Report - email.acteon.com/e3t/Ctc/W1%20113/cML6G04/MWwK_5mkxvjW5-DgMc2m4W5TW2bnPc75vtGdXN6R-BZ03qgyTW6N1vHY6lZ3m4W3QY7bv4Wp4V0W4bx9fr2xFm6cW5m60R-8bW1RDW3bQc8s3g68PTW8ltzJj1-8sQsW6q_v_m1llP7BW3THfRq3WRcDhW7Jh-m64bFLGmVDVmWh8JtQLhW3YM1m57_NVJ4W1pKk-m6w7BXWW5YPqn11hczw0W4M9vs51yp78lW4hvn1f33vGhgN2yWr61WdM6MN6cB-YvsVY5RN8xPrfbY-cHhN63s5zzD_tjRW5RFGvQ5r6mzhW3SRDwY7XFd64W2_GsnP9db-vGW8H

Report Overview

Visited public
2025-04-17 18:19:38
Tags
suspicious
URL
email.acteon.com/e3t/Ctc/W1%20113/cML6G04/MWwK_5mkxvjW5-DgMc2m4W5TW2bnPc75vtGdXN6R-BZ03qgyTW6N1vHY6lZ3m4W3QY7bv4Wp4V0W4bx9fr2xFm6cW5m60R-8bW1RDW3bQc8s3g68PTW8ltzJj1-8sQsW6q_v_m1llP7BW3THfRq3WRcDhW7Jh-m64bFLGmVDVmWh8JtQLhW3YM1m57_NVJ4W1pKk-m6w7BXWW5YPqn11hczw0W4M9vs51yp78lW4hvn1f33vGhgN2yWr61WdM6MN6cB-YvsVY5RN8xPrfbY-cHhN63s5zzD_tjRW5RFGvQ5r6mzhW3SRDwY7XFd64W2_GsnP9db-vGW8H_WD72H4Bcsf2XTyY004
Finishing URL
www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
IP / ASN
199.60.103.28
#209242 Cloudflare London, LLC
Title
LinkedIn Login, Sign in | LinkedIn
Suspicious - Anti-debugging code

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.linkedin.com	608	2002-11-02	2012-07-31	2025-04-11	28 kB	137 kB	104.18.41.41
static.licdn.com	12070	2011-02-24	2012-10-18	2025-04-11	6.7 kB	3.0 MB	151.101.195.42
accounts.google.com	81	1997-09-15	2012-05-23	2025-04-16	2.2 kB	368 kB	64.233.164.84
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-04-16	2.3 kB	236 kB	142.250.74.35
play.google.com	34	1997-09-15	2013-05-30	2025-04-16	2.1 kB	2.2 kB	142.250.74.142
email.acteon.com	unknown	2003-08-27	2025-04-17	2025-04-17	2.1 kB	67 kB	199.60.103.28
platform.linkedin.com	3785	2002-11-02	2012-05-21	2025-04-14	921 B	146 kB	151.101.67.42

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-04-17 18:19:20	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2025-04-17 18:19:20	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2025-04-17 18:19:20	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2025-04-17 18:19:20	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2025-04-17 18:19:20	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2025-04-17 18:19:20	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (12)

	URL	From	Size	First Seen	Last Seen
	static.licdn.com/sc/h/aj4dyx1jstg91ffoizgyqt0xm	ScriptElement	317 kB	2025-04-15	2025-04-18
Pretty URL static.licdn.com/sc/h/aj4dyx1jstg91ffoizgyqt0xm IP 151.101.195.42 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-15 23:27 Last Seen2025-04-18 21:36 Times Seen35 Hash 542a70f321e54db9e0e049a7e132f596 73b2bdb26799cd6019ce105acf31295a20a52f46 7453667c893797219d4b1213ca16cb70827e1a2b7b8208f7199e87c374096972 Loading...

	static.licdn.com/sc/h/4uv1mjitc2ilc5wrkjv8i94b7	ScriptElement	1.0 kB	2025-04-08	2025-04-18
Pretty URL static.licdn.com/sc/h/4uv1mjitc2ilc5wrkjv8i94b7 IP 151.101.195.42 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-08 00:37 Last Seen2025-04-18 10:46 Times Seen42 Hash d8bbdd720ef49944cbf821069c42d078 47cfbcc8fdd370a41dafd72976d73a54dc441ac6 ceb81d692138f2f12584d2cd42422ca755f025959589d1776cf54aae68c28630 Loading...

	static.licdn.com/sc/h/76f1ci9li19d0p7s5cdu6o7vd	ScriptElement	24 kB	2025-02-25	2025-04-18
Pretty URL static.licdn.com/sc/h/76f1ci9li19d0p7s5cdu6o7vd IP 151.101.195.42 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-25 14:47 Last Seen2025-04-18 21:36 Times Seen208 Hash 836eb5441cb2bb0104831f80d1a2baf2 4720d792c65fd4617ef9f5c5ab7b78fee84bbfb2 dc231e650e3dd0bfd35de69fc9f9d2c0bb1f153d39e0b7eff17c451fbc2511f4 Loading...

	static.licdn.com/sc/h/adqhirffnjsw3nwge4cky8lfm	ScriptElement	460 kB	2025-03-18	2025-04-18
Pretty URL static.licdn.com/sc/h/adqhirffnjsw3nwge4cky8lfm IP 151.101.195.42 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-18 18:24 Last Seen2025-04-18 21:36 Times Seen116 Hash 74b86e7083e58b27b26396e3783a1838 7cba981a65a40cb48d586783e472383ab2c33f85 a6841294c22da9a3c696d8b4bfe668d69acc243c45b1121e28a12b57b06fb712 Loading...

	accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_960305_625506&as=4dOhqRJ9skjTiW5RGOW2DQ&hl=en_US	ScriptElement	123 kB	2025-04-16	2025-04-19
Pretty URL accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_960305_625506&as=4dOhqRJ9skjTiW5RGOW2DQ&hl=en_US IP 64.233.164.84 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-16 20:03 Last Seen2025-04-19 01:04 Times Seen27 Hash 72dec9afc0a2963a32ef31ccf5052be4 ff7c58990cc64cda068b293ec6b22a80fb74c512 389e1383b0c31c1fe4c0de23cc4e4aa5bb98de71ee2a1df544b2e1cdccd19839 Loading...

	static.licdn.com/sc/h/bv911c32qdqtvy406ldakstgo	ScriptElement	1.0 kB	2025-04-07	2025-04-18
Pretty URL static.licdn.com/sc/h/bv911c32qdqtvy406ldakstgo IP 151.101.195.42 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-07 12:46 Last Seen2025-04-18 21:36 Times Seen78 Hash ea0b5d3ff98da6bd546ec8ab079091b7 a619a3d678d73981dc44ee74ab3048f4fa1ee9bf ad2bdbf4231aba26c26c96691a24601b264d382a82539198a3194742a7b7b35d Loading...

	platform.linkedin.com/litms/utag/checkpoint-frontend/utag.js?cb=1744913700000	ScriptElement	145 kB	2025-02-05	2025-04-18
Pretty URL platform.linkedin.com/litms/utag/checkpoint-frontend/utag.js?cb=1744913700000 IP 151.101.67.42 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-05 13:58 Last Seen2025-04-18 21:36 Times Seen334 Hash 89ceb82e7b00ce87f539889bc69ce1eb e26533fe66137c4ceb30075e8fb7f9a118671697 147250e437dc2568385032ee76c36a33b2b2d06120b7d8d290693ac47c3f0f41 Loading...

	accounts.google.com/_/gsi/_/js/k=gsi.gsi.no.daybrnKb3dE.O/am=AACRuTQG/d=1/rs=AF0KOtWCulv0h--z_0Olztkc__NIvzCD3Q/m=credential_server_library	ScriptElement	196 kB	2025-04-17	2025-04-17
Pretty URL accounts.google.com/_/gsi/_/js/k=gsi.gsi.no.daybrnKb3dE.O/am=AACRuTQG/d=1/rs=AF0KOtWCulv0h--z_0Olztkc__NIvzCD3Q/m=credential_server_library IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-17 04:29 Last Seen2025-04-17 20:53 Times Seen7 Hash 7e6a9032a691d1741182502b696999c2 fa27a4fbfdefcaad555f2f958eb4a6a5d5d2ec49 f5cd0586ee057cf7c64f520bc115589abaad2df6614ce3b053cf7a6a67d3e2cf Loading...

	static.licdn.com/sc/h/aofke6z5sqc44bjlvj6yr05c8	ScriptElement	225 kB	2024-10-09	2025-04-19
Pretty URL static.licdn.com/sc/h/aofke6z5sqc44bjlvj6yr05c8 IP 151.101.195.42 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-09 19:25 Last Seen2025-04-19 01:40 Times Seen4104 Hash 265cad589850453477599bdf5da877ba a3527c846010d4564e83bee8e8f998f234e3ee8e 9b4ee259dba330297213fb2a7986c0e9cd9fdbbaa3745ebdfce48d891f09f297 Loading...

	static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv	ScriptElement	39 kB	2023-03-07	2025-04-18
Pretty URL static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv IP 151.101.195.42 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03 Last Seen2025-04-18 21:36 Times Seen3264 Hash f5629c31bca5301ab5980247effef360 f61db978aa8c26a7001df3f7600515b9f07f5231 c852b1105eb000028e9b27677996f8d4773daa31fa1aaf663cb6ae3a6857a50a Loading...

	accounts.google.com/_/gsi/_/js/k=gsi.gsi.en_US.wgkjP5N645Y.O/am=AACRuXQG/d=1/rs=AF0KOtXt_XNH0bLZ1iBMs_Fdk_HdLp3ysA/m=credential_button_library	ScriptElement	123 kB	2025-04-16	2025-04-19
Pretty URL accounts.google.com/_/gsi/_/js/k=gsi.gsi.en_US.wgkjP5N645Y.O/am=AACRuXQG/d=1/rs=AF0KOtXt_XNH0bLZ1iBMs_Fdk_HdLp3ysA/m=credential_button_library IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 20:03 Last Seen2025-04-19 01:04 Times Seen27 Hash 195847d7b93ce78a0e8dc299c2f3749b 6b8ed9fa5e29ec913b9f6e098da14594deafda66 91aba587f522e4fc3631d0239a16e970334be0ebb1403abdd1d06fca2ecfb539 Loading...

	accounts.google.com/gsi/iframe/select?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&auto_select=true&ux_mode=popup&ui_mode=card&context=signin&as=4dOhqRJ9skjTiW5RGOW2DQ&is_itp=true&channel_id=25a80d984a13b34ca7eb5a16c24b7cd3794fa346afdd26e7dc31d84aae68e3b4&origin=https%3A%2F%2Fwww.linkedin.com	ScriptElement	196 kB	2025-04-17	2025-04-17
Pretty URL accounts.google.com/gsi/iframe/select?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&auto_select=true&ux_mode=popup&ui_mode=card&context=signin&as=4dOhqRJ9skjTiW5RGOW2DQ&is_itp=true&channel_id=25a80d984a13b34ca7eb5a16c24b7cd3794fa346afdd26e7dc31d84aae68e3b4&origin=https%3A%2F%2Fwww.linkedin.com IP 64.233.164.84 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-17 04:29 Last Seen2025-04-17 20:53 Times Seen7 Hash 451fc35ef7dd07e1c8e4dda811299037 846697f73bcc774d5f338a02a5ab5fdd41505945 d5e2bdcffa1ccfdf08c551e201cef7765db9b5d2b20f267e11c87cb02aeb169d Loading...

HTTP Transactions (48)

URL IP Response Size

www.linkedin.com/li/track

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/li/track
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1710
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:20 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XDFXRP1hBN+L+wG3Q==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1ba8990b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv

151.101.195.42

200 OK

0 B

URL HEAD
static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv
IP
151.101.195.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subject*.licdn.com
FingerprintEC:B2:3B:F7:DF:44:D8:71:48:47:3C:3F:8D:BF:87:61:51:FE:FC:C3
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/1gpe377m8n1eq73qveizv5onv HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Wed, 04 Mar 2026 19:36:14 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00062f8962cbc44ccac15d4943c4a1fc
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYv//WOXhGowgFUKd49ZA==
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:20 GMT
age: 3287717
x-served-by: cache-iad-kcgs7200022-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 51, 2219
x-timer: S1744913960.308747,VS0,VE0
vary: Accept-Encoding
x-cdn: FSLY
access-control-allow-origin: *
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 57
content-length: 13154
X-Firefox-Spdy: h2

accounts.google.com/gsi/status?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&as=4dOhqRJ9skjTiW5RGOW2DQ&has_opted_out_fedcm=true

64.233.164.84

200 OK

42 B

URL GET
accounts.google.com/gsi/status?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&as=4dOhqRJ9skjTiW5RGOW2DQ&has_opted_out_fedcm=true
IP
64.233.164.84:443
ASN
#15169 GOOGLE

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint52:D3:F7:7E:94:6F:70:55:50:A6:EA:38:4B:15:DF:91:54:96:59:82
ValidityMon, 31 Mar 2025 08:56:30 GMT - Mon, 23 Jun 2025 08:56:29 GMT

File type
ASCII text
Size
42 B (42 bytes)
Hash
71eb1e65454615e12fbdce4c88ed6ec5
22eb3fdf4f4a3a6b276240dc790f6ee2049acfaa
e9b615529a587b4fbd9ed1b5a2bca899a76eaa3d751f4043a82a7bcc9b638ea4

HTTP Headers

GET /gsi/status?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&as=4dOhqRJ9skjTiW5RGOW2DQ&has_opted_out_fedcm=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-content-type-options: nosniff
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
access-control-allow-methods: GET
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 17 Apr 2025 18:19:20 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-ZpttTeYygYiDDGSM6Bp1KA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.linkedin.com/company/1642134/?utm_campaign=Other&utm_medium=email&_hsenc=p2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ&_hsmi=357059700&utm_content=357023050&utm_source=hs_email

104.18.41.41

302 Found

56 kB

URL User Request GET
www.linkedin.com/company/1642134/?utm_campaign=Other&utm_medium=email&_hsenc=p2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ&_hsmi=357059700&utm_content=357023050&utm_source=hs_email
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
56 kB (55951 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /company/1642134/?utm_campaign=Other&utm_medium=email&_hsenc=p2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ&_hsmi=357059700&utm_content=357023050&utm_source=hs_email HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 17 Apr 2025 18:19:16 GMT
content-length: 0
location: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; connect-src 'self' *.licdn.com *.linkedin.com cdn.linkedin.oribi.io dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ v.clarity.ms/collect *.microsoft.com *.adnxs.com *.tealiumiq.com login.microsoftonline.com www.google.com google.com adservice.google.com pagead2.googlesyndication.com td.doubleclick.net www.googletagmanager.com ad.doubleclick.net; script-src 'report-sample' 'sha256-th47JTnh6tX15SUn/I+GGmsOSXpa7dh5Skner77gxlY=' 'sha256-SSoodjUD3LGm2FfFCVHGqEb8D4UM3OOigidT2UKDcYg=' 'sha256-cKTgdnmO6+hXd85a9wKg1effVfVzenUAtUCyOKY9bQE=' 'sha256-DwtT8+ZZKpxH9pqZNAmJ3GdbLAh5SsYaXR3omTXPCns=' 'sha256-sV9jZa797T0QWBzcU/CNd4tpBhTnh+TFdLnfjlitl28=' 'sha256-aa/Q8CRBDSqTQbCIyioPhZaz+G+dbPyu7BzsjInEmiU=' 'sha256-THuVhwbXPeTR0HszASqMOnIyxqEgvGyBwSPBKBF/iMc=' 'sha256-zTIusdVJJeXz9+iox2a+pdDglzbpRpFVRzEwvW4AONk=' 'sha256-iC8MPqNLw0FDnsBf4DlSkFLNTwhkI85aouiAEB819ic=' 'sha256-2EqrEvcPzl8c6/TSGVvaVMEe7lg700MAz/te4/3kTYY=' 'sha256-y5uW69VItKj51mcc7UD9qfptDVUqicZL+bItEpvVNDw=' 'sha256-DatsFGoJ8gFkzzxo47Ou76WZ+3QBPOQHtBu9p9b3DhA=' 'sha256-k95cyM8gFgPziZe5VQ2IvJvBUVyd5zFt2CokIUwqdHE=' 'sha256-PyCXNcEkzRWqbiNr087fizmiBBrq9O6GGD8eV3P09Ik=' 'sha256-RFqsjmAF1N5LnfpaHFvPqFlVkeIS/DtTAFor+JjJJVc=' 'sha256-2SQ55Erm3CPCb+k03EpNxU9bdV3XL9TnVTriDs7INZ4=' 'sha256-S/KSPe186K/1B0JEjbIXcCdpB97krdzX05S+dHnQjUs=' 'sha256-9pXOIwF4N0gPltLd3AI69lkCjSC2H/Eb3sc5zdmUyYU=' 'sha256-jou6v/Nleyzoc+LXktAv1Fp8M807dVVxy7E/yzVljHc=' 'sha256-6E4e/3dSvj/8JZT2S2yR91mspqM6MyOpKl5lrhHsZa8=' 'sha256-3woF8BZ54TeXM+czaH3aXoaJsVpiamuAKFsXDykAR/Q=' 'sha256-vIfNcKb8ixJg1cfJIoNNYjWcm0lezj1/XpUNFiZyVsU=' 'sha256-cLsHUHFgT/VGX04cZrJ9xgm4HbzTR7ptutkxK+7BlMk=' 'sha256-BwU8jMnQYUhjOpsDVABpfddV/DlP1ZYrFcTumYw7x54=' 'sha256-wz6ika9i3WU3bpUPdhYDZeO/NrDQniDyiscN0LWnyaY=' 'sha256-3RIGhhApBii1KY+aW1xk7kFyoQY8vSVE5DfT7E9SJUc=' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com snap.licdn.com www.googletagmanager.com/gtag/js www.googleadservices.com/pagead/ www.google.com/pagead/ googleads.g.doubleclick.net/pagead/ adservice.google.com/pagead/ pagead2.googlesyndication.com/pagead/ www.googletagmanager.com/gtag/destination merchantpool1.linkedin.com/mdt.js; img-src data: blob: * android-webview-video-poster:; font-src data: *; style-src 'self' 'unsafe-inline' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; media-src 'self' *.licdn.com *.lynda.com; worker-src 'self' blob: static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; frame-src 'self' www.youtube.com/embed/ www.youtube-nocookie.com/embed/ lnkd.demdex.net smartlock.google.com accounts.google.com player.vimeo.com *.linkedin.com www.slideshare.net *.megaphone.fm *.omny.fm *.sounder.fm msit.powerbi.com app.powerbi.com linkedin.github.io *.licdn.com *.adnxs.com acdn.adnxs-simple.com radar.cedexis.com edge-auth.microsoft.com flo.uri.sh *.fls.doubleclick.net www.googletagmanager.com td.doubleclick.net li.protechts.net *.xlgmedia.com *.px-cloud.net merchantpool1.linkedin.com; frame-ancestors 'self' *.www.linkedin.com:*; manifest-src 'self'; report-uri https://www.linkedin.com/security/csp?f=gg
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAYy/XCDlXfop0fJ0F4wPA==
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=ajax:9132356764324105705; Domain=.www.linkedin.com; Path=/; Secure; SameSite=None
lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; Domain=.linkedin.com; Expires=Fri, 17-Apr-2026 18:19:16 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; Domain=.www.linkedin.com; Expires=Fri, 17-Apr-2026 18:19:16 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; Domain=.linkedin.com; Expires=Tue, 14 Oct 2025 18:19:16 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; Expires=Fri, 18 Apr 2025 18:19:16 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
__cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; path=/; expires=Thu, 17-Apr-25 18:49:16 GMT; domain=.linkedin.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 931dee008b59b518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email

104.18.41.41

200 OK

56 kB

URL User Request GET
www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (4169)
Size
56 kB (55951 bytes)
Hash
88b39e3ea38eed31d03e690992202416
7cd30d0de69303fb59b053dac283a476445be2a7
934b606c8c339205ff48d70c877fd4290953dc8c960bef24dd3c5680a1a18fa4

HTTP Headers

GET /uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 17 Apr 2025 18:19:16 GMT
content-type: text/html; charset=utf-8
content-length: 14360
vary: Accept-Encoding
last-modified: Tue, 15 Apr 2025 18:33:10 GMT
content-encoding: gzip
x-fs-uuid: 000632fd7086c3b59dabc091f26b1550
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; connect-src 'self' *.licdn.com *.linkedin.com cdn.linkedin.oribi.io dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ v.clarity.ms/collect *.microsoft.com *.adnxs.com *.tealiumiq.com login.microsoftonline.com www.google.com google.com adservice.google.com pagead2.googlesyndication.com td.doubleclick.net www.googletagmanager.com ad.doubleclick.net; script-src 'report-sample' 'sha256-th47JTnh6tX15SUn/I+GGmsOSXpa7dh5Skner77gxlY=' 'sha256-SSoodjUD3LGm2FfFCVHGqEb8D4UM3OOigidT2UKDcYg=' 'sha256-cKTgdnmO6+hXd85a9wKg1effVfVzenUAtUCyOKY9bQE=' 'sha256-DwtT8+ZZKpxH9pqZNAmJ3GdbLAh5SsYaXR3omTXPCns=' 'sha256-sV9jZa797T0QWBzcU/CNd4tpBhTnh+TFdLnfjlitl28=' 'sha256-aa/Q8CRBDSqTQbCIyioPhZaz+G+dbPyu7BzsjInEmiU=' 'sha256-THuVhwbXPeTR0HszASqMOnIyxqEgvGyBwSPBKBF/iMc=' 'sha256-zTIusdVJJeXz9+iox2a+pdDglzbpRpFVRzEwvW4AONk=' 'sha256-iC8MPqNLw0FDnsBf4DlSkFLNTwhkI85aouiAEB819ic=' 'sha256-2EqrEvcPzl8c6/TSGVvaVMEe7lg700MAz/te4/3kTYY=' 'sha256-y5uW69VItKj51mcc7UD9qfptDVUqicZL+bItEpvVNDw=' 'sha256-DatsFGoJ8gFkzzxo47Ou76WZ+3QBPOQHtBu9p9b3DhA=' 'sha256-k95cyM8gFgPziZe5VQ2IvJvBUVyd5zFt2CokIUwqdHE=' 'sha256-PyCXNcEkzRWqbiNr087fizmiBBrq9O6GGD8eV3P09Ik=' 'sha256-RFqsjmAF1N5LnfpaHFvPqFlVkeIS/DtTAFor+JjJJVc=' 'sha256-2SQ55Erm3CPCb+k03EpNxU9bdV3XL9TnVTriDs7INZ4=' 'sha256-S/KSPe186K/1B0JEjbIXcCdpB97krdzX05S+dHnQjUs=' 'sha256-9pXOIwF4N0gPltLd3AI69lkCjSC2H/Eb3sc5zdmUyYU=' 'sha256-jou6v/Nleyzoc+LXktAv1Fp8M807dVVxy7E/yzVljHc=' 'sha256-6E4e/3dSvj/8JZT2S2yR91mspqM6MyOpKl5lrhHsZa8=' 'sha256-3woF8BZ54TeXM+czaH3aXoaJsVpiamuAKFsXDykAR/Q=' 'sha256-vIfNcKb8ixJg1cfJIoNNYjWcm0lezj1/XpUNFiZyVsU=' 'sha256-cLsHUHFgT/VGX04cZrJ9xgm4HbzTR7ptutkxK+7BlMk=' 'sha256-BwU8jMnQYUhjOpsDVABpfddV/DlP1ZYrFcTumYw7x54=' 'sha256-wz6ika9i3WU3bpUPdhYDZeO/NrDQniDyiscN0LWnyaY=' 'sha256-3RIGhhApBii1KY+aW1xk7kFyoQY8vSVE5DfT7E9SJUc=' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com snap.licdn.com www.googletagmanager.com/gtag/js www.googleadservices.com/pagead/ www.google.com/pagead/ googleads.g.doubleclick.net/pagead/ adservice.google.com/pagead/ pagead2.googlesyndication.com/pagead/ www.googletagmanager.com/gtag/destination merchantpool1.linkedin.com/mdt.js; img-src data: blob: * android-webview-video-poster:; font-src data: *; style-src 'self' 'unsafe-inline' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; media-src 'self' *.licdn.com *.lynda.com; worker-src 'self' blob: static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; frame-src 'self' www.youtube.com/embed/ www.youtube-nocookie.com/embed/ lnkd.demdex.net smartlock.google.com accounts.google.com player.vimeo.com *.linkedin.com www.slideshare.net *.megaphone.fm *.omny.fm *.sounder.fm msit.powerbi.com app.powerbi.com linkedin.github.io *.licdn.com *.adnxs.com acdn.adnxs-simple.com radar.cedexis.com edge-auth.microsoft.com flo.uri.sh *.fls.doubleclick.net www.googletagmanager.com td.doubleclick.net li.protechts.net *.xlgmedia.com *.px-cloud.net merchantpool1.linkedin.com; frame-ancestors 'self' *.www.linkedin.com:*; manifest-src 'self'; report-uri https://www.linkedin.com/security/csp?f=grl
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAYy/XCGw7Wdq8CR8msVUA==
set-cookie: li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH; Max-Age=31536000; Expires=Fri, 17 Apr 2026 18:19:16 GMT; SameSite=None; Path=/; Domain=.www.linkedin.com; Secure; HTTPOnly
bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 17-Apr-2026 18:19:16 GMT; SameSite=None
bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; domain=.www.linkedin.com; Path=/; Secure; Expires=Fri, 17-Apr-2026 18:19:16 GMT; HttpOnly; SameSite=None
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 931dee020e23b518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.licdn.com/sc/h/bv911c32qdqtvy406ldakstgo

151.101.195.42

200 OK

1.1 MB

URL GET
static.licdn.com/sc/h/bv911c32qdqtvy406ldakstgo
IP
151.101.195.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subject*.licdn.com
FingerprintEC:B2:3B:F7:DF:44:D8:71:48:47:3C:3F:8D:BF:87:61:51:FE:FC:C3
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (36866)
Size
1.1 MB (1110009 bytes)
Hash
1594cc076055e419821159a151a40da1
1a111bbc5311aea4a7165acdc74f8242d2e41c1e
0c9d67c884a63a98d53baf9c08abff9b4d9231e60944758b238079501e22b7d0

HTTP Headers

GET /sc/h/bv911c32qdqtvy406ldakstgo HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Fri, 13 Mar 2026 05:46:40 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00063032d89303b60e82a9a2aa14d40b
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYwMtiTA7YOgqmiqhTUCw==
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:16 GMT
age: 811568
x-served-by: cache-iad-kiad7000128-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 36, 1830
x-timer: S1744913957.909508,VS0,VE0
vary: Accept-Encoding
x-cdn: FSLY
access-control-allow-origin: *
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 57
content-length: 158209
X-Firefox-Spdy: h2

static.licdn.com/sc/h/55ggxxse8uyjdh2x78ht3j40q

151.101.195.42

200 OK

0 B

URL HEAD
static.licdn.com/sc/h/55ggxxse8uyjdh2x78ht3j40q
IP
151.101.195.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subject*.licdn.com
FingerprintEC:B2:3B:F7:DF:44:D8:71:48:47:3C:3F:8D:BF:87:61:51:FE:FC:C3
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/55ggxxse8uyjdh2x78ht3j40q HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Sat, 07 Mar 2026 11:37:22 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: image/png
x-fs-uuid: 00062fbf0bb6c2f55c5131be1202267a
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYv//Xt4bLK9qfUEhrNmw==
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:20 GMT
age: 3287710
x-served-by: cache-iad-kjyo7100135-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 27, 1279
x-timer: S1744913960.271808,VS0,VE0
x-cdn: FSLY
access-control-allow-origin: *
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 57
content-length: 5491
X-Firefox-Spdy: h2

www.linkedin.com/platform-telemetry/li/apfcDf

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/platform-telemetry/li/apfcDf
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /platform-telemetry/li/apfcDf HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 9683
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:20 GMT
content-length: 0
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XDIizPKOtyIugv+VQ==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1cea170b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

accounts.google.com/gsi/iframe/select?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&auto_select=true&ux_mode=popup&ui_mode=card&context=signin&as=4dOhqRJ9skjTiW5RGOW2DQ&is_itp=true&channel_id=25a80d984a13b34ca7eb5a16c24b7cd3794fa346afdd26e7dc31d84aae68e3b4&origin=https%3A%2F%2Fwww.linkedin.com

64.233.164.84

200 OK

233 kB

URL GET
accounts.google.com/gsi/iframe/select?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&auto_select=true&ux_mode=popup&ui_mode=card&context=signin&as=4dOhqRJ9skjTiW5RGOW2DQ&is_itp=true&channel_id=25a80d984a13b34ca7eb5a16c24b7cd3794fa346afdd26e7dc31d84aae68e3b4&origin=https%3A%2F%2Fwww.linkedin.com
IP
64.233.164.84:443
ASN
#15169 GOOGLE

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint67:52:2F:AB:93:DE:39:DA:94:50:11:AE:8B:37:CB:88:8F:DC:56:7D
ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT

File type
HTML document, ASCII text, with very long lines (36409)
Size
233 kB (233099 bytes)
Hash
6c0bfd82254f8e590ea2d28d0d11c64f
68e34bfeb724dbd9989808bde4ba229ff09d82e3
99a3bd0759927af0a72f6084e57f58b18c21e307f46abb7355633c94adb6cc0f

HTTP Headers

GET /gsi/iframe/select?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&auto_select=true&ux_mode=popup&ui_mode=card&context=signin&as=4dOhqRJ9skjTiW5RGOW2DQ&is_itp=true&channel_id=25a80d984a13b34ca7eb5a16c24b7cd3794fa346afdd26e7dc31d84aae68e3b4&origin=https%3A%2F%2Fwww.linkedin.com HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 17 Apr 2025 18:19:20 GMT
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-Uf3ZbdfCYkzvhgbB0Enf1w' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.linkedin.com/li/track

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/li/track
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 10763
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:21 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XDNlvyUG5Qo68/X1A==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1f0d040b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

fonts.gstatic.com/s/googlesans/v58/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrw2IJllpyw.ttf

142.250.74.35

200 OK

58 kB

URL GET
fonts.gstatic.com/s/googlesans/v58/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrw2IJllpyw.ttf
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_960305_625506&as=4dOhqRJ9skjTiW5RGOW2DQ&hl=en_US
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint04:FF:92:E7:16:B0:49:91:8B:B7:8D:C6:93:B9:20:B4:2A:33:9F:A8
ValidityThu, 20 Mar 2025 11:19:45 GMT - Thu, 12 Jun 2025 11:19:44 GMT

File type
TrueType Font data, 16 tables, 1st "GDEF", 19 names, Microsoft, language 0x409
Size
58 kB (58272 bytes)
Hash
f9abed3d3d7e0b5a0a5a303b113c53f4
8dea33d500e929b878ced36c5980745c0bf13db9
2bb6585b06b56d32aa48ac85f698aea00a96b5e32b944c9fba5022cd90f97dcf

HTTP Headers

GET /s/googlesans/v58/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrw2IJllpyw.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29438
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Apr 2025 09:34:59 GMT
expires: Fri, 17 Apr 2026 09:34:59 GMT
cache-control: public, max-age=31536000
age: 31462
last-modified: Tue, 23 May 2023 16:35:39 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.linkedin.com/li/track

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/li/track
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1534
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:19 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XCwxmz1cRnC49fYRw==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1338cb0b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

www.linkedin.com/li/track

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/li/track
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1543
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:19 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XCwvi3F7oezN+oiVw==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1338d00b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv

151.101.195.42

200 OK

39 kB

URL GET
static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv
IP
151.101.195.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subject*.licdn.com
FingerprintEC:B2:3B:F7:DF:44:D8:71:48:47:3C:3F:8D:BF:87:61:51:FE:FC:C3
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7566)
Size
39 kB (38752 bytes)
Hash
f5629c31bca5301ab5980247effef360
f61db978aa8c26a7001df3f7600515b9f07f5231
c852b1105eb000028e9b27677996f8d4773daa31fa1aaf663cb6ae3a6857a50a

HTTP Headers

GET /sc/h/1gpe377m8n1eq73qveizv5onv HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Wed, 04 Mar 2026 19:36:14 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00062f8962cbc44ccac15d4943c4a1fc
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYv//WOXhGowgFUKd49ZA==
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:19 GMT
age: 3287716
x-served-by: cache-iad-kcgs7200022-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 51, 2218
x-timer: S1744913960.850174,VS0,VE0
vary: Accept-Encoding
x-cdn: FSLY
access-control-allow-origin: *
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 57
content-length: 13154
X-Firefox-Spdy: h2

accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_960305_625506&as=4dOhqRJ9skjTiW5RGOW2DQ&hl=en_US

64.233.164.84

200 OK

132 kB

URL GET
accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_960305_625506&as=4dOhqRJ9skjTiW5RGOW2DQ&hl=en_US
IP
64.233.164.84:443
ASN
#15169 GOOGLE

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint52:D3:F7:7E:94:6F:70:55:50:A6:EA:38:4B:15:DF:91:54:96:59:82
ValidityMon, 31 Mar 2025 08:56:30 GMT - Mon, 23 Jun 2025 08:56:29 GMT

File type
HTML document, ASCII text, with very long lines (7863)
Size
132 kB (131455 bytes)
Hash
a697b826b9341cb01c991814a7665620
392987188168b9fcf0d566aa78b34e97f960aea7
2f80374608aba16d50f70164dfec48987d224f23e6f9a00d64292db395c23349

HTTP Headers

GET /gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_960305_625506&as=4dOhqRJ9skjTiW5RGOW2DQ&hl=en_US HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 17 Apr 2025 18:19:20 GMT
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: same-site
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-hhAzFw7S4a-zekNHVCE9LA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.linkedin.com/platform-telemetry/li/apfcDf

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/platform-telemetry/li/apfcDf
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /platform-telemetry/li/apfcDf HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 9683
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:20 GMT
content-length: 0
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XDIG6TCyQejm7SlBA==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1cc9f40b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

www.linkedin.com/li/track

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/li/track
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Csrf-Token: ajax:9132356764324105705
Content-Length: 712
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:21 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XDQZa1wlSwqpb1Z/w==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee202ecc0b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

fonts.gstatic.com/s/googlesans/v58/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrw2IJllpyw.ttf

142.250.74.35

200 OK

58 kB

URL GET
fonts.gstatic.com/s/googlesans/v58/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrw2IJllpyw.ttf
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/iframe/select?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&auto_select=true&ux_mode=popup&ui_mode=card&context=signin&as=4dOhqRJ9skjTiW5RGOW2DQ&is_itp=true&channel_id=25a80d984a13b34ca7eb5a16c24b7cd3794fa346afdd26e7dc31d84aae68e3b4&origin=https%3A%2F%2Fwww.linkedin.com
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint04:FF:92:E7:16:B0:49:91:8B:B7:8D:C6:93:B9:20:B4:2A:33:9F:A8
ValidityThu, 20 Mar 2025 11:19:45 GMT - Thu, 12 Jun 2025 11:19:44 GMT

File type
TrueType Font data, 16 tables, 1st "GDEF", 19 names, Microsoft, language 0x409
Size
58 kB (58272 bytes)
Hash
f9abed3d3d7e0b5a0a5a303b113c53f4
8dea33d500e929b878ced36c5980745c0bf13db9
2bb6585b06b56d32aa48ac85f698aea00a96b5e32b944c9fba5022cd90f97dcf

HTTP Headers

GET /s/googlesans/v58/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrw2IJllpyw.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29438
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Apr 2025 09:34:59 GMT
expires: Fri, 17 Apr 2026 09:34:59 GMT
cache-control: public, max-age=31536000
age: 31462
last-modified: Tue, 23 May 2023 16:35:39 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

play.google.com/log?format=json&hasfast=true&authuser=0

142.250.74.142

200 OK

131 B

URL POST
play.google.com/log?format=json&hasfast=true&authuser=0
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_960305_625506&as=4dOhqRJ9skjTiW5RGOW2DQ&hl=en_US
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint12:A5:4A:1B:8A:02:5B:3E:ED:E8:C5:88:16:6F:BF:DE:14:12:DD:CA
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 447
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://accounts.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Thu, 17 Apr 2025 18:19:31 GMT
server: Playlog
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

email.acteon.com/e3t/Ctc/W1%20113/cML6G04/MWwK_5mkxvjW5-DgMc2m4W5TW2bnPc75vtGdXN6R-BZ03qgyTW6N1vHY6lZ3m4W3QY7bv4Wp4V0W4bx9fr2xFm6cW5m60R-8bW1RDW3bQc8s3g68PTW8ltzJj1-8sQsW6q_v_m1llP7BW3THfRq3WRcDhW7Jh-m64bFLGmVDVmWh8JtQLhW3YM1m57_NVJ4W1pKk-m6w7BXWW5YPqn11hczw0W4M9vs51yp78lW4hvn1f33vGhgN2yWr61WdM6MN6cB-YvsVY5RN8xPrfbY-cHhN63s5zzD_tjRW5RFGvQ5r6mzhW3SRDwY7XFd64W2_GsnP9db-vGW8H_WD72H4Bcsf2XTyY004

199.60.103.28

200 OK

7.9 kB

URL User Request GET
email.acteon.com/e3t/Ctc/W1%20113/cML6G04/MWwK_5mkxvjW5-DgMc2m4W5TW2bnPc75vtGdXN6R-BZ03qgyTW6N1vHY6lZ3m4W3QY7bv4Wp4V0W4bx9fr2xFm6cW5m60R-8bW1RDW3bQc8s3g68PTW8ltzJj1-8sQsW6q_v_m1llP7BW3THfRq3WRcDhW7Jh-m64bFLGmVDVmWh8JtQLhW3YM1m57_NVJ4W1pKk-m6w7BXWW5YPqn11hczw0W4M9vs51yp78lW4hvn1f33vGhgN2yWr61WdM6MN6cB-YvsVY5RN8xPrfbY-cHhN63s5zzD_tjRW5RFGvQ5r6mzhW3SRDwY7XFd64W2_GsnP9db-vGW8H_WD72H4Bcsf2XTyY004
IP
199.60.103.28:443
ASN
#209242 Cloudflare London, LLC

Certificate
IssuerGoogle Trust Services
Subjectemail.acteon.com
FingerprintD5:7C:CC:28:6D:6F:8D:BB:BE:81:00:5E:A7:2C:BA:EF:D5:B6:3D:6D
ValidityWed, 05 Mar 2025 03:34:39 GMT - Tue, 03 Jun 2025 04:34:34 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1183)
Size
7.9 kB (7915 bytes)
Hash
aca6480d22328981e5abddfdf9490f14
94d07c1f35d0a8f51ca4ff5ab0f276babb4cbd6f
c45f3dc27361e3d273302df67bba629b8d031670ae1d357a7a4b26dfd19a6b11

HTTP Headers

GET /e3t/Ctc/W1%20113/cML6G04/MWwK_5mkxvjW5-DgMc2m4W5TW2bnPc75vtGdXN6R-BZ03qgyTW6N1vHY6lZ3m4W3QY7bv4Wp4V0W4bx9fr2xFm6cW5m60R-8bW1RDW3bQc8s3g68PTW8ltzJj1-8sQsW6q_v_m1llP7BW3THfRq3WRcDhW7Jh-m64bFLGmVDVmWh8JtQLhW3YM1m57_NVJ4W1pKk-m6w7BXWW5YPqn11hczw0W4M9vs51yp78lW4hvn1f33vGhgN2yWr61WdM6MN6cB-YvsVY5RN8xPrfbY-cHhN63s5zzD_tjRW5RFGvQ5r6mzhW3SRDwY7XFd64W2_GsnP9db-vGW8H_WD72H4Bcsf2XTyY004 HTTP/1.1
Host: email.acteon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 17 Apr 2025 18:19:15 GMT
content-type: text/html;charset=utf-8
cf-ray: 931dedfabc70ebc8-CPH
cf-cache-status: MISS
last-modified: Thu, 17 Apr 2025 18:19:15 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
access-control-allow-credentials: false
referrer-policy: no-referrer
x-content-type-options: nosniff
x-envoy-upstream-service-time: 5
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/event-tracking-td/envoy-proxy-64ddf78968-vwhvp
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 1be4b732-354b-433f-9cdc-ff7e6114e669
x-request-id: 1be4b732-354b-433f-9cdc-ff7e6114e669
x-robots-tag: none
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bBeQWVSMBUQMVfXdX%2BraqIMiM%2BzLDhIWTf4YHC0%2BJYTEs3nT2rwKwujslmejzbbTaYfrvoYGXAdZw1fLSRnSysWp%2Fz25hzdf17snrrjs9l%2BSEHIJnPmD2HQc%2BL2Lc6MulEA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cf_bm=jaw3sp3W_ycUTuFuHyVziY1RpC_smoXMffENqMhWJBo-1744913955-1.0.1.1-P.Uz63K8zosJexs4svd5.iehWZGYvGbExHlPGgRYx6I9q2rb_TLgcs37m6ejNs8.XNwicmee6C1tTgZyJYq7gp2zJsDc13d8nfzD9LGFqIE; path=/; expires=Thu, 17-Apr-25 18:49:15 GMT; domain=.email.acteon.com; HttpOnly; Secure; SameSite=None
_cfuvid=mNkNl_GE.5GaZx5zZIS2ezXc459c55uATEDb5P5nKaM-1744913955162-0.0.1.1-604800000; path=/; domain=.email.acteon.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.licdn.com/sc/h/zf50zdwg8datnmpgmdbkdc4r

151.101.195.42

200 OK

2.2 kB

URL GET
static.licdn.com/sc/h/zf50zdwg8datnmpgmdbkdc4r
IP
151.101.195.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subject*.licdn.com
FingerprintEC:B2:3B:F7:DF:44:D8:71:48:47:3C:3F:8D:BF:87:61:51:FE:FC:C3
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2154), with no line terminators
Size
2.2 kB (2154 bytes)
Hash
ea350de8e75350b4b31dab06b0a3e01d
509be4b34b6a08a73231a6aba052900db2f153ff
f64af0c4e8cbe6b7478a7f2588e51b86a0aa46dc3342b73572106278c52c83ef

HTTP Headers

GET /sc/h/zf50zdwg8datnmpgmdbkdc4r HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Sun, 01 Mar 2026 03:07:55 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00062f3f3ac2da4bc4af4eb43239227f
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYv//WTwzAD/FkLOWVFEA==
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:16 GMT
age: 3059279
x-served-by: cache-iad-kiad7000132-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 143, 2762
x-timer: S1744913957.903013,VS0,VE0
vary: Accept-Encoding
x-cdn: FSLY
access-control-allow-origin: *
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 57
content-length: 785
X-Firefox-Spdy: h2

static.licdn.com/sc/h/adqhirffnjsw3nwge4cky8lfm

151.101.195.42

200 OK

460 kB

URL GET
static.licdn.com/sc/h/adqhirffnjsw3nwge4cky8lfm
IP
151.101.195.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subject*.licdn.com
FingerprintEC:B2:3B:F7:DF:44:D8:71:48:47:3C:3F:8D:BF:87:61:51:FE:FC:C3
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (31011)
Size
460 kB (459853 bytes)
Hash
74b86e7083e58b27b26396e3783a1838
7cba981a65a40cb48d586783e472383ab2c33f85
a6841294c22da9a3c696d8b4bfe668d69acc243c45b1121e28a12b57b06fb712

HTTP Headers

GET /sc/h/adqhirffnjsw3nwge4cky8lfm HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Fri, 13 Mar 2026 05:46:40 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00063032d8930475a52607b4ca4af850
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYwMtiTBHWlJge0ykr4UA==
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:16 GMT
age: 1817563
x-served-by: cache-iad-kjyo7100114-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 18, 4066
x-timer: S1744913957.909871,VS0,VE0
vary: Accept-Encoding
x-cdn: FSLY
access-control-allow-origin: *
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 57
content-length: 116269
X-Firefox-Spdy: h2

www.linkedin.com/li/track

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/li/track
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Csrf-Token: ajax:9132356764324105705
Content-Length: 1488
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:20 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XDFU5BnlACUVZ2U4g==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1ba8860b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

play.google.com/log?format=json&hasfast=true&authuser=0

142.250.74.142

200 OK

131 B

URL POST
play.google.com/log?format=json&hasfast=true&authuser=0
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/iframe/select?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&auto_select=true&ux_mode=popup&ui_mode=card&context=signin&as=4dOhqRJ9skjTiW5RGOW2DQ&is_itp=true&channel_id=25a80d984a13b34ca7eb5a16c24b7cd3794fa346afdd26e7dc31d84aae68e3b4&origin=https%3A%2F%2Fwww.linkedin.com
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint12:A5:4A:1B:8A:02:5B:3E:ED:E8:C5:88:16:6F:BF:DE:14:12:DD:CA
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 411
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://accounts.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Thu, 17 Apr 2025 18:19:31 GMT
server: Playlog
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

email.acteon.com/events/public/v1/encoded/track/tc/W1%20113/cML6G04/MWwK_5mkxvjW5-DgMc2m4W5TW2bnPc75vtGdXN6R-BZ03qgyTW6N1vHY6lZ3m4W3QY7bv4Wp4V0W4bx9fr2xFm6cW5m60R-8bW1RDW3bQc8s3g68PTW8ltzJj1-8sQsW6q_v_m1llP7BW3THfRq3WRcDhW7Jh-m64bFLGmVDVmWh8JtQLhW3YM1m57_NVJ4W1pKk-m6w7BXWW5YPqn11hczw0W4M9vs51yp78lW4hvn1f33vGhgN2yWr61WdM6MN6cB-YvsVY5RN8xPrfbY-cHhN63s5zzD_tjRW5RFGvQ5r6mzhW3SRDwY7XFd64W2_GsnP9db-vGW8H_WD72H4Bcsf2XTyY004?_ud=548d4046-5ac7-4aae-b90c-d3b60bdd9ef9&_jss=1&_fl=8&_pl=5&_hc=48&_lg=en-US,en&_plt=Linux%20x86_64&_scr=1280,1024

199.60.103.28

307 Temporary Redirect

56 kB

URL User Request GET
email.acteon.com/events/public/v1/encoded/track/tc/W1%20113/cML6G04/MWwK_5mkxvjW5-DgMc2m4W5TW2bnPc75vtGdXN6R-BZ03qgyTW6N1vHY6lZ3m4W3QY7bv4Wp4V0W4bx9fr2xFm6cW5m60R-8bW1RDW3bQc8s3g68PTW8ltzJj1-8sQsW6q_v_m1llP7BW3THfRq3WRcDhW7Jh-m64bFLGmVDVmWh8JtQLhW3YM1m57_NVJ4W1pKk-m6w7BXWW5YPqn11hczw0W4M9vs51yp78lW4hvn1f33vGhgN2yWr61WdM6MN6cB-YvsVY5RN8xPrfbY-cHhN63s5zzD_tjRW5RFGvQ5r6mzhW3SRDwY7XFd64W2_GsnP9db-vGW8H_WD72H4Bcsf2XTyY004?_ud=548d4046-5ac7-4aae-b90c-d3b60bdd9ef9&_jss=1&_fl=8&_pl=5&_hc=48&_lg=en-US,en&_plt=Linux%20x86_64&_scr=1280,1024
IP
199.60.103.28:443
ASN
#209242 Cloudflare London, LLC

Certificate
IssuerGoogle Trust Services
Subjectemail.acteon.com
FingerprintD5:7C:CC:28:6D:6F:8D:BB:BE:81:00:5E:A7:2C:BA:EF:D5:B6:3D:6D
ValidityWed, 05 Mar 2025 03:34:39 GMT - Tue, 03 Jun 2025 04:34:34 GMT

File type

Size
56 kB (55951 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /events/public/v1/encoded/track/tc/W1%20113/cML6G04/MWwK_5mkxvjW5-DgMc2m4W5TW2bnPc75vtGdXN6R-BZ03qgyTW6N1vHY6lZ3m4W3QY7bv4Wp4V0W4bx9fr2xFm6cW5m60R-8bW1RDW3bQc8s3g68PTW8ltzJj1-8sQsW6q_v_m1llP7BW3THfRq3WRcDhW7Jh-m64bFLGmVDVmWh8JtQLhW3YM1m57_NVJ4W1pKk-m6w7BXWW5YPqn11hczw0W4M9vs51yp78lW4hvn1f33vGhgN2yWr61WdM6MN6cB-YvsVY5RN8xPrfbY-cHhN63s5zzD_tjRW5RFGvQ5r6mzhW3SRDwY7XFd64W2_GsnP9db-vGW8H_WD72H4Bcsf2XTyY004?_ud=548d4046-5ac7-4aae-b90c-d3b60bdd9ef9&_jss=1&_fl=8&_pl=5&_hc=48&_lg=en-US,en&_plt=Linux%20x86_64&_scr=1280,1024 HTTP/1.1
Host: email.acteon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=jaw3sp3W_ycUTuFuHyVziY1RpC_smoXMffENqMhWJBo-1744913955-1.0.1.1-P.Uz63K8zosJexs4svd5.iehWZGYvGbExHlPGgRYx6I9q2rb_TLgcs37m6ejNs8.XNwicmee6C1tTgZyJYq7gp2zJsDc13d8nfzD9LGFqIE; _cfuvid=mNkNl_GE.5GaZx5zZIS2ezXc459c55uATEDb5P5nKaM-1744913955162-0.0.1.1-604800000
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 307 Temporary Redirect
date: Thu, 17 Apr 2025 18:19:15 GMT
location: https://www.linkedin.com/company/1642134/?utm_campaign=Other&utm_medium=email&_hsenc=p2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ&_hsmi=357059700&utm_content=357023050&utm_source=hs_email
cf-ray: 931dedfe6832ebd0-CPH
cf-cache-status: MISS
link: <https://www.linkedin.com/company/1642134/?utm_campaign=Other&utm_medium=email&_hsenc=p2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ&_hsmi=357059700&utm_content=357023050&utm_source=hs_email>; rel="canonical"
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
access-control-allow-credentials: false
referrer-policy: no-referrer
x-content-type-options: nosniff
x-envoy-upstream-service-time: 32
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/event-tracking-td/envoy-proxy-64ddf78968-h452f
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 510502c9-b5ed-4f55-bbf3-9e8a0ee681c5
x-request-id: 510502c9-b5ed-4f55-bbf3-9e8a0ee681c5
x-robots-tag: none
priority: u=1,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o%2BK3J02ulhGnlp2gtUHZIBUUOfBn4Xm%2B7vh%2Fl%2FW7RgqP3dzkuLBgdawL8xWzvlAcNdvKcQnmncyeHwqtk0bYjRSchPYQIRH6EQHGs2j%2BzSZvfi0Pt6L%2BBytA56ETfW09Fk8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

www.linkedin.com/li/track

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/li/track
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Csrf-Token: ajax:9132356764324105705
Content-Length: 6324
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:20 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XDFZttUSK0mupxs2A==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1b987e0b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

static.licdn.com/sc/h/aofke6z5sqc44bjlvj6yr05c8

151.101.195.42

200 OK

0 B

URL HEAD
static.licdn.com/sc/h/aofke6z5sqc44bjlvj6yr05c8
IP
151.101.195.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subject*.licdn.com
FingerprintEC:B2:3B:F7:DF:44:D8:71:48:47:3C:3F:8D:BF:87:61:51:FE:FC:C3
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/aofke6z5sqc44bjlvj6yr05c8 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Wed, 04 Feb 2026 15:59:15 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00062d53173a51e4af51f45579b47524
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYv//WNXNDIBO2gCx2Duw==
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:20 GMT
age: 1750023
x-served-by: cache-iad-kjyo7100138-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 147, 3095
x-timer: S1744913960.308234,VS0,VE0
vary: Accept-Encoding
x-cdn: FSLY
access-control-allow-origin: *
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 57
content-length: 75389
X-Firefox-Spdy: h2

www.linkedin.com/li/track

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/li/track
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 5404
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:20 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XDJYMwar4l4GixXJQ==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1ca9d00b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

www.linkedin.com/platform-telemetry/li/apfcDf

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/platform-telemetry/li/apfcDf
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /platform-telemetry/li/apfcDf HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 9683
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:20 GMT
content-length: 0
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XDIICUZ7mmf8CZGtg==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1cb9e10b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

www.linkedin.com/apfc/collect

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/apfc/collect
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /apfc/collect HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 9730
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:21 GMT
content-length: 0
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; connect-src 'self' *.licdn.com *.linkedin.com cdn.linkedin.oribi.io dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ v.clarity.ms/collect *.microsoft.com *.adnxs.com *.tealiumiq.com login.microsoftonline.com www.google.com google.com adservice.google.com pagead2.googlesyndication.com td.doubleclick.net www.googletagmanager.com ad.doubleclick.net; script-src 'report-sample' 'sha256-th47JTnh6tX15SUn/I+GGmsOSXpa7dh5Skner77gxlY=' 'sha256-SSoodjUD3LGm2FfFCVHGqEb8D4UM3OOigidT2UKDcYg=' 'sha256-cKTgdnmO6+hXd85a9wKg1effVfVzenUAtUCyOKY9bQE=' 'sha256-DwtT8+ZZKpxH9pqZNAmJ3GdbLAh5SsYaXR3omTXPCns=' 'sha256-sV9jZa797T0QWBzcU/CNd4tpBhTnh+TFdLnfjlitl28=' 'sha256-aa/Q8CRBDSqTQbCIyioPhZaz+G+dbPyu7BzsjInEmiU=' 'sha256-THuVhwbXPeTR0HszASqMOnIyxqEgvGyBwSPBKBF/iMc=' 'sha256-zTIusdVJJeXz9+iox2a+pdDglzbpRpFVRzEwvW4AONk=' 'sha256-iC8MPqNLw0FDnsBf4DlSkFLNTwhkI85aouiAEB819ic=' 'sha256-2EqrEvcPzl8c6/TSGVvaVMEe7lg700MAz/te4/3kTYY=' 'sha256-y5uW69VItKj51mcc7UD9qfptDVUqicZL+bItEpvVNDw=' 'sha256-DatsFGoJ8gFkzzxo47Ou76WZ+3QBPOQHtBu9p9b3DhA=' 'sha256-k95cyM8gFgPziZe5VQ2IvJvBUVyd5zFt2CokIUwqdHE=' 'sha256-PyCXNcEkzRWqbiNr087fizmiBBrq9O6GGD8eV3P09Ik=' 'sha256-RFqsjmAF1N5LnfpaHFvPqFlVkeIS/DtTAFor+JjJJVc=' 'sha256-2SQ55Erm3CPCb+k03EpNxU9bdV3XL9TnVTriDs7INZ4=' 'sha256-S/KSPe186K/1B0JEjbIXcCdpB97krdzX05S+dHnQjUs=' 'sha256-9pXOIwF4N0gPltLd3AI69lkCjSC2H/Eb3sc5zdmUyYU=' 'sha256-jou6v/Nleyzoc+LXktAv1Fp8M807dVVxy7E/yzVljHc=' 'sha256-6E4e/3dSvj/8JZT2S2yR91mspqM6MyOpKl5lrhHsZa8=' 'sha256-3woF8BZ54TeXM+czaH3aXoaJsVpiamuAKFsXDykAR/Q=' 'sha256-vIfNcKb8ixJg1cfJIoNNYjWcm0lezj1/XpUNFiZyVsU=' 'sha256-cLsHUHFgT/VGX04cZrJ9xgm4HbzTR7ptutkxK+7BlMk=' 'sha256-BwU8jMnQYUhjOpsDVABpfddV/DlP1ZYrFcTumYw7x54=' 'sha256-wz6ika9i3WU3bpUPdhYDZeO/NrDQniDyiscN0LWnyaY=' 'sha256-3RIGhhApBii1KY+aW1xk7kFyoQY8vSVE5DfT7E9SJUc=' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com snap.licdn.com www.googletagmanager.com/gtag/js www.googleadservices.com/pagead/ www.google.com/pagead/ googleads.g.doubleclick.net/pagead/ adservice.google.com/pagead/ pagead2.googlesyndication.com/pagead/ www.googletagmanager.com/gtag/destination merchantpool1.linkedin.com/mdt.js; img-src data: blob: * android-webview-video-poster:; font-src data: *; style-src 'self' 'unsafe-inline' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; media-src 'self' *.licdn.com *.lynda.com; worker-src 'self' blob: static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; frame-src 'self' www.youtube.com/embed/ www.youtube-nocookie.com/embed/ lnkd.demdex.net smartlock.google.com accounts.google.com player.vimeo.com *.linkedin.com www.slideshare.net *.megaphone.fm *.omny.fm *.sounder.fm msit.powerbi.com app.powerbi.com linkedin.github.io *.licdn.com *.adnxs.com acdn.adnxs-simple.com radar.cedexis.com edge-auth.microsoft.com flo.uri.sh *.fls.doubleclick.net www.googletagmanager.com td.doubleclick.net li.protechts.net *.xlgmedia.com *.px-cloud.net merchantpool1.linkedin.com; frame-ancestors 'self' *.www.linkedin.com:*; manifest-src 'self'; report-uri https://www.linkedin.com/security/csp?f=gd
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XDNgljRkaR+WO9ZiQ==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1f0cfb0b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

static.licdn.com/sc/h/1y6xr7w1gteq3hvb63txn5kbd

151.101.195.42

200 OK

611 kB

URL GET
static.licdn.com/sc/h/1y6xr7w1gteq3hvb63txn5kbd
IP
151.101.195.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subject*.licdn.com
FingerprintEC:B2:3B:F7:DF:44:D8:71:48:47:3C:3F:8D:BF:87:61:51:FE:FC:C3
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
611 kB (611347 bytes)
Hash
2b52cc07d10fce42c86a2c77c2f35922
5fc0b0fd8af6f1579428c14d89803329d4788bbe
5f769f77fbf675e18f5f992a8b3ac8bf9443622b484276fee0d42d0d68c63a58

HTTP Headers

GET /sc/h/1y6xr7w1gteq3hvb63txn5kbd HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Thu, 02 Apr 2026 17:16:24 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/css
x-fs-uuid: 000631ced015ff551dd5e6c2e547664d
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYxztAV/1Ud1ebC5UdmTQ==
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:16 GMT
age: 1299771
x-served-by: cache-iad-kiad7000056-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 14, 1749
x-timer: S1744913957.901402,VS0,VE0
vary: Accept-Encoding
x-cdn: FSLY
access-control-allow-origin: *
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 57
content-length: 57067
X-Firefox-Spdy: h2

static.licdn.com/sc/h/4uv1mjitc2ilc5wrkjv8i94b7

151.101.195.42

200 OK

131 kB

URL GET
static.licdn.com/sc/h/4uv1mjitc2ilc5wrkjv8i94b7
IP
151.101.195.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subject*.licdn.com
FingerprintEC:B2:3B:F7:DF:44:D8:71:48:47:3C:3F:8D:BF:87:61:51:FE:FC:C3
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Size
131 kB (130822 bytes)
Hash
a4aeea93e6dfec3c3a2da3a7f8704baa
76e1fce88bc750a8ee1425d7eca47d392b8bfad3
8e044e5a805397fa76f92ce8be2f3d55c62633c4b35c2c6c8bb163b60526f0d6

HTTP Headers

GET /sc/h/4uv1mjitc2ilc5wrkjv8i94b7 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Tue, 10 Mar 2026 15:21:42 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00062ffe87908ca8f353764f1e2d1a2f
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYv//VxO+2lR9iMCeY+WA==
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:16 GMT
age: 3287716
x-served-by: cache-iad-kiad7000174-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 160, 3195
x-timer: S1744913957.924665,VS0,VE0
vary: Accept-Encoding
x-cdn: FSLY
access-control-allow-origin: *
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 57
content-length: 35268
X-Firefox-Spdy: h2

static.licdn.com/sc/h/cwn0a0e7hog2i33c88ucrvot5

151.101.195.42

200 OK

8.3 kB

URL GET
static.licdn.com/sc/h/cwn0a0e7hog2i33c88ucrvot5
IP
151.101.195.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subject*.licdn.com
FingerprintEC:B2:3B:F7:DF:44:D8:71:48:47:3C:3F:8D:BF:87:61:51:FE:FC:C3
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type
exported SGML document, ASCII text
Size
8.3 kB (8347 bytes)
Hash
da023928a8a844dbf7770405a9081a59
d56e90e19e1b1225edc32f7266b1662c8fb6c72c
779e6f64994afd63f7f3a9bdda69693df4a8315156567c1aa6daa8d1ebc87dd5

HTTP Headers

GET /sc/h/cwn0a0e7hog2i33c88ucrvot5 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.licdn.com/sc/h/1y6xr7w1gteq3hvb63txn5kbd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Wed, 04 Feb 2026 15:24:37 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: image/svg+xml
x-fs-uuid: 00062d529b5f05e70e129b8f7223ee5b
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYv//WUThS9ihAsnBXgww==
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:17 GMT
age: 3287713
x-served-by: cache-iad-kjyo7100035-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 53, 2309
x-timer: S1744913957.266038,VS0,VE0
vary: Accept-Encoding
x-cdn: FSLY
access-control-allow-origin: *
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 57
content-length: 1769
X-Firefox-Spdy: h2

www.linkedin.com/litms/api/metadata/user

104.18.41.41

200 OK

407 B

URL GET
www.linkedin.com/litms/api/metadata/user
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type
JSON text data
Size
407 B (407 bytes)
Hash
1c78779313accda26639508f8740b273
e9613aa7f250fbd07d46eceb84d8619b5f945cd5
9515ec8f0f2bd44a9ecd7d59af46ed343c1f6b3d74d285cbf8e61fd036caf899

HTTP Headers

GET /litms/api/metadata/user HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:20 GMT
content-type: application/json
content-length: 255
vary: Origin,Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: frame-ancestors 'self'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XDFy4E1yzVM8ZIn7w==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1bd8bd0b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

fonts.gstatic.com/s/googlesans/v58/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrwEIJllpyw.ttf

142.250.74.35

200 OK

58 kB

URL GET
fonts.gstatic.com/s/googlesans/v58/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrwEIJllpyw.ttf
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_960305_625506&as=4dOhqRJ9skjTiW5RGOW2DQ&hl=en_US
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint04:FF:92:E7:16:B0:49:91:8B:B7:8D:C6:93:B9:20:B4:2A:33:9F:A8
ValidityThu, 20 Mar 2025 11:19:45 GMT - Thu, 12 Jun 2025 11:19:44 GMT

File type
TrueType Font data, 16 tables, 1st "GDEF", 18 names, Microsoft, language 0x409
Size
58 kB (58088 bytes)
Hash
862b817e56e996cf40c25f2875123a16
2f25e55d267170f55715f7255572c3cc2a5dd967
924a754711d11983614f08302d9733ddb0756a0561e90ad0e9b7cecfe489c4fb

HTTP Headers

GET /s/googlesans/v58/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrwEIJllpyw.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28161
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Apr 2025 09:22:25 GMT
expires: Fri, 17 Apr 2026 09:22:25 GMT
cache-control: public, max-age=31536000
age: 32216
last-modified: Tue, 23 May 2023 16:35:56 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

play.google.com/log?format=json&hasfast=true&authuser=0

142.250.74.142

200 OK

0 B

URL OPTIONS
play.google.com/log?format=json&hasfast=true&authuser=0
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_960305_625506&as=4dOhqRJ9skjTiW5RGOW2DQ&hl=en_US
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint12:A5:4A:1B:8A:02:5B:3E:ED:E8:C5:88:16:6F:BF:DE:14:12:DD:CA
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://accounts.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Thu, 17 Apr 2025 18:19:30 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/googlesans/v58/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrwEIJllpyw.ttf

142.250.74.35

200 OK

58 kB

URL GET
fonts.gstatic.com/s/googlesans/v58/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrwEIJllpyw.ttf
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/iframe/select?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&auto_select=true&ux_mode=popup&ui_mode=card&context=signin&as=4dOhqRJ9skjTiW5RGOW2DQ&is_itp=true&channel_id=25a80d984a13b34ca7eb5a16c24b7cd3794fa346afdd26e7dc31d84aae68e3b4&origin=https%3A%2F%2Fwww.linkedin.com
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint04:FF:92:E7:16:B0:49:91:8B:B7:8D:C6:93:B9:20:B4:2A:33:9F:A8
ValidityThu, 20 Mar 2025 11:19:45 GMT - Thu, 12 Jun 2025 11:19:44 GMT

File type
TrueType Font data, 16 tables, 1st "GDEF", 18 names, Microsoft, language 0x409
Size
58 kB (58088 bytes)
Hash
862b817e56e996cf40c25f2875123a16
2f25e55d267170f55715f7255572c3cc2a5dd967
924a754711d11983614f08302d9733ddb0756a0561e90ad0e9b7cecfe489c4fb

HTTP Headers

GET /s/googlesans/v58/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrwEIJllpyw.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28161
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Apr 2025 09:22:25 GMT
expires: Fri, 17 Apr 2026 09:22:25 GMT
cache-control: public, max-age=31536000
age: 32216
last-modified: Tue, 23 May 2023 16:35:56 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.licdn.com/sc/h/197uwztl9tc7da125f1lb9vac

151.101.195.42

200 OK

60 kB

URL GET
static.licdn.com/sc/h/197uwztl9tc7da125f1lb9vac
IP
151.101.195.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subject*.licdn.com
FingerprintEC:B2:3B:F7:DF:44:D8:71:48:47:3C:3F:8D:BF:87:61:51:FE:FC:C3
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (60295)
Size
60 kB (60302 bytes)
Hash
a5487095c5f46af9be9342ee646c2d96
fd03b1f16a78ffee1e221ad894b6e751e43cf69a
64ffee06d6bd76ecae5437681c88dc2f3b8ec9051543c2f57b41a0a267124e70

HTTP Headers

GET /sc/h/197uwztl9tc7da125f1lb9vac HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Wed, 15 Apr 2026 16:43:05 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 000632d3dce5db457522e5f458c8be3f
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYy09zl20V1IuX0WMi+Pw==
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:16 GMT
age: 178570
x-served-by: cache-iad-kjyo7100119-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 4, 2831
x-timer: S1744913957.901935,VS0,VE0
vary: Accept-Encoding
x-cdn: FSLY
access-control-allow-origin: *
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 57
content-length: 17237
X-Firefox-Spdy: h2

static.licdn.com/sc/h/aofke6z5sqc44bjlvj6yr05c8

151.101.195.42

200 OK

225 kB

URL GET
static.licdn.com/sc/h/aofke6z5sqc44bjlvj6yr05c8
IP
151.101.195.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subject*.licdn.com
FingerprintEC:B2:3B:F7:DF:44:D8:71:48:47:3C:3F:8D:BF:87:61:51:FE:FC:C3
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (3720)
Size
225 kB (224639 bytes)
Hash
265cad589850453477599bdf5da877ba
a3527c846010d4564e83bee8e8f998f234e3ee8e
9b4ee259dba330297213fb2a7986c0e9cd9fdbbaa3745ebdfce48d891f09f297

HTTP Headers

GET /sc/h/aofke6z5sqc44bjlvj6yr05c8 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Wed, 04 Feb 2026 15:59:15 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00062d53173a51e4af51f45579b47524
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYv//WNXNDIBO2gCx2Duw==
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:19 GMT
age: 1750022
x-served-by: cache-iad-kjyo7100138-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 147, 3094
x-timer: S1744913960.843612,VS0,VE0
vary: Accept-Encoding
x-cdn: FSLY
access-control-allow-origin: *
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 57
content-length: 75389
X-Firefox-Spdy: h2

static.licdn.com/sc/h/9lb1g1kp916tat669q9r5g2kz

151.101.195.42

200 OK

0 B

URL HEAD
static.licdn.com/sc/h/9lb1g1kp916tat669q9r5g2kz
IP
151.101.195.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subject*.licdn.com
FingerprintEC:B2:3B:F7:DF:44:D8:71:48:47:3C:3F:8D:BF:87:61:51:FE:FC:C3
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/9lb1g1kp916tat669q9r5g2kz HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Tue, 10 Mar 2026 17:04:03 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: image/x-icon
x-fs-uuid: 00062ffff599157053ab90df36c8a12a
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYv//WZFXBTq5DfNsihKg==
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:20 GMT
age: 3238109
x-served-by: cache-iad-kjyo7100068-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 53, 3473
x-timer: S1744913960.273700,VS0,VE0
x-cdn: FSLY
access-control-allow-origin: *
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 57
content-length: 799
X-Firefox-Spdy: h2

www.linkedin.com/platform-telemetry/li/apfcDf

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/platform-telemetry/li/apfcDf
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /platform-telemetry/li/apfcDf HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 9643
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:20 GMT
content-length: 0
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XDH+QGUfG+uzq9Z4g==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1ca9d10b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

platform.linkedin.com/litms/utag/checkpoint-frontend/utag.js?cb=1744913700000

151.101.67.42

200 OK

145 kB

URL GET
platform.linkedin.com/litms/utag/checkpoint-frontend/utag.js?cb=1744913700000
IP
151.101.67.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectplatform.linkedin.com
Fingerprint03:DE:DC:66:34:BA:22:C4:84:A7:74:01:02:CA:BB:57:2A:52:14:FB
ValidityTue, 11 Mar 2025 00:00:00 GMT - Thu, 11 Sep 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (37052)
Size
145 kB (145439 bytes)
Hash
89ceb82e7b00ce87f539889bc69ce1eb
e26533fe66137c4ceb30075e8fb7f9a118671697
147250e437dc2568385032ee76c36a33b2b2d06120b7d8d290693ac47c3f0f41

HTTP Headers

GET /litms/utag/checkpoint-frontend/utag.js?cb=1744913700000 HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Cookie: lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
cache-control: max-age=300
last-modified: Fri, 01 Feb 1980 00:00:00 GMT
content-encoding: gzip
access-control-allow-origin: *
content-type: application/javascript; charset=utf-8
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
x-li-uuid: AAYy/IPN8/8zAvrATubS7Q==
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:20 GMT
age: 211
x-served-by: cache-iad-kjyo7100116-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 28, 4
x-timer: S1744913961.510407,VS0,VE0
vary: Accept-Encoding
x-cdn: FSLY
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 17
backend: ssl_shield_iad_va_us
content-length: 45371
X-Firefox-Spdy: h2

www.linkedin.com/li/track

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/li/track
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Csrf-Token: ajax:9132356764324105705
Content-Length: 732
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:20 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XDGbUMB2JPU2YZi8A==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1c08f70b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

play.google.com/log?format=json&hasfast=true&authuser=0

142.250.74.142

200 OK

0 B

URL OPTIONS
play.google.com/log?format=json&hasfast=true&authuser=0
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/iframe/select?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&auto_select=true&ux_mode=popup&ui_mode=card&context=signin&as=4dOhqRJ9skjTiW5RGOW2DQ&is_itp=true&channel_id=25a80d984a13b34ca7eb5a16c24b7cd3794fa346afdd26e7dc31d84aae68e3b4&origin=https%3A%2F%2Fwww.linkedin.com
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint12:A5:4A:1B:8A:02:5B:3E:ED:E8:C5:88:16:6F:BF:DE:14:12:DD:CA
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://accounts.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Thu, 17 Apr 2025 18:19:31 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.licdn.com/sc/h/76f1ci9li19d0p7s5cdu6o7vd

151.101.195.42

200 OK

24 kB

URL GET
static.licdn.com/sc/h/76f1ci9li19d0p7s5cdu6o7vd
IP
151.101.195.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subject*.licdn.com
FingerprintEC:B2:3B:F7:DF:44:D8:71:48:47:3C:3F:8D:BF:87:61:51:FE:FC:C3
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (24147), with no line terminators
Size
24 kB (24154 bytes)
Hash
836eb5441cb2bb0104831f80d1a2baf2
4720d792c65fd4617ef9f5c5ab7b78fee84bbfb2
dc231e650e3dd0bfd35de69fc9f9d2c0bb1f153d39e0b7eff17c451fbc2511f4

HTTP Headers

GET /sc/h/76f1ci9li19d0p7s5cdu6o7vd HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Tue, 10 Mar 2026 04:56:25 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00062ff5cb5a1ed7c30f76a5603004fc
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYv//VxXweF8+3qNLcGwQ==
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:16 GMT
age: 3067829
x-served-by: cache-iad-kcgs7200088-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 150, 2853
x-timer: S1744913957.905608,VS0,VE0
vary: Accept-Encoding
x-cdn: FSLY
access-control-allow-origin: *
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 57
content-length: 8155
X-Firefox-Spdy: h2

static.licdn.com/sc/h/aj4dyx1jstg91ffoizgyqt0xm

151.101.195.42

200 OK

317 kB

URL GET
static.licdn.com/sc/h/aj4dyx1jstg91ffoizgyqt0xm
IP
151.101.195.42:443
ASN
#54113 FASTLY

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subject*.licdn.com
FingerprintEC:B2:3B:F7:DF:44:D8:71:48:47:3C:3F:8D:BF:87:61:51:FE:FC:C3
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
317 kB (317109 bytes)
Hash
542a70f321e54db9e0e049a7e132f596
73b2bdb26799cd6019ce105acf31295a20a52f46
7453667c893797219d4b1213ca16cb70827e1a2b7b8208f7199e87c374096972

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Anti-debugging code

HTTP Headers

GET /sc/h/aj4dyx1jstg91ffoizgyqt0xm HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Wed, 15 Apr 2026 16:42:22 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 000632d3da51cf84fe1f10ff82404f2a
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYy09pRz4T+HxD/gkBPKg==
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 17 Apr 2025 18:19:16 GMT
age: 178614
x-served-by: cache-iad-kiad7000037-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 9, 3236
x-timer: S1744913957.907205,VS0,VE0
vary: Accept-Encoding
x-cdn: FSLY
access-control-allow-origin: *
timing-allow-origin: *
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
version: 57
content-length: 79394
X-Firefox-Spdy: h2

www.linkedin.com/platform-telemetry/li/apfcDf

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/platform-telemetry/li/apfcDf
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /platform-telemetry/li/apfcDf HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 9643
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:20 GMT
content-length: 0
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XDIV/jiF57QK3uRVg==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1cd9f80b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

www.linkedin.com/li/track

104.18.41.41

200 OK

0 B

URL POST
www.linkedin.com/li/track
IP
104.18.41.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintEA:ED:61:47:7E:F0:E7:48:47:58:C7:BA:C8:F0:07:3B:88:95:A9:72
ValiditySun, 16 Mar 2025 00:00:00 GMT - Tue, 16 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Csrf-Token: ajax:9132356764324105705
Content-Length: 3035
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1642134%2F%3Futm_campaign%3DOther%26utm_medium%3Demail%26_hsenc%3Dp2ANqtz-_bQcHYbJ5R18ZHuk075fOUvYOd6dXAPeaPl8gAp0BGByoVtcA9gLGeud4T6TqMs-HorfSsgIHGV05P40_WadeEzGwlcQ%26_hsmi%3D357059700%26utm_content%3D357023050%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:9132356764324105705; lang=v=2&lang=en-us; bcookie="v=2&3cfaff45-fa48-46a7-83d9-9a6e3bcd0928"; bscookie="v=1&20250417181916c58149e0-87f5-48f6-8307-976f215758dbAQGN9DoysLeyUKpiG6hfD6Kda4po-8_u"; li_gc=MTswOzE3NDQ5MTM5NTY7MjswMjHj8OktqsRELElVbgFlEtPfTDRjh0m0/3srDV2H8c+o8w==; lidc="b=OGST09:s=O:r=O:a=O:p=O:g=3115:u=1:x=1:i=1744913956:t=1745000356:v=2:sig=AQGNaEFlV3vSrH74FRvaNryJTQOD83i6"; __cf_bm=ydfcakblLHiL5BdokMt0KzZfAHW9FYjAWC_bbziqdhc-1744913956-1.0.1.1-mP0jele07JBSr7RtBr.dYbhS8YQySsPaEYYx0YYCN92nkanHGlsbMY2lz032Yq2IcsMHHp3iKBeGdIix5gP8_temq303g8mu2qRBy_F.nso; li_rm=AQF7KWakDibRMwAAAZZE-f3FBZbxWs-kh3VsXvcW4J8kEixP6dQKHE5y7b1DOmpBE-MQOt3baEui6A9658q_qNm7x5W7UwrWEUOlCanYeM7Hdj8d27Lk1sZH
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 17 Apr 2025 18:19:20 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lor1
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
x-li-pop: cf-prod-lor1-x
x-li-proto: http/3
x-li-uuid: AAYy/XDNjtziOqcjFQg5+Q==
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 931dee1f0d0b0b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML