cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
200 OK 28 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65451)
Hash 220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 18 Oct 2023 02:12:26 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 459637
expires: Mon, 07 Oct 2024 02:12:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zxXYg%2BrX7qzVUaR2S7SJMx3HuKqrjPcg82h2eYOEs39BatEwwgKt2c33HRBAo%2BnkRPusRGdrjDzWb4qMRQ77x6IgLPm9DFHJEyZw0jN9SR%2F7VNCZaT9bRKEqG5HxsBp%2F6nGS2Oy5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 817d41a39eb6b52d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css
200 OK 10 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
Hash 4cd5b86baba794f3e4f6e54b501f0b6e
6f6a097e312259a142f4cef43e0c52d6224823f0
a62a847fb029ec2329b3c92b0d0b1239366017e314ff430fc8f5b67a78f9238d
GET /ajax/libs/font-awesome/5.10.2/css/all.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 18 Oct 2023 02:12:26 GMT
content-type: text/css; charset=utf-8
content-length: 10222
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64942a3a-27ee"
last-modified: Thu, 22 Jun 2023 11:02:18 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4104469
expires: Mon, 07 Oct 2024 02:12:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QvIszAe1PnlottjqkdM6H%2FI572R1HoO6QZkYMj%2BKmJeDYvIcSSSDrZS6OTMmyIg6V8itQwY7cGy7d2SAAsQbEndLBcC%2BkU3pWwVbVEw9zHFKzb7rLpEKtc11stxqsWQl8n8lkS%2Fi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 817d41a39ebab52d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css
200 OK 5 B URL GET HTTP/2 p.typekit.net/p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css
IP
ASN #20940 Akamai International B.V.
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint42:82:CA:A5:EA:30:8F:60:60:37:2D:24:17:3D:52:62:54:D7:03:5B
ValidityThu, 21 Sep 2023 00:00:00 GMT - Mon, 21 Oct 2024 23:59:59 GMT
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=lgs0rip&ht=tk&f=43349.43352.43354.43357&a=84442296&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Tue, 07 Mar 2023 19:56:00 GMT
etag: "640796d0-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Wed, 18 Oct 2023 02:12:26 GMT
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG
200 OK 70 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TZ69NZG
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint54:FD:04:1B:2E:C7:46:95:DD:15:A3:A0:3F:CE:7F:03:02:53:36:8F
ValidityMon, 18 Sep 2023 08:19:25 GMT - Mon, 11 Dec 2023 08:19:24 GMT
File type Unicode text, UTF-8 text, with very long lines (14130)
Hash b8bd63a87547ecac6fe68738aa97794c
26f1f5a2815a92eb7a4671cbc8c677697fcdcc50
c1de1a072e435bc66cff36cef827a6cfd7bcd5bcc706c9a2e1815141dde691d6
GET /gtm.js?id=GTM-TZ69NZG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 18 Oct 2023 02:12:27 GMT
expires: Wed, 18 Oct 2023 02:12:27 GMT
cache-control: private, max-age=900
last-modified: Wed, 18 Oct 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70291
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
linkvertise.com/assets/ads.js
39 B URL linkvertise.com/assets/ads.js
IP
Hash 6505cd57ceee4ca43442ca3a639bc9fb
fba759aae1fba98c65c0f7530e11dcf9db64f6bd
b1af735cf017f07c82e88c4e7ae104eb140ebec0882691bdc68ad6c1a6e3449f
GET /assets/ads.js HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak?o=sharing
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:26 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"87a18df10c601bf2ed3321eab0aec42a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=65xsBJo5iMq4XPivLOYVui%2FPLaM6c4eeYUle9fAMJoXicf9wHes8Oz5jgAwTygd0uYoDPXarYZ6rzf26bVMJY4R221IdzTrGKCwn8Io%2BDGokgpBEHtxLoFrZLZJAkE%2BzpfA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41a37ad7b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/animation.css
200 OK 722 B URL GET HTTP/2 js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/animation.css
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash 520016f3fad41f77bb889758ac030aaf
48ca24438fbec42628371ec9320c6730a887f3e8
c8c900ec5cbe9ef18bea37051bc2bf2aa9846c2ce787d248f2451575e2a372fd
GET /assets/cbjs-2023.10.09-09.27/v2/animation.css HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 722
last-modified: Tue, 10 Oct 2023 04:38:56 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: foyXDctj67AQ38AQugjXyXC8alSOBAgn
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Wed, 18 Oct 2023 02:10:01 GMT
cache-control: max-age=300,public
etag: "520016f3fad41f77bb889758ac030aaf"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8AOHUbONCBJsUB5nY6nfKaKSnJM5Wc6FLBIM1V-amxBCwYcW4Su1GA==
age: 199
X-Firefox-Spdy: h2
linkvertise.com/polyfills.bd3b6746195e9466.js
200 OK 13 kB URL GET HTTP/3 linkvertise.com/polyfills.bd3b6746195e9466.js
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
File type ASCII text, with very long lines (34605), with no line terminators
Hash 70861480978e1a3305ba895d593cbdbe
4d82f1b0ee8a88bc58f997b60d8b44add0495985
08b25c4d3b49bd0d17a443cd2a009f58355b5eea6094112e27916e10e606d5a6
GET /polyfills.bd3b6746195e9466.js HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak?o=sharing
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:26 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"5d23b46a866e5f24cab68ca070719832"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1y9zKteq1JEwsYALqbsyCoZ7w8N1%2FUzz1BgDuNFNWPEdFPb23YCH9coeZwg4IFP%2BCxsvhfPTZ6QAhKmdBo8eXfFyBCTL7lfel2T11BlVJPkK9Nqd1ILMFAVx5VBXhfoMOzo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41a3baeab4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js
39 kB URL linkvertise.com/assets/cheq/public/sc/disk/CHEQguard.sc.min.js
IP
Hash a260e7ad8d02f2ec2470e211d97871ec
6e7061c207a5356c4ae9d040af2aea5d82d07b67
4d5206ee58438a808f3f4a09910fbbe126a1019c04649343de9b7ad38a690f6e
GET /assets/cheq/public/sc/disk/CHEQguard.sc.min.js HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak?o=sharing
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:26 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e95fe14af1d50eab9d4bf9a757b1f1bf"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=USYs%2FJilnCeZg23jURRf9TUHjyP26p5faLirVwUQsBRSZh1JbMSoGvH1oGbDxksC0hRmya5mHP1RYgC8vbcud8pYO5PLfEuRrI1ARQDLitgxwv86%2Fb%2B6LaLS9mhlgKmclDs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41a38adcb4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
linkvertise.com/assets/img/loading.gif
200 OK 49 kB URL GET HTTP/3 linkvertise.com/assets/img/loading.gif
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
File type GIF image data, version 89a, 64 x 64\012- data
Hash ec5d553ed1c592ef6c64daaa94194358
647f0de2ba6b511ceab755fbfb84a0cdf5d0ac6e
47825a900e347c3ebe2ed17dba529d293ca8a3016faaad7ac8b3850df2fcf9f0
GET /assets/img/loading.gif HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak?o=sharing
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:27 GMT
content-type: image/gif
content-length: 49203
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "93b93d8627afc0ac51c9bf61666152e4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DBWUUWsKuhE3m%2B%2Bwuon9GOmnJkTEuw02I%2FQ8ZgDWY4%2B8YmdK64VlApQE3F0Hvq2Up0y3A5iCfZHvGU2sjIchj6WCfDuyOU9P8dp1sFQ8hdXU7ZBvNiP4oQUVokmA0GttjAc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41a8ac15b4f9-OSL
alt-svc: h3=":443"; ma=86400
linkvertise.com/main.70d9403bbaefe6a6.js
200 OK 628 kB URL GET HTTP/3 linkvertise.com/main.70d9403bbaefe6a6.js
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 628 kB (627675 bytes)
Hash 51bb7dd634d03b7f3d6d560ab331b01e
2143672fde78453fbbc26ab17a166dc5beac8c50
303db0f7ea9e34522986a95416a1d3270e2dcfb2f4eb24e7625835756d5fb3ea
GET /main.70d9403bbaefe6a6.js HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak?o=sharing
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:26 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"5f9010177f95459daa7fc7a6327e146a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m0ZQUPlPhVNbcs2H238f2Tei%2FQVRM4U5U9%2FYPTnnMycVg8FhNDMVb6MqN2HgyQYp%2B8cduBtdjEaiKXUu9cb5l1meIiiKYN8CwimEkpY91cixRMKAV98LfZird7UoGJeUIAU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41a3baedb4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
200 OK 11 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint24:E0:20:DC:DE:E3:A8:D9:A8:17:BA:26:F5:41:32:19:98:D0:30:F3
ValidityMon, 18 Sep 2023 08:25:05 GMT - Mon, 11 Dec 2023 08:25:04 GMT
File type Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data
Hash 1f6d3cf6d38f25d83d95f5a800b8cac3
279f300ca2cbbdf9f5036ef2f438607fbf377daa
796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 14 Oct 2023 11:00:47 GMT
expires: Sun, 13 Oct 2024 11:00:47 GMT
cache-control: public, max-age=31536000
age: 313900
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/redirect/link/static/68451/first-complete-data-leak?origin=&link_origin=
204 No Content 0 B URL OPTIONS HTTP/2 publisher.linkvertise.com/api/v1/redirect/link/static/68451/first-complete-data-leak?origin=&link_origin=
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerGoogle Trust Services LLC
Subjectlinkvertise.com
FingerprintC8:C1:18:E5:D8:BA:9F:85:C3:50:00:20:B5:03:BE:7E:22:16:40:C8
ValiditySun, 08 Oct 2023 05:27:38 GMT - Sat, 06 Jan 2024 05:27:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/redirect/link/static/68451/first-complete-data-leak?origin=&link_origin= HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 18 Oct 2023 02:12:27 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=OUBBa8WBMN5ePVGF85Uah4Fa5sOoefgQST7TGlta; expires=Thu, 17 Oct 2024 02:12:27 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lfDRzNYlZpD3VS6ILpjNIAv9gvhOUKxGU0TySvFWDmiXiS6xDHq%2BUUq%2Bra1PZ5aCZhEjSA3MvN5pAADpDYIJrS0ZQW%2FANP5JwifzgbWtr%2FJ0OwIUNDvasvZ1gIa%2FcRILRCCYJM6JzvDaU9G2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41a90d11b512-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master.html
234 B URL js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master.html
IP
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3a89e4dda29ed81913aa87c318c581ee
d4da096eca60cd7069e11ffd34e4bb195bb70734
d057c168900930935083f50b73f6fdc5246adddeb0a5d2bdc26a36d840067b30
GET /assets/cbjs-2023.10.09-09.27/v2/master.html HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 234
last-modified: Tue, 10 Oct 2023 04:38:57 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: ltfFTZm8vxdNHRh4e9455LquXdlbApwy
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Wed, 18 Oct 2023 02:10:02 GMT
cache-control: max-age=300,public
etag: "3a89e4dda29ed81913aa87c318c581ee"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PGnNE_p04I-MKLnIg5Pg0dyaP-6eB5kjcvBKfZINlc47AXWVEXzhqA==
age: 176
X-Firefox-Spdy: h2
fonts.gstatic.com/s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
200 OK 129 kB URL GET HTTP/2 fonts.gstatic.com/s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint24:E0:20:DC:DE:E3:A8:D9:A8:17:BA:26:F5:41:32:19:98:D0:30:F3
ValidityMon, 18 Sep 2023 08:25:05 GMT - Mon, 11 Dec 2023 08:25:04 GMT
File type Web Open Font Format (Version 2), TrueType, length 128616, version 1.0\012- data
Size 129 kB (128616 bytes)
Hash a4160421d2605545f69a4cd6cd642902
aaae93b146d97737fabe87a6bc741113e6899ad3
4a4dbc62fa335e411b94a532be091c58c0c0c4fa731339f11722577d3cf6443b
GET /s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128616
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Oct 2023 21:09:03 GMT
expires: Sat, 12 Oct 2024 21:09:03 GMT
cache-control: public, max-age=31536000
age: 363804
last-modified: Tue, 07 Mar 2023 19:52:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
linkvertise.com/assets/vendor/thinksuggest
200 OK 3.2 kB URL GET HTTP/3 linkvertise.com/assets/vendor/thinksuggest
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3187ba19933bd63e55cedfc91c7699ad
125d2370075257b7d9b2145fa964bb1e82422036
ec47130da89ee9e183f8de229c5a2dd4ae2de1fc1775433734d7575c9431b729
GET /assets/vendor/thinksuggest HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak?o=sharing
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:27 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
link: <https://www.google.com/>; rel="preconnect", <https://api.bing.com/>; rel="preconnect", <https://lnk.thinksuggest.org/>; rel="preconnect", <https://api.thinksuggest.org/>; rel="preconnect", <https://api.thinksuggest.org/>; rel="preconnect"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XwOJNPwTCdF0lXCt3lfJBmtTZOZyvbBe8uEXp0vPzCZ%2Fn6U9U6R1SSLmd9uzWyLxtFRlongVolVCJLGr4CJ5tKqfDJxLi4qz1EYKNcgsF3vZvvKis8l83zZygQT3yJrHdiE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41a8ac14b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
99 kB URL stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
IP
File type ASCII text, with very long lines (50758)
Hash 67176c242e1bdc20603c878dee836df3
27a71b00383d61ef3c489326b3564d698fc1227c
56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 18 Oct 2023 02:12:26 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: US
cdn-edgestorageid: 674, 718, 718
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 2021-06-08 05:11:08
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: bd9220d732ed0a8d3a55d255ece79162
cdn-cache: HIT
cf-cache-status: HIT
age: 4110387
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 817d41a39972b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
linkvertise.com/scripts.2ac1650af9017f1a.js
68 kB URL linkvertise.com/scripts.2ac1650af9017f1a.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash aeeb653826b5a9fd088e1ee06a2b96c1
69106bbfa7a66268a5b1fcb1f6b3d04a2173535e
be552bb375decb14f391ce0542cda3f83300c4421255eeaddb526d1f6ceac0d4
GET /scripts.2ac1650af9017f1a.js HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak?o=sharing
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:26 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"651d6625f1cd4cd73765c276817f07c2"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P4Xj2TypvHJ5XaD943rrpPdKfs9fjbREvWrZb9ptLX0OF7QxpXC%2BcY5KVo5zOp%2FZDzUvK8OVEh5dcRmi8WiYya900oe%2BjB0Hd14auXzPQI8zjaAQC02cJiDiSD7Q5RQg2qA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41a3baecb4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=46NhGIladwU4PsqSU%2By03v%2F3K8F2GmHJICmXhdi3EM5AZPpt9TFm%2F8EfLmWVEKJe7wdl&X-Linkvertise-UT=xEQRPr8i0PAhOWRDFSlSZPUSY5LABEtEjSqQJ2YmNlbna5xpNm7iIsfAgdKxhLDk
200 OK 0 B URL GET HTTP/3 publisher.linkvertise.com/api/v1/validate-traffic?cheq_response=46NhGIladwU4PsqSU%2By03v%2F3K8F2GmHJICmXhdi3EM5AZPpt9TFm%2F8EfLmWVEKJe7wdl&X-Linkvertise-UT=xEQRPr8i0PAhOWRDFSlSZPUSY5LABEtEjSqQJ2YmNlbna5xpNm7iIsfAgdKxhLDk
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerGoogle Trust Services LLC
Subjectlinkvertise.com
FingerprintC8:C1:18:E5:D8:BA:9F:85:C3:50:00:20:B5:03:BE:7E:22:16:40:C8
ValiditySun, 08 Oct 2023 05:27:38 GMT - Sat, 06 Jan 2024 05:27:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/validate-traffic?cheq_response=46NhGIladwU4PsqSU%2By03v%2F3K8F2GmHJICmXhdi3EM5AZPpt9TFm%2F8EfLmWVEKJe7wdl&X-Linkvertise-UT=xEQRPr8i0PAhOWRDFSlSZPUSY5LABEtEjSqQJ2YmNlbna5xpNm7iIsfAgdKxhLDk HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 18 Oct 2023 02:12:28 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=3C60c6Fyt4RLzY8FIy8LhoBBxhrZ5E2HoSnmzpUe; expires=Thu, 17 Oct 2024 02:12:28 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yQQu%2FqikgQaUPBrBq1H5CWMIIay0VOICGhoiyUSNLaDenr9vg3YKYU0f%2Flr6jweWkBLgiISH5Y8K5wdarQ%2FoLUtZSQgGsRYfjnb0IH%2FRU1VlDh1sJoE%2FjXRU8EfnKQLpBEQjUyeC5CWBwfHG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41ac8de4b512-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
linkvertise.chargebeestaticv2.com/api/internal/1697594400/retrieve_js_info
200 OK 0 B URL GET HTTP/2 linkvertise.chargebeestaticv2.com/api/internal/1697594400/retrieve_js_info
IP
Requested by https://js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master.html#linkvertise.com
Certificate IssuerAmazon
Subject*.chargebeestaticv2.com
Fingerprint34:17:8E:25:49:6C:47:0F:7A:39:C3:CE:61:BC:F6:75:C6:63:D4:78
ValiditySun, 30 Apr 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/internal/1697594400/retrieve_js_info HTTP/1.1
Host: linkvertise.chargebeestaticv2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-requested-with
Referer: https://js.chargebee.com/
Origin: https://js.chargebee.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 202 Accepted
content-length: 0
date: Wed, 18 Oct 2023 02:12:28 GMT
cache-control: max-age=0, must-revalidate, public, s-maxage=10800
expires: Thu, 01 Jan 1970 00:00:00 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
pragma: no-cache
access-control-allow-origin: https://js.chargebee.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token
access-control-allow-methods: GET, OPTIONS, POST
server: ChargeBee
x-cache: Miss from cloudfront
via: 1.1 ed87681648230d81cfe4a69364ab730c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: u9nvFdZWdGcmGaT2a8BzLOOtSwWahPyxo0HJR2MEj-FiEcLrjmIKpA==
X-Firefox-Spdy: h2
linkvertise.chargebeestaticv2.com/api/internal/1697594400/retrieve_js_info
200 OK 603 B URL GET HTTP/2 linkvertise.chargebeestaticv2.com/api/internal/1697594400/retrieve_js_info
IP
Requested by https://js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master.html#linkvertise.com
Certificate IssuerAmazon
Subject*.chargebeestaticv2.com
Fingerprint34:17:8E:25:49:6C:47:0F:7A:39:C3:CE:61:BC:F6:75:C6:63:D4:78
ValiditySun, 30 Apr 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (603), with no line terminators
Hash 6436103cec9b885fe419fe020310b08a
463a6d165803f1d77f97c843f9dd58d2d23419d7
8c23fb398b977ff4e9bf0193940d5555ed281580087b091f6e5d333766a0dcdb
GET /api/internal/1697594400/retrieve_js_info HTTP/1.1
Host: linkvertise.chargebeestaticv2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://js.chargebee.com
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=utf-8
content-length: 603
date: Wed, 18 Oct 2023 02:10:47 GMT
cache-control: max-age=0, must-revalidate, public, s-maxage=3600
expires: Thu, 01 Jan 1970 00:00:00 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: https://js.chargebee.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token
access-control-allow-methods: GET, OPTIONS, POST
server: ChargeBee
x-cache: Hit from cloudfront
via: 1.1 ed87681648230d81cfe4a69364ab730c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: T9u3KCpx_45ydQSWa8WSMZ-LdRfeV3EGGsVp9PvMdukZjbAk2cjJdg==
age: 101
X-Firefox-Spdy: h2
linkvertise.com/68451/first-complete-data-leak?o=sharing
200 OK 31 kB URL User Request GET HTTP/2 linkvertise.com/68451/first-complete-data-leak?o=sharing
IP
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (12139)
Hash 764e69e50b123cb8d7a8ab8d4ccef756
e6a398324473ef00891cf6bcb27b57979004eb4f
3c11125d02f98706dac7dd7feea79f2bdfe99ee81df261123768cf7d3a5a7035
GET /68451/first-complete-data-leak?o=sharing HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 18 Oct 2023 02:12:26 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4AnAyDWlUmgMfWesdvH2nDHaIspcnt%2Fhd0oz68MGi6gZt1p15vJjGPayZ1Z2bKog61cRJClI3VrX4DXnMQdtNScRy14vbwBvnjbYJcu4tbBKNA9RtErCa59xqnmoybcvbz8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41a13ba90b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
linkvertise.com/android-icon-192x192.png
200 OK 15 kB URL GET HTTP/3 linkvertise.com/android-icon-192x192.png
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash ed46a7ccdddb0893ada7535c3924c3f4
562c8354b302540427a85381bdb663c66aba3cbd
a6717eaed7cb05dddfdc4803fd85ef5cf6a96e0cde11800961b6f713f460d302
GET /android-icon-192x192.png HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak/1
DNT: 1
Connection: keep-alive
Cookie: _cq_duid=1.1697595148.d3Ihshb4hZeiJuuQ; _cq_suid=1.1697595148.ARYPE3pYeG46uDOX; _ga_7DRMH8RP03=GS1.1.1697595148.1.0.1697595148.0.0.0; _ga=GA1.1.130272104.1697595149
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:28 GMT
content-type: image/png
content-length: 15148
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "319c9c02c4fd920a11cdb515dc5e0616"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y7%2FH4wbYmfF3VRaBi930afU8LpTyH840NG8BNdkriYQsooyb20tDYPKwgvF3WAuQflPC9WPt7qXViyEdAQO%2FA0fvEBjwOLdBdOpvGCkArwTp3q3uz67aXjfUzRc76byM4qM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41aded6fb4f9-OSL
alt-svc: h3=":443"; ma=86400
linkvertise.com/favicon-16x16.png
200 OK 1.6 kB URL GET HTTP/3 linkvertise.com/favicon-16x16.png
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash beace267eacc0385dcc7ccdc2418bf0e
96605a6079541051d1dae94f0d384fd710c0a83a
9de2bf1e2e014393595af18eda66ca3b7936c557013954d7ca580eaaaf62a487
GET /favicon-16x16.png HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak/1
DNT: 1
Connection: keep-alive
Cookie: _cq_duid=1.1697595148.d3Ihshb4hZeiJuuQ; _cq_suid=1.1697595148.ARYPE3pYeG46uDOX; _ga_7DRMH8RP03=GS1.1.1697595148.1.0.1697595148.0.0.0; _ga=GA1.1.130272104.1697595149
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:28 GMT
content-type: image/png
content-length: 1618
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "5d359af3dd245fbd87a14af244f84fa8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z9lQwbQOX3RyNQJTTP8GW8HmO3J5vtskUkOr6b3tl1lmrZgtvGQMqCHBRipT44AGN1iaR4aHJD%2BkIZE3B2Y0JRN0%2BxtF1cEezXb7E3ImNlimCPxnn%2F4q3ESC%2BswR2rk7jpM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41aded70b4f9-OSL
alt-svc: h3=":443"; ma=86400
js.chargebee.com/v2/chargebee.js
200 OK 129 kB URL GET HTTP/2 js.chargebee.com/v2/chargebee.js
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Size 129 kB (129034 bytes)
Hash d34abdb337b9dd233b9c91b5e6b4cab2
5319c85dc71c7fe851fd3f89f80eae7a0355ef11
b23859b5f066238beb355a599c9a60079d0486e8e6a42c7f526eb7af5f15db48
GET /v2/chargebee.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Tue, 10 Oct 2023 04:38:55 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: Y1W0mNP802d6wq5B3.fkXBxIwj_jPfAL
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Wed, 18 Oct 2023 02:12:26 GMT
cache-control: max-age=300,public
etag: W/"9b1851a2863f88846edfd7a81e7edbff"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NlqEXLZe3lTxRN44S6CwwnfeYXcE6OD0oI6ZoRMb113tDBxhVSt-Ow==
age: 25
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/account
200 OK 122 kB URL GET HTTP/2 publisher.linkvertise.com/api/v1/account
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerGoogle Trust Services LLC
Subjectlinkvertise.com
FingerprintC8:C1:18:E5:D8:BA:9F:85:C3:50:00:20:B5:03:BE:7E:22:16:40:C8
ValiditySun, 08 Oct 2023 05:27:38 GMT - Sat, 06 Jan 2024 05:27:37 GMT
File type JSON data\012- , ASCII text, with very long lines (922), with no line terminators
Size 122 kB (122064 bytes)
Hash 209915fd88de9b2e24c293f71493e05f
491f93cbb39986d33759fd94046ed7a7a9e78f90
3d8841cd819ae2b7dbe8e6591b5f4fcd861ef69fc98a89759e73f09c084f7c0d
GET /api/v1/account HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Oct 2023 02:12:27 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: laravel_session=at9laLaKVFeVkGmmF0ZghBZ0Mm94gcLMOYGRsBoZ; expires=Thu, 17 Oct 2024 02:12:27 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yq0WASSF%2Bdf5nyQTiufUqHXZ8ihTGFgd038IejdMDaL7C%2FpqSMC9RuMHXDYl1SLKefxzkOvUWKuFKSXpWrOPt7RH1Hh0EsCJR%2BS5NSMm2CZMRn8PKqbpGrmvZrm%2FYJnckcZ%2BDPSQlTzCysCB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41a93d21b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
newassets.hcaptcha.com/captcha/v1/01e0b54/static/hcaptcha.html
690 B URL newassets.hcaptcha.com/captcha/v1/01e0b54/static/hcaptcha.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1165)
Hash ee9b5ca8f56d2ee20bbc45ee94a570aa
495808debff64e481886aa74dc0b263b698912bd
7a06ce5f5e81fa0fef0ec3d13e5c1046f216197820b0527c02e29853730fdc24
GET /captcha/v1/01e0b54/static/hcaptcha.html HTTP/1.1
Host: newassets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:28 GMT
content-type: text/html
cf-ray: 817d41af191eb4ff-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 17
cache-control: max-age=1209600
last-modified: Tue, 17 Oct 2023 12:43:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
cross-origin-embedder-policy: credentialless
cross-origin-resource-policy: cross-origin
x-amz-cf-id: -v8YrkTlGAARcoJxjyo7CtwUbR-on0X_Nok0xzjc3CmkYUJDMwy5Yw==
x-amz-cf-pop: OSL50-P1
x-amz-server-side-encryption: AES256
x-amz-version-id: RQtAjtAwmwx.FFYcNhtaefzx7Qlex2Ot
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
newassets.hcaptcha.com/captcha/v1/01e0b54/static/hcaptcha.html
690 B URL newassets.hcaptcha.com/captcha/v1/01e0b54/static/hcaptcha.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1165)
Hash ee9b5ca8f56d2ee20bbc45ee94a570aa
495808debff64e481886aa74dc0b263b698912bd
7a06ce5f5e81fa0fef0ec3d13e5c1046f216197820b0527c02e29853730fdc24
GET /captcha/v1/01e0b54/static/hcaptcha.html HTTP/1.1
Host: newassets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:28 GMT
content-type: text/html
cf-ray: 817d41af191fb4ff-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 17
cache-control: max-age=1209600
last-modified: Tue, 17 Oct 2023 12:43:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
cross-origin-embedder-policy: credentialless
cross-origin-resource-policy: cross-origin
x-amz-cf-id: -v8YrkTlGAARcoJxjyo7CtwUbR-on0X_Nok0xzjc3CmkYUJDMwy5Yw==
x-amz-cf-pop: OSL50-P1
x-amz-server-side-encryption: AES256
x-amz-version-id: RQtAjtAwmwx.FFYcNhtaefzx7Qlex2Ot
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
linkvertise.com/assets/img/logo-white-long.png
200 OK 30 kB URL GET HTTP/3 linkvertise.com/assets/img/logo-white-long.png
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
File type PNG image data, 1169 x 174, 8-bit/color RGBA, non-interlaced\012- data
Hash c48dad5f984e1d7ecedb89e6e73e94a7
843e55eddb99a9800d779cb9a860eb0a1b5e3821
304476467e3fc9e244f8d986a405beee84da3e81646c64c8476d70e64e8c7ad7
GET /assets/img/logo-white-long.png HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak/1
DNT: 1
Connection: keep-alive
Cookie: _cq_duid=1.1697595148.d3Ihshb4hZeiJuuQ; _cq_suid=1.1697595148.ARYPE3pYeG46uDOX; _ga_7DRMH8RP03=GS1.1.1697595148.1.0.1697595149.0.0.0; _ga=GA1.1.130272104.1697595149; _cheq_rti=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; laravel_session=yGzVSgspOsLkxD2uS3LKQ4HNw6tWs7GBmI0ERQKL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:29 GMT
content-type: image/png
content-length: 30173
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "70375496b2d5eb6ebf24219d4eb56608"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PznkCQIYbwVFKxmzkJdmL5%2F33j14kQBfIa1yXh6GUdnFJpAbKH4yGS3If2RxWjQbBPG7BmL%2BEQsPNUukkSrFRW6wPRZHHnvfe3IXLV0%2F5vK9dqU%2Bqcuw98P0sAuRQ%2Bu4iMc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41b28ec2b4f9-OSL
alt-svc: h3=":443"; ma=86400
linkvertise.com/assets/img/logo-white-square.png
13 kB URL linkvertise.com/assets/img/logo-white-square.png
IP
File type PNG image data, 292 x 292, 8-bit/color RGBA, non-interlaced\012- data
Hash fa602f2b99d57e37a0dfdbb56c83b35d
6c1b04568aea6972e84be6075ef992938a551953
1283c45f0e6af2ad475ea0e45924d26a2b7b961bae669bfa904a78b272c1a1b0
GET /assets/img/logo-white-square.png HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak/1
DNT: 1
Connection: keep-alive
Cookie: _cq_duid=1.1697595148.d3Ihshb4hZeiJuuQ; _cq_suid=1.1697595148.ARYPE3pYeG46uDOX; _ga_7DRMH8RP03=GS1.1.1697595148.1.0.1697595149.0.0.0; _ga=GA1.1.130272104.1697595149; _cheq_rti=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; laravel_session=yGzVSgspOsLkxD2uS3LKQ4HNw6tWs7GBmI0ERQKL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:29 GMT
content-type: image/png
content-length: 12712
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "be27dc8ad17aac673f1646743d1ec608"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MHAXXSyIxHyY3hkKdvXyN%2FvzUEbkMXFvdYthqXX2mUsiLC93yARPfFhMoWvxEheBN73bvIU2Anme88i3T31W%2BnIZVM%2BLVBfRmXWaLN3Oe475Cjb7%2Fz6CMZl7oZMczvnwECs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41b28ec1b4f9-OSL
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
200 OK 11 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint24:E0:20:DC:DE:E3:A8:D9:A8:17:BA:26:F5:41:32:19:98:D0:30:F3
ValidityMon, 18 Sep 2023 08:25:05 GMT - Mon, 11 Dec 2023 08:25:04 GMT
File type Web Open Font Format (Version 2), TrueType, length 11072, version 1.0\012- data
Hash e7df3d0942815909add8f9d0c40d00d9
cf5032eea3399a58870e8a05e629b006a8c7c3c7
bce2f309470952b7affa62ff4d91b454334c68cefa541429b502904d20696875
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Oct 2023 14:42:43 GMT
expires: Sat, 12 Oct 2024 14:42:43 GMT
cache-control: public, max-age=31536000
age: 386986
last-modified: Wed, 11 May 2022 19:24:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4AMP6lQ.woff2
200 OK 11 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4AMP6lQ.woff2
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint24:E0:20:DC:DE:E3:A8:D9:A8:17:BA:26:F5:41:32:19:98:D0:30:F3
ValidityMon, 18 Sep 2023 08:25:05 GMT - Mon, 11 Dec 2023 08:25:04 GMT
File type Web Open Font Format (Version 2), TrueType, length 11160, version 1.0\012- data
Hash 0772a436bbaaaf4381e9d87bab168217
1ed288702dcc1e94f9cb91348ac7b6fb7448a87b
8d3251f4935896ec37ada153d20d0109828ad08523127f136415355b3fca2dcf
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4AMP6lQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11160
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Oct 2023 07:39:48 GMT
expires: Thu, 10 Oct 2024 07:39:48 GMT
cache-control: public, max-age=31536000
age: 585161
last-modified: Wed, 11 May 2022 19:24:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
200 OK 11 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint24:E0:20:DC:DE:E3:A8:D9:A8:17:BA:26:F5:41:32:19:98:D0:30:F3
ValidityMon, 18 Sep 2023 08:25:05 GMT - Mon, 11 Dec 2023 08:25:04 GMT
File type Web Open Font Format (Version 2), TrueType, length 11072, version 1.0\012- data
Hash e7df3d0942815909add8f9d0c40d00d9
cf5032eea3399a58870e8a05e629b006a8c7c3c7
bce2f309470952b7affa62ff4d91b454334c68cefa541429b502904d20696875
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Oct 2023 14:42:43 GMT
expires: Sat, 12 Oct 2024 14:42:43 GMT
cache-control: public, max-age=31536000
age: 386986
last-modified: Wed, 11 May 2022 19:24:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
newassets.hcaptcha.com/captcha/v1/01e0b54/hcaptcha.js
200 OK 335 kB URL GET HTTP/3 newassets.hcaptcha.com/captcha/v1/01e0b54/hcaptcha.js
IP
Requested by https://newassets.hcaptcha.com/captcha/v1/01e0b54/static/hcaptcha.html#frame=checkbox&id=0z4j65bqk1te&host=js.chargebee.com&sentry=true&reportapi=https%3A%2F%2Faccounts.hcaptcha.com&recaptchacompat=true&custom=false&hl=en&tplinks=on&pstissuer=https%3A%2F%2Fpst-issuer.hcaptcha.com&sitekey=dc26aa54-4902-437f-80e2-a22947a6c01b&theme=light&origin=https%3A%2F%2Fjs.chargebee.com
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintD9:E8:78:82:B2:9B:0F:1B:5F:0B:B7:EF:93:24:6D:07:2D:83:BA:24
ValiditySat, 15 Apr 2023 00:00:00 GMT - Sun, 14 Apr 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (41625)
Size 335 kB (335014 bytes)
Hash 9a04273a778016a45b5c888aea4856e3
57b8efcdc0c6ea2b28fe87add2ffe2e2dd5dd348
5a622c8804625632994061558eac17eee0af0fa4b757ce1d83bd14007eb43c01
GET /captcha/v1/01e0b54/hcaptcha.js HTTP/1.1
Host: newassets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/captcha/v1/01e0b54/static/hcaptcha.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:28 GMT
content-type: application/javascript
cf-ray: 817d41afd959b4ff-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 20
cache-control: max-age=1209600
etag: W/"4365bef5ef014788dbfae8e22a025a74"
last-modified: Tue, 17 Oct 2023 12:43:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
cross-origin-resource-policy: cross-origin
x-amz-cf-id: o2pYLkgTDQEAREWwonXyIQkNvr2L0ccXJXAJkxc_xlNHLOTkxhQjeA==
x-amz-cf-pop: OSL50-P1
x-amz-server-side-encryption: AES256
x-amz-version-id: zBXFRZdgTjKNpcpyB_Vkk81OZsZOZqkY
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
obseu.bizseasky.com/mon
200 OK 0 B IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerZeroSSL
Subject*.bizseasky.com
Fingerprint88:AC:DE:DD:23:FA:87:A4:0C:E6:F9:6A:CE:B8:62:B1:C6:D0:AA:95
ValiditySat, 23 Sep 2023 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obseu.bizseasky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2115
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=980d631988a5530a2dfb0d65fcab4fdc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://linkvertise.com
content-type: application/json
date: Wed, 18 Oct 2023 02:12:29 GMT
content-length: 0
X-Firefox-Spdy: h2
linkvertise.com/assets/img/logo-white-square.png
13 kB URL linkvertise.com/assets/img/logo-white-square.png
IP
File type PNG image data, 292 x 292, 8-bit/color RGBA, non-interlaced\012- data
Hash fa602f2b99d57e37a0dfdbb56c83b35d
6c1b04568aea6972e84be6075ef992938a551953
1283c45f0e6af2ad475ea0e45924d26a2b7b961bae669bfa904a78b272c1a1b0
GET /assets/img/logo-white-square.png HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak/1
DNT: 1
Connection: keep-alive
Cookie: _cq_duid=1.1697595148.d3Ihshb4hZeiJuuQ; _cq_suid=1.1697595148.ARYPE3pYeG46uDOX; _ga_7DRMH8RP03=GS1.1.1697595148.1.0.1697595149.0.0.0; _ga=GA1.1.130272104.1697595149; _cheq_rti=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; laravel_session=yGzVSgspOsLkxD2uS3LKQ4HNw6tWs7GBmI0ERQKL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:30 GMT
content-type: image/png
content-length: 12712
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "be27dc8ad17aac673f1646743d1ec608"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vkeo4RKN7cNZed9IvcU%2Bvq36t3lIu%2BmmKv79mUuTl%2FGb%2FShNjioxqyRo7xpohpFgFr%2FKb7RP8K3xK1KzBHalFVv8jArBxtGHpgkBKDP9%2B96M92GqkXswRDnFkq70hxddRxs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41bbd986b4f9-OSL
alt-svc: h3=":443"; ma=86400
obseu.bizseasky.com/mon
200 OK 0 B IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerZeroSSL
Subject*.bizseasky.com
Fingerprint88:AC:DE:DD:23:FA:87:A4:0C:E6:F9:6A:CE:B8:62:B1:C6:D0:AA:95
ValiditySat, 23 Sep 2023 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obseu.bizseasky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2115
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=980d631988a5530a2dfb0d65fcab4fdc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://linkvertise.com
content-type: application/json
date: Wed, 18 Oct 2023 02:12:31 GMT
content-length: 0
X-Firefox-Spdy: h2
obseu.bizseasky.com/mon
200 OK 0 B IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerZeroSSL
Subject*.bizseasky.com
Fingerprint88:AC:DE:DD:23:FA:87:A4:0C:E6:F9:6A:CE:B8:62:B1:C6:D0:AA:95
ValiditySat, 23 Sep 2023 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obseu.bizseasky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2115
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=980d631988a5530a2dfb0d65fcab4fdc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://linkvertise.com
content-type: application/json
date: Wed, 18 Oct 2023 02:12:33 GMT
content-length: 0
X-Firefox-Spdy: h2
obseu.bizseasky.com/mon
200 OK 0 B IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerZeroSSL
Subject*.bizseasky.com
Fingerprint88:AC:DE:DD:23:FA:87:A4:0C:E6:F9:6A:CE:B8:62:B1:C6:D0:AA:95
ValiditySat, 23 Sep 2023 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obseu.bizseasky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2118
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=980d631988a5530a2dfb0d65fcab4fdc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://linkvertise.com
content-type: application/json
date: Wed, 18 Oct 2023 02:12:38 GMT
content-length: 0
X-Firefox-Spdy: h2
obseu.bizseasky.com/mon
200 OK 0 B IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerZeroSSL
Subject*.bizseasky.com
Fingerprint88:AC:DE:DD:23:FA:87:A4:0C:E6:F9:6A:CE:B8:62:B1:C6:D0:AA:95
ValiditySat, 23 Sep 2023 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obseu.bizseasky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2118
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=980d631988a5530a2dfb0d65fcab4fdc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://linkvertise.com
content-type: application/json
date: Wed, 18 Oct 2023 02:12:43 GMT
content-length: 0
X-Firefox-Spdy: h2
linkvertise.com/assets/vendor/thinksuggest.html
308 Permanent Redirect 5.7 kB URL GET HTTP/3 linkvertise.com/assets/vendor/thinksuggest.html
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5957), with no line terminators
Hash c8e5ce5062d5ca3f13a7a9d673befb9b
40c1b3ad158a4d0870b9a3c51807427de8cb1dc8
eff45eded70288392fc04fc971d4196f15757435d1273068f1f3037c21bfc11d
GET /assets/vendor/thinksuggest.html HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak?o=sharing
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 308 Permanent Redirect
date: Wed, 18 Oct 2023 02:12:27 GMT
content-length: 0
location: /assets/vendor/thinksuggest
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f9i%2Bt4aG2pfsUf6kcXgHxZd5CBijxCP3q4lI5LKPHSPuJUZIvY%2BllKtK3DpiuuLEfQH5SYyD4CmDzMOcCogeD4DyZCRhYTfKCgDtxXPDGNtTLMckD7w%2F535LLpqWy5LrTfg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41a87c04b4f9-OSL
alt-svc: h3=":443"; ma=86400
publisher.linkvertise.com/api/v1/redirect/link/68451/first-complete-data-leak/traffic-validationv2?X-Linkvertise-UT=xEQRPr8i0PAhOWRDFSlSZPUSY5LABEtEjSqQJ2YmNlbna5xpNm7iIsfAgdKxhLDk
403 Forbidden 107 B URL POST HTTP/3 publisher.linkvertise.com/api/v1/redirect/link/68451/first-complete-data-leak/traffic-validationv2?X-Linkvertise-UT=xEQRPr8i0PAhOWRDFSlSZPUSY5LABEtEjSqQJ2YmNlbna5xpNm7iIsfAgdKxhLDk
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerGoogle Trust Services LLC
Subjectlinkvertise.com
FingerprintC8:C1:18:E5:D8:BA:9F:85:C3:50:00:20:B5:03:BE:7E:22:16:40:C8
ValiditySun, 08 Oct 2023 05:27:38 GMT - Sat, 06 Jan 2024 05:27:37 GMT
File type ASCII text, with no line terminators
Hash 2d1601b8408852f9ec6317ce0a914fa0
8290f9eb28d63cebcfba9b24696d2676a29eaa58
f2a446d4f42e082b132aa07bee2635bc7d7595e185de93ae2e50d261dde83c4f
POST /api/v1/redirect/link/68451/first-complete-data-leak/traffic-validationv2?X-Linkvertise-UT=xEQRPr8i0PAhOWRDFSlSZPUSY5LABEtEjSqQJ2YmNlbna5xpNm7iIsfAgdKxhLDk HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
Content-Type: application/json
cqreferrer: https://linkvertise.com/68451/first-complete-data-leak/1
Content-Length: 92
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Cookie: _cq_duid=1.1697595148.d3Ihshb4hZeiJuuQ; _cq_suid=1.1697595148.ARYPE3pYeG46uDOX; _ga_7DRMH8RP03=GS1.1.1697595148.1.0.1697595149.0.0.0; _ga=GA1.1.130272104.1697595149
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 18 Oct 2023 02:12:29 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin
access-control-allow-credentials: true
set-cookie: _cheq_rti=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; expires=Thu, 17 Oct 2024 03:19:09 GMT; Max-Age=31540000; path=/; domain=.linkvertise.com
laravel_session=yGzVSgspOsLkxD2uS3LKQ4HNw6tWs7GBmI0ERQKL; expires=Thu, 17 Oct 2024 02:12:29 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BOTxIoe0nMjI%2BZGZ5ngG%2B4tAPMfXp%2FSlXDuf1nxQrFg4nf4Qz%2BJZMpv%2FF%2FD3qXBBBBzcD9RKqBvjVYgfk4G33kOyajtUE2StOzORAq6%2FYQ5bGx%2BeNbNckjMKRRkOKGycilfYhC7HHqQS8AoN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41b02ba1b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
obseu.bizseasky.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F68451%2Ffirst-complete-data-leak%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1697595148691&hl=4&op=0&ag=585317903&rand=548879790650982119072169055787229611281061012770675096115905062810888982595101416991&fs=1280x1024&fst=1280x1024&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=lTRdrHNpYw&pto=1623&ver=56&gac=-&mei=&ap=&fe=1&duid=1.1697595148.d3Ihshb4hZeiJuuQ&suid=1.1697595148.ARYPE3pYeG46uDOX&tuid=1.1697595148.4tId9FYMjXrCzGyG&fbc=->m=W10%3D&it=59%2C1173%2C72&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
200 OK 3.1 kB URL GET HTTP/2 obseu.bizseasky.com/ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F68451%2Ffirst-complete-data-leak%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1697595148691&hl=4&op=0&ag=585317903&rand=548879790650982119072169055787229611281061012770675096115905062810888982595101416991&fs=1280x1024&fst=1280x1024&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=lTRdrHNpYw&pto=1623&ver=56&gac=-&mei=&ap=&fe=1&duid=1.1697595148.d3Ihshb4hZeiJuuQ&suid=1.1697595148.ARYPE3pYeG46uDOX&tuid=1.1697595148.4tId9FYMjXrCzGyG&fbc=->m=W10%3D&it=59%2C1173%2C72&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerZeroSSL
Subject*.bizseasky.com
Fingerprint88:AC:DE:DD:23:FA:87:A4:0C:E6:F9:6A:CE:B8:62:B1:C6:D0:AA:95
ValiditySat, 23 Sep 2023 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (3097), with no line terminators
Hash d4d9a5008c347ef606171933e3e53831
9aeb10b32f60bf475751e83fbdafff726ef43347
f80273a51d31496769ac5576709aeb8692b38359af697c1de4a16da271b573b7
GET /ct?id=14473&url=https%3A%2F%2Flinkvertise.com%2F68451%2Ffirst-complete-data-leak%2F1&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1697595148691&hl=4&op=0&ag=585317903&rand=548879790650982119072169055787229611281061012770675096115905062810888982595101416991&fs=1280x1024&fst=1280x1024&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=lTRdrHNpYw&pto=1623&ver=56&gac=-&mei=&ap=&fe=1&duid=1.1697595148.d3Ihshb4hZeiJuuQ&suid=1.1697595148.ARYPE3pYeG46uDOX&tuid=1.1697595148.4tId9FYMjXrCzGyG&fbc=->m=W10%3D&it=59%2C1173%2C72&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: obseu.bizseasky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Wed, 18 Oct 2023 02:12:28 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=980d631988a5530a2dfb0d65fcab4fdc; Max-Age=29030400; Path=/; Expires=Wed, 18 Sep 2024 02:12:28 GMT; HttpOnly; Secure; SameSite=None
content-length: 1069
X-Firefox-Spdy: h2
linkvertise.com/assets/img/exclusive_content_240dp.svg
200 OK 1.1 kB URL GET HTTP/3 linkvertise.com/assets/img/exclusive_content_240dp.svg
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
File type SVG Scalable Vector Graphics image\012- XML document text\012- HTML document, ASCII text, with very long lines (1204), with no line terminators
Hash da88d65cafd0a706383578fb852b9e7f
bd41ff7aea8ae2a676997c783f93aea914c22ae7
86b89313baec7cf1689b49c4ef38798e9d49bf6df06793b4929525e46c22dd3a
GET /assets/img/exclusive_content_240dp.svg HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak/1
DNT: 1
Connection: keep-alive
Cookie: _cq_duid=1.1697595148.d3Ihshb4hZeiJuuQ; _cq_suid=1.1697595148.ARYPE3pYeG46uDOX; _ga_7DRMH8RP03=GS1.1.1697595148.1.0.1697595149.0.0.0; _ga=GA1.1.130272104.1697595149; _cheq_rti=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; laravel_session=yGzVSgspOsLkxD2uS3LKQ4HNw6tWs7GBmI0ERQKL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:29 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"9bd4544cddb005763bb71641b850f877"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZgTga1hK8XZoqc6VtDaLS9hx833SZEaLPRlLWlG4ZPoZRaiwcXhy4mxXMyYZiTWEpLZCa5UmJ%2FkMwirTj6ojJspKyyYUdNu%2BstnT4PB4Vm7I7Ji%2FEW3RgLtGOBvt0qH6BVE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41b25eb9b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
euob.bizseasky.com/sxp/i/df82c4ef6536e4dee60601280bc80588.js?id=14473
200 OK 100 kB URL GET HTTP/2 euob.bizseasky.com/sxp/i/df82c4ef6536e4dee60601280bc80588.js?id=14473
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerAmazon
Subject*.bizseasky.com
Fingerprint5C:67:36:C5:96:9F:17:D2:24:94:64:D1:B0:06:01:4A:BA:C3:A2:5D
ValidityTue, 18 Jul 2023 00:00:00 GMT - Fri, 16 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sxp/i/df82c4ef6536e4dee60601280bc80588.js?id=14473 HTTP/1.1
Host: euob.bizseasky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 36127
content-encoding: gzip
etag: "184f1-31eP3UORxK37T3QzxOW2xsslNp4"
server: Caddy
cache-control: max-age=43200
date: Tue, 17 Oct 2023 18:29:51 GMT
expires: Wed, 18 Oct 2023 06:29:51 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gqCMP6KwG-XYVmpa2s6wk5x3evEtMh1jarLQ68jaL34g45l66cIkXQ==
age: 27756
X-Firefox-Spdy: h2
js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/187-72e8871342e78a6ca345.js
200 OK 2.9 kB URL GET HTTP/2 js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/187-72e8871342e78a6ca345.js
IP
Requested by https://js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master.html#linkvertise.com
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (2932), with no line terminators
Hash 7b539b82c8974e94ca4444ce19d484ea
efd20a90f3b44ed79b7c15bb1b665d51a4c2aea5
74250f91305dfb7b595d5b98ce848600ce7eeec2de7b581d16021fa194b6873a
GET /assets/cbjs-2023.10.09-09.27/v2/187-72e8871342e78a6ca345.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Tue, 10 Oct 2023 04:38:55 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: M84Xzio9SDgofBZxrvkfhN6tF0a08ka8
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Wed, 18 Oct 2023 02:10:06 GMT
cache-control: max-age=300,public
etag: W/"a5cf5d1eba8e513552fb65caf42951c4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8T_iPocJLo4yfN31VmC60kDJccD1u66bgHXIHq2M_mvCyfXAtoo34g==
age: 173
X-Firefox-Spdy: h2
obseu.bizseasky.com/tracker/tc_imp.gif?e=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&cri=lTRdrHNpYw&ts=234&cb=1697595148926
200 OK 43 B URL GET HTTP/2 obseu.bizseasky.com/tracker/tc_imp.gif?e=37dfbd8ee84e001363e9c23cef468e959225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5f15896a2417071a10acf9f29f67408a83dd012f3e12f67026018238df33c550665723c754050966550dc2e83f1c77be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac7e7d7e85d33e417caff29a029dc04c2548e1562e82704f91d580435db3e7bf584e3eb65ef7ced06dd13f25e072afb8261267365588464979d0bec1677add2a3285f292584857d7682d5581d294275010da78928367b56a3fd4c7b85f9a62c99e15860013ef5f3b79e9a75b8dcc248ae14c04a347095acdef5b53e8fc3be32c9684884bb8d755b43e93230f58f126ceaddfa6bd95fbd05f6994b9d128b932a806d28c2c8638978cc87b9a890eef10538a27aa4b1fb354376e98220cfea50b9415a13844f5097aeae888fbc8570907a9edea28b38b62f3574947f2f938481493790b033eb4fa79247d62fef7c484c479a24ad0c9c89ee73bb9333c21ff184d1d727d619482db31e11505f4775c0a0759f439494c76be5d025f9900dd489eef26ba4b6a7072631c8a71e54d5f751634dafbeb065b82793ea5cedfc2aae61a1339d4fc912d7a820da1c27e5b28f603f3b7c1e290d580bb7e28b6ace1fb6454e412195a85d8bdd4158ecb2cdbba26dc4e4e3f98ffdaef5435168f83edef5013c871b0f4e8e1918340de467bd355c9bbfd3699861c9248da22bc8b108987f073f51601573e9c3a4b2690c519c5d31eabbcba7a28e165ccaa2b76f97d1727dd1d517356cf895d14825f35ed156e9739e65f350a88264b1cd20fe89ca92ce5568848d2771c032ff9fbaaa0a8e38655254e8371001f5fa00d18e419dc0c49646c7869b215a6205ac37af19b815efd07b9c335f3301673f6deb04cbdd6f49ab3083f4a427d3ce519e2b30fc536e26c1ad8d5646fc28b6f750a85b6e5311e5657b90a5813997146bd7&cri=lTRdrHNpYw&ts=234&cb=1697595148926
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerZeroSSL
Subject*.bizseasky.com
Fingerprint88:AC:DE:DD:23:FA:87:A4:0C:E6:F9:6A:CE:B8:62:B1:C6:D0:AA:95
ValiditySat, 23 Sep 2023 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=lTRdrHNpYw&ts=234&cb=1697595148926 HTTP/1.1
Host: obseu.bizseasky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Cookie: cg_uuid=980d631988a5530a2dfb0d65fcab4fdc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Wed, 18 Oct 2023 02:12:28 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
200 OK 141 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (65324)
Size 141 kB (140936 bytes)
Hash 04aca1f4cd3ec3c05a75a879f3be75a3
675fcf28f9fbf37139d3b2c0b676f96f601a4203
7928b5ab63c6e89ee0ee26f5ef201a58c72baf91abb688580a1aa26eb57b3c11
GET /bootstrap/4.1.3/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 18 Oct 2023 02:12:26 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 12/11/2021 23:51:22
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 873d47ad8054cd5f5d4a8793d245560e
cdn-cache: HIT
cf-cache-status: HIT
age: 4107633
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 817d41a39971b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
linkvertise.com/styles.02d1fab0b1e229ba.css
200 OK 419 kB URL GET HTTP/3 linkvertise.com/styles.02d1fab0b1e229ba.css
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
File type ASCII text, with very long lines (58011)
Size 419 kB (418743 bytes)
Hash 7dbc33badca000b2ea170fd81dd7e3cd
dd00bcc4b895a8d27ff88589337da5e5357bd36f
0d6d5479225dcee205759f3dba7067fb481edc5e819f24cc248d9fc00bc4e9b4
GET /styles.02d1fab0b1e229ba.css HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak?o=sharing
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:27 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"c3f3e8efa9d71aed190c8c5fe7414a90"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4X%2BbJLkKNnpguxTtEhNSJPC5NDsiNziOaMuKfLY3f%2FCYX6gwiJuyrmk0WeDtSKDG55CErgPlL3hBO%2Fw0VOeax7PvjaMQwA46BNtS%2F7milmOXjuJmip89DQ4QT%2F4SKyjq340%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41aa2c76b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.thinksuggest.org/simple/suggest-min-unpacked.js
200 OK 52 kB URL GET HTTP/1.1 www.thinksuggest.org/simple/suggest-min-unpacked.js
IP
ASN #24940 Hetzner Online GmbH
Requested by https://linkvertise.com/assets/vendor/thinksuggest
Certificate IssuerLet's Encrypt
Subjectthinksuggest.org
Fingerprint88:B8:86:65:61:4A:76:2D:16:93:16:DB:46:70:E5:4B:8C:A3:AC:C5
ValiditySun, 27 Aug 2023 23:03:23 GMT - Sat, 25 Nov 2023 23:03:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /simple/suggest-min-unpacked.js HTTP/1.1
Host: www.thinksuggest.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Oct 2023 02:12:28 GMT
Content-Type: application/javascript
Content-Length: 51487
Last-Modified: Fri, 05 Jun 2020 12:39:04 GMT
Connection: keep-alive
ETag: "5eda3ce8-c91f"
Accept-Ranges: bytes
www.thinksuggest.org/simple/suggest-min-unpacked.js
200 OK 52 kB URL GET HTTP/1.1 www.thinksuggest.org/simple/suggest-min-unpacked.js
IP
ASN #24940 Hetzner Online GmbH
Requested by https://linkvertise.com/assets/vendor/thinksuggest
Certificate IssuerLet's Encrypt
Subjectthinksuggest.org
Fingerprint88:B8:86:65:61:4A:76:2D:16:93:16:DB:46:70:E5:4B:8C:A3:AC:C5
ValiditySun, 27 Aug 2023 23:03:23 GMT - Sat, 25 Nov 2023 23:03:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /simple/suggest-min-unpacked.js HTTP/1.1
Host: www.thinksuggest.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Oct 2023 02:12:28 GMT
Content-Type: application/javascript
Content-Length: 51487
Last-Modified: Fri, 05 Jun 2020 12:39:04 GMT
Connection: keep-alive
ETag: "5eda3ce8-c91f"
Accept-Ranges: bytes
www.googletagmanager.com/gtag/js?id=G-7DRMH8RP03&l=dataLayer&cx=c
200 OK 244 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-7DRMH8RP03&l=dataLayer&cx=c
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint54:FD:04:1B:2E:C7:46:95:DD:15:A3:A0:3F:CE:7F:03:02:53:36:8F
ValidityMon, 18 Sep 2023 08:19:25 GMT - Mon, 11 Dec 2023 08:19:24 GMT
File type ASCII text, with very long lines (3034)
Size 244 kB (243505 bytes)
Hash 0aa041734579aa456646ebf9e167be29
1920380624cd1766ca5bd100bc7d75e9ccd89bc6
698e16203ca682b8f0bf940793553118a9194f03ebc48763a5d8b6e27dc897f9
GET /gtag/js?id=G-7DRMH8RP03&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 18 Oct 2023 02:12:28 GMT
expires: Wed, 18 Oct 2023 02:12:28 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84382
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css
200 OK 90 kB URL GET HTTP/2 maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css
IP
ASN #60068 Datacamp Limited
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subject1454623486.rsc.cdn77.org
Fingerprint02:20:35:26:25:BB:A5:D2:BB:BE:F5:69:09:59:F8:08:BA:06:4D:8A
ValiditySun, 17 Sep 2023 06:57:51 GMT - Sat, 16 Dec 2023 06:57:50 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 73db02545cf13e8c82b51b62782df0d6
c1bd14187b6dcb36efad21e51711f8941801de0f
ce61a18cf084f15003798340044643f329ac5f90045acb2d9e778368bd799854
GET /vue-static/landings/line-awesome/line-awesome/1.3.0/css/line-awesome.min.css HTTP/1.1
Host: maxst.icons8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 18 Oct 2023 02:12:26 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
etag: W/"15e81-wb0UGHttyzbvrSHlFxH4lBgB3g8"
last-modified: 2022-05-16T12:30:47.897Z
server-timing: -;dur=0;desc="Generate"
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
server: CDN77-Turbo
x-77-nzt: AblMCQ03Nzf/vNSjAg
x-77-nzt-ray: c0a4cc287aa99c150a3f2f658bf46337
x-accel-expires: @1968663886
x-accel-date: 1653303886
x-cache: HIT
x-age: 44291260
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 44291260
content-encoding: gzip
X-Firefox-Spdy: h2
js.hcaptcha.com/1/api.js?onload=hCaptchaLoadCallback&render=explicit
200 OK 332 kB URL GET HTTP/2 js.hcaptcha.com/1/api.js?onload=hCaptchaLoadCallback&render=explicit
IP
Requested by https://js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master.html#linkvertise.com
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintD9:E8:78:82:B2:9B:0F:1B:5F:0B:B7:EF:93:24:6D:07:2D:83:BA:24
ValiditySat, 15 Apr 2023 00:00:00 GMT - Sun, 14 Apr 2024 23:59:59 GMT
Size 332 kB (332259 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/api.js?onload=hCaptchaLoadCallback&render=explicit HTTP/1.1
Host: js.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 18 Oct 2023 02:12:28 GMT
content-type: application/javascript
cf-ray: 817d41ae1c3356c6-OSL
cf-cache-status: HIT
age: 0
cache-control: max-age=120
etag: W/"4365bef5ef014788dbfae8e22a025a74"
last-modified: Tue, 17 Oct 2023 12:43:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
cross-origin-resource-policy: cross-origin
x-amz-cf-id: o2pYLkgTDQEAREWwonXyIQkNvr2L0ccXJXAJkxc_xlNHLOTkxhQjeA==
x-amz-cf-pop: OSL50-P1
x-amz-server-side-encryption: AES256
x-amz-version-id: zBXFRZdgTjKNpcpyB_Vkk81OZsZOZqkY
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
publisher.linkvertise.com/api/v1/redirect/link/68451/first-complete-data-leak/traffic-validationv2?X-Linkvertise-UT=xEQRPr8i0PAhOWRDFSlSZPUSY5LABEtEjSqQJ2YmNlbna5xpNm7iIsfAgdKxhLDk
204 No Content 0 B URL OPTIONS HTTP/3 publisher.linkvertise.com/api/v1/redirect/link/68451/first-complete-data-leak/traffic-validationv2?X-Linkvertise-UT=xEQRPr8i0PAhOWRDFSlSZPUSY5LABEtEjSqQJ2YmNlbna5xpNm7iIsfAgdKxhLDk
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerGoogle Trust Services LLC
Subjectlinkvertise.com
FingerprintC8:C1:18:E5:D8:BA:9F:85:C3:50:00:20:B5:03:BE:7E:22:16:40:C8
ValiditySun, 08 Oct 2023 05:27:38 GMT - Sat, 06 Jan 2024 05:27:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/redirect/link/68451/first-complete-data-leak/traffic-validationv2?X-Linkvertise-UT=xEQRPr8i0PAhOWRDFSlSZPUSY5LABEtEjSqQJ2YmNlbna5xpNm7iIsfAgdKxhLDk HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,cqreferrer
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
date: Wed, 18 Oct 2023 02:12:28 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type,cqreferrer
access-control-max-age: 0
set-cookie: laravel_session=ih7B5PbIkqhMEtFhAqBgwJsadVPOsPvhCfyIxp1n; expires=Thu, 17 Oct 2024 02:12:28 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OQDGeO1L6rNEOYfZCHOyqLgoW9Toy%2FbDTzWzF1vjAO2e6fNKsPkFSvUqBDMGv82bomS2MkCIvqmZFQQME6ENdZWrKllOxc7lBOSn7lh2KAeBR1BO3Zn0hQWqNl21LkXVrgi88g75HOUk3S9W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41afdb3656c0-OSL
alt-svc: h3=":443"; ma=86400
hcaptcha.com/checksiteconfig?v=01e0b54&host=js.chargebee.com&sitekey=dc26aa54-4902-437f-80e2-a22947a6c01b&sc=1&swa=1&spst=0
200 OK 778 B URL POST HTTP/3 hcaptcha.com/checksiteconfig?v=01e0b54&host=js.chargebee.com&sitekey=dc26aa54-4902-437f-80e2-a22947a6c01b&sc=1&swa=1&spst=0
IP
Requested by https://newassets.hcaptcha.com/captcha/v1/01e0b54/static/hcaptcha.html#frame=challenge&id=0z4j65bqk1te&host=js.chargebee.com&sentry=true&reportapi=https%3A%2F%2Faccounts.hcaptcha.com&recaptchacompat=true&custom=false&hl=en&tplinks=on&pstissuer=https%3A%2F%2Fpst-issuer.hcaptcha.com&sitekey=dc26aa54-4902-437f-80e2-a22947a6c01b&theme=light&origin=https%3A%2F%2Fjs.chargebee.com
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintD9:E8:78:82:B2:9B:0F:1B:5F:0B:B7:EF:93:24:6D:07:2D:83:BA:24
ValiditySat, 15 Apr 2023 00:00:00 GMT - Sun, 14 Apr 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (794), with no line terminators
Hash 3b67a33d27720f9f11153a4e76a7f92d
7ae43f69468fbf35327f2497439116a97449fd42
c6a9c6caf942dc96f8693aabe8b68ba56c496509768699c5f1d653dab77229a9
POST /checksiteconfig?v=01e0b54&host=js.chargebee.com&sitekey=dc26aa54-4902-437f-80e2-a22947a6c01b&sc=1&swa=1&spst=0 HTTP/1.1
Host: hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://newassets.hcaptcha.com
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:29 GMT
content-type: application/json
access-control-allow-origin: https://newassets.hcaptcha.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control, Content-Type, DNT, Referer, User-Agent, challenge-bypass-token, cf-chl-bypass, challenge-bypass-token, challenge-bypass-host, challenge-bypass-path
access-control-allow-methods: GET, HEAD, POST, OPTIONS
cf-chl-bypass: 2
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 817d41b189f0b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
linkvertise.com/assets/img/stop-sign.svg
200 OK 2.7 kB URL GET HTTP/3 linkvertise.com/assets/img/stop-sign.svg
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2719), with no line terminators
Hash f099bf558495bb227ff4d597430bb8d7
f91da0cd416efa09d518bf8f939c40ea5730a8fb
76be295f14e690871002e536418e4b0c8055e5bc64b865f602e177f8ad16ff56
GET /assets/img/stop-sign.svg HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak/1
DNT: 1
Connection: keep-alive
Cookie: _cq_duid=1.1697595148.d3Ihshb4hZeiJuuQ; _cq_suid=1.1697595148.ARYPE3pYeG46uDOX; _ga_7DRMH8RP03=GS1.1.1697595148.1.0.1697595149.0.0.0; _ga=GA1.1.130272104.1697595149; _cheq_rti=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; laravel_session=yGzVSgspOsLkxD2uS3LKQ4HNw6tWs7GBmI0ERQKL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:29 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"1c20f072c47623867ed24c36afc1018f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kMMYDkXNmNWt52kfSsMxBpfaOxlYNWnKZz8dugEvC2HuNEqwB%2BLcJICJI8opwG%2Fz0DBLEypX82E%2FRGlxkXWxewuCol%2FQnterGlt33CGjftD1Gx87JadaWxzBKNIVO6FOFSM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41b25eb6b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
linkvertise.com/runtime.36f4c494c1306fac.js
200 OK 3.6 kB URL GET HTTP/3 linkvertise.com/runtime.36f4c494c1306fac.js
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
File type ASCII text, with very long lines (3674), with no line terminators
Hash 89fec82d107610f2db203e3afe42d5d3
72f9f91e908eb278730bd81b22ace333c3d8833b
75e49573f72a9eddd29ff66bd1f4573fc808dccb013aad184499642c0750a363
GET /runtime.36f4c494c1306fac.js HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak?o=sharing
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:26 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"051365cd20770da054055bb4415bd0b2"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l8wtp7nYsae6wRDCFrAqDHGJMgcnX9jeb5jxWOBwhFRv85f8DOcqvlNq2uYmxblHKGtmuP3VlyVlfFh5Ev7q%2BcUo8guaryIsc36Sj%2BDElwCjnRqgyXcOu30e7CUBfxm%2F950%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41a38addb4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/181-042f46f459535dfe6471.js
200 OK 13 kB URL GET HTTP/2 js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/181-042f46f459535dfe6471.js
IP
Requested by https://js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master.html#linkvertise.com
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (13133)
Hash 8c6ca2d6b886568b2483182dbe65f1b7
bc753fac31bdb577b43db28a09bf9f6ce376f0c4
deef0be7fbc792b7c0ad26ccc64c652864d481380a6c8b0a47fc5499b91d93a8
GET /assets/cbjs-2023.10.09-09.27/v2/181-042f46f459535dfe6471.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Tue, 10 Oct 2023 04:38:55 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: JvX_GQYWvomObDKM1oE5LFZkkXNw.xpD
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Wed, 18 Oct 2023 02:11:24 GMT
cache-control: max-age=300,public
etag: W/"8c6ca2d6b886568b2483182dbe65f1b7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GDJSXTOZyepvHs-q0JsqfWKYaF6NwH6nTKmp7_majxRaE_WZumSBrQ==
age: 85
X-Firefox-Spdy: h2
publisher.linkvertise.com/taboola-ads?link_id=146091242&user_id=fallbackUserId&url=https://linkvertise.com/68451/first-complete-data-leak/1&consent_string=&X-Linkvertise-UT=xEQRPr8i0PAhOWRDFSlSZPUSY5LABEtEjSqQJ2YmNlbna5xpNm7iIsfAgdKxhLDk
204 No Content 0 B URL OPTIONS HTTP/3 publisher.linkvertise.com/taboola-ads?link_id=146091242&user_id=fallbackUserId&url=https://linkvertise.com/68451/first-complete-data-leak/1&consent_string=&X-Linkvertise-UT=xEQRPr8i0PAhOWRDFSlSZPUSY5LABEtEjSqQJ2YmNlbna5xpNm7iIsfAgdKxhLDk
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerGoogle Trust Services LLC
Subjectlinkvertise.com
FingerprintC8:C1:18:E5:D8:BA:9F:85:C3:50:00:20:B5:03:BE:7E:22:16:40:C8
ValiditySun, 08 Oct 2023 05:27:38 GMT - Sat, 06 Jan 2024 05:27:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /taboola-ads?link_id=146091242&user_id=fallbackUserId&url=https://linkvertise.com/68451/first-complete-data-leak/1&consent_string=&X-Linkvertise-UT=xEQRPr8i0PAhOWRDFSlSZPUSY5LABEtEjSqQJ2YmNlbna5xpNm7iIsfAgdKxhLDk HTTP/1.1
Host: publisher.linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://linkvertise.com/
Origin: https://linkvertise.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
date: Wed, 18 Oct 2023 02:12:28 GMT
cache-control: no-cache, private
access-control-allow-origin: https://linkvertise.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 0
set-cookie: laravel_session=FK2Jr0XUSMtM05e8ZYRwbMf5Q8sF4jwIRM2Y1EWA; expires=Thu, 17 Oct 2024 02:12:28 GMT; Max-Age=31536000; path=/; domain=.linkvertise.com; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UOWvlCscGTFNV3YonDyhiQvS%2Fsv3ShGoh5RBnTRJE8vxRsw55xM4i0YarY3fc7CH2ReQqK5CUk6pKAYhbyPF7hEtoaKSBea3hlKtG1VpCX6F5tG3F9CE5g634J8ypp6vpx0f1WJ1U4giuqNv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41afeb3956c0-OSL
alt-svc: h3=":443"; ma=86400
linkvertise.com/assets/img/logo-white-square.png
200 OK 13 kB URL GET HTTP/3 linkvertise.com/assets/img/logo-white-square.png
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
File type PNG image data, 292 x 292, 8-bit/color RGBA, non-interlaced\012- data
Hash fa602f2b99d57e37a0dfdbb56c83b35d
6c1b04568aea6972e84be6075ef992938a551953
1283c45f0e6af2ad475ea0e45924d26a2b7b961bae669bfa904a78b272c1a1b0
GET /assets/img/logo-white-square.png HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak/1
DNT: 1
Connection: keep-alive
Cookie: _cq_duid=1.1697595148.d3Ihshb4hZeiJuuQ; _cq_suid=1.1697595148.ARYPE3pYeG46uDOX; _ga_7DRMH8RP03=GS1.1.1697595148.1.0.1697595149.0.0.0; _ga=GA1.1.130272104.1697595149; _cheq_rti=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; laravel_session=yGzVSgspOsLkxD2uS3LKQ4HNw6tWs7GBmI0ERQKL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:30 GMT
content-type: image/png
content-length: 12712
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "be27dc8ad17aac673f1646743d1ec608"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vkeo4RKN7cNZed9IvcU%2Bvq36t3lIu%2BmmKv79mUuTl%2FGb%2FShNjioxqyRo7xpohpFgFr%2FKb7RP8K3xK1KzBHalFVv8jArBxtGHpgkBKDP9%2B96M92GqkXswRDnFkq70hxddRxs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41bbd986b4f9-OSL
alt-svc: h3=":443"; ma=86400
linkvertise.com/assets/vendor/thinksuggest.html
308 Permanent Redirect 5.7 kB URL GET HTTP/3 linkvertise.com/assets/vendor/thinksuggest.html
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5957), with no line terminators
Hash c8e5ce5062d5ca3f13a7a9d673befb9b
40c1b3ad158a4d0870b9a3c51807427de8cb1dc8
eff45eded70288392fc04fc971d4196f15757435d1273068f1f3037c21bfc11d
GET /assets/vendor/thinksuggest.html HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak?o=sharing
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 308 Permanent Redirect
date: Wed, 18 Oct 2023 02:12:27 GMT
content-length: 0
location: /assets/vendor/thinksuggest
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zv%2Bvsv28a5fR%2FrGicCSiArCeN2FHtz03JmXHV62LH5EFvu1wZeS6ad%2Bvx08USLC0%2Bpe972lZxy4PRvLKdbc7GhuHJEkibg7iWuNnkn%2BzL6MWmiR0Gum5jE%2Bc7afYuNLGgn4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41a87c02b4f9-OSL
alt-svc: h3=":443"; ma=86400
linkvertise.com/assets/i18n/en.json?v=1&X-Linkvertise-UT=xEQRPr8i0PAhOWRDFSlSZPUSY5LABEtEjSqQJ2YmNlbna5xpNm7iIsfAgdKxhLDk
200 OK 93 kB URL GET HTTP/3 linkvertise.com/assets/i18n/en.json?v=1&X-Linkvertise-UT=xEQRPr8i0PAhOWRDFSlSZPUSY5LABEtEjSqQJ2YmNlbna5xpNm7iIsfAgdKxhLDk
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerLet's Encrypt
Subjectlinkvertise.com
FingerprintA3:69:FE:7E:C0:4E:9F:39:60:C1:A9:6E:EC:46:3C:00:C7:EE:94:F1
ValiditySun, 20 Aug 2023 09:52:36 GMT - Sat, 18 Nov 2023 09:52:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/i18n/en.json?v=1&X-Linkvertise-UT=xEQRPr8i0PAhOWRDFSlSZPUSY5LABEtEjSqQJ2YmNlbna5xpNm7iIsfAgdKxhLDk HTTP/1.1
Host: linkvertise.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://linkvertise.com/68451/first-complete-data-leak/1
Content-Type: application/json
DNT: 1
Connection: keep-alive
Cookie: _cq_duid=1.1697595148.d3Ihshb4hZeiJuuQ; _cq_suid=1.1697595148.ARYPE3pYeG46uDOX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:28 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"1b6f85a9256eb7ae47831fd4ca4b14a0"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QKevwEEWt44U%2BFRkGgtjTFG4iO1ZtqgIW%2BoJbxSjlEtoVDDYlE8IRg9pQxyXa%2FJacrY8Mp1NpdalgW67PL%2B6G7wJAfTQLadR3klCA6DAzWgMwcwSG04UZhuOvOn4DxFi1Oo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-frame-options: sameorigin
server: cloudflare
cf-ray: 817d41ac8d16b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/179-f90fcb192897aff70e37.js
200 OK 3.3 kB URL GET HTTP/2 js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/179-f90fcb192897aff70e37.js
IP
Requested by https://js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master.html#linkvertise.com
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (3337), with no line terminators
Hash 02fd4f8ffc7eb4701fbbb1693041d1b6
6e219af4a746a5d24885f53621fcf0b8ec18e272
c957a5d96066c64c55c3b04d64c4d33365c397e33b50e43365ae4fe5a61e5f09
GET /assets/cbjs-2023.10.09-09.27/v2/179-f90fcb192897aff70e37.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Tue, 10 Oct 2023 04:38:55 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: BafWVlYncChuqi_sLE42R71OPvv6e.n5
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Wed, 18 Oct 2023 02:10:06 GMT
cache-control: max-age=300,public
etag: W/"ace5c6928487acff71b91ef9a30da66f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1x8bKkEXN19Htiqs04uc7bcX1b37EmDwkIqeo92OQJdY7Ftlu2eMKg==
age: 161
X-Firefox-Spdy: h2
newassets.hcaptcha.com/captcha/v1/01e0b54/static/hcaptcha.html
200 OK 1.7 kB URL GET HTTP/3 newassets.hcaptcha.com/captcha/v1/01e0b54/static/hcaptcha.html
IP
Requested by https://js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master.html#linkvertise.com
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintD9:E8:78:82:B2:9B:0F:1B:5F:0B:B7:EF:93:24:6D:07:2D:83:BA:24
ValiditySat, 15 Apr 2023 00:00:00 GMT - Sun, 14 Apr 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1768), with no line terminators
Hash 26f959d56aa63f3ff3df6e8670fe5276
b38843ae27ed6cb8565dfca5777c5de6ad3a38ea
737334ffedf4f7d46504b3776795e281f57995bb8531061a1a718acc27918320
GET /captcha/v1/01e0b54/static/hcaptcha.html HTTP/1.1
Host: newassets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 18 Oct 2023 02:12:28 GMT
content-type: text/html
cf-ray: 817d41af191eb4ff-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 17
cache-control: max-age=1209600
last-modified: Tue, 17 Oct 2023 12:43:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
cross-origin-embedder-policy: credentialless
cross-origin-resource-policy: cross-origin
x-amz-cf-id: -v8YrkTlGAARcoJxjyo7CtwUbR-on0X_Nok0xzjc3CmkYUJDMwy5Yw==
x-amz-cf-pop: OSL50-P1
x-amz-server-side-encryption: AES256
x-amz-version-id: RQtAjtAwmwx.FFYcNhtaefzx7Qlex2Ot
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master-c4eea884aa34223beb59.js
200 OK 241 kB URL GET HTTP/2 js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master-c4eea884aa34223beb59.js
IP
Requested by https://js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master.html#linkvertise.com
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Size 241 kB (240605 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/cbjs-2023.10.09-09.27/v2/master-c4eea884aa34223beb59.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/master.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Tue, 10 Oct 2023 04:38:55 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: stenfzEMgK.X7scazf1Vts2A.NVboaT3
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Wed, 18 Oct 2023 02:10:05 GMT
cache-control: max-age=300,public
etag: W/"5a093173fc7294ba538861d85f02e15d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: I0ryA9swo9nBVYw5_EgbM6DPlrO8oFweqnh6krQjT95tiHxP7ZlOiw==
age: 169
X-Firefox-Spdy: h2
api.ipify.org/?format=jsonp&callback=getIP
200 OK 29 B URL GET HTTP/1.1 api.ipify.org/?format=jsonp&callback=getIP
IP
Requested by https://linkvertise.com/68451/first-complete-data-leak?o=sharing
Certificate IssuerSectigo Limited
Subject*.ipify.org
FingerprintF4:76:2D:2C:65:D1:15:BE:19:A4:C5:E0:8D:EB:89:1A:B6:75:4A:54
ValidityTue, 07 Feb 2023 00:00:00 GMT - Sun, 18 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash e16990d104d7ef3da6ae33c8749007c3
dd2e82c642a46da4f9f07a0cbed51e1200260b16
be8faa8ea81ccae89a6fe717bdc02266ef5a5a7dcbb8df7fb7ceb59ec48d9ed3
GET /?format=jsonp&callback=getIP HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://linkvertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.25.1
Date: Wed, 18 Oct 2023 02:12:28 GMT
Content-Type: application/javascript
Content-Length: 29
Connection: keep-alive
Vary: Origin
104.21.11.14
216.58.207.227
185.76.9.15
23.36.76.96
54.75.69.192
176.9.175.232
0.0.0.0