GMT expires: Sat, 25 Mar 2023 07:45:05 GMT cache-control: private, max-age=900 last-modified: Sat, 25 Mar 2023 06:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 44779 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.googletagmanager.com/gtag/js?id=UA-112010057-1	142.250.74.40	200 OK	45 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-112010057-1 IP 142.250.74.40:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (2206) Size 45 kB (44780 bytes) Hash c56ee7fd4ba1ca8798ccb49ad0162a9e e579c5b1fbdeb683a40062f1cad752001af2ee17 e60b759243f8f6070008fa15102713f2a8b0b387a6e6883f5628eb5aa45e11c1 HTTP Headers `GET /gtag/js?id=UA-112010057-1 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sat, 25 Mar 2023 07:45:05 GMT expires: Sat, 25 Mar 2023 07:45:05 GMT cache-control: private, max-age=900 last-modified: Sat, 25 Mar 2023 06:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 44780 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 4355291ec58b85ddde02c2446ecb2bb4 4ad43e10f82193f83e862e8a78f3e46de9490ac4 e32fd5635627751770ee13e8f77b14b2555163cfc2d7db98aa8edb5b4bae4d9a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 25 Mar 2023 07:45:05 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.googleapis.com/css?family=Nunito+Sans&display=swap	172.217.21.170	200 OK	971 B
URL HTTP/2 fonts.googleapis.com/css?family=Nunito+Sans&display=swap IP 172.217.21.170:0 ASN #15169 GOOGLE File type data Size 971 B (971 bytes) Hash ee484ea416a290734c128f5923553737 259817fecd2ffdf4a2f8b16f374dd9d9aa65bda6 9fa5fdbee4b833ad6fede1a526a4f78a381d62d880cd9edf720f941827ba0fb8 HTTP Headers `GET /css?family=Nunito+Sans&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 25 Mar 2023 07:45:05 GMT date: Sat, 25 Mar 2023 07:45:05 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash ce6948c57f579a85042a4388c45514d6 4b3002c036034ef0cb8d9eb73b7bf7f561862b99 85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 25 Mar 2023 07:45:05 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2	216.58.207.227	200 OK	17 kB
URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 16980, version 1.0\012- data Size 17 kB (16980 bytes) Hash 8a97f720d330e75ccdbda9ae0e9f5e90 8e4fee916581ab48d385187705667cebc7500afe 97d5a594e7f76c7e50045b67667fd6b74b268515efe6425097be1b2647079787 HTTP Headers `GET /s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://surveyheart.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 16980 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 24 Mar 2023 10:27:06 GMT expires: Sat, 23 Mar 2024 10:27:06 GMT cache-control: public, max-age=31536000 last-modified: Mon, 09 May 2022 18:33:54 GMT content-type: font/woff2 age: 76679 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash ce6948c57f579a85042a4388c45514d6 4b3002c036034ef0cb8d9eb73b7bf7f561862b99 85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 25 Mar 2023 07:45:05 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash b62c9b9530dd66bb7f03ba2ce3d835da bf8560766de78dd925e395f59610ab2f1335e565 62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D" Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10885 Expires: Sat, 25 Mar 2023 10:46:31 GMT Date: Sat, 25 Mar 2023 07:45:06 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash b62c9b9530dd66bb7f03ba2ce3d835da bf8560766de78dd925e395f59610ab2f1335e565 62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D" Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10885 Expires: Sat, 25 Mar 2023 10:46:31 GMT Date: Sat, 25 Mar 2023 07:45:06 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash b62c9b9530dd66bb7f03ba2ce3d835da bf8560766de78dd925e395f59610ab2f1335e565 62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D" Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10885 Expires: Sat, 25 Mar 2023 10:46:31 GMT Date: Sat, 25 Mar 2023 07:45:06 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg	34.120.237.76	200 OK	7.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.8 kB (7800 bytes) Hash 5773974a7341690f006b052ad02c94db 1b11316c952e2195da1646dd94671669e7e3bc2b a06b72138745500cacc919fea29536ebd4188a1c483f6123e3402458e299f16a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7800 x-amzn-requestid: bad99b1e-3923-4de9-8bea-4dd04e96f7cd x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CTigfFGcIAMFdBA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641e179c-0826b92d4c4af16553503600;Sampled=0 x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: 9AGLmjvUSTKIsYIWECOR8QwdF4PP1tP1TweUm0VYvxQ0qskqj3YuLA== via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 google date: Fri, 24 Mar 2023 21:40:18 GMT age: 36288 etag: "1b11316c952e2195da1646dd94671669e7e3bc2b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg	34.120.237.76	200 OK	6.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.5 kB (6511 bytes) Hash 02e0767e0c72d95e30337ad42f5d15b3 79aa21ca35c9d98ea7d0713d219e9b67083bdc05 7991a0c4d409cca49259cb626d0de39684635f14fad72e074b303235026673a9 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6511 x-amzn-requestid: 38d33f4d-2b85-4666-b778-04f4b4dfdf10 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CTihSFIdIAMFRjA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641e17a1-036a28e75189d05209396933;Sampled=0 x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:29 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: eYAgUDZFGkaskq0A77VgX54hvvjtQtClrFyED3COkankS76uD7hTAQ== via: 1.1 53ee82a7eb57de316cba44c26680b4a6.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google date: Fri, 24 Mar 2023 21:40:28 GMT age: 36278 etag: "79aa21ca35c9d98ea7d0713d219e9b67083bdc05" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg	34.120.237.76	200 OK	6.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.2 kB (6185 bytes) Hash dd191e3a122d6e31f81e6e9d434c58d6 aec88022970c93289434f8097e4a663da33e5271 1f00c901ef479637ec703d7924526a970cb13dd2635b2bbb68b285df9d98e011 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6185 x-amzn-requestid: 223de50b-9a7e-4ac7-9305-336658eec4ac x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CTiwYHoLoAMFXtg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641e1802-226bd8524ade75234053ff50;Sampled=0 x-amzn-remapped-date: Fri, 24 Mar 2023 21:37:06 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: tMnTFkK-AtSlEsQskvoxwwCjddndz5GBLHiV5RHi3QumyL6MVC9ovg== via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google date: Fri, 24 Mar 2023 21:40:28 GMT age: 36278 etag: "aec88022970c93289434f8097e4a663da33e5271" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg	34.120.237.76	200 OK	5.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.6 kB (5556 bytes) Hash c831201ad81f55c63c1b101ce854a810 0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5 c854489720d2ca4a95eef00addda0fcdaf481402d044df7725282654a97eb54a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5556 x-amzn-requestid: 6b050645-14aa-47f7-b4a5-2e27abbe5115 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CM69eHE3IAMF0Yw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641b71ef-6ab2948e2bf2578f29798372;Sampled=0 x-amzn-remapped-date: Wed, 22 Mar 2023 21:23:59 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: ZQcPeutl5BzzzysPzWEzrEY8WU-0F-0twvGPT7RAX-UjNOCk3NtmMQ== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google date: Sat, 25 Mar 2023 06:24:35 GMT age: 4831 etag: "0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg	34.120.237.76	200 OK	5.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.3 kB (5296 bytes) Hash aecd210f66f83c73c3450d047ae7448a d68861e96e12e8a3f293dbae8b687f05b6e15afb 22b69c41c56e5538d91f824d5dc2e63ab5563f99ae8e429c9166f4b397cacd0e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5296 x-amzn-requestid: 11fdf0c8-244c-4cd5-bfa7-4c77d777174f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CTiuzEqkIAMFXOw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641e17f8-5c241d63598dbf595b54ead5;Sampled=0 x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: b1KWFmKdRQ4DU0v5JmC7AJatpv2B5FAHKVWL7pFiyh13fqYDA5qydA== via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google date: Fri, 24 Mar 2023 21:40:28 GMT age: 36278 etag: "d68861e96e12e8a3f293dbae8b687f05b6e15afb" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee780ea6-5b5e-419f-916d-42d0f5e1912a.jpeg	34.120.237.76	200 OK	9.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee780ea6-5b5e-419f-916d-42d0f5e1912a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.2 kB (9196 bytes) Hash c7950abafdbc9bbc363ac4cd490f864f d1356ae16dd758eb699eb62402122d4fb2f307c9 7e98a04cefe4e21aafdf261d0e819352c515695cb9250a64e316c0a5cafc143d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee780ea6-5b5e-419f-916d-42d0f5e1912a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9196 x-amzn-requestid: a63eade0-457b-48f3-bfdc-50d4f6a97363 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CK89kGECIAMFdpg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641aa856-5ce23570768e4a753ee47cf5;Sampled=0 x-amzn-remapped-date: Wed, 22 Mar 2023 07:03:50 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: DSmN5fQWv6zAc9BeRPj97uQLqfM3M3yi8USBPY2kPuMy51OEIvXRbw== via: 1.1 5502255f9557c1e2c098b94110b6151c.cloudfront.net (CloudFront), 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 google date: Fri, 24 Mar 2023 07:59:27 GMT age: 85539 etag: "d1356ae16dd758eb699eb62402122d4fb2f307c9" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	surveyheart.com/dist/js/form_new.js	3.7.200.187	200 OK	1.0 MB
URL HTTP/1.1 surveyheart.com/dist/js/form_new.js IP 3.7.200.187:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (47633) Size 1.0 MB (1003902 bytes) Hash cf89ba6af2d3ceffeca2366832ecf46b ed3ad9b76c24660214f6b47ad011ac89b6ea29c7 487832895ffe59d1671d81d04bce7f1a8b323a576361d80d091ce1c8ea6ad46b HTTP Headers `GET /dist/js/form_new.js HTTP/1.1 Host: surveyheart.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Server: nginx/1.14.0 (Ubuntu) Date: Sat, 25 Mar 2023 07:45:05 GMT Content-Type: application/javascript; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive X-DNS-Prefetch-Control: off Expect-CT: max-age=0 X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=15552000; includeSubDomains X-Download-Options: noopen X-Content-Type-Options: nosniff X-Permitted-Cross-Domain-Policies: none Referrer-Policy: no-referrer X-XSS-Protection: 0 Accept-Ranges: bytes Cache-Control: public, max-age=0 Last-Modified: Tue, 03 Jan 2023 18:04:16 GMT ETag: W/"3912f0-18578ce30cd" Vary: Accept-Encoding Content-Encoding: gzip

	www.google-analytics.com/analytics.js	216.239.38.178	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 216.239.38.178:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1490) Size 20 kB (20085 bytes) Hash ca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20085 date: Sat, 25 Mar 2023 06:05:11 GMT expires: Sat, 25 Mar 2023 08:05:11 GMT cache-control: public, max-age=7200 age: 5996 last-modified: Tue, 10 Jan 2023 21:29:14 GMT content-type: text/javascript vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash eef4409d0ad90e2899e538028bd3fa76 2d6edd13cbd2d201ef921fc33c053aec8f8b740c 61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 25 Mar 2023 07:45:07 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	142.250.74.66	200 OK	49 kB
URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 142.250.74.66:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (3599) Size 49 kB (48677 bytes) Hash 8a607f57e8de86b25d80cea8482d1591 cf178fbedc1eac0e3e169ed9636c71a8a82aec74 04310f99bc4e507573d95111dab8b1518ef4accfb57f4ace0261f1cc60add445 HTTP Headers `GET /pagead/js/adsbygoogle.js HTTP/1.1 Host: pagead2.googlesyndication.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin vary: Accept-Encoding date: Sat, 25 Mar 2023 07:45:07 GMT expires: Sat, 25 Mar 2023 07:45:07 GMT cache-control: private, max-age=3600 content-type: text/javascript; charset=UTF-8 etag: 1412315151359807060 access-control-allow-origin: * x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: br server: cafe content-length: 48677 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash eef4409d0ad90e2899e538028bd3fa76 2d6edd13cbd2d201ef921fc33c053aec8f8b740c 61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 25 Mar 2023 07:45:07 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	surveyheart.com/images/favicon.png	3.7.200.187	200 OK	2.4 kB
URL HTTP/1.1 surveyheart.com/images/favicon.png IP 3.7.200.187:0 ASN #16509 AMAZON-02 File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data Size 2.4 kB (2442 bytes) Hash 9b4a0323781f4b62a149ade4f477277f e64a54b2f9614f6687b26eeb2420e8adacad2cc8 a374ac8e4d3c97d427dc2677d374011a81fec018b7321d029ca8844cbb76c3bf HTTP Headers `GET /images/favicon.png HTTP/1.1 Host: surveyheart.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Server: nginx/1.14.0 (Ubuntu) Date: Sat, 25 Mar 2023 07:45:07 GMT Content-Type: image/png Content-Length: 2442 Connection: keep-alive X-DNS-Prefetch-Control: off Expect-CT: max-age=0 X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=15552000; includeSubDomains X-Download-Options: noopen X-Content-Type-Options: nosniff X-Permitted-Cross-Domain-Policies: none Referrer-Policy: no-referrer X-XSS-Protection: 0 Accept-Ranges: bytes Cache-Control: public, max-age=0 Last-Modified: Mon, 17 May 2021 12:00:24 GMT ETag: W/"98a-1797a32ddbd"

	r3.o.lencr.org/	23.36.76.226	200 OK	1.0 kB
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type gzip compressed data, max compression\012- data Size 1.0 kB (1008 bytes) Hash b6e9aaadf2d11845f3eee023df38662d 0d752146d5ed58ed3e33116980b4410690c64976 85cf53af1412cf8e141d7885f14f1ead2aae5d6b0af9b1064768bcdff72d0ed8 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "FF023922FF9731FEB93BAEA12522CFD38A7A2B7C1534D74AD5AAC4761D8A65DA" Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6844 Expires: Sat, 25 Mar 2023 09:39:11 GMT Date: Sat, 25 Mar 2023 07:45:07 GMT Connection: keep-alive`

	o588651.ingest.sentry.io/api/5739083/envelope/?sentry_key=093077dbff4041738e4d16bee77e7452&sentry_version=7	34.120.195.249	200 OK	2 B
URL HTTP/2 o588651.ingest.sentry.io/api/5739083/envelope/?sentry_key=093077dbff4041738e4d16bee77e7452&sentry_version=7 IP 34.120.195.249:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 2 B (2 bytes) Hash 99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a HTTP Headers POST /api/5739083/envelope/?sentry_key=093077dbff4041738e4d16bee77e7452&sentry_version=7 HTTP/1.1 Host: o588651.ingest.sentry.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://surveyheart.com/ Content-Type: text/plain;charset=UTF-8 Origin: https://surveyheart.com Content-Length: 411 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK server: nginx date: Sat, 25 Mar 2023 07:45:07 GMT content-type: application/json content-length: 2 access-control-allow-origin: https://surveyheart.com access-control-expose-headers: retry-after, x-sentry-rate-limits, x-sentry-error vary: Origin x-envoy-upstream-service-time: 0 strict-transport-security: max-age=31536000; includeSubDomains; preload via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 6252be35da6154b0866b39d2ae616ad3 e7a65b9c9b29b7b8b4bd9988945da8401ac3613a ff023922ff9731feb93baea12522cfd38a7a2b7c1534d74ad5aac4761d8a65da HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "FF023922FF9731FEB93BAEA12522CFD38A7A2B7C1534D74AD5AAC4761D8A65DA" Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6844 Expires: Sat, 25 Mar 2023 09:39:11 GMT Date: Sat, 25 Mar 2023 07:45:07 GMT Connection: keep-alive`

	googleads.g.doubleclick.net/pagead/html/r20230322/r20190131/zrt_lookup.html	142.250.74.162	200 OK	4.5 kB
URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230322/r20190131/zrt_lookup.html IP 142.250.74.162:0 ASN #15169 GOOGLE File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3205) Size 4.5 kB (4549 bytes) Hash bad17ab9662318e8927e5009c83c2ad1 53ded630f95abe04b7b77d43076bf71b9ea71c02 68da39270ebfa6d17f4b765cbe004797a736611585ff0c53213d91f78f13c260 HTTP Headers `GET /pagead/html/r20230322/r20190131/zrt_lookup.html HTTP/1.1 Host: googleads.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site` HTTP/2 200 OK p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff content-encoding: br server: cafe content-length: 4549 x-xss-protection: 0 date: Fri, 24 Mar 2023 12:50:23 GMT expires: Fri, 07 Apr 2023 12:50:23 GMT cache-control: public, max-age=1209600 age: 68084 etag: 2378337311435320485 content-type: text/html; charset=UTF-8 vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-112010057-1&cid=122117414.1679730320&jid=1551489277&gjid=1945431548&_gid=1044794323.1679730320&_u=YEBAAUAAAAAAACAAI~&z=425668624	173.194.221.154	200 OK	1 B
URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-112010057-1&cid=122117414.1679730320&jid=1551489277&gjid=1945431548&_gid=1044794323.1679730320&_u=YEBAAUAAAAAAACAAI~&z=425668624 IP 173.194.221.154:0 ASN #15169 GOOGLE File type very short file (no magic) Size 1 B (1 bytes) Hash c4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b HTTP Headers POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-112010057-1&cid=122117414.1679730320&jid=1551489277&gjid=1945431548&_gid=1044794323.1679730320&_u=YEBAAUAAAAAAACAAI~&z=425668624 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://surveyheart.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://surveyheart.com strict-transport-security: max-age=10886400; includeSubDomains; preload date: Sat, 25 Mar 2023 07:45:07 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 1 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 5dc3d4613976043a938859524837b999 507e4911d577681e170b3d57a44daf00e4fc635b 86d75d207062568a4ab86650f5990a7c09da8f79d60e914ac68c8b0f0fa646c7 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=101761 Date: Sat, 25 Mar 2023 07:45:07 GMT Etag: "641d791b-1d7" Expires: Sun, 26 Mar 2023 12:01:08 GMT Last-Modified: Fri, 24 Mar 2023 10:19:07 GMT Server: ECAcc (nya/78BE) X-Cache: Miss from cloudfront Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: ViECOtJt7iBpkH4IPbhCsKDndkrPzTs983sGUZJiUpEQ_A7eA1-qUw== Age: 6121

	surveyheartmedia.s3.ap-south-1.amazonaws.com/public/images/pc/signup.jpeg	3.5.210.175	200 OK	234 kB
URL HTTP/1.1 surveyheartmedia.s3.ap-south-1.amazonaws.com/public/images/pc/signup.jpeg IP 3.5.210.175:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1024x683, components 3\012- data Size 234 kB (233555 bytes) Hash 9073cf4d40f986f73e86b29fb7e12ce1 91a2d44049985f3ef5a90256bca68608cfcc26fc 655f75d09253d8101451448e8e8661a50178378ffa68754137386f96431a5036 HTTP Headers `GET /public/images/pc/signup.jpeg HTTP/1.1 Host: surveyheartmedia.s3.ap-south-1.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://surveyheart.com Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK x-amz-id-2: ZbeCn/uqZ93ePlQCnWLyKvnhu4jxSHktSB97BZ4dUf7rr8k+w2Q+IjHq79rUn9zTH42OsAvun70G707zhdZ6ZA== x-amz-request-id: KV4NBQ8YVHVYYTY2 Date: Sat, 25 Mar 2023 07:45:08 GMT Access-Control-Allow-Origin: https://surveyheart.com Access-Control-Allow-Methods: GET, POST, PUT, DELETE Access-Control-Allow-Credentials: true Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method Last-Modified: Wed, 13 Jul 2022 11:09:28 GMT ETag: "9073cf4d40f986f73e86b29fb7e12ce1" x-amz-version-id: 3n0i72JulmdSASVsOz9AsZW5JDZGxRxz Accept-Ranges: bytes Content-Type: image/jpeg Server: AmazonS3 Content-Length: 233555

	surveyheartmedia.s3.ap-south-1.amazonaws.com/public/images/pc/signup.jpeg	3.5.210.175	200 OK	234 kB
URL HTTP/1.1 surveyheartmedia.s3.ap-south-1.amazonaws.com/public/images/pc/signup.jpeg IP 3.5.210.175:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1024x683, components 3\012- data Size 234 kB (233555 bytes) Hash 9073cf4d40f986f73e86b29fb7e12ce1 91a2d44049985f3ef5a90256bca68608cfcc26fc 655f75d09253d8101451448e8e8661a50178378ffa68754137386f96431a5036 HTTP Headers `GET /public/images/pc/signup.jpeg HTTP/1.1 Host: surveyheartmedia.s3.ap-south-1.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: Dz/k+6SpngCqSrWRfuXFNETnPJsNJWNun6O+rfMm2n/o8y3cFRAAMOmWzQHY+SldluORts7YXe4tsT/d0dwmRg== x-amz-request-id: QFNBRMZXAFGTVF8R Date: Sat, 25 Mar 2023 07:45:09 GMT Last-Modified: Wed, 13 Jul 2022 11:09:28 GMT ETag: "9073cf4d40f986f73e86b29fb7e12ce1" x-amz-version-id: 3n0i72JulmdSASVsOz9AsZW5JDZGxRxz Accept-Ranges: bytes Content-Type: image/jpeg Server: AmazonS3 Content-Length: 233555`

	fonts.googleapis.com/icon?family=Material+Icons	172.217.21.170	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/icon?family=Material+Icons IP 172.217.21.170:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /icon?family=Material+Icons HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 25 Mar 2023 07:45:05 GMT date: Sat, 25 Mar 2023 07:45:05 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML