urlscan.io logo urlscan.io
SecurityTrails logo

notes.io Open in urlscan Pro
172.67.197.149  Public Scan

Go To Rescan Add Verdict Report
URL: https://notes.io/qd7KY
Submission: On September 15 via manual from FR — Scanned from AU
 Behaviour Indicators
Similar DOM Content API
Verdicts

Summary

This website contacted 20 IPs in 4 countries across 14 domains to perform 87 HTTP transactions. The main IP is 172.67.197.149, located in United States and belongs to CLOUDFLARENET, US. The main domain is notes.io. The Cisco Umbrella rank of the primary domain is 443979.
TLS certificate: Issued by Cloudflare Inc ECC CA-3 on November 21st 2021. Valid for: a year.
This is the only time notes.io was scanned on urlscan.io!

urlscan.io Verdict: No classification

Domain & IP information

IP Address AS Autonomous System
35 172.67.197.149 13335 (CLOUDFLAR...)
2 13 74.125.68.157 15169 (GOOGLE)
5 104.26.0.126 13335 (CLOUDFLAR...)
1 172.64.156.26 13335 (CLOUDFLAR...)
1 2 142.251.12.97 15169 (GOOGLE)
1 104.16.124.96 13335 (CLOUDFLAR...)
6 142.251.12.156 15169 (GOOGLE)
1 2 74.125.200.106 15169 (GOOGLE)
1 142.251.10.94 15169 (GOOGLE)
1 142.251.10.157 15169 (GOOGLE)
2 74.125.200.157 15169 (GOOGLE)
2 74.125.24.156 15169 (GOOGLE)
1 172.217.194.132 15169 (GOOGLE)
4 23.36.252.26 16625 (AKAMAI-AS)
1 42.99.128.161 4637 (ASN-TELST...)
3 104.83.196.24 16625 (AKAMAI-AS)
5 74.125.200.132 15169 (GOOGLE)
1 172.217.194.157 15169 (GOOGLE)
5 23.36.48.24 16625 (AKAMAI-AS)
2 2 15.197.193.217 16509 (AMAZON-02)
87 20
35    172.67.197.149 (United States)

ASN13335 (CLOUDFLARENET, US)
notes.io
13    74.125.68.157 (United States)

ASN15169 (GOOGLE, US)
PTR: sc-in-f157.1e100.net
pagead2.googlesyndication.com
securepubads.g.doubleclick.net
stats.g.doubleclick.net
cm.g.doubleclick.net
5    104.26.0.126 (United States)

ASN13335 (CLOUDFLARENET, US)
increaserev.com
secureads.increaserev.com
1    172.64.156.26 (United States)

ASN13335 (CLOUDFLARENET, US)
static.cloudflareinsights.com
2    142.251.12.97 (United States)

ASN15169 (GOOGLE, US)
PTR: se-in-f97.1e100.net
ssl.google-analytics.com
1    104.16.124.96 (None, )

ASN13335 (CLOUDFLARENET, US)
www.cloudflare.com
6    142.251.12.156 (United States)

ASN15169 (GOOGLE, US)
PTR: se-in-f156.1e100.net
googleads.g.doubleclick.net
2    74.125.200.106 (United States)

ASN15169 (GOOGLE, US)
PTR: sa-in-f106.1e100.net
www.google.com
1    142.251.10.94 (United States)

ASN15169 (GOOGLE, US)
PTR: sd-in-f94.1e100.net
www.google.com.au
1    142.251.10.157 (United States)

ASN15169 (GOOGLE, US)
PTR: sd-in-f157.1e100.net
partner.googleadservices.com
2    74.125.200.157 (United States)

ASN15169 (GOOGLE, US)
PTR: sa-in-f157.1e100.net
adservice.google.com.au
2    74.125.24.156 (United States)

ASN15169 (GOOGLE, US)
PTR: sf-in-f156.1e100.net
adservice.google.com
1    172.217.194.132 (United States)

ASN15169 (GOOGLE, US)
PTR: si-in-f132.1e100.net
9216c867f52e9b45ad9bcb92318de475.safeframe.googlesyndication.com
4    23.36.252.26 (Singapore, Singapore)

ASN16625 (AKAMAI-AS, US)
PTR: a23-36-252-26.deploy.static.akamaitechnologies.com
hblg.media.net
warp.media.net
1    42.99.128.161 (Japan)

ASN4637 (ASN-TELSTRA-GLOBAL Telstra Global, HK)
PTR: ip-42-99-128-161.pacnet.net
qsearch-a.akamaihd.net
3    104.83.196.24 (Singapore, Singapore)

ASN16625 (AKAMAI-AS, US)
PTR: a104-83-196-24.deploy.static.akamaitechnologies.com
contextual.media.net
5    74.125.200.132 (United States)

ASN15169 (GOOGLE, US)
PTR: sa-in-f132.1e100.net
tpc.googlesyndication.com
1    172.217.194.157 (United States)

ASN15169 (GOOGLE, US)
PTR: si-in-f157.1e100.net
www.googletagservices.com
5    23.36.48.24 (Singapore, Singapore)

ASN16625 (AKAMAI-AS, US)
PTR: a23-36-48-24.deploy.static.akamaitechnologies.com
lg3.media.net
cs.media.net
2    15.197.193.217 (United States)

ASN16509 (AMAZON-02, US)
PTR: a12b7a488abeaa9e4.awsglobalaccelerator.com
match.adsrvr.org
Apex Domain
Subdomains		 Transfer
35 notes.io
notes.io — Cisco Umbrella Rank: 443979
194 KB
13 googlesyndication.com
pagead2.googlesyndication.com — Cisco Umbrella Rank: 105
9216c867f52e9b45ad9bcb92318de475.safeframe.googlesyndication.com
tpc.googlesyndication.com — Cisco Umbrella Rank: 142
230 KB
12 media.net
hblg.media.net — Cisco Umbrella Rank: 1563
contextual.media.net — Cisco Umbrella Rank: 559
warp.media.net — Cisco Umbrella Rank: 2230
lg3.media.net — Cisco Umbrella Rank: 3643
cs.media.net — Cisco Umbrella Rank: 1318
161 KB
12 doubleclick.net
securepubads.g.doubleclick.net — Cisco Umbrella Rank: 180
googleads.g.doubleclick.net — Cisco Umbrella Rank: 41
stats.g.doubleclick.net — Cisco Umbrella Rank: 79
cm.g.doubleclick.net — Cisco Umbrella Rank: 210
183 KB
5 increaserev.com
increaserev.com — Cisco Umbrella Rank: 77921
secureads.increaserev.com — Cisco Umbrella Rank: 94998
23 KB
4 google.com
www.google.com — Cisco Umbrella Rank: 2
adservice.google.com — Cisco Umbrella Rank: 75
2 KB
3 google.com.au
www.google.com.au — Cisco Umbrella Rank: 24554
adservice.google.com.au — Cisco Umbrella Rank: 97372
1 KB
2 adsrvr.org
match.adsrvr.org — Cisco Umbrella Rank: 342
920 B
2 google-analytics.com
ssl.google-analytics.com — Cisco Umbrella Rank: 290
17 KB
1 googletagservices.com
www.googletagservices.com — Cisco Umbrella Rank: 190
44 KB
1 akamaihd.net
qsearch-a.akamaihd.net — Cisco Umbrella Rank: 1527
1 googleadservices.com
partner.googleadservices.com — Cisco Umbrella Rank: 857
693 B
1 cloudflare.com
www.cloudflare.com — Cisco Umbrella Rank: 6533
447 B
1 cloudflareinsights.com
static.cloudflareinsights.com — Cisco Umbrella Rank: 1027
5 KB
87 14
Domain Requested by
35 notes.io notes.io
static.cloudflareinsights.com
7 pagead2.googlesyndication.com notes.io
pagead2.googlesyndication.com
tpc.googlesyndication.com
www.googletagservices.com
6 googleads.g.doubleclick.net pagead2.googlesyndication.com
googleads.g.doubleclick.net
5 tpc.googlesyndication.com googleads.g.doubleclick.net
pagead2.googlesyndication.com
tpc.googlesyndication.com
4 secureads.increaserev.com increaserev.com
4 securepubads.g.doubleclick.net increaserev.com
securepubads.g.doubleclick.net
3 lg3.media.net googleads.g.doubleclick.net
notes.io
3 contextual.media.net googleads.g.doubleclick.net
contextual.media.net
3 hblg.media.net googleads.g.doubleclick.net
2 match.adsrvr.org 2 redirects
2 cs.media.net contextual.media.net
2 adservice.google.com pagead2.googlesyndication.com
2 adservice.google.com.au pagead2.googlesyndication.com
2 www.google.com 1 redirects tpc.googlesyndication.com
2 ssl.google-analytics.com 1 redirects notes.io
1 cm.g.doubleclick.net 1 redirects
1 www.googletagservices.com googleads.g.doubleclick.net
1 warp.media.net googleads.g.doubleclick.net
1 qsearch-a.akamaihd.net googleads.g.doubleclick.net
1 9216c867f52e9b45ad9bcb92318de475.safeframe.googlesyndication.com securepubads.g.doubleclick.net
1 partner.googleadservices.com pagead2.googlesyndication.com
1 www.google.com.au notes.io
1 stats.g.doubleclick.net 1 redirects
1 www.cloudflare.com increaserev.com
1 static.cloudflareinsights.com notes.io
1 increaserev.com notes.io
87 26

This site contains links to these domains. Also see Links.

Domain
directmessage.xyz
quickreplies.app
www.metromedya.com
Subject Issuer Validity Valid
sni.cloudflaressl.com
Cloudflare Inc ECC CA-3		 2021-11-21 -
2022-11-20		 a year crt.sh
*.g.doubleclick.net
GTS CA 1C3		 2022-08-22 -
2022-11-14		 3 months crt.sh
*.google-analytics.com
GTS CA 1C3		 2022-08-29 -
2022-11-21		 3 months crt.sh
www.cloudflare.com
Cloudflare Inc ECC CA-3		 2022-08-18 -
2023-08-18		 a year crt.sh
*.googleadservices.com
GTS CA 1C3		 2022-08-22 -
2022-11-14		 3 months crt.sh
*.google.com.au
GTS CA 1C3		 2022-08-22 -
2022-11-14		 3 months crt.sh
*.google.com
GTS CA 1C3		 2022-08-22 -
2022-11-14		 3 months crt.sh
*.media.net
DigiCert SHA2 Secure Server CA		 2022-02-20 -
2023-02-22		 a year crt.sh
a248.e.akamai.net
DigiCert TLS RSA SHA256 2020 CA1		 2022-06-28 -
2023-06-30		 a year crt.sh
tpc.googlesyndication.com
GTS CA 1C3		 2022-08-22 -
2022-11-14		 3 months crt.sh
www.google.com
GTS CA 1C3		 2022-08-22 -
2022-11-14		 3 months crt.sh

This page contains 11 frames:

Primary Page: https://notes.io/qd7KY
Frame ID: B7A0A8B25530F672355BD7BB5E76AEC4
Requests: 58 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/html/r20220912/r20190131/zrt_lookup.html
Frame ID: 8DF517876C8FFE74803952F22D0D8E62
Requests: 1 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=90&adk=3669304273&adf=437349331&w=728&lmt=1663226410&psa=0&format=728x90&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409137&bpp=3&bdt=916&idt=1478&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&correlator=7635237078320&frm=20&pv=2&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=430&ady=122&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=1&uci=a!1&fsb=1&xpc=Rz7NgeZWXE&p=https%3A//notes.io&dtd=1496
Frame ID: 1CF18D5E6BEC1D022A51B85BFB8E459D
Requests: 16 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=200&slotname=3868234696&adk=549409105&adf=1788999933&pi=t.ma~as.3868234696&w=1200&fwrn=4&lmt=1663226410&rafmt=11&psa=0&format=1200x200&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409140&bpp=2&bdt=919&idt=1501&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&prev_fmts=728x90&correlator=7635237078320&frm=20&pv=1&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&rplot=4&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=194&ady=2214&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=VSl9DlXxY9&p=https%3A//notes.io&dtd=1505
Frame ID: CC4531EB6609A7D4D96F131D98C0684E
Requests: 1 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&adk=1812271804&adf=3025194257&lmt=1663226410&plat=9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32&format=0x0&url=https%3A%2F%2Fnotes.io%2Fqd7KY&ea=0&pra=7&wgl=1&easpi=0&asntp=0&asntpv=0&asntpl=0&asntpm=0&asntpc=0&asna=5&asnd=5&asnp=5&asns=5&asmat=1&asptt=-1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409155&bpp=1&bdt=934&idt=1492&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&prev_fmts=728x90%2C1200x200&nras=1&correlator=7635237078320&frm=20&pv=1&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=2&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&ifi=3&uci=a!3&fsb=1&dtd=1497
Frame ID: BEC79D3922108B8BCC40C44D22EFF368
Requests: 1 HTTP requests in this frame

Frame: https://9216c867f52e9b45ad9bcb92318de475.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
Frame ID: D005B724355734ED99228E47CB9DA1D7
Requests: 1 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=280&adk=1660337510&adf=1954265641&pi=t.aa~a.179182922~i.34~rp.1&w=1200&fwrn=4&fwrnh=100&lmt=1663226411&num_ads=1&rafmt=1&armr=3&sem=mc&pwprc=7194745760&psa=0&ad_type=text_image&format=1200x280&url=https%3A%2F%2Fnotes.io%2Fqd7KY&fwr=0&pra=3&rh=200&rw=1488&rpe=1&resp_fmts=3&wgl=1&fa=27&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226411609&bpp=2&bdt=3389&idt=2&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dba8e9732136c1ed9-2226830190d600a3%3AT%3D1663226411%3AS%3DALNI_MZF-mRirDN0erYjfshhUopJ4Js0xA&gpic=UID%3D000009c882d73b5a%3AT%3D1663226411%3ART%3D1663226411%3AS%3DALNI_Maz4VrbHUriDD3nICyjzNzDWAFUZQ&prev_fmts=728x90%2C1200x200%2C0x0&nras=2&correlator=7635237078320&frm=20&pv=1&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=194&ady=1434&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=384&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&ifi=5&uci=a!5&btvi=2&fsb=1&xpc=HkW3c11Xfa&p=https%3A//notes.io&dtd=15
Frame ID: F2E448E0FE85DBFD104F9D41EE443570
Requests: 1 HTTP requests in this frame

Frame: https://contextual.media.net/checksync.php?vsSync=1&cs=6&cv=31&https=1&cid=8CU3SX34C&prvid=99%2C77%2C20000%2C2033%2C262%2C241%2C3018%2C246%2C4%2C313%2C359%2C10000%2C9%2C319&itype=ADX&purpose1=1&gdprconsent=1&gdpr=0&usp_status=0&usp_consent=1
Frame ID: 17E65BBDCEA58C3670B426E1344433B1
Requests: 3 HTTP requests in this frame

Frame: data://truncated
Frame ID: A3EDCA4F1AE28837BC74A4907233DD54
Requests: 4 HTTP requests in this frame

Frame: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Frame ID: AFF5B6CD4394F5EED5148DA2A89F26BD
Requests: 3 HTTP requests in this frame

Frame: https://www.google.com/recaptcha/api2/aframe
Frame ID: 4794843E307D5378793200D3C5260B7A
Requests: 2 HTTP requests in this frame

Screenshot
Live screenshot
Full Image

Page Title

Notes - Valorant

Detected technologies

Overall confidence: 100%
Detected patterns
  • static\.cloudflareinsights\.com/beacon(?:\.min)?\.js
Overall confidence: 100%
Detected patterns
  • googlesyndication\.com/
Overall confidence: 100%
Detected patterns
  • google-analytics\.com/(?:ga|urchin|analytics)\.js
Overall confidence: 100%
Detected patterns
  • jquery.*\.js(?:\?ver(?:sion)?=([\d.]+))?

Page Statistics

87
Requests

97 %
HTTPS

0 %
IPv6

14
Domains

26
Subdomains

20
IPs

4
Countries

861 kB
Transfer

2211 kB
Size

18
Cookies

Redirected requests

There were HTTP redirect chains for the following requests:

Request Chain 46
  • https://ssl.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=2060661308&utmhn=notes.io&utmcs=UTF-8&utmsr=1600x1200&utmvp=1600x1200&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Notes%20-%20Valorant&utmhid=623806548&utmr=-&utmp=%2Fqd7KY&utmht=1663226410392&utmac=UA-18039671-1&utmcc=__utma%3D225778053.1743898437.1663226410.1663226410.1663226410.1%3B%2B__utmz%3D225778053.1663226410.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1098755607&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP 302
  • https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-18039671-1&cid=1743898437.1663226410&jid=1098755607&_v=5.7.2&z=2060661308 HTTP 302
  • https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-18039671-1&cid=1743898437.1663226410&jid=1098755607&_v=5.7.2&z=2060661308 HTTP 302
  • https://www.google.com.au/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-18039671-1&cid=1743898437.1663226410&jid=1098755607&_v=5.7.2&z=2060661308&slf_rd=1&random=3813786450
Request Chain 71
  • https://cm.g.doubleclick.net/pixel?cs=6&google_nid=media&google_cm=1&google_hm=MzA2MjI4MDEzNjgzMjg1OTAwMFYxMA%3D%3D&google_sc=1 HTTP 302
  • https://cs.media.net/cksync?type=g&cs=6&google_gid=CAESEMYxyIdaNmpPUwr-Q1RzHTc&google_cver=1
Request Chain 72
  • https://match.adsrvr.org/track/cmf/generic?ttd_pid=8m33zk4&ttd_tpi=1&gdpr=0&gdpr_consent= HTTP 302
  • https://match.adsrvr.org/track/cmb/generic?ttd_pid=8m33zk4&ttd_tpi=1&gdpr=0&gdpr_consent= HTTP 302
  • https://cs.media.net/cksync?cs=1&type=ttd&ovsid=6088ec8b-fe56-461c-906f-83f38268546e

87 HTTP transactions

Resource
Path		 Size
x-fer		 Type
MIME-Type
Primary Request qd7KY
notes.io/ 		15 KB
6 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://notes.io/qd7KY
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
90395eb5ec6e74e66703afd7b708ae29265d93b8ce9784835baa8844294a5e24
Security Headers
Name Value
Strict-Transport-Security max-age=63072000

Request headers

Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
en-AU,en;q=0.9

Response headers

alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
cache-control
no-store, no-cache, must-revalidate
cf-cache-status
DYNAMIC
cf-ray
74af99155c8fa97a-SYD
content-encoding
br
content-type
text/html; charset=UTF-8
date
Thu, 15 Sep 2022 07:20:08 GMT
expires
Thu, 19 Nov 1981 08:52:00 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
pragma
no-cache
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tzpzc%2F74aDvUwbATmqZUf4SN1tlsjPMa6jbTeuLIWgzKsV%2B4fpD4AeXH7T1NffzP1xbwBEXZbQV222PctdypNa%2FlaNbTSGIbsXHoMpwMmW%2BWt44yij%2BtHU%2Fs3A%3D%3D"}],"group":"cf-nel","max_age":604800}
server
cloudflare
strict-transport-security
max-age=63072000
vary
Accept-Encoding
notes.min.css
notes.io/theme/styles/ 		13 KB
4 KB 		Stylesheet
General
Check archive.org
Download Go to
Full URL
https://notes.io/theme/styles/notes.min.css?css=
Requested by
Host: notes.io
URL: https://notes.io/qd7KY
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
f57cfe8a95a48688f2f43be56518d6349c0b713e2e2e00df65dfff4253592002

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/qd7KY
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
content-encoding
gzip
cf-cache-status
HIT
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
age
3076499
etag
W/"62252c0a-3587"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VTVx%2FZlLFha2kK6LV7GOxJF29x5nuuHihbTGynBMR6SvHlTeYQCU35RcO%2BvK9xnEGkqWMZGbzwjxn3gp%2BVnQfCGKOM50bffZ3d0FLfgc%2Fkx1GRPrKX3lBv2Yng%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
text/css
cache-control
max-age=31536000, public, no-transform
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray
74af991bbc6fa97a-SYD
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
expires
Thu, 10 Aug 2023 16:45:09 GMT
adsbygoogle.js
pagead2.googlesyndication.com/pagead/js/ 		167 KB
57 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Requested by
Host: notes.io
URL: https://notes.io/qd7KY
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
74.125.68.157 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sc-in-f157.1e100.net
Software
cafe /
Resource Hash
cbaf4b768b212338c8a22499ebd4d88b4639993493c3345db6735f29d2b77a63
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
content-encoding
gzip
x-content-type-options
nosniff
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
57954
x-xss-protection
0
server
cafe
etag
12072682844677412113
vary
Accept-Encoding, Origin
content-type
text/javascript; charset=UTF-8
cache-control
private, max-age=3600
timing-allow-origin
*
expires
Thu, 15 Sep 2022 07:20:08 GMT
mcm.js
increaserev.com/ads/dfpres/ 		267 KB
21 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://increaserev.com/ads/dfpres/mcm.js
Requested by
Host: notes.io
URL: https://notes.io/qd7KY
Protocol
H2
Security
TLS 1.2, ECDHE_ECDSA, AES_128_GCM
Server
104.26.0.126 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
f295985ff1d5c59e572b08a4ba98d04198ffd0e9e29aafeb50a8efb46d6caa54

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
content-encoding
br
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
6751
access-control-allow-methods
PUT, GET, POST, DELETE, OPTIONS
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
last-modified
Thu, 08 Sep 2022 15:10:54 GMT
server
cloudflare
vary
User-Agent, Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d%2FsS3BxaAFpXyjLQ4WxnxNEDDL8LJorgHmDkRi6HCrtazzLUQ3P3hYbM1xbdJvJAElnKLvICDsnbGeavy2rINIP%2Fr5vrgCfg6jBJfnEMo96lDw2oD0yweAoMwzM4HJY3tw%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
application/javascript
access-control-allow-origin
*
cache-control
max-age=31536000
cf-ray
74af991d2b06a97f-SYD
access-control-allow-headers
origin, x-requested-with, content-type
whatisnotesio.png
notes.io/theme/images/ 		2 KB
2 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/whatisnotesio.png
Requested by
Host: notes.io
URL: https://notes.io/qd7KY
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
fbd3c5938f018a95deb7c9d078d2fa48209f78516d0c5d1cf40bcad47ba2fb9d

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/qd7KY
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096813
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
1625
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-659"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fNHS%2FsyUO9l8tdnVnp2x%2F%2FtUv0%2BXrSU3%2BZSlCykqdrt0wKWOiAWWSwFtSG%2BcTRSkhPdmNmgSSPH9flynCKaOxrvUuVEorNWKs54babey229TFOguncuoG4yqew%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af991c6854aae4-SYD
priority
u=3,i=?0
expires
Thu, 10 Aug 2023 11:06:35 GMT
logo.png
notes.io/theme/images/ 		3 KB
4 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/logo.png
Requested by
Host: notes.io
URL: https://notes.io/qd7KY
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
0b7935c3f61f35b3859886408bc60fee0849a674b7cf18a836b23e89db7f2c4d

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/qd7KY
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
12818994
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
3336
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-d08"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2iL5VNo90O6hjOwkpHqLiGvFQNY9s8nImkvWPpaNcrg6iR7xzpLYJ9VABex1FrW0kJonkCmZBasrxdI6IGAur%2BsoXYpe0FBaQUZcXuk74gWquECW42SFx9QAyA%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af991c6857aae4-SYD
priority
u=3,i=?0
expires
Wed, 19 Apr 2023 22:30:14 GMT
fastEasyShort.png
notes.io/theme/images/ 		1 KB
2 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/fastEasyShort.png
Requested by
Host: notes.io
URL: https://notes.io/qd7KY
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
38d388d9c7ac8c0d5e4d6210314e98f5e888456e9ac87614b160c6d9098f07f1

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/qd7KY
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
12818994
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
1052
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-41c"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZaBSMnzoI%2FmYuYlmEPO5T2yNtV1Xxwmjx5Hme24MbAMHBvoZ1cmZR5HVNgH8qd6TpizzJgkMGh%2F9EG7%2FAoZPAyq9%2BJzqBIiTByaTYpnr5elVCmtWkb5GZq%2BTqA%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af991c6858aae4-SYD
priority
u=3,i=?0
expires
Wed, 19 Apr 2023 22:30:14 GMT
ajax-loader.gif
notes.io/theme/images/ 		2 KB
2 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/ajax-loader.gif
Requested by
Host: notes.io
URL: https://notes.io/qd7KY
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
db2ba4889dd6b787459213e432032ea294061cedf2b335b423c93e923d36472a

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/qd7KY
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096813
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
1785
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-6f9"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wrIT5lJ8rdmssTvrX7mn8sc11m7yrbZWtMLPdKaUHgXTcoXku9eW24buCO%2Bx%2B70pAnPWoyVim9Ufg9fQuwuz%2Bfux9OYxGCnJCbG2gZG8RzO6hECgn%2FjOx4weVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/gif
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af991fec79aae4-SYD
priority
u=3,i=?0
expires
Thu, 10 Aug 2023 11:06:35 GMT
directMessageBanner.webp
notes.io/theme/banners/ 		14 KB
15 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/banners/directMessageBanner.webp
Requested by
Host: notes.io
URL: https://notes.io/qd7KY
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
29cce026afc4007c527d79882831cb9cfb8d494d3ff931654ef6f231d8a8cc03
Security Headers
Name Value
Strict-Transport-Security max-age=63072000

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/qd7KY
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:09 GMT
vary
Accept-Encoding
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
2221
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
14610
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-3912"
strict-transport-security
max-age=63072000
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6k9KZGPv7Ji%2BRWIIcwzs2%2B6CP49mDA%2F8awtPx7aed0G68%2FnBrrlsgVUkou7Pnhe2ymmlX0lR96ujoiYapp5yvkaFS0AcX6EouvVuwWWBmI%2BtiVivlaXQAmv22w%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/webp
accept-ranges
bytes
cf-ray
74af99248a47aae4-SYD
priority
u=3,i=?0
email-decode.min.js
notes.io/cdn-cgi/scripts/5c5dd728/cloudflare-static/ 		1 KB
1 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://notes.io/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
Requested by
Host: notes.io
URL: https://notes.io/qd7KY
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Frame-Options DENY

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/qd7KY
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
content-encoding
gzip
x-content-type-options
nosniff
last-modified
Fri, 09 Sep 2022 17:33:45 GMT
server
cloudflare
etag
W/"631b78f9-4d7"
x-frame-options
DENY
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J99I16GQX02AGj0wiKYRXHkcoct90VcTd%2BMLZ5ykzjVaNDNPbUardFm7nPP1aY7TMfVNLjLaz0jxs0hLB7X41wHvyaojCk2T3H9Ioy517EGID0oqn%2FfZ3oSSzg%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
application/javascript
cache-control
max-age=172800, public
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray
74af991bdc97a97a-SYD
vary
Accept-Encoding
expires
Sat, 17 Sep 2022 07:20:08 GMT
jquery.min.js
notes.io/theme/scripts/ 		95 KB
33 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://notes.io/theme/scripts/jquery.min.js
Requested by
Host: notes.io
URL: https://notes.io/qd7KY
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/qd7KY
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
content-encoding
gzip
cf-cache-status
HIT
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
age
1231082
etag
W/"62252c0a-17b8b"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y%2BeUgaYbZ79Xn41jJX3z3UF70U11HHJ8V%2Bz5LaSWLMg%2BYQT%2F0ThfZcinrG8kEDGepOh9IA6TJP%2BH5MM5IEXJ3HS7V%2Broihi7NnzIQBiH9zZpLbyYVR8OpjGWbw%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
application/javascript
cache-control
max-age=31536000, public, no-transform
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray
74af991bdc9da97a-SYD
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
expires
Fri, 01 Sep 2023 01:22:06 GMT
notes.min.js
notes.io/theme/scripts/ 		6 KB
2 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://notes.io/theme/scripts/notes.min.js
Requested by
Host: notes.io
URL: https://notes.io/qd7KY
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
a5ee2889a6667a9109444c3049d12b00e4d415039b49e07dfec29c91a2911a8d

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/qd7KY
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
content-encoding
gzip
cf-cache-status
HIT
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
age
3076499
etag
W/"62252c0a-1799"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pOgCm2vx3wkAoPSfFV62qF%2BY1QCUU9AVB5Mf35VNdz4Uv61%2B55w3yEGM5DQZ8K%2FgjlbfViSm6H2znhiBuOPBp7AuALK8uz1syMIsI5M5ESGbEkbdWiY1xlzjVw%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
application/javascript
cache-control
max-age=31536000, public, no-transform
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray
74af991bdc9ea97a-SYD
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
expires
Thu, 10 Aug 2023 16:45:09 GMT
v652eace1692a40cfa3763df669d7439c1639079717194
static.cloudflareinsights.com/beacon.min.js/ 		14 KB
5 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
Requested by
Host: notes.io
URL: https://notes.io/qd7KY
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
172.64.156.26 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
fd0a1ac929c11b08e819fe4b0a18c5574012c44f09de8987c6be99a0f055a505

Request headers

Referer
https://notes.io/
Origin
https://notes.io
accept-language
en-AU,en;q=0.9
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:09 GMT
content-encoding
gzip
last-modified
Thu, 09 Dec 2021 19:55:17 GMT
server
cloudflare
etag
W/2021.12.0
vary
Accept-Encoding
content-type
text/javascript;charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=86400
cross-origin-resource-policy
cross-origin
cf-ray
74af9925dff4a949-SYD
background.jpg
notes.io/theme/images/ 		96 KB
97 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/background.jpg
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
2c7700b4f17c98726894ffd50bbb33856f758fc61f90ad86829ce84db18e1b10

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096812
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
98299
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-17ffb"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zprfe%2BYJMeaCZ8fIxEuB9npc12JXehkj2KxYbgfvVlfnlsAdp6wJd%2BDM6RU0ovSG05BRNrFaRlE44I0g4qa4ZKh1LMFrVkeWCLkaWpQhdYSvdrF%2FiyJYVFEZSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/jpeg
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af991c6860aae4-SYD
priority
u=1,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
barsol.png
notes.io/theme/images/ 		256 B
785 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/barsol.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
fcbe61c8a75836204c74b660cc354dc661afcd19863640940795a901d606bd4d

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096812
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
256
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-100"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VNAks5yW8FfmHOWBbFVRoY4BPj7pmGKNzCXg%2BlAWh7Uae1L5ADuGoMCcU2BPoGEpBVpFWhV279mO2DOgGUor1qqVEMYKSmi9OIPQP6%2FTC7oleaej4cO7vr8DMA%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af991c989caae4-SYD
priority
u=1,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
barback.png
notes.io/theme/images/ 		133 B
667 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/barback.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
cd1e65fd03eb5e219a3ea73711a044bbdba580de75e7d0108bc2ce2a99fd73fe

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096812
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
133
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-85"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=55n5oXETcJLpYkMpM54%2FcQgLMtWyFhCV5g%2B9YSeh1%2FmzLE6bgGdDorgNluuMM2yojBfvvH3CZj9TXXPwIdHap04M%2F%2FhD%2F2bW0VUX24MxRV0FJHE0IZ9b63a1XQ%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af991c9890aae4-SYD
priority
u=1,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
random2.png
notes.io/theme/images/ 		2 KB
2 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/random2.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
854a5cc12540c33c5d748da0b9bce95a25c72f9ef7fc4f92bbca033f8df835cc

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
12818994
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
1986
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-7c2"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dPRw0vw2bjz3CzTOBZ4ceCocbB5IWjD1Zzht7YYNn%2BJY%2Bo8jRydHrp%2F1j7RNX39sg4DWWFMMaGxJxC7q16Qd2Uyy9jF2p9r7mCcNnly7g%2FU5v7g5cCOM1B%2BQow%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af991c989baae4-SYD
priority
u=1,i=?0
expires
Wed, 19 Apr 2023 22:30:14 GMT
share.png
notes.io/theme/images/ 		2 KB
2 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/share.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
e676afbd0ddf8afafc01c7bf13e9ddeee39e6b662ae259f8266090cb785b927e

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3085682
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
1664
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-680"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DJgFic0pahSAR6WDEgovp4CRcQXp3loRQ2ZKd3DY60rah74UyOGn8VI2jWeIWROvT%2BOE7mkch6EUeYn9fcZ2E2pKhP7D7jyrHu19mw7Fdjypq49fh8GOJLbfAw%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af991c9898aae4-SYD
priority
u=1,i=?0
expires
Thu, 10 Aug 2023 14:12:06 GMT
comingsoon.png
notes.io/theme/images/ 		3 KB
4 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/comingsoon.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
d9e7213bd1de2e07001870ec2470a3347053cd9066ee982022fb597ac5e6001e

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096812
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
3344
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-d10"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V0BrTIGnio0DP4Woq2D4%2BE%2Fyu51N3%2FIH0fKtg5lvHlNtjLdx%2BvIzJDaPBeDvAoupwH2gGxF3uFONE1rCOP1LlcUnLfcRT%2FgVIDKUwLkg6Vi1YDWhxyxRCNi72w%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af991c9893aae4-SYD
priority
u=1,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
account.png
notes.io/theme/images/ 		2 KB
2 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/account.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
bf40f3d3dcd31f19de9a2b7da30d13d736eec2900d093fb4d6aa8eda2c2abd40

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096812
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
1726
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-6be"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Psg1%2FcptNuq6BRC7N8ojJzsArcm%2Bu1Ctkrwib9burzqxJpvxHf%2BGMzCWyaQHqNLoyakfY0v%2FeKeXtRBw90pIken3HEHJNf5GPZg7plksYgd0kbPTRzDTmiUIYw%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af991c9894aae4-SYD
priority
u=1,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
myNotes.png
notes.io/theme/images/ 		2 KB
3 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/myNotes.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
4fbcb3ac2b54766a4469f7cbaddab896205e86532bdb730e07ae2d21e2ed35cd

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096812
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
2080
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-820"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hrNzwAhPWD36fzZze2Mr7O7znDLWBV3zBSUjT6P%2BpeQ1wEMKNkwsk1WT4EKvZfe1n1hWq0xYbovBbAlIOcyu8pM16ZOHYUK19Q%2Bqd49RAuo7%2Fqlj3JKdmOVaqg%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af991c9895aae4-SYD
priority
u=1,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
barsag.png
notes.io/theme/images/ 		281 B
815 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/barsag.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
42ae8ff6ab42a1788012299b4be64fa1571d1eab8c6d66be656d02ff10d4285e

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096812
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
281
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-119"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FhDR7kBHUFB5z1NddfOqfXvODMFSv%2F85diuiVKggjbXUP5%2BUAXvBTl%2Bd0ULUzj%2FbBnJdTu%2F3olLt2JtS1ofontvADN1FK88wd4aXtqH1ItEWJ0kSQ8BHkUkgIA%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af991c989eaae4-SYD
priority
u=1,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
notespageback.png
notes.io/theme/images/ 		94 B
623 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/notespageback.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
afb2ca57a17df4ec594641ffa0ed6410fb85d072e8105affb26f03811edaafb3

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096812
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
94
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-5e"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ane8GADDC4AI0UrdvPrwM1O0Iqv8Ns8uPmzmRsKrNww9td5mQnTP2AhSU4OOsxloN3FOUAeh%2BU%2BtwpyTIlHRYPcHezZJONZvAOkRXm9LuQNQ3XghMBRfGWdDXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af991c989daae4-SYD
priority
u=1,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
notesline.png
notes.io/theme/images/ 		89 B
619 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/notesline.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
0ff68407b71ff03c432cca13da1e5296a765d3e91d2c3f18f356e4be99bebf1c

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096812
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
89
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-59"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KGIz6fn6DLYmSOrXVwWfnmvGUAIaOOHHcB61Bj%2FuN%2F348BAULHBSfl7Bfc9h5cqCEjkKD9CvA7aZNdb3TS2CU43mf7PJEm2eOVh3lgYrunkh0%2Fm6nU4Mrs5o%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af991c988eaae4-SYD
priority
u=1,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
notespagebottom1.png
notes.io/theme/images/ 		233 B
770 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/notespagebottom1.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
011a1aebdf086c6cf9c92c114f9227ff687d51306256031e2029371d0ee4d97c

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:09 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
12818994
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
233
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-e9"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NKnsQZMYkOZx%2Fp1xj2ms9bSNv6XCaaGgrwjQ9hTCWvNDI%2FTbz0vToI%2B5oXZLLefHc46xD4SeEPBJKm%2Bv5U%2FIrPgEN8DCAjETBCQ4WGV1YE1O1MBnPL1%2FfiOHAA%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af9924eabcaae4-SYD
priority
u=3,i=?0
expires
Wed, 19 Apr 2023 22:30:15 GMT
notespagebottom2.png
notes.io/theme/images/ 		91 B
624 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/notespagebottom2.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
a88d92e2876436beeb002b35dd4161535db42e6dd90ebd024ee57e96133fee01

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:09 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096813
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
91
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-5b"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K8USbobBnI%2Bi5dLKgcTIoAfzMcIsUODTI%2FDKg%2BEAnaZAE0m3cPeXxxEK1OPMJC%2FdjaFCF6Pcwp2x6jmhaJ4fSHVDIn8%2FU5rwxtVdyCQXI%2F4HxyVf4Wr6DOFceg%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af9924eabeaae4-SYD
priority
u=3,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
notespagebottom3.png
notes.io/theme/images/ 		198 B
727 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/notespagebottom3.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
71409f8b486cef6225f67eddcbd21f2731ac72ccc82d3889e71a1cd53f43e09c

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:09 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
553684
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
198
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-c6"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eclGUFEoKA7693hFCIUv2Y0IwaH09QN56XE4OIx%2FOqg3w4NcVdDXuOslVZH11NciORVu0dwrJvmSs4g0KMtczD%2BNuN6UeS4%2BnHqsyCJjZYQt0uPT6Xrnc4Yaug%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af9924eabfaae4-SYD
priority
u=3,i=?0
expires
Fri, 08 Sep 2023 21:32:05 GMT
ga.js
ssl.google-analytics.com/ 		45 KB
17 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://ssl.google-analytics.com/ga.js
Requested by
Host: notes.io
URL: https://notes.io/qd7KY
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.251.12.97 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
se-in-f97.1e100.net
Software
Golfe2 /
Resource Hash
1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f
Security Headers
Name Value
Strict-Transport-Security max-age=10886400; includeSubDomains; preload
X-Content-Type-Options nosniff

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

strict-transport-security
max-age=10886400; includeSubDomains; preload
content-encoding
gzip
x-content-type-options
nosniff
last-modified
Wed, 13 Apr 2022 21:02:38 GMT
server
Golfe2
age
4046
date
Thu, 15 Sep 2022 06:12:44 GMT
vary
Accept-Encoding
content-type
text/javascript
cache-control
public, max-age=7200
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
17168
expires
Thu, 15 Sep 2022 08:12:44 GMT
gpt.js
securepubads.g.doubleclick.net/tag/js/ 		86 KB
29 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://securepubads.g.doubleclick.net/tag/js/gpt.js
Requested by
Host: increaserev.com
URL: https://increaserev.com/ads/dfpres/mcm.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
74.125.68.157 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sc-in-f157.1e100.net
Software
sffe /
Resource Hash
46e4828e2d59ac2dd00dc488391651b1e31d0398713fb310967f3d175e50fc66
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:09 GMT
content-encoding
gzip
x-content-type-options
nosniff
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
29161
x-xss-protection
0
server
sffe
etag
"1334 / 882 of 1000 / last-modified: 1663193132"
vary
Accept-Encoding
report-to
{"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
content-type
text/javascript
cache-control
private, max-age=900, stale-while-revalidate=3600
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="ads-gpt-scs"
expires
Thu, 15 Sep 2022 07:20:09 GMT
trace
www.cloudflare.com/cdn-cgi/ 		304 B
447 B 		XHR
General
Check archive.org
Download Go to
Full URL
https://www.cloudflare.com/cdn-cgi/trace?format=json
Requested by
Host: increaserev.com
URL: https://increaserev.com/ads/dfpres/mcm.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
104.16.124.96 -, , ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
10c792c2dd79b57dcfb3b1c2372efb2eb31b3b51418d6db1f65f42cc6008d900
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Frame-Options DENY

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:08 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cloudflare
x-frame-options
DENY
content-type
text/plain
access-control-allow-origin
*
cache-control
no-cache
cf-ray
74af991f3b496a4b-SYD
expires
Thu, 01 Jan 1970 00:00:01 GMT
getcookietime.php
secureads.increaserev.com/InvalidAds/ 		366 B
712 B 		XHR
General
Check archive.org
Download Go to
Full URL
https://secureads.increaserev.com/InvalidAds/getcookietime.php?domain=notes.io
Requested by
Host: increaserev.com
URL: https://increaserev.com/ads/dfpres/mcm.js
Protocol
H2
Security
TLS 1.2, ECDHE_ECDSA, AES_128_GCM
Server
104.26.0.126 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
f3ba0e62f56eda713cffebaef2120dba4f5d372c07b6e8fa276e269b336f4090
Security Headers
Name Value
Content-Security-Policy upgrade-insecure-requests;

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:09 GMT
content-encoding
br
cf-cache-status
DYNAMIC
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
age
0
vary
Accept-Encoding
x-cache
MISS
x-varnish
937073810
access-control-allow-origin
*
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VOtLsKG5zJHg8R9qEgeUHKj39nlD5vjVohACtQxHwUH2hk3kQFQVDdOTbL33LVu4fnO5jNPQp5Nq4YAYu3n8G91KuLLLgBFasFgPAMvZXpcxGFsy5I5LYKuPW%2BBIWbPwxHfZR2%2BspRsHPIw%3D"}],"group":"cf-nel","max_age":604800}
content-security-policy
upgrade-insecure-requests;
cf-ray
74af991f48145581-SYD
content-type
text/html; charset=UTF-8
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
track.php
secureads.increaserev.com/InvalidAds/ 		0
323 B 		XHR
General
Check archive.org
Download Go to
Full URL
https://secureads.increaserev.com/InvalidAds/track.php?ip=undefined&domain=notes.io&type=mcm.js___a
Requested by
Host: increaserev.com
URL: https://increaserev.com/ads/dfpres/mcm.js
Protocol
H2
Security
TLS 1.2, ECDHE_ECDSA, AES_128_GCM
Server
104.26.0.126 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
Content-Security-Policy upgrade-insecure-requests;

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:11 GMT
content-encoding
br
cf-cache-status
DYNAMIC
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
age
0
vary
Accept-Encoding
x-cache
MISS
x-varnish
934627224
access-control-allow-origin
*
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u%2F05VSk2yMJObgaQIQw9zYDFSpTnnFBfo2QcqzWyMZt2VwkdkqHOtdPYsRA1iaaS29YTQ6yn175gUaEc2b17ySbpnrNtV43CycuASnEu1QwKRND0JOqmxrqjwKCM1Z8W%2BSRLrrdDXQJRGdQ%3D"}],"group":"cf-nel","max_age":604800}
content-security-policy
upgrade-insecure-requests;
cf-ray
74af991f48175581-SYD
content-type
text/html; charset=UTF-8
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
checkblock.php
secureads.increaserev.com/InvalidAds/ 		32 B
338 B 		XHR
General
Check archive.org
Download Go to
Full URL
https://secureads.increaserev.com/InvalidAds/checkblock.php?ip=173.245.209.136&domain=notes.io
Requested by
Host: increaserev.com
URL: https://increaserev.com/ads/dfpres/mcm.js
Protocol
H2
Security
TLS 1.2, ECDHE_ECDSA, AES_128_GCM
Server
104.26.0.126 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
37dbd9c8838bf7334757a235906507a14287f9a2a676ca05b557d28939ef6c17
Security Headers
Name Value
Content-Security-Policy upgrade-insecure-requests;

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:09 GMT
content-encoding
br
cf-cache-status
DYNAMIC
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
age
0
vary
Accept-Encoding
x-cache
MISS
x-varnish
912866400
access-control-allow-origin
*
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dqCgWMZVmHxJzxjEAhVt9WKHPpHAuGuASX%2BQGbI71%2BAyW55ndh2bHPIwWR3pMgu%2BeuLnjt9NjDY4ANQlSUiVmf1kCP11Jn04VoyW5nkWbPw%2BMmmxrY7fQ66Mi0PCTGQq45v1%2Fu8nQjewZI4%3D"}],"group":"cf-nel","max_age":604800}
content-security-policy
upgrade-insecure-requests;
cf-ray
74af991fe8885581-SYD
content-type
text/html; charset=UTF-8
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
show_ads_impl_fy2021.js
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/ 		346 KB
122 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_fy2021.js
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
74.125.68.157 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sc-in-f157.1e100.net
Software
cafe /
Resource Hash
735496974f4e6f77725a11e89d76ced85eeb83df45ee7318626452b14da0de1d
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:10 GMT
content-encoding
gzip
x-content-type-options
nosniff
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
124739
x-xss-protection
0
server
cafe
etag
15461251832538799424
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
cache-control
private, max-age=1209600
timing-allow-origin
*
expires
Thu, 15 Sep 2022 07:20:10 GMT
zrt_lookup.html
googleads.g.doubleclick.net/pagead/html/r20220912/r20190131/ Frame 8DF5 		10 KB
5 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/html/r20220912/r20190131/zrt_lookup.html
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.251.12.156 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
se-in-f156.1e100.net
Software
cafe /
Resource Hash
de317176fa6b64a8e89bbd45d20b6be2560bbfa96e7e53e63eb754e18bfe6c1f
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://notes.io/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
en-AU,en;q=0.9

Response headers

age
24882
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control
public, max-age=1209600
content-encoding
gzip
content-length
4412
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Thu, 15 Sep 2022 00:25:27 GMT
etag
8616628553774171045
expires
Thu, 29 Sep 2022 00:25:27 GMT
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
vary
Accept-Encoding
x-content-type-options
nosniff
x-xss-protection
0
1.png
notes.io/theme/images/messagebox/ 		208 B
738 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/messagebox/1.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
2f6bc396d110fdd03709c3abdff243d74ce8047aeb20b19869ec8582d0fa0c4f

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:10 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096814
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
208
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-d0"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1BhCQwo59oCqjxbMsu8zZ3rbjcSFaOPfmGDpFB0y7Q52ZW8X%2BNrvGjISjuID8c6DaRKvkohXmOPU6QQE%2Be%2BFVyLrBQftyMxrY7QiQ5Qx4vOFzCDIoU27lAgdYw%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af9926ed6baae4-SYD
priority
u=3,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
2.png
notes.io/theme/images/messagebox/ 		84 B
616 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/messagebox/2.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
9b90937bdac082504869f2e7f5ab0cdae955ca4081694733ffd27a521e90dbaf

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:10 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
12818995
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
84
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-54"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c6qun0r0REpg9IVB%2B%2BpUFW%2FIu7Vfiv8SZhiPO3JGgQHXxkXopGjWW1pKRKheE2tRw%2FlUGAodJXREGw1EXP69K%2FUihTa8O4vP1iviPoROst0MutQnc8qVVu4JNw%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af9926ed6caae4-SYD
priority
u=3,i=?0
expires
Wed, 19 Apr 2023 22:30:15 GMT
closeBTN.png
notes.io/theme/images/messagebox/ 		662 B
1 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/messagebox/closeBTN.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
d6ab241fbbf7c976659bcaa9cbb5c1367d899b47ce4dcd25a58e633dfef1ea7e

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:10 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
12818995
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
662
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-296"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JrwcAbvDDUZ%2FXYRGQr6IzAmB%2BarB6E7%2F3YqzuLSblT9InEDyI35Q6gCkxJn5IAwxQUBKmgDBJ%2FDuMJWbrz58YFpRR0Snb5oa4GNdiuZYpXO2qhK%2FJ%2BShWE42Tw%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af9926fd75aae4-SYD
priority
u=1,i=?0
expires
Wed, 19 Apr 2023 22:30:15 GMT
3.png
notes.io/theme/images/messagebox/ 		216 B
743 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/messagebox/3.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
fb00fe51694e9a062bdd78d55e256b8b9b512907f1f886c952b1e6184fa4f3f4

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:10 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096814
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
216
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-d8"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uY7MpeHmkc3rETNbfuNpkaRCoW%2FJTSBZ8CTs5la6fhmdH1g5I8U91GIDFyvR8waNW5T647MIWrKFILUGeQd1eVVHaPCKYXKaTOIdrz0QVYL8HIaweEQzMJCtJw%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af9926fd7aaae4-SYD
priority
u=1,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
4.png
notes.io/theme/images/messagebox/ 		80 B
609 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/messagebox/4.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
dd43d486434121095a1a87b10d00af75be9b3876da1b100cabdad4fc1ec08699

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:10 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096814
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
80
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-50"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h9mOMwqMP7d6o6i3Wdtg%2FiVKTb18cqMkQLs%2FAq33HIVDhBNOzFJhb%2BiXby925dzcjC76y%2FG0RpI0fYVW6cJ1mPIBzgh8nXtAnKNnYtBk9D3CW2vs4oTJWpuz6g%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af9926fd77aae4-SYD
priority
u=1,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
5.png
notes.io/theme/images/messagebox/ 		81 B
611 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/messagebox/5.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
a2e6f4e3b47708f456723686f7229139f65c9590fd610ad4483aa37ab623100e

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:10 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096814
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
81
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-51"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=neMS7ELrwihEMfneD0VeKrSmNAXFQ5iVlUm%2F7hPfYB4YhINFW8Vr1S%2BvoSfL3%2FNWZXdnQCzkhh5dJU7T%2BQOb7odkUNHpb82sbgrziNvMCyvC6CKJ2oOmbce0XQ%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af9926fd76aae4-SYD
priority
u=1,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
6.png
notes.io/theme/images/messagebox/ 		190 B
719 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/messagebox/6.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
67fd821b8cbf7173173b93ab14e85ec18d6a244a7f5d9389e8048f5d9c38fbdc

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:10 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096814
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
190
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-be"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FLsBbMmkD0ZwGOEEBal%2B5L3sYWPGyfw7pZLW0VqnA8QXM%2FLFxk9Nse7EJSJgGI1S9IS4cWAaRHBhtUtJq70kERulOVEKimlDOae78gYouANmaXgrROOUCt5HDg%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af9926fd7caae4-SYD
priority
u=1,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
7.png
notes.io/theme/images/messagebox/ 		84 B
614 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/messagebox/7.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
5e3483b903087992179e337c5b50d3d1768181543b2615915bb53529190fabee

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:10 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
12818995
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
84
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-54"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cHUosx9rRrjtP7oQTB8lZAi63PG%2B9jz%2BcrYYxQ1gz8mS2b1PMcw6gcPwRdCXRRLWMTxB5t4zsfyGa5hYzs2uCPw0UQ2N6RyMlJqo4D1sE%2B6spxhBy%2FeJfGKWqA%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af9926fd74aae4-SYD
priority
u=1,i=?0
expires
Wed, 19 Apr 2023 22:30:15 GMT
8.png
notes.io/theme/images/messagebox/ 		195 B
728 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/messagebox/8.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
46d72aae9d4a3d95505f41765ef9f541d3bde5b21ddfa63ca2ac5b9b2fed6003

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:10 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
12818995
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
195
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-c3"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nfP7U76b%2FmDTataDbb%2FZ6W5hyWI%2FDltI312MveHm4Q3YxcKaG%2FaPbqZ9FRL8viIwpxIvN3OJna6nPtX5oO%2FFAKUwnTId2WJVSFulSLJz2jCYtTcBxnQ7HYd70A%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af9926fd7baae4-SYD
priority
u=1,i=?0
expires
Wed, 19 Apr 2023 22:30:15 GMT
closeBtn.png
notes.io/theme/images/ 		644 B
1 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://notes.io/theme/images/closeBtn.png
Requested by
Host: notes.io
URL: https://notes.io/theme/styles/notes.min.css?css=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
7cd13946687442925b2383aeb0273086a585e5d3bc3733de296ca83528d34aa1

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/theme/styles/notes.min.css?css=
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:10 GMT
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
age
3096814
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
644
last-modified
Sun, 06 Mar 2022 21:47:54 GMT
server
cloudflare
etag
"62252c0a-284"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EDvV5fgUG8vwjgxTsUh0ebwJI44gUUgNCA6ZL9eRhm7dfrGkC%2Fou3AALbHrFQHOuSTBRdcOw9qeK20CFgPtTEBX5Nl7vOerOteB8nzelXYiAgI82w4elzrOLtw%3D%3D"}],"group":"cf-nel","max_age":604800}
content-type
image/png
cache-control
max-age=31536000, public, no-transform
accept-ranges
bytes
cf-ray
74af99270d95aae4-SYD
priority
u=1,i=?0
expires
Thu, 10 Aug 2023 11:06:36 GMT
pubads_impl_2022090801.js
securepubads.g.doubleclick.net/gpt/ 		382 KB
130 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://securepubads.g.doubleclick.net/gpt/pubads_impl_2022090801.js
Requested by
Host: securepubads.g.doubleclick.net
URL: https://securepubads.g.doubleclick.net/tag/js/gpt.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
74.125.68.157 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sc-in-f157.1e100.net
Software
sffe /
Resource Hash
dba21b69260b204a0ea685b1388df50b9c490e8db990610b08499aef93a72f39
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 08 Sep 2022 10:34:23 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
593147
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
133090
x-xss-protection
0
last-modified
Thu, 08 Sep 2022 08:35:47 GMT
server
sffe
vary
Accept-Encoding
report-to
{"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
content-type
text/javascript
cache-control
public, immutable, max-age=31536000
accept-ranges
bytes
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="ads-gpt-scs"
expires
Fri, 08 Sep 2023 10:34:23 GMT
ppub_config
securepubads.g.doubleclick.net/pagead/ 		86 B
105 B 		XHR
General
Check archive.org
Download Go to
Full URL
https://securepubads.g.doubleclick.net/pagead/ppub_config?ippd=notes.io
Requested by
Host: securepubads.g.doubleclick.net
URL: https://securepubads.g.doubleclick.net/tag/js/gpt.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
74.125.68.157 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sc-in-f157.1e100.net
Software
cafe /
Resource Hash
2642f114cc1269f8b0209b207108afdd0cd2f63eac6603a85186cac2f459c7ed
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

timing-allow-origin
*
date
Thu, 15 Sep 2022 07:20:10 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cafe
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
access-control-allow-origin
*
cache-control
private, max-age=3600, stale-while-revalidate=3600
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
content-type
application/json; charset=UTF-8
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
80
x-xss-protection
0
expires
Thu, 15 Sep 2022 07:20:10 GMT
ga-audiences
www.google.com.au/ads/
Redirect Chain
  • https://ssl.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=2060661308&utmhn=notes.io&utmcs=UTF-8&utmsr=1600x1200&utmvp=1600x1200&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Notes%20-%2...
  • https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-18039671-1&cid=1743898437.1663226410&jid=1098755607&_v=5.7.2&z=2060661308
  • https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-18039671-1&cid=1743898437.1663226410&jid=1098755607&_v=5.7.2&z=2060661308
  • https://www.google.com.au/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-18039671-1&cid=1743898437.1663226410&jid=1098755607&_v=5.7.2&z=2060661308&slf_rd=1&random=3813786450
42 B
501 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://www.google.com.au/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-18039671-1&cid=1743898437.1663226410&jid=1098755607&_v=5.7.2&z=2060661308&slf_rd=1&random=3813786450
Requested by
Host: notes.io
URL: https://notes.io/qd7KY
Protocol
H2
Server
142.251.10.94 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sd-in-f94.1e100.net
Software
cafe /
Resource Hash
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma
no-cache
date
Thu, 15 Sep 2022 07:20:12 GMT
x-content-type-options
nosniff
server
cafe
timing-allow-origin
*
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, no-store, must-revalidate
cross-origin-resource-policy
cross-origin
content-type
image/gif
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
42
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT

Redirect headers

pragma
no-cache
date
Thu, 15 Sep 2022 07:20:11 GMT
x-content-type-options
nosniff
server
cafe
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
content-type
text/html; charset=UTF-8
location
https://www.google.com.au/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-18039671-1&cid=1743898437.1663226410&jid=1098755607&_v=5.7.2&z=2060661308&slf_rd=1&random=3813786450
cache-control
no-cache, no-store, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
0
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
cookie.js
partner.googleadservices.com/gampad/ 		383 B
693 B 		Script
General
Check archive.org
Download Go to
Full URL
https://partner.googleadservices.com/gampad/cookie.js?domain=notes.io&callback=_gfp_s_&client=ca-pub-4070502493653474&gpid_exp=1
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_fy2021.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.251.10.157 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sd-in-f157.1e100.net
Software
cafe /
Resource Hash
c40b224ca7f0b1a1007f82ce8e0e7ea7df578a4c90f917c10f661d687f50477f
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:11 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cafe
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
content-type
text/javascript; charset=UTF-8
cache-control
private
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
248
x-xss-protection
0
integrator.js
adservice.google.com.au/adsid/ 		107 B
792 B 		Script
General
Check archive.org
Download Go to
Full URL
https://adservice.google.com.au/adsid/integrator.js?domain=notes.io
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_fy2021.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
74.125.200.157 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sa-in-f157.1e100.net
Software
cafe /
Resource Hash
a4a1824defec1084ca81d496ee77891684c26196924bdc4fc21dd3482ce15e14
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

timing-allow-origin
*
date
Thu, 15 Sep 2022 07:20:11 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cafe
p3p
CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
cache-control
private, no-cache, no-store
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
content-type
application/javascript; charset=UTF-8
alt-svc
h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
content-length
100
x-xss-protection
0
integrator.js
adservice.google.com/adsid/ 		107 B
549 B 		Script
General
Check archive.org
Download Go to
Full URL
https://adservice.google.com/adsid/integrator.js?domain=notes.io
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_fy2021.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
74.125.24.156 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sf-in-f156.1e100.net
Software
cafe /
Resource Hash
a4a1824defec1084ca81d496ee77891684c26196924bdc4fc21dd3482ce15e14
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

timing-allow-origin
*
date
Thu, 15 Sep 2022 07:20:11 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cafe
p3p
CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
cache-control
private, no-cache, no-store
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
content-type
application/javascript; charset=UTF-8
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
100
x-xss-protection
0
ads
googleads.g.doubleclick.net/pagead/ Frame 1CF1 		30 KB
13 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=90&adk=3669304273&adf=437349331&w=728&lmt=1663226410&psa=0&format=728x90&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409137&bpp=3&bdt=916&idt=1478&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&correlator=7635237078320&frm=20&pv=2&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=430&ady=122&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=1&uci=a!1&fsb=1&xpc=Rz7NgeZWXE&p=https%3A//notes.io&dtd=1496
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_fy2021.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.251.12.156 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
se-in-f156.1e100.net
Software
cafe /
Resource Hash
deae9e2cbc7307625baf87905b8cbc3ae2b439a3d7848aa5721eb5c442e14d64
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://notes.io/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
en-AU,en;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control
private
content-encoding
br
content-length
12970
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Thu, 15 Sep 2022 07:20:11 GMT
expires
Thu, 15 Sep 2022 07:20:11 GMT
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
ads
googleads.g.doubleclick.net/pagead/ Frame CC45 		436 B
382 B 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=200&slotname=3868234696&adk=549409105&adf=1788999933&pi=t.ma~as.3868234696&w=1200&fwrn=4&lmt=1663226410&rafmt=11&psa=0&format=1200x200&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409140&bpp=2&bdt=919&idt=1501&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&prev_fmts=728x90&correlator=7635237078320&frm=20&pv=1&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&rplot=4&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=194&ady=2214&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=VSl9DlXxY9&p=https%3A//notes.io&dtd=1505
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_fy2021.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.251.12.156 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
se-in-f156.1e100.net
Software
cafe /
Resource Hash
1b0af62e50057e9e6ee17dba2b6a0a685afe5ad97f5158cbc2c27fbf3e492b5c
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://notes.io/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
en-AU,en;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control
private
content-encoding
br
content-length
212
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Thu, 15 Sep 2022 07:20:11 GMT
expires
Thu, 15 Sep 2022 07:20:11 GMT
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
ads
googleads.g.doubleclick.net/pagead/ Frame BEC7 		11 KB
5 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&adk=1812271804&adf=3025194257&lmt=1663226410&plat=9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32&format=0x0&url=https%3A%2F%2Fnotes.io%2Fqd7KY&ea=0&pra=7&wgl=1&easpi=0&asntp=0&asntpv=0&asntpl=0&asntpm=0&asntpc=0&asna=5&asnd=5&asnp=5&asns=5&asmat=1&asptt=-1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409155&bpp=1&bdt=934&idt=1492&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&prev_fmts=728x90%2C1200x200&nras=1&correlator=7635237078320&frm=20&pv=1&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=2&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&ifi=3&uci=a!3&fsb=1&dtd=1497
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_fy2021.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.251.12.156 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
se-in-f156.1e100.net
Software
cafe /
Resource Hash
37963f4420eac4bc8a296e6edcf7add1dac2d9c9c2940c18665d645d19698549
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://notes.io/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
en-AU,en;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control
private
content-encoding
br
content-length
4604
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Thu, 15 Sep 2022 07:20:11 GMT
expires
Thu, 15 Sep 2022 07:20:11 GMT
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
ads
securepubads.g.doubleclick.net/gampad/ 		591 B
350 B 		XHR
General
Check archive.org
Download Go to
Full URL
https://securepubads.g.doubleclick.net/gampad/ads?pvsid=1944090373945605&correlator=4382045154391159&hxva=1&scor=3429395364453398&eid=31069321%2C31068367%2C44772496%2C31068921&output=ldjh&gdfp_req=1&vrg=2022090801&ptt=17&impl=fif&iu_parts=21902364955%3A21721151070%2CCM_IR%2CIR_BTF_responsive_970x250&enc_prev_ius=%2F0%2F1%2F2&prev_iu_szs=970x250&ifi=4&adks=2766239073&sfv=1-0-38&fsapi=false&prev_scp=refresh%3Dtrue&sc=1&cookie_enabled=1&abxe=1&dt=1663226411020&lmt=1663226411&dlt=1663226408221&idt=2775&adxs=16&adys=55&biw=1600&bih=1200&scr_x=0&scr_y=0&btvi=0&ucis=1&oid=2&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&bc=31&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&nvt=1&url=https%3A%2F%2Fnotes.io%2Fqd7KY&frm=20&vis=1&psz=1568x0&msz=1568x0&fws=0&ohw=0&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=true
Requested by
Host: securepubads.g.doubleclick.net
URL: https://securepubads.g.doubleclick.net/gpt/pubads_impl_2022090801.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
74.125.68.157 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sc-in-f157.1e100.net
Software
cafe /
Resource Hash
31d1ccbbda339d9e5069191ec2e0eb382517485b845d8d12083699a9c352a983
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:11 GMT
content-encoding
br
x-content-type-options
nosniff
google-mediationgroup-id
-2
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
320
x-xss-protection
0
google-lineitem-id
-2
pragma
no-cache
server
cafe
google-mediationtag-id
-2
google-creative-id
-2
content-type
text/plain; charset=UTF-8
access-control-allow-origin
https://notes.io
cache-control
no-cache, must-revalidate
access-control-allow-credentials
true
timing-allow-origin
*
expires
Fri, 01 Jan 1990 00:00:00 GMT
container.html
9216c867f52e9b45ad9bcb92318de475.safeframe.googlesyndication.com/safeframe/1-0-38/html/ Frame D005 		6 KB
4 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://9216c867f52e9b45ad9bcb92318de475.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
Requested by
Host: securepubads.g.doubleclick.net
URL: https://securepubads.g.doubleclick.net/gpt/pubads_impl_2022090801.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
172.217.194.132 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
si-in-f132.1e100.net
Software
sffe /
Resource Hash
a73730123a43c3040d889aaee11ec35094277ce5f778076b262c23a293870adb
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://notes.io/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
en-AU,en;q=0.9

Response headers

accept-ranges
bytes
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control
public, immutable, max-age=31536000
content-encoding
gzip
content-length
3108
content-type
text/html
cross-origin-opener-policy-report-only
same-origin; report-to="ads-gpt-scs"
cross-origin-resource-policy
cross-origin
date
Thu, 15 Sep 2022 07:20:11 GMT
expires
Fri, 15 Sep 2023 07:20:11 GMT
last-modified
Tue, 02 Mar 2021 20:17:03 GMT
report-to
{"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
server
sffe
timing-allow-origin
*
vary
Accept-Encoding
x-content-type-options
nosniff
x-xss-protection
0
adview
googleads.g.doubleclick.net/pagead/ Frame 1CF1 		0
0 		Fetch
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/adview?ai=CmwsDK9IiY6zBA47Lz7sP7ZiwkAKs1_3wZLT2qJPiC8CNtwEQASAAYKWAgICQAYIBF2NhLXB1Yi00MDcwNTAyNDkzNjUzNDc0oAGV9ZvfA8gBCagDAaoEoQFP0K5LZgOkPUarfEhz83mnbv02JdF9QVoRqEzos0z5CU7YDX7s5rnYVo6TjiNf1EjdyeRSa2Ly901-CYr4-WLgbcr2K5g189RDiaWx9s4nyFUcnVGZRqLJHFQOfe3bEAPMBtbaV8Zyz7Fn0yjhRlAaxxlsrJU9GlSNXqUqBDQd5GjBA6zfpaxLkm7TK26hPccdGqJWA6t7bNeH2XlPFH9iu4AGhtW3t6v9tqT4AaAGIagHipixAqgHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA0IgGEQATICigI6AoBAgAoB-gsCCAGADAHQFQGAFwGyFxoKGBIUcHViLTQwNzA1MDI0OTM2NTM0NzQYAA&sigh=9HXpO9lRgDc&uach_m=[UACH]&cid=CAQSGwCsnQUxT8Q86r1fkqCEhqBP_WG7Ey--iaLU6xgB
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=90&adk=3669304273&adf=437349331&w=728&lmt=1663226410&psa=0&format=728x90&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409137&bpp=3&bdt=916&idt=1478&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&correlator=7635237078320&frm=20&pv=2&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=430&ady=122&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=1&uci=a!1&fsb=1&xpc=Rz7NgeZWXE&p=https%3A//notes.io&dtd=1496
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
142.251.12.156 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
se-in-f156.1e100.net
Software
cafe /
Resource Hash
Security Headers
Name Value
Content-Security-Policy script-src 'none'; object-src 'none'
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=90&adk=3669304273&adf=437349331&w=728&lmt=1663226410&psa=0&format=728x90&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409137&bpp=3&bdt=916&idt=1478&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&correlator=7635237078320&frm=20&pv=2&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=430&ady=122&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=1&uci=a!1&fsb=1&xpc=Rz7NgeZWXE&p=https%3A//notes.io&dtd=1496
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

timing-allow-origin
*
content-security-policy
script-src 'none'; object-src 'none'
x-content-type-options
nosniff
server
cafe
date
Thu, 15 Sep 2022 07:20:11 GMT
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
cache-control
private
cross-origin-resource-policy
cross-origin
content-type
text/html; charset=UTF-8
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
0
x-xss-protection
0
expires
Thu, 15 Sep 2022 07:20:11 GMT
log
hblg.media.net/ Frame 1CF1 		35 B
0 		Fetch
General
Check archive.org
Download Go to
Full URL
https://hblg.media.net/log?logid=kfk&evtid=l1log&app=0&cc=AU&ctr=0.0024271845&viewability=82&device_id=4&cbdp=0.034&slotVisibility=1&dn=notes.io&acid=a8caa119e737439aaf3978c7ea0b9995&ugd=4&size=728x90&pvid=313&csip=rtb-common-istio-59f7fddfbb-k2x68.SG&ogbdp=0.05&prvReqId=58859225471968_893581775_52982010413131&itype=ADX&requrl=https%3A%2F%2Fnotes.io%2Fqd7KY&scrid=1700080812610100728009000000500&mang=1&bidrestime=1663226411167&cid=8CU3SX34C&rme=nurl
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=90&adk=3669304273&adf=437349331&w=728&lmt=1663226410&psa=0&format=728x90&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409137&bpp=3&bdt=916&idt=1478&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&correlator=7635237078320&frm=20&pv=2&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=430&ady=122&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=1&uci=a!1&fsb=1&xpc=Rz7NgeZWXE&p=https%3A//notes.io&dtd=1496
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
23.36.252.26 Singapore, Singapore, ASN16625 (AKAMAI-AS, US),
Reverse DNS
a23-36-252-26.deploy.static.akamaitechnologies.com
Software
/
Resource Hash
Security Headers
Name Value
Strict-Transport-Security max-age=86400 ; includeSubDomains

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma
no-cache
date
Thu, 15 Sep 2022 07:20:12 GMT
strict-transport-security
max-age=86400 ; includeSubDomains
content-type
image/gif
access-control-allow-origin
*
cache-control
max-age=0, no-cache, no-store
content-length
35
expires
Thu, 15 Sep 2022 07:20:12 GMT
log
qsearch-a.akamaihd.net/ Frame 1CF1 		35 B
0 		Fetch
General
Check archive.org
Download Go to
Full URL
https://qsearch-a.akamaihd.net/log?logid=kfk&evtid=dmmra&ckfl=0&lper=&app_type=adx_test&bdr_typ=1&ss_d1=0&ogerpm=0.0500&ss_d2=0&stid=&other_prv=313&jar_err=&current_day=4.0&adtyp=0&req_id=YyLSKwAB4-ABc-PI7gOEYA&bd_m3=0.0000&bidfp=0.0100&bd_m2=0.0000&pvag_id=&bd_m1=0.0000&ugd=4&dim10=false&predicted_wr=72.9623&exp=&fdbk_id=&second_bidder=*&search_res=32&floor_bucket=0.00&gpid_format=&seat=BID_API&size=728x90&url_l1=qd7ky&f_seg=&prdp=0.0340&ogcbdp=0.0500&dfpbd=0.0340&server=1&ogerpm_wd_bkt=0-1&model_version=202209150342_generic_adx_1-cid_1&viewability=0.8200&dmm_r=0.0000&cut=32&dmm_l=0.0000&as_cache=1&tcyerpm=&sc=AU-NSW&send_erpm=true&dmm_m9=0.0000&sd=0&hb_exp=&seg=&dmm_m4=0.0000&erpm_bucket=0.05&ugd_ver=&requrl=notes.io%2Fqd7ky%2F&bidrestime=1663226411167&cc=AU&strg=harmony&ss=&current_hour=7&time_stamp=2022-09-15+07%3A20%3A11&model_key=generic_adx_1-cid_1&rvshhon=&mul_ratio=0.0000&bdp=0.0500&ct=beaconsfield&akey=&mnckfl=0&bdp_bucket=0.05&algo=default&dc=apac_sg&splid=&dn=notes.io&ua=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%29+AppleWebKit%2F537.36+%28KHTML%2C+like+Gecko%29+Chrome%2F89.0.4389.72+Safari%2F537.36&buyer_id=&bdp_wider_bucket=1&acid=a8caa119e737439aaf3978c7ea0b9995&infl=&o_ver=NT+10.0&br_ver=89.0.4389.72&bdmm_m6=0.0000&bdmm_m7=0.0000&bdmm_m5=0.0000&ver=8.14.1&totalTimeBucket=3&visibility=1&totalTime=3340520&dmm_m1=2022-09-15+07%3A20%3A11.168897570&e_rpm=0.0000&dmm_m22=0.0500&gdpr=&vsid=&log_less=false&gpid_sent=false&ogerpm_used=false&bdmm_m12=0.0000&cid=8CU3SX34C&bcrid=1700080812610100728009000000500&rawbid=0.0500&seat_id=BID_API&sub_bidder=196&pst=EMS&pbshr=100.0000&dmm_d10=&o_id=101&clisp=rtb-common-istio-59f7fddfbb-k2x68.SG&dfp_bucket=0.0&adblk=3669304273&itype=adx&pvid_seat=313_BID_API&cliIP=2918568192&advurl=topics.businessfocus.online%2F&level_base=0&crid=529820104&sat=1&br_id=265&cut_bkt=30&gpid=&iwb=1&second_bid=0.000000&sc_pvid=313&capd=0&other_bids=0.05
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=90&adk=3669304273&adf=437349331&w=728&lmt=1663226410&psa=0&format=728x90&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409137&bpp=3&bdt=916&idt=1478&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&correlator=7635237078320&frm=20&pv=2&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=430&ady=122&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=1&uci=a!1&fsb=1&xpc=Rz7NgeZWXE&p=https%3A//notes.io&dtd=1496
Protocol
HTTP/1.1
Security
TLS 1.2, ECDHE_ECDSA, AES_128_GCM
Server
42.99.128.161 , Japan, ASN4637 (ASN-TELSTRA-GLOBAL Telstra Global, HK),
Reverse DNS
ip-42-99-128-161.pacnet.net
Software
/
Resource Hash

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Pragma
no-cache
Date
Thu, 15 Sep 2022 07:20:12 GMT
Content-Type
image/gif
Access-Control-Allow-Origin
*
Cache-Control
max-age=0, no-cache, no-store
Connection
keep-alive
Content-Length
35
Expires
Thu, 15 Sep 2022 07:20:12 GMT
nmedianet.js
contextual.media.net/ Frame 1CF1 		162 KB
56 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://contextual.media.net/nmedianet.js?cid=8CUABW64L
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=90&adk=3669304273&adf=437349331&w=728&lmt=1663226410&psa=0&format=728x90&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409137&bpp=3&bdt=916&idt=1478&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&correlator=7635237078320&frm=20&pv=2&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=430&ady=122&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=1&uci=a!1&fsb=1&xpc=Rz7NgeZWXE&p=https%3A//notes.io&dtd=1496
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
104.83.196.24 Singapore, Singapore, ASN16625 (AKAMAI-AS, US),
Reverse DNS
a104-83-196-24.deploy.static.akamaitechnologies.com
Software
Apache /
Resource Hash
4662cbd99568eee3f1a58735712bb2250faf5b31134659ead615c3255b3ada4e
Security Headers
Name Value
Strict-Transport-Security max-age=31536000

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

timing-allow-origin
*
x-mnt-h
8-20
content-encoding
gzip
server
Apache
etag
"1b59938628ccd5bae621b478fb9bd9d2"
vary
Accept-Encoding
content-type
text/javascript; charset=utf-8
cache-control
max-age=300
date
Thu, 15 Sep 2022 07:20:12 GMT
strict-transport-security
max-age=31536000
x-mnt-w
8-11
expires
Thu, 15 Sep 2022 07:25:12 GMT
adperformance.js
warp.media.net/rtb/resource/ Frame 1CF1 		61 KB
62 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://warp.media.net/rtb/resource/adperformance.js?v=35e90bcdc8
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=90&adk=3669304273&adf=437349331&w=728&lmt=1663226410&psa=0&format=728x90&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409137&bpp=3&bdt=916&idt=1478&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&correlator=7635237078320&frm=20&pv=2&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=430&ady=122&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=1&uci=a!1&fsb=1&xpc=Rz7NgeZWXE&p=https%3A//notes.io&dtd=1496
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
23.36.252.26 Singapore, Singapore, ASN16625 (AKAMAI-AS, US),
Reverse DNS
a23-36-252-26.deploy.static.akamaitechnologies.com
Software
nginx /
Resource Hash
3378135f525fc551ce49d2c117e9967735794757a4c71910d8c1b8fa38bf3f2c
Security Headers
Name Value
Strict-Transport-Security max-age=604800

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

strict-transport-security
max-age=604800
server
nginx
date
Thu, 15 Sep 2022 07:20:12 GMT
content-type
application/javascript;charset=ISO-8859-1
cache-control
max-age=26996
access-control-allow-credentials
true
content-length
62892
expires
Thu, 15 Sep 2022 14:50:08 GMT
window_focus_fy2021.js
tpc.googlesyndication.com/pagead/js/r20220912/r20110914/client/ Frame 1CF1 		3 KB
1 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20220912/r20110914/client/window_focus_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=90&adk=3669304273&adf=437349331&w=728&lmt=1663226410&psa=0&format=728x90&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409137&bpp=3&bdt=916&idt=1478&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&correlator=7635237078320&frm=20&pv=2&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=430&ady=122&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=1&uci=a!1&fsb=1&xpc=Rz7NgeZWXE&p=https%3A//notes.io&dtd=1496
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
74.125.200.132 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sa-in-f132.1e100.net
Software
cafe /
Resource Hash
8aa048082094d36080fc028ab1584264596c64fb5b362038c4761ac9838d6b14
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 05:58:39 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
4893
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
1359
x-xss-protection
0
server
cafe
etag
1484984001845508991
vary
Accept-Encoding, Origin
content-type
text/javascript; charset=UTF-8
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Thu, 29 Sep 2022 05:58:39 GMT
rx_lidar.js
www.googletagservices.com/activeview/js/current/ Frame 1CF1 		141 KB
44 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=90&adk=3669304273&adf=437349331&w=728&lmt=1663226410&psa=0&format=728x90&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409137&bpp=3&bdt=916&idt=1478&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&correlator=7635237078320&frm=20&pv=2&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=430&ady=122&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=1&uci=a!1&fsb=1&xpc=Rz7NgeZWXE&p=https%3A//notes.io&dtd=1496
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
172.217.194.157 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
si-in-f157.1e100.net
Software
sffe /
Resource Hash
9c9b6560a37526d33547098a4ed2ecf360eb9275c2db77a98c30fb7f8016f478
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:12 GMT
content-encoding
gzip
x-content-type-options
nosniff
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
44609
x-xss-protection
0
server
sffe
cross-origin-opener-policy
same-origin; report-to="active-view-scs-read-write-acl"
etag
"1663155654979086"
vary
Accept-Encoding
report-to
{"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-type
text/javascript
cache-control
private, max-age=3000
accept-ranges
bytes
expires
Thu, 15 Sep 2022 07:20:12 GMT
qs_click_protection_fy2021.js
tpc.googlesyndication.com/pagead/js/r20220912/r20110914/client/ Frame 1CF1 		17 KB
8 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20220912/r20110914/client/qs_click_protection_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=90&adk=3669304273&adf=437349331&w=728&lmt=1663226410&psa=0&format=728x90&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409137&bpp=3&bdt=916&idt=1478&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&correlator=7635237078320&frm=20&pv=2&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=430&ady=122&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=1&uci=a!1&fsb=1&xpc=Rz7NgeZWXE&p=https%3A//notes.io&dtd=1496
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
74.125.200.132 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sa-in-f132.1e100.net
Software
cafe /
Resource Hash
2f4cf528276c96d6ffcd7c395a36a2c59a16bc7c09ad77d6df51d25632f30254
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 06:47:41 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
1950
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
7572
x-xss-protection
0
server
cafe
etag
3190241002381566568
vary
Accept-Encoding, Origin
content-type
text/javascript; charset=UTF-8
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Thu, 29 Sep 2022 06:47:41 GMT
integrator.js
adservice.google.com.au/adsid/ 		107 B
165 B 		Script
General
Check archive.org
Download Go to
Full URL
https://adservice.google.com.au/adsid/integrator.js?domain=notes.io
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_fy2021.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
74.125.200.157 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sa-in-f157.1e100.net
Software
cafe /
Resource Hash
a4a1824defec1084ca81d496ee77891684c26196924bdc4fc21dd3482ce15e14
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

timing-allow-origin
*
date
Thu, 15 Sep 2022 07:20:12 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cafe
p3p
CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
cache-control
private, no-cache, no-store
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
content-type
application/javascript; charset=UTF-8
alt-svc
h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
content-length
100
x-xss-protection
0
integrator.js
adservice.google.com/adsid/ 		107 B
165 B 		Script
General
Check archive.org
Download Go to
Full URL
https://adservice.google.com/adsid/integrator.js?domain=notes.io
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_fy2021.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
74.125.24.156 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sf-in-f156.1e100.net
Software
cafe /
Resource Hash
a4a1824defec1084ca81d496ee77891684c26196924bdc4fc21dd3482ce15e14
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

timing-allow-origin
*
date
Thu, 15 Sep 2022 07:20:12 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cafe
p3p
CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
cache-control
private, no-cache, no-store
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
content-type
application/javascript; charset=UTF-8
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
100
x-xss-protection
0
ads
googleads.g.doubleclick.net/pagead/ Frame F2E4 		436 B
236 B 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=280&adk=1660337510&adf=1954265641&pi=t.aa~a.179182922~i.34~rp.1&w=1200&fwrn=4&fwrnh=100&lmt=1663226411&num_ads=1&rafmt=1&armr=3&sem=mc&pwprc=7194745760&psa=0&ad_type=text_image&format=1200x280&url=https%3A%2F%2Fnotes.io%2Fqd7KY&fwr=0&pra=3&rh=200&rw=1488&rpe=1&resp_fmts=3&wgl=1&fa=27&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226411609&bpp=2&bdt=3389&idt=2&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dba8e9732136c1ed9-2226830190d600a3%3AT%3D1663226411%3AS%3DALNI_MZF-mRirDN0erYjfshhUopJ4Js0xA&gpic=UID%3D000009c882d73b5a%3AT%3D1663226411%3ART%3D1663226411%3AS%3DALNI_Maz4VrbHUriDD3nICyjzNzDWAFUZQ&prev_fmts=728x90%2C1200x200%2C0x0&nras=2&correlator=7635237078320&frm=20&pv=1&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=194&ady=1434&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=384&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&ifi=5&uci=a!5&btvi=2&fsb=1&xpc=HkW3c11Xfa&p=https%3A//notes.io&dtd=15
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_fy2021.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
142.251.12.156 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
se-in-f156.1e100.net
Software
cafe /
Resource Hash
6ac6d4c52b5bbba382fc112e4b4e0ac175f7871ecce8e8cc1bc28f27169b92b2
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://notes.io/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
en-AU,en;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control
private
content-encoding
br
content-length
212
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Thu, 15 Sep 2022 07:20:12 GMT
expires
Thu, 15 Sep 2022 07:20:12 GMT
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
smtr
contextual.media.net/ Frame 1CF1 		86 KB
32 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://contextual.media.net/smtr?cb=window._mNDetails.initAd&&gdpr=0&cid=8CUABW64L&cpcd=ZNUXWKgjxAVr8bMpeLkZyA%3D%3D&crid=721135687&size=728x90&cc=AU&chnm=HARMONY&pid=8PO15GP54&tpid=TT2CP55&https=1&vif=2&requrl=https%3A%2F%2Fnotes.io%2Fqd7KY&nse=5&vi=1663226412404582057&lw=1&ugd=4&adt1=8CU3SX34C&adt2=529820104&bae=B44/ggxeBB&bcpf=B44%2Fggxe8fOnRrolnfOur8BB&bdrId=313&ntv=0&matchstring=hr%3D0%7C&katpre=1&katbid=-103&pgid=p02078371219t202209150720&goent=1&nb=1&cadomain=tzR-hLcl-L81q0bo4F7GnA3mMwDIDjC2d77KxBXphR_fTCDUsmLZYQ%3D%3D&allsc=NSW
Requested by
Host: contextual.media.net
URL: https://contextual.media.net/nmedianet.js?cid=8CUABW64L
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
104.83.196.24 Singapore, Singapore, ASN16625 (AKAMAI-AS, US),
Reverse DNS
a104-83-196-24.deploy.static.akamaitechnologies.com
Software
/
Resource Hash
e17b14ffb3a0848104ba4190f8f02f4f29f05850a04e39c30677e6e3f8cefe2c
Security Headers
Name Value
Strict-Transport-Security max-age=31536000

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma
no-cache
date
Thu, 15 Sep 2022 07:20:13 GMT
content-encoding
gzip
vary
Accept-Encoding
content-type
text/javascript
expires
Thu, 15 Sep 2022 07:20:13 GMT
cache-control
max-age=0, no-cache, no-store
x-sc-h
8-1
strict-transport-security
max-age=31536000
timing-allow-origin
*
content-length
32731
x-sc-w
8-21
bping.php
lg3.media.net/ Frame 1CF1 		15 B
15 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://lg3.media.net/bping.php?vgd_len=525&&vgd_cdv=796&gdpr=0&prid=8PRVCXX19&cid=8CUABW64L&crid=721135687&vi=1663226412404582057&ugd=4&lf=6&cc=AU&sc=NSW&lper=100&wsip=2886781042&r=1663226412967&requrl=https%3A%2F%2Fnotes.io%2Fqd7KY&vgd_l2type=sca&vgd_sbSup=1&vgd_is_amp=0&vgd_asn=54203&vgd_rakh=1663226412102901919&vgd_l1rhst=contextual.media.net&vgd_rpth=%2Fnmedianet.js&vgd_hb_audit_1=8CU3SX34C&vgd_hb_audit_2=529820104&vgd_pgid=p02078371219t202209150720&vgd_pgids=1&vgd_uspa=0&hvsid=00001663226412963029185683285877&gdpr=0&vgd_end=1
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=90&adk=3669304273&adf=437349331&w=728&lmt=1663226410&psa=0&format=728x90&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409137&bpp=3&bdt=916&idt=1478&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&correlator=7635237078320&frm=20&pv=2&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=430&ady=122&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=1&uci=a!1&fsb=1&xpc=Rz7NgeZWXE&p=https%3A//notes.io&dtd=1496
Protocol
HTTP/1.1
Security
TLS 1.3, , AES_256_GCM
Server
23.36.48.24 Singapore, Singapore, ASN16625 (AKAMAI-AS, US),
Reverse DNS
a23-36-48-24.deploy.static.akamaitechnologies.com
Software
Apache /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
Strict-Transport-Security max-age=21600

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Strict-Transport-Security
max-age=21600
Server
Apache
Date
Thu, 15 Sep 2022 07:20:13 GMT
ntCoent-Length
15
Vary
Accept-Encoding
Content-Type
text/html; charset=UTF-8
Cache-Control
max-age=16534
Connection
keep-alive
Content-Length
15
checksync.php
contextual.media.net/ Frame 17E6 		26 KB
10 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://contextual.media.net/checksync.php?vsSync=1&cs=6&cv=31&https=1&cid=8CU3SX34C&prvid=99%2C77%2C20000%2C2033%2C262%2C241%2C3018%2C246%2C4%2C313%2C359%2C10000%2C9%2C319&itype=ADX&purpose1=1&gdprconsent=1&gdpr=0&usp_status=0&usp_consent=1
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=90&adk=3669304273&adf=437349331&w=728&lmt=1663226410&psa=0&format=728x90&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409137&bpp=3&bdt=916&idt=1478&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&correlator=7635237078320&frm=20&pv=2&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=430&ady=122&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=1&uci=a!1&fsb=1&xpc=Rz7NgeZWXE&p=https%3A//notes.io&dtd=1496
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
104.83.196.24 Singapore, Singapore, ASN16625 (AKAMAI-AS, US),
Reverse DNS
a104-83-196-24.deploy.static.akamaitechnologies.com
Software
Apache /
Resource Hash
50716ceaeeb3e3625ba05389b157252f1b2ed4f5cbeb84b90046d40fa9d1aec2
Security Headers
Name Value
Strict-Transport-Security max-age=31536000

Request headers

Referer
https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
en-AU,en;q=0.9

Response headers

cache-control
max-age=172800
content-encoding
gzip
content-length
9411
content-type
text/html; charset=UTF-8
date
Thu, 15 Sep 2022 07:20:13 GMT
expires
Sat, 17 Sep 2022 07:20:13 GMT
p3p
CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
server
Apache
strict-transport-security
max-age=31536000
vary
Accept-Encoding
x-mnet-hl2
E
clog
hblg.media.net/ Frame 1CF1 		35 B
199 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://hblg.media.net/clog?logid=awlog&pixel_len_bucket=4321&lmt_enf=true&req_mtype%3C%3E=0&mx_bsProfileRa=0&mx_nsz=1&spSource=0&ifst=0&vid=YyLSKwAB4-ABc-PI7gOEYA&s_city=singapore&ugd=4&exp=sfl%3Dfalse%7CssBucket%3D0%7Cbfl%3D-100%7Csch%3D1%7Cclt%3D3%7CssProfile%3D0%7Cdbr%3D1%7Ctpi%3D1&app=0&ctr=0.0024271845&mx_TAF=3&device_id=4&ae=false&mx_UCC=1&prspt=headerBid&mx_bss_algos%3C%3E=0&usp_status=0&seat=BID_API&og_cbdp=0.050&size=728x90&mx_TAS=1&mx_gpid_sent=false&xtmax=290&commit_id=d5d0fd30&scrid=1700080812610100728009000000500&itypeid=17&mx_SPRIG=0&viewability=82&renderer=0&be=0&rtime=27.0&adj0=0.0&tmax=300&s_ip=74.125.190.151&adj2=0.0&adj1=0.0&feedback_id=YyLSKwAB4-ABc-PI7gOEYA&adtypes=0&mx_aabpc=0&reqid=YyLSKwAB4-ABc-PI7gOEYA&sc=AU-NSW&mowxReqId=a8caa119e737439aaf3978c7ea0b9995_1&ifdp=0&requrl=https%3A%2F%2Fnotes.io%2Fqd7KY&bidrestime=1663226411167&pv_adtype=0&cc=AU&strg=HARMONY&pcrid=8CUABW64L-721135687-38-3&coppa_enf=true&bdp=0.050&ct=beaconsfield&spIsReq=3&s=1&abs=0%7C0%7Cxtmax%3D290%7CHARMONY%7Cbrr%3D0&mx_epbc=8CUABW64L&dnt_enf=false&mx_ssBucket=0&vls=0&asn=54203&mang=1&fleet=common-istio&mx_isLossNtf=false&advUrl=https%3A%2F%2Ftopics.businessfocus.online&dn=notes.io&dt=O&acid=a8caa119e737439aaf3978c7ea0b9995&actltime=35&act=headerBid&iframingState=0&mx_lr_seg_deal=0&exclattr=32%7C34%7C70%7C7%7C13%7C14%7C15%7C16%7C48%7C17%7C18%7C114%7C19%7C20%7C22%7C25%7C26%7C27&dfpBd=0.034&sckfl=0&dmm_erpm=true&mx_lr=0&mview=1&smbrid=adx-1&bfs=103&rfc=-1&prvApiId=8CUABW64L&epcexp=false&pubid=pub-ADX-101418826937&mx_bsProfile=0&cid=8CU3SX34C&bcrid=1700080812610100728009000000500&omul=1.0&res_mtype=0&apPrfs%3C%3E=62%23%2313%23%2361&chnl=HARMONY&pst=0&reqsize=728x90&adpos=1&itype=ADX&mx_g_one_uid_sent=None&spCst=0&mx_sid=8CUABW64L&tgtval=pub-ADX-101418826937&__expireat=1663227011421&lmt_status=N&reftype=0&viewability_vendor=EXCHANGE&prvAccId=721135687&ckfl=0&lper=1&mx_tgs=728x90&dummy_vsid=false&cbdp=0.034&pvdTmax=253&ltime=35.0&epc=721135687&ctr_vendor=EXCHANGE&prvReqId=58859225471968_893581775_52982010413131&zip=2015&exid=31&spFst=0&mx_GCID=0&cliIPType=v4&pexid=ADX-pub-4070502493653474&ybnca_erpm=0.05&brsrclk=0&sbdrid=196&mx_bsBucketRa=0&rtttime=41&apTags%3C%3E=75&mx_PC=1&wsip=mowx-istio-54454684b8-bjrjg&currsrc_date=2022-09-14+00%3A00%3A00&psrc=fail&geoll=false&omid=0&debug_ts=2022-09-15+07%3A20%3A11&policy_enf=2&mx_ssProfile=0&mx_SC=0&reftime=0&pbidflr=0.010&spbf=0&currsrc=API&fpusp=false&lmt_applied=N&mnrfc=-1&pub_blk_enf=1&amptype=1&moau=true&ocurr=USD&snm=SUCCESS&mx_IAB2=0&usp_enf=1&bidflr=0.010&incentive_type=0&skadidfl=0&pid=8PR113JGC&spTo=3&pvid=313&schain_cmpl=1&is_ortb=false&mx_aurl_hc=0&ucrid_ver=2&mx_maq_call=false&mx_uid_sent=0&mx_sbp=-10.0&mnrf=0&slotVisibility=1&dbf=1&gdpr=0&gqid=AMVB_Pk_LBqL_2_SunMT8qoLn7SLJJ-2sltI5UjpvOga1OrgwL_WnMpprzve9jzfgFBqU6Nl&dmm_ogerpm=false&csip=rtb-common-istio-59f7fddfbb-k2x68.SG&mx_bsBucket=0&mx_aurt=0&spIvt=3&ptype=23&media=0&acsn=1&dtc=apac_sg&mx_aqcpl_crid=4&ogbdp=0.05&tpbTkn=false&adblk=3669304273&fpuReq=0&vcmplrt=-1.0&crid=529820104&geo_source=2&sat=1&mnet_ckfl=0&opbidflr=0.010&impId=1&rme=adm&bdata=sd2%3Dnull~iurl_l%3D20~ogerpm%3D0.05~vw_exc%3D0.82~vis_sd%3D356~dc2%3D1~scd%3Dnsw~v_asn%3D54203~vl2r_sd%3D2022091420~iurl_b%3D1802.39~url_tkc%3D0~std%3D~last%3D~vis_url_b%3D0.49~ip%3D3bw0Uw~fbb%3D0~vis_url_l%3D10~riipua%3D77%2C124~et%3D27~rc%3D1~rps_sd%3D2022091420~vis_b%3D825.56~url_b%3D0.55~url_tvi%3D0~url_l%3D20~gcat%3D-1~bb%3D196~vv%3D0~l2r_b%3D1000~erpm%3D0.05~bm%3D1~sid%3D721135687~sd%3D0~uid%3DaQw3DvSNRd7Xxa0d8~btd%3D242834539900341743362124867335997224908479290739037348708457906074350469454635536384~d2p_l%3D30~3pcf%3D1000~uim%3D0~dmm_strg%3Dharmony~d2p_b%3D1~ogd2p_b%3D0.96~vurl_b%3D0.95~ss%3DNA~uiw%3D-1~ce%3D0~rps_b%3D40.57~vurl_l%3D20~CI%3D2736~nts%3D1~tb%3D-1~ct%3Dbeaconsfield~basis2%3D196~basis1%3D196~isRef%3D0~ivurl_b%3D1.05~isif%3D0~lc%3D3~bid%3D0.05~dc%3D8~vl2r_b%3D1.46~ivurl_l%3D20~supply_tag_id%3D%7Eviewability%3D0.82%7Eamp%3D1%7Ecbdp%3D0.034%7Edmm%3Dharmony%7Esuid%3D%7Edtc%3Dapac_sg%7Exid%3DADX-pub-4070502493653474%7Edalg%3Ddefault%7Ehtml%3D1%7Eadblk%3D3669304273%7Esobp%3D%7Ectr%3D0.0024271845%7Ebdpcapd%3D0%7Edmm_erpm%3Dfalse%7Ebflr%3D0.010%7Eogbid%3D0.050%7Eac_type%3D1%7Eitype_id%3D17%7Eseller_tag_id%3D%7Edetected_tag_id%3D%7Edcut%3D30%7Edogb%3D0-1~ibc%3D1~ddt%3D-1~nsz%3D1~tgs%3D728x90~bsb%3D0~bsp%3D0~tmx%3D253&utime=1803&sf=0&cpr=0.4940508749227952
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=90&adk=3669304273&adf=437349331&w=728&lmt=1663226410&psa=0&format=728x90&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409137&bpp=3&bdt=916&idt=1478&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&correlator=7635237078320&frm=20&pv=2&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=430&ady=122&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=1&uci=a!1&fsb=1&xpc=Rz7NgeZWXE&p=https%3A//notes.io&dtd=1496
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
23.36.252.26 Singapore, Singapore, ASN16625 (AKAMAI-AS, US),
Reverse DNS
a23-36-252-26.deploy.static.akamaitechnologies.com
Software
Apache /
Resource Hash
0915fad60bc9b61b6dcd82d05da7ec4bc0232a647e75b8507c3cba6d4d6602f9
Security Headers
Name Value
Strict-Transport-Security max-age=86400 ; includeSubDomains

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma
max-age=3600
date
Thu, 15 Sep 2022 07:20:13 GMT
server
Apache
strict-transport-security
max-age=86400 ; includeSubDomains
content-type
image/gif
access-control-allow-origin
*
cache-control
max-age=21600
content-length
35
expires
Thu, 15 Sep 2022 13:20:13 GMT
truncated
/ Frame 1CF1 		215 B
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
data:truncated
Protocol
DATA
Server
-, , ASN (),
Reverse DNS
Software
/
Resource Hash
d2e5c44e7f3687fd740b243877540e515df5c4b20be93e4f9bd5f237f953b1a8

Request headers

accept-language
en-AU,en;q=0.9
Referer
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Content-Type
image/png
cksync
cs.media.net/ Frame 17E6
Redirect Chain
  • https://cm.g.doubleclick.net/pixel?cs=6&google_nid=media&google_cm=1&google_hm=MzA2MjI4MDEzNjgzMjg1OTAwMFYxMA%3D%3D&google_sc=1
  • https://cs.media.net/cksync?type=g&cs=6&google_gid=CAESEMYxyIdaNmpPUwr-Q1RzHTc&google_cver=1
45 B
610 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://cs.media.net/cksync?type=g&cs=6&google_gid=CAESEMYxyIdaNmpPUwr-Q1RzHTc&google_cver=1
Requested by
Host: contextual.media.net
URL: https://contextual.media.net/checksync.php?vsSync=1&cs=6&cv=31&https=1&cid=8CU3SX34C&prvid=99%2C77%2C20000%2C2033%2C262%2C241%2C3018%2C246%2C4%2C313%2C359%2C10000%2C9%2C319&itype=ADX&purpose1=1&gdprconsent=1&gdpr=0&usp_status=0&usp_consent=1
Protocol
HTTP/1.1
Server
23.36.48.24 Singapore, Singapore, ASN16625 (AKAMAI-AS, US),
Reverse DNS
a23-36-48-24.deploy.static.akamaitechnologies.com
Software
Apache /
Resource Hash
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://contextual.media.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Pragma
no-cache
Date
Thu, 15 Sep 2022 07:20:14 GMT
Server
Apache
P3P
CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
Cache-Control
max-age=0, no-cache, no-store
Connection
keep-alive
Content-Type
image/gif
Content-Length
45
X-MNET-HL2
E
Expires
Thu, 15 Sep 2022 07:20:14 GMT

Redirect headers

pragma
no-cache
date
Thu, 15 Sep 2022 07:20:13 GMT
server
HTTP server (unknown)
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location
https://cs.media.net/cksync?type=g&cs=6&google_gid=CAESEMYxyIdaNmpPUwr-Q1RzHTc&google_cver=1
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
content-type
text/html; charset=UTF-8
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
301
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
cksync
cs.media.net/ Frame 17E6
Redirect Chain
  • https://match.adsrvr.org/track/cmf/generic?ttd_pid=8m33zk4&ttd_tpi=1&gdpr=0&gdpr_consent=
  • https://match.adsrvr.org/track/cmb/generic?ttd_pid=8m33zk4&ttd_tpi=1&gdpr=0&gdpr_consent=
  • https://cs.media.net/cksync?cs=1&type=ttd&ovsid=6088ec8b-fe56-461c-906f-83f38268546e
45 B
621 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://cs.media.net/cksync?cs=1&type=ttd&ovsid=6088ec8b-fe56-461c-906f-83f38268546e
Requested by
Host: contextual.media.net
URL: https://contextual.media.net/checksync.php?vsSync=1&cs=6&cv=31&https=1&cid=8CU3SX34C&prvid=99%2C77%2C20000%2C2033%2C262%2C241%2C3018%2C246%2C4%2C313%2C359%2C10000%2C9%2C319&itype=ADX&purpose1=1&gdprconsent=1&gdpr=0&usp_status=0&usp_consent=1
Protocol
HTTP/1.1
Server
23.36.48.24 Singapore, Singapore, ASN16625 (AKAMAI-AS, US),
Reverse DNS
a23-36-48-24.deploy.static.akamaitechnologies.com
Software
Apache /
Resource Hash
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://contextual.media.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Pragma
no-cache
Date
Thu, 15 Sep 2022 07:20:14 GMT
Server
Apache
P3P
CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
Cache-Control
max-age=0, no-cache, no-store
Connection
keep-alive
Content-Type
image/gif
Content-Length
45
X-MNET-HL2
E
Expires
Thu, 15 Sep 2022 07:20:14 GMT

Redirect headers

pragma
no-cache
date
Thu, 15 Sep 2022 07:20:13 GMT
x-aspnet-version
4.0.30319
p3p
CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
location
https://cs.media.net/cksync?cs=1&type=ttd&ovsid=6088ec8b-fe56-461c-906f-83f38268546e
cache-control
private,no-cache, must-revalidate
content-type
text/html
content-length
199
addRequest.php
secureads.increaserev.com/InvalidAds/ 		0
540 B 		XHR
General
Check archive.org
Download Go to
Full URL
https://secureads.increaserev.com/InvalidAds/addRequest.php?ip=173.245.209.136&domain=notes.io&os=Windows%2010&adstype={%22_970x250%22:1}
Requested by
Host: increaserev.com
URL: https://increaserev.com/ads/dfpres/mcm.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
104.26.0.126 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
Content-Security-Policy upgrade-insecure-requests;

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:14 GMT
content-encoding
br
cf-cache-status
DYNAMIC
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
age
0
vary
Accept-Encoding
x-cache
MISS
x-varnish
942455739
access-control-allow-origin
*
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KC%2FK52L615DGC%2FPOMyrOgJx7uUa2mrGWG6EJTDfansXu6MmDRYkh3iHQXssbtZ0HxNeYNAdNkIyY2D%2BaN5ohYNwgFY9PSw%2FQV7lzqu8wHkDihvSXk8G%2FNgsxmZH%2FF9w64GBY8Zy0YHQFFvo%3D"}],"group":"cf-nel","max_age":604800}
content-security-policy
upgrade-insecure-requests;
cf-ray
74af993de914a817-SYD
content-type
text/html; charset=UTF-8
alt-svc
h3=":443"; ma=86400, h3-29=":443"; ma=86400
log
hblg.media.net/ Frame 1CF1 		35 B
200 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://hblg.media.net/log?log=kfk&evtid=adplog&&lmt_enf=true&req_mtype%3C%3E=0&mx_bsProfileRa=0&mx_nsz=1&spSource=0&ifst=0&vid=YyLSKwAB4-ABc-PI7gOEYA&s_city=singapore&ugd=4&exp=sfl%3Dfalse%7CssBucket%3D0%7Cbfl%3D-100%7Csch%3D1%7Cclt%3D3%7CssProfile%3D0%7Cdbr%3D1%7Ctpi%3D1&app=0&ctr=0.0024271845&mx_TAF=3&device_id=4&ae=false&mx_UCC=1&prspt=headerBid&mx_bss_algos%3C%3E=0&usp_status=0&seat=BID_API&og_cbdp=0.050&size=728x90&mx_TAS=1&mx_gpid_sent=false&xtmax=290&commit_id=d5d0fd30&scrid=1700080812610100728009000000500&itypeid=17&mx_SPRIG=0&viewability=82&renderer=0&be=0&rtime=27.0&adj0=0.0&tmax=300&s_ip=74.125.190.151&adj2=0.0&adj1=0.0&feedback_id=YyLSKwAB4-ABc-PI7gOEYA&adtypes=0&mx_aabpc=0&reqid=YyLSKwAB4-ABc-PI7gOEYA&sc=AU-NSW&mowxReqId=a8caa119e737439aaf3978c7ea0b9995_1&ifdp=0&requrl=https%3A%2F%2Fnotes.io%2Fqd7KY&bidrestime=1663226411167&pv_adtype=0&cc=AU&strg=HARMONY&pcrid=8CUABW64L-721135687-38-3&coppa_enf=true&bdp=0.050&ct=beaconsfield&spIsReq=3&s=1&abs=0%7C0%7Cxtmax%3D290%7CHARMONY%7Cbrr%3D0&mx_epbc=8CUABW64L&dnt_enf=false&mx_ssBucket=0&vls=0&asn=54203&mang=1&fleet=common-istio&mx_isLossNtf=false&advUrl=https%3A%2F%2Ftopics.businessfocus.online&dn=notes.io&dt=O&acid=a8caa119e737439aaf3978c7ea0b9995&actltime=35&act=headerBid&iframingState=0&mx_lr_seg_deal=0&exclattr=32%7C34%7C70%7C7%7C13%7C14%7C15%7C16%7C48%7C17%7C18%7C114%7C19%7C20%7C22%7C25%7C26%7C27&dfpBd=0.034&sckfl=0&dmm_erpm=true&mx_lr=0&mview=1&smbrid=adx-1&bfs=103&rfc=-1&prvApiId=8CUABW64L&epcexp=false&pubid=pub-ADX-101418826937&mx_bsProfile=0&cid=8CU3SX34C&bcrid=1700080812610100728009000000500&omul=1.0&res_mtype=0&apPrfs%3C%3E=62%23%2313%23%2361&chnl=HARMONY&pst=0&reqsize=728x90&adpos=1&itype=ADX&mx_g_one_uid_sent=None&spCst=0&mx_sid=8CUABW64L&tgtval=pub-ADX-101418826937&__expireat=1663227011421&lmt_status=N&reftype=0&viewability_vendor=EXCHANGE&prvAccId=721135687&ckfl=0&lper=1&mx_tgs=728x90&dummy_vsid=false&cbdp=0.034&pvdTmax=253&ltime=35.0&epc=721135687&ctr_vendor=EXCHANGE&prvReqId=58859225471968_893581775_52982010413131&zip=2015&exid=31&spFst=0&mx_GCID=0&cliIPType=v4&pexid=ADX-pub-4070502493653474&ybnca_erpm=0.05&brsrclk=0&sbdrid=196&mx_bsBucketRa=0&rtttime=41&apTags%3C%3E=75&mx_PC=1&wsip=mowx-istio-54454684b8-bjrjg&currsrc_date=2022-09-14+00%3A00%3A00&psrc=fail&geoll=false&omid=0&debug_ts=2022-09-15+07%3A20%3A11&policy_enf=2&mx_ssProfile=0&mx_SC=0&reftime=0&pbidflr=0.010&spbf=0&currsrc=API&fpusp=false&lmt_applied=N&mnrfc=-1&pub_blk_enf=1&amptype=1&moau=true&ocurr=USD&snm=SUCCESS&mx_IAB2=0&usp_enf=1&bidflr=0.010&incentive_type=0&skadidfl=0&pid=8PR113JGC&spTo=3&pvid=313&schain_cmpl=1&is_ortb=false&mx_aurl_hc=0&ucrid_ver=2&mx_maq_call=false&mx_uid_sent=0&mx_sbp=-10.0&mnrf=0&slotVisibility=1&dbf=1&gdpr=0&gqid=AMVB_Pk_LBqL_2_SunMT8qoLn7SLJJ-2sltI5UjpvOga1OrgwL_WnMpprzve9jzfgFBqU6Nl&dmm_ogerpm=false&csip=rtb-common-istio-59f7fddfbb-k2x68.SG&mx_bsBucket=0&mx_aurt=0&spIvt=3&ptype=23&media=0&acsn=1&dtc=apac_sg&mx_aqcpl_crid=4&ogbdp=0.05&tpbTkn=false&adblk=3669304273&fpuReq=0&vcmplrt=-1.0&crid=529820104&geo_source=2&sat=1&mnet_ckfl=0&opbidflr=0.010&impId=1&rme=adm&bdata=sd2%3Dnull~iurl_l%3D20~ogerpm%3D0.05~vw_exc%3D0.82~vis_sd%3D356~dc2%3D1~scd%3Dnsw~v_asn%3D54203~vl2r_sd%3D2022091420~iurl_b%3D1802.39~url_tkc%3D0~std%3D~last%3D~vis_url_b%3D0.49~ip%3D3bw0Uw~fbb%3D0~vis_url_l%3D10~riipua%3D77%2C124~et%3D27~rc%3D1~rps_sd%3D2022091420~vis_b%3D825.56~url_b%3D0.55~url_tvi%3D0~url_l%3D20~gcat%3D-1~bb%3D196~vv%3D0~l2r_b%3D1000~erpm%3D0.05~bm%3D1~sid%3D721135687~sd%3D0~uid%3DaQw3DvSNRd7Xxa0d8~btd%3D242834539900341743362124867335997224908479290739037348708457906074350469454635536384~d2p_l%3D30~3pcf%3D1000~uim%3D0~dmm_strg%3Dharmony~d2p_b%3D1~ogd2p_b%3D0.96~vurl_b%3D0.95~ss%3DNA~uiw%3D-1~ce%3D0~rps_b%3D40.57~vurl_l%3D20~CI%3D2736~nts%3D1~tb%3D-1~ct%3Dbeaconsfield~basis2%3D196~basis1%3D196~isRef%3D0~ivurl_b%3D1.05~isif%3D0~lc%3D3~bid%3D0.05~dc%3D8~vl2r_b%3D1.46~ivurl_l%3D20~supply_tag_id%3D%7Eviewability%3D0.82%7Eamp%3D1%7Ecbdp%3D0.034%7Edmm%3Dharmony%7Esuid%3D%7Edtc%3Dapac_sg%7Exid%3DADX-pub-4070502493653474%7Edalg%3Ddefault%7Ehtml%3D1%7Eadblk%3D3669304273%7Esobp%3D%7Ectr%3D0.0024271845%7Ebdpcapd%3D0%7Edmm_erpm%3Dfalse%7Ebflr%3D0.010%7Eogbid%3D0.050%7Eac_type%3D1%7Eitype_id%3D17%7Eseller_tag_id%3D%7Edetected_tag_id%3D%7Edcut%3D30%7Edogb%3D0-1~ibc%3D1~ddt%3D-1~nsz%3D1~tgs%3D728x90~bsb%3D0~bsp%3D0~tmx%3D253&utime=1803&sf=0&cpr=0.4940508749227952&evttyp=1
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4070502493653474&output=html&h=90&adk=3669304273&adf=437349331&w=728&lmt=1663226410&psa=0&format=728x90&url=https%3A%2F%2Fnotes.io%2Fqd7KY&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&dt=1663226409137&bpp=3&bdt=916&idt=1478&shv=r20220912&mjsv=m202209080101&ptt=9&saldr=aa&abxe=1&correlator=7635237078320&frm=20&pv=2&ga_vid=1743898437.1663226410&ga_sid=1663226410&ga_hid=623806548&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=430&ady=122&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C31068921&oid=2&pvsid=1944090373945605&tmod=1425638739&uas=0&nvt=1&eae=0&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=31&ifi=1&uci=a!1&fsb=1&xpc=Rz7NgeZWXE&p=https%3A//notes.io&dtd=1496
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
23.36.252.26 Singapore, Singapore, ASN16625 (AKAMAI-AS, US),
Reverse DNS
a23-36-252-26.deploy.static.akamaitechnologies.com
Software
/
Resource Hash
796c46ec10bc9105545f6f90d51593921b69956bd9087eb72bee83f40ad86f90
Security Headers
Name Value
Strict-Transport-Security max-age=86400 ; includeSubDomains

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma
no-cache
date
Thu, 15 Sep 2022 07:20:14 GMT
strict-transport-security
max-age=86400 ; includeSubDomains
content-type
image/gif
access-control-allow-origin
*
cache-control
max-age=0, no-cache, no-store
content-length
35
expires
Thu, 15 Sep 2022 07:20:14 GMT
truncated
/ Frame A3ED 		107 B
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
data:truncated
Protocol
DATA
Server
-, , ASN (),
Reverse DNS
Software
/
Resource Hash
dfa1028a74436c56e0ee1367812c0ee599d6814ec4a3079ca9b9afffba949e26

Request headers

accept-language
en-AU,en;q=0.9
Referer
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Content-Type
image/png
truncated
/ Frame A3ED 		4 KB
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
data:truncated
Protocol
DATA
Server
-, , ASN (),
Reverse DNS
Software
/
Resource Hash
326c32d7ffbd04762a10cf5bb37441d418397959381d3893c9e9a48217aa5347

Request headers

accept-language
en-AU,en;q=0.9
Referer
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Content-Type
image/png
truncated
/ Frame A3ED 		2 KB
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
data:truncated
Protocol
DATA
Server
-, , ASN (),
Reverse DNS
Software
/
Resource Hash
b00af338864761a37a208806e2e8815b46327a5e7e47bf141f4fbdf6d1fd3bcc

Request headers

accept-language
en-AU,en;q=0.9
Referer
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Content-Type
image/png
bql.php
lg3.media.net/ Frame A3ED 		15 B
286 B 		Script
General
Check archive.org
Download Go to
Full URL
https://lg3.media.net/bql.php?vgd_len=4734&&&vgd_l2type=sca&fp=4WkTUk9LI4E7NGfETb7twD1GOkZbtIV5fxguPQRc4-LOrgXtzq3rshOgTo7TxRD9TlFhmh9fmh2vFHYD2qmNmCkxdDziKBNtp3TmwGaNFd-FpUDr9q77mVGV-PCIQ9q6&cme=_X7xtAn6iN9kSYqUdmnSgpuUQs_0KKBWvzBlKcZg-Kvdh9hbDfps790JhHW-UTeGhS22ciNhz0MB_HHYg355bnJJa5Gm4p6fSuVhJRVt02-WgpEQQInB81HWhsz2pVRtb_dN1K7Y9SO3DfbMf9qEffLvwmF7lQSjR5t4w_plYa7w-2mpFQp0w3P9XrBicHfGHqzPLAa_mh59ZPbXKiMhrA%3D%3D%7C%7Cu8A6SM53vAdJjhazCSusZAnIl_9HqKRb%7CjyjVTouP1sOI3OR67jxweNSVYtHEv6HR%7Ca0AmFUYXmD4OCPuP3L1dSwPFhFULtArWhu3qrXvJWbI%3D%7CdsA6EMpZ47R6ljdz__nQtthZoUpm2bb5%7Ca0z105Ilj3SKP2UN9c4Qb-UEToWL7Ld3DPSBbHXxmxrWFgZauzf3XmQPlJG8JGFa1ifSppnQa71U0hDHGDCJGzBZsz11-jx5NFm_ex6s1mDVKVyuI-IFrS8dxXuVat6KKXr2gPXZYxk5peMucJl9vpVoH5E3l7zbBbVCpqf0kN_WWjXTrhgpyrkoaC7jSJcFEZ5MFjQWRecS-nvXSxJtmmjIUd9x_G6llWnh5loCCmg%3D%7C&v=1&geo=-33.91%7C151.2&dlper=20&lper=100&lpid=&tsid=4&q=&prv=&type=&ps=&hint=&td=&cc=AU&wsip=2886781338&bca=0&ugd=4&vgd_fcic=0&vgde_setid=NW&vgd_dnquo=01_9&ksu=224&fdkt=391&vgde_kbbh=WoNWNY&kwd[]=Website+Maker+App&kwt[]=391&kbc[]=1224808752&kwp[]=1&kid[]=340189069&kbc2[]=5%3D-1%7C6%3D-1%7C16%3D-1%7C63%3D0.24%7C60%3D0.50%7C10%3D5.56%7C62%3D0.43%7C66%3D0.91%7C12%3D0.27%7C1%3D0.50%7Cps%3D0.484%7C3%3D1.13%7C4%3D5.00&ktd[]=274894815488&ktrkt[]=Website+Maker+App&kwd[]=Best+Stocks+to+Invest+in+2022&kwt[]=391&kbc[]=1224808752&kwp[]=2&kid[]=350575367&kbc2[]=5%3D-1%7C6%3D-1%7C16%3D-1%7C63%3D0.24%7C60%3D0.89%7C10%3D5.56%7C62%3D2.96%7C66%3D0.91%7C12%3D0.14%7C1%3D0.86%7Cps%3D0.484%7C3%3D0.69%7C4%3D5.00&ktd[]=274894815488&ktrkt[]=Best+Stocks+to+Invest+in+2022&kwd[]=Best+Priced+Car+Insurance&kwt[]=391&kbc[]=1224808752&kwp[]=3&kid[]=48970281&kbc2[]=5%3D-1%7C6%3D-1%7C16%3D-1%7C63%3D0.24%7C60%3D0.19%7C10%3D5.56%7C62%3D2.15%7C66%3D0.91%7C12%3D0.39%7C1%3D0.24%7Cps%3D0.484%7C3%3D0.44%7C4%3D4.69&ktd[]=274894815488&ktrkt[]=Best+Priced+Car+Insurance&kwd[]=Trendy+Clothes+for+Older+Women&kwt[]=391&kbc[]=1224808752&kwp[]=4&kid[]=329861602&kbc2[]=5%3D-1%7C6%3D-1%7C16%3D-1%7C63%3D0.24%7C60%3D1.18%7C10%3D5.56%7C62%3D0.96%7C66%3D1.35%7C12%3D0.70%7C1%3D1.11%7Cps%3D0.484%7C3%3D0.20%7C4%3D5.00&ktd[]=274894815488&ktrkt[]=Trendy+Clothes+for+Older+Women&cid=8CUABW64L&vwid=1663226412404582057&vi=1663226412404582057&tdAdd[]=ib%3D0&vsid=3062280136832815&tdAdd[]=asnum%3D54203&vgde_test_data_struct=%7B%22EO7E8O%22%3Au%7D&vgd_cdv=796&vgd_l3_sc=NSW&vgd_chost=contextual.media.net&vgd_hb_audit_1=8CU3SX34C&vgd_hb_audit_2=529820104&vgd_katbid=-103&vgd_pdtid=1&vgd_implt=3&vgd_l2wsip=2886781338&vgd_nrrv=13273&vgd_nrrmf=1c80a&vgd_nrrsf=scrr&vgd_cty=beaconsfield&vgd_go_pid=8PO15GP54&&tdAdd[]=%7C%40%7Cabp%3A1%3A2&vgd_ifrmode=11&vgd_l1rakh=1663226412102901919&sttm=1663226412963&upk=1663226413.6505&hvsid=00001663226412963029185683285877&verid=3111299&vgd_matchstr=hr%3D0%7C&sbdrId=196&vgd_ecrid=1700080812610100728009000000500&vgd_isiolc=1&vgd_fcm_enc_mis=1&pid=8PO15GP54&&abpl=2&&kbbq=%26asn%3D54203&&vgd_vstrid=3062280136832815&vgde_bdata=QOfvzxjj~8xLjMjvf9~myJLEYv9.9X~eBMJ-Nv9.Wf~e8QMQOvAXF~ONfvu~QNOvzQB~eM1QzvXHf9A~ejfLMQOvf9ff9iuHf9~8xLjMGvuW9f.Ai~xLjM7UNv9~Q7Ov~j1Q7v~e8QMxLjMGv9.Hi~8EvAGB9PB~kGGv9~e8QMxLjMjvu9~L88Ex1vhh%2CufH~J7vfh~LNvu~LEQMQOvf9ff9iuHf9~e8QMGvWfX.XF~xLjMGv9.XX~xLjM7e8v9~xLjMjvf9~yN17vou~GGvuiF~eev9~jfLMGvu999~JLEYv9.9X~GYvu~Q8OvhfuuAXFWh~QOv9~x8Ov1gBArebIDOht-19OW~G7OvfHfWAHXAii99AHuhHAAFfufHWFhAAXiihffHi9WHhifi9hAi9AhAHWh9WHXhi9F9hHAX9HFiHXHFAXXAFAWH~OfEMjvA9~AENkvu999~x8Yv9~OYYMQ7Lyvw1LYmz5~OfEMGvu~myOfEMGv9.iF~exLjMGv9.iX~QQvIK~x8Bvou~NJv9~LEQMGvH9.Xh~exLjMjvf9~%3DVvfhAF~z7Qvu~7Gvou~N7vGJ1NmzQk8JjO~G1Q8QfvuiF~G1Q8QuvuiF~8QDJkv9~8exLjMGvu.9X~8Q8kv9~jNvA~G8Ov9.9X~ONvW~ejfLMGvu.HF~8exLjMjvf9~QxEEj5M71yM8Ov~e8JB1G8j875v9.Wf~1YEvu~NGOEv9.9AH~OYYvw1LYmz5~Qx8Ov~O7Nv1E1NMQy~-8OvKrtoExGoH9h9X9fHiAFXAHhH~O1jyvOJk1xj7~w7Yjvu~1OGjUvAFFiA9HfhA~QmGEv~N7Lv9.99fHfhuWHX~GOEN1EOv9~OYYMJLEYvk1jQJ~GkjLv9.9u9~myG8Ov9.9X9~1NM75EJvu~875EJM8Ovuh~QJjjJLM71yM8Ov~OJ7JN7JOM71yM8Ov~ONx7vA9~OmyGv9ou~8GNvu~OO7vou~zQlvu~7yQvhfW-i9~GQGv9~GQEv9~7Y-vfXA&vgd_optout=0&vgd_cfud=220331&vgd_scsver=312&vgd_bhv_kbb=-1&vgd_go_ent=1&vgd_l2ch=0&vgd_rensize=728_90&vgd_scr_h=1200&vgd_scr_w=1600&vgd_ect=4g&vgd_dtc=apac_sg&vgd_mbr=1&vgd_l1rpth=%2Fnmedianet.js&vgd_pgids=1&&tdAdd[]=uiparams%3D%3Brend_w%3A728%3Brend_h%3A90&&vgd_uspa=0&vgd_sc=NSW&vgd_l1rhst=contextual.media.net&hvsid=00001663226412963029185683285877&subBdr=196&bdrid=313&rc=0&rand=1663226414079&acid=a8caa119e737439aaf3978c7ea0b9995&matm=1663226414079&requrl=https%3A%2F%2Fnotes.io%2Fqd7KY&vgd_ltimesrc=1&vgd_ltime=2612&vgd_rtime=2608&vgd_etm=13&vgd_l1hcsd=A20%7C6134&vgd_l1ch=1&vgd_lhl=2531&vgd_pgid=p02078371219t202209150720&vgd_adprefflag=11&vgd_csip=rtb-common-istio-59f7fddfbb-k2x68.SG&vgd_sbSup=1&vgd_nrrs=13273&vgd_cntrdt=SF%7Cgoogleads.g.doubleclick.net&vgd_eadm=1&vgd_end=1
Requested by
Host: notes.io
URL: https://notes.io/qd7KY
Protocol
HTTP/1.1
Security
TLS 1.3, , AES_256_GCM
Server
23.36.48.24 Singapore, Singapore, ASN16625 (AKAMAI-AS, US),
Reverse DNS
a23-36-48-24.deploy.static.akamaitechnologies.com
Software
Apache /
Resource Hash
c787e9dd6dc8ea3c935f5f0f30e3b9e4a3e066b4619bb244f569883f8e318a24
Security Headers
Name Value
Strict-Transport-Security max-age=21600

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Strict-Transport-Security
max-age=21600
Server
Apache
Date
Thu, 15 Sep 2022 07:20:14 GMT
ntCoent-Length
15
Vary
Accept-Encoding
Content-Type
text/html; charset=UTF-8
Cache-Control
max-age=79857
Connection
keep-alive
Content-Length
15
sodar
pagead2.googlesyndication.com/getconfig/ 		14 KB
11 KB 		XHR
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220912&st=env
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_fy2021.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
74.125.68.157 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sc-in-f157.1e100.net
Software
cafe /
Resource Hash
35befd71469021e9e4d70a84b600b8b0425d980f88fb24f69f87222031383e88
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

timing-allow-origin
*
date
Thu, 15 Sep 2022 07:20:14 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cafe
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
access-control-allow-origin
*
cache-control
private
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
content-type
application/json; charset=UTF-8
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
11063
x-xss-protection
0
rum
notes.io/cdn-cgi/ 		0
160 B 		XHR
General
Check archive.org
Download Go to
Full URL
https://notes.io/cdn-cgi/rum?
Requested by
Host: static.cloudflareinsights.com
URL: https://static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
172.67.197.149 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Frame-Options DENY

Request headers

Referer
https://notes.io/qd7KY
accept-language
en-AU,en;q=0.9
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
content-type
application/json

Response headers

date
Thu, 15 Sep 2022 07:20:14 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cloudflare
x-frame-options
DENY
access-control-allow-methods
POST,OPTIONS
content-type
text/plain
access-control-allow-origin
https://notes.io
access-control-max-age
86400
access-control-allow-credentials
true
cf-ray
74af99448a4aaae4-SYD
vary
Origin
sodar2.js
tpc.googlesyndication.com/sodar/ 		17 KB
6 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/sodar/sodar2.js
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_fy2021.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
74.125.200.132 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sa-in-f132.1e100.net
Software
sffe /
Resource Hash
61c32059a5e94075a7ecff678b33907966fc9cfa384daa01aa057f872da14dbb
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:15 GMT
content-encoding
gzip
x-content-type-options
nosniff
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
6386
x-xss-protection
0
server
sffe
cross-origin-opener-policy
same-origin; report-to="adspam-signals-scs"
etag
"1637097310169751"
vary
Accept-Encoding
report-to
{"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-type
text/javascript
cache-control
private, max-age=3000
accept-ranges
bytes
expires
Thu, 15 Sep 2022 07:20:15 GMT
bqi.php
lg3.media.net/ Frame 1CF1 		15 B
15 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://lg3.media.net/bqi.php?vgd_len=2740&lf=3&&vgd_hb_audit_1=8CU3SX34C&vgd_hb_audit_2=529820104&vgd_l2type=sca&pid=8PO15GP54&katbid=-103&katen=1&cme=_X7xtAn6iN9kSYqUdmnSgpuUQs_0KKBWvzBlKcZg-Kvdh9hbDfps790JhHW-UTeGhS22ciNhz0MB_HHYg355bnJJa5Gm4p6fSuVhJRVt02-WgpEQQInB81HWhsz2pVRtb_dN1K7Y9SO3DfbMf9qEffLvwmF7lQSjR5t4w_plYa7w-2mpFQp0w3P9XrBicHfGHqzPLAa_mh59ZPbXKiMhrA==||u8A6SM53vAdJjhazCSusZAnIl_9HqKRb|jyjVTouP1sOI3OR67jxweNSVYtHEv6HR|a0AmFUYXmD4OCPuP3L1dSwPFhFULtArWhu3qrXvJWbI=|dsA6EMpZ47R6ljdz__nQtthZoUpm2bb5|a0z105Ilj3SKP2UN9c4Qb-UEToWL7Ld3DPSBbHXxmxrWFgZauzf3XmQPlJG8JGFa1ifSppnQa71U0hDHGDCJGzBZsz11-jx5NFm_ex6s1mDVKVyuI-IFrS8dxXuVat6KKXr2gPXZYxk5peMucJl9vpVoH5E3l7zbBbVCpqf0kN_WWjXTrhgpyrkoaC7jSJcFEZ5MFjQWRecS-nvXSxJtmmjIUd9x_G6llWnh5loCCmg=|&gdpr=0&prid=8PRVCXX19&cid=8CUABW64L&crid=721135687&requrl=https%3A%2F%2Fnotes.io%2Fqd7KY&vi=1663226412404582057&ugd=4&cc=AU&sc=NSW&bdrid=313&subBdr=196&startTime=1663226412954&l2type=sca&vgd_l1rakh=1663226412102901919&l1ch=1&sttm=1663226412963&upk=1663226413.6505&hvsid=00001663226412963029185683285877&acid=a8caa119e737439aaf3978c7ea0b9995&verid=3111299&vgd_bdata=sd2%3Dnull~iurl_l%3D20~ogerpm%3D0.05~vw_exc%3D0.82~vis_sd%3D356~dc2%3D1~scd%3Dnsw~v_asn%3D54203~vl2r_sd%3D2022091420~iurl_b%3D1802.39~url_tkc%3D0~std%3D~last%3D~vis_url_b%3D0.49~ip%3D3bw0Uw~fbb%3D0~vis_url_l%3D10~riipua%3D77%2C124~et%3D27~rc%3D1~rps_sd%3D2022091420~vis_b%3D825.56~url_b%3D0.55~url_tvi%3D0~url_l%3D20~gcat%3D-1~bb%3D196~vv%3D0~l2r_b%3D1000~erpm%3D0.05~bm%3D1~sid%3D721135687~sd%3D0~uid%3DaQw3DvSNRd7Xxa0d8~btd%3D242834539900341743362124867335997224908479290739037348708457906074350469454635536384~d2p_l%3D30~3pcf%3D1000~uim%3D0~dmm_strg%3Dharmony~d2p_b%3D1~ogd2p_b%3D0.96~vurl_b%3D0.95~ss%3DNA~uiw%3D-1~ce%3D0~rps_b%3D40.57~vurl_l%3D20~CI%3D2736~nts%3D1~tb%3D-1~ct%3Dbeaconsfield~basis2%3D196~basis1%3D196~isRef%3D0~ivurl_b%3D1.05~isif%3D0~lc%3D3~bid%3D0.05~dc%3D8~vl2r_b%3D1.46~ivurl_l%3D20~supply_tag_id%3D%7Eviewability%3D0.82%7Eamp%3D1%7Ecbdp%3D0.034%7Edmm%3Dharmony%7Esuid%3D%7Edtc%3Dapac_sg%7Exid%3DADX-pub-4070502493653474%7Edalg%3Ddefault%7Ehtml%3D1%7Eadblk%3D3669304273%7Esobp%3D%7Ectr%3D0.0024271845%7Ebdpcapd%3D0%7Edmm_erpm%3Dfalse%7Ebflr%3D0.010%7Eogbid%3D0.050%7Eac_type%3D1%7Eitype_id%3D17%7Eseller_tag_id%3D%7Edetected_tag_id%3D%7Edcut%3D30%7Edogb%3D0-1~ibc%3D1~ddt%3D-1~nsz%3D1~tgs%3D728x90~bsb%3D0~bsp%3D0~tmx%3D253&matchstring=hr%3D0%7C&vgd_matchstr=hr%3D0%7C&vgd_sc=NSW&infr=1&twna=1&stime=1663226411485&vgd_ecrid=1700080812610100728009000000500&l1hcsd=l1!A20|6134&vgd_l1rhst=contextual.media.net&vgd_uspa=0&vgd_isiolc=1&pvl=%7B%22dtc%22%3A%22apac_sg%22%2C%22mbr%22%3A1%2C%22l1rpth%22%3A%22%2Fnmedianet.js%22%2C%22pgids%22%3A1%7D&vgd_fcm_enc_mis=1&l2ch=0&vgd_pgid=p02078371219t202209150720&vgd_pgids=1
Protocol
HTTP/1.1
Security
TLS 1.3, , AES_256_GCM
Server
23.36.48.24 Singapore, Singapore, ASN16625 (AKAMAI-AS, US),
Reverse DNS
a23-36-48-24.deploy.static.akamaitechnologies.com
Software
Apache /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
Strict-Transport-Security max-age=21600

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Strict-Transport-Security
max-age=21600
Server
Apache
Date
Thu, 15 Sep 2022 07:20:15 GMT
ntCoent-Length
15
Vary
Accept-Encoding
Content-Type
text/html; charset=UTF-8
Cache-Control
max-age=77070
Connection
keep-alive
Content-Length
15
runner.html
tpc.googlesyndication.com/sodar/sodar2/225/ Frame AFF5 		13 KB
5 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Requested by
Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/sodar2.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
74.125.200.132 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sa-in-f132.1e100.net
Software
sffe /
Resource Hash
55a119c0394f901a8a297e109c17b5e5402689708b999ab10691c16179f32a4a
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://notes.io/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
en-AU,en;q=0.9

Response headers

accept-ranges
bytes
age
237742
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control
public, max-age=31536000
content-encoding
gzip
content-length
5046
content-type
text/html
cross-origin-opener-policy
same-origin; report-to="adspam-signals-scs"
cross-origin-resource-policy
cross-origin
date
Mon, 12 Sep 2022 13:17:53 GMT
expires
Tue, 12 Sep 2023 13:17:53 GMT
last-modified
Mon, 21 Jun 2021 20:47:05 GMT
report-to
{"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
server
sffe
vary
Accept-Encoding
x-content-type-options
nosniff
x-xss-protection
0
aframe
www.google.com/recaptcha/api2/ Frame 4794 		783 B
972 B 		Document
General
Check archive.org
Download Go to
Full URL
https://www.google.com/recaptcha/api2/aframe
Requested by
Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/sodar2.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
74.125.200.106 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sa-in-f106.1e100.net
Software
GSE /
Resource Hash
e611ca30f8d7427ea9a84e0f4b83fcb6694c7ab6d69cce15eec66bc8f9249dbb
Security Headers
Name Value
Content-Security-Policy script-src 'report-sample' 'nonce-H9mCT83GKGI2wWRKhG_MIw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
X-Content-Type-Options nosniff
X-Xss-Protection 1; mode=block

Request headers

Referer
https://notes.io/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language
en-AU,en;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
cache-control
private, max-age=300
content-encoding
gzip
content-length
514
content-security-policy
script-src 'report-sample' 'nonce-H9mCT83GKGI2wWRKhG_MIw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-type
text/html; charset=utf-8
cross-origin-embedder-policy
require-corp
cross-origin-resource-policy
cross-origin
date
Thu, 15 Sep 2022 07:20:15 GMT
expires
Thu, 15 Sep 2022 07:20:15 GMT
report-to
{"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
server
GSE
x-content-type-options
nosniff
x-xss-protection
1; mode=block
UtAH21516j-lv8NeH95YZMYQEqYTHJGx7ojgWd5suBE.js
pagead2.googlesyndication.com/bg/ Frame AFF5 		36 KB
16 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/bg/UtAH21516j-lv8NeH95YZMYQEqYTHJGx7ojgWd5suBE.js
Requested by
Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
74.125.68.157 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sc-in-f157.1e100.net
Software
sffe /
Resource Hash
52d007db5e75ea3fa5bfc35e1fde5864c61012a6131c91b1ee88e059de6cb811
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://tpc.googlesyndication.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Fri, 09 Sep 2022 20:10:32 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
472183
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
16209
x-xss-protection
0
last-modified
Thu, 08 Sep 2022 09:38:00 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="botguard-scs"
vary
Accept-Encoding
report-to
{"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-type
text/javascript
cache-control
public, max-age=31536000
accept-ranges
bytes
expires
Sat, 09 Sep 2023 20:10:32 GMT
generate_204
tpc.googlesyndication.com/ Frame AFF5 		0
10 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://tpc.googlesyndication.com/generate_204?1SOlKQ
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
74.125.200.132 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sa-in-f132.1e100.net
Software
/
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date
Thu, 15 Sep 2022 07:20:15 GMT
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
0
sodar
pagead2.googlesyndication.com/pagead/ Frame 4794 		0
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20220912&jk=1944090373945605&rc=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
74.125.68.157 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sc-in-f157.1e100.net
Software
/
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://www.google.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers
activeview
pagead2.googlesyndication.com/pcs/ Frame 1CF1 		42 B
64 B 		Fetch
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstY9koaUzk_1CxQeXe2yuvrWPTx8cZfDM75IG_LHB_jMMu_oGpnHmY1qkrueQ3S_7pkSbgSd-oJHFHy7ebPXLrTkyvo&sig=Cg0ArKJSzMHZkurP6WQ6EAE&id=lidar2&mcvt=1000&p=0,0,94,728&mtos=0,1000,1000,1000,1000&tos=0,1000,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=0.96&if=1&vu=1&app=0&itpl=20&adk=3669304273&rs=2&la=0&cr=0&uach=WyIiLCIiLCIiLCIiLCIiLFtdLGZhbHNlLG51bGwsIiIsW10sZmFsc2Vd&vs=4&r=v&rst=1663226410634&rpt=4106&met=mue&wmsd=0
Requested by
Host: www.googletagservices.com
URL: https://www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
74.125.68.157 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sc-in-f157.1e100.net
Software
cafe /
Resource Hash
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma
no-cache
date
Thu, 15 Sep 2022 07:20:15 GMT
x-content-type-options
nosniff
server
cafe
timing-allow-origin
*
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
access-control-allow-origin
*
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
content-type
image/gif
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
42
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
sodar
pagead2.googlesyndication.com/pagead/ 		0
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220912&jk=1944090373945605&bg=!Y2ClYCTNAAbG3AOo5tw7ACkAdvg8Wh6mE_58chUhoH63EinAYL0WOWRU6orz0x64sxWCqXXLqPXCkgIAAABCUgAAAAJoAQcKAKreiqOP6DaacUf2nFEMqt9v6DCt4Vf57kh97A6tb5DNIrumRB0vLOInS4pYzpDP2WZkRFd1jwAwdUhIchO3BcXq360iaXPhnipW6jG3NwbBBPzm8sTo5x3hySniS7dXr5-vWyJfKVkctwsy7JCuOJ9thrNEVnCmoxDwaOu8gl_De9XeX8no0fcneiZ-qsYGVr2wpy6CrBO7pELZbuw2gD9-p_XbkHShK-0_rpkCpExdGw4SV0j1Tktu16MtRiZzJcKpCwa7UcxXCy-lLK8f2GHGVGeqFDL2d8eYo6gvZBUkWpNKf9XiFqcovnnejgo0X75awMCaTExyiqJX0azKbq28UBms9UV575S8Xmhu8muhGOVFQs0xOoQ833_HAsqremqghQWHpFzv2Jsrpw3qJoJHtWJR_6fv1oNKaPq1zTe4V453OZ2_R2F72Ga7sqAs_9sOmLi2-PxY4XBRXbI4ZCqyDbEK4vG18JE3lFOC0PSuoPNZBPYvJ8l2zipXz8_YhKuOmFr6xRN1FLD15ae2oy7T-6J4GKornGhmDlNeFtcPBQgssFnZylCbPNKIobNhTOlZPItLPlrgnbJAxern5dMioMG51SguLXOGNJRhqATlDc8clgIgBSh0HqPYuGN0jghjbPaoBPmEpDBgq3mAOecOUIdw_TAkQ3XebgX3chEJ0RDbp5z9ql1KcFuARR1R1NxwRDqXJbgQ3-oG3_8tzkJDHKWxwY8Jaw5z1XlZJ5pagZ-W7ffhh51X0syVBtRhN1iW5JAdxg1RSrZRU15dVyZMYnM-3QF1xrD2QecH_iWd6Zg-Mx-0tNE8pytSBEzlxFBYbtPgVeOlmKOz0sXlBLpkgfl-VVa1oHxkZjp3EiPFFUD6jUFZVo78CbxXCFjeeTtGu8zsw3E3I3L0fOVPs4y6T_u1-bXz9yiif5-0hQ7Xmerk-9kqPYpclFbJ6Fe1Wnco2qZ7z_KArYRVQtKtQusSTlecuivngyuHT5mqUJxdYKY9BsXalpkdh8I5krGEStReYSF9Pq2Dk9fKGyV6ZzLKbGY_b8KAa5KCwrUuxrbOGaLHXBtAKSjejjoeyDwxbN3XPh-D_o-A-U1ZJLg8CAdqBA2e4bkC3UEElg2DT5MH3Zo
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
74.125.68.157 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
sc-in-f157.1e100.net
Software
/
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language
en-AU,en;q=0.9
Referer
https://notes.io/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Verdicts & Comments Add Verdict or Comment

248 JavaScript Global Variables

These are the non-standard "global" variables defined on the window object. These can be helpful in identifying possible client-side frameworks and code.

object| 0 object| 1 object| 2 object| 3 object| 4 object| 5 object| 6 object| 7 object| onbeforeinput object| oncontextlost object| oncontextrestored function| structuredClone object| launchQueue object| onbeforematch function| getScreenDetails function| queryLocalFonts object| navigation object| adsbygoogle function| $ function| jQuery function| popUp function| copyToTextOutFunc function| copyToText function| setCookie function| getCookie function| checkCookie object| _gaq function| removejscssfile object| script object| googletag object| gptAdSlots string| REFRESH_KEY string| REFRESH_VALUE boolean| tracking string| IR_Tag object| Slot_A object| Slot_C object| Slot_C_a object| Slot_C_b object| Slot_C_c object| Slot_C_d object| Slot_C_e object| All_Slot number| SECONDS_TO_WAIT_AFTER_VIEWABILITY number| increaserevWidth string| StopClick1 string| StopClick2 string| StopClick3 string| StopClick4 string| BlockIpClick2 string| BlockIpClick3 string| BlockIpClick5 string| BlockIpClick7 string| BlockIpClick9 string| BlockIpClick10 string| BlockIpCookieTime string| CookieInterval string| stopadsclick string| adsrefresh string| adsrefreshtime boolean| BlockAds object| myConfObj string| Responsive string| DefaultCss string| DefaultAdsCss string| DomainName string| SrcDomain string| irviewport boolean| irviewportReferesh number| _970x90 number| _970x250 number| _728x90 number| _750x300 number| _700x300 number| _650x300 number| _600x300 number| _300x250 number| _336x280 number| _120x600 number| _120x6002 number| _160x600 number| _300x600 number| _s120x600 number| _s120x6002 number| _rs120x600 number| _ms320x100 number| _s970x90 number| _s970x902 number| _320x100 number| _336x280atf number| _970x90atf number| _infeed boolean| _refreshAdsCode boolean| IRDefaultAds_ string| _ir__IpAddress function| _ir__GetIpAddress object| incRevBlockAll undefined| obj undefined| AdsEvent_ function| GetCookieTime function| _ir__SendIpAddress number| irMyVar function| mcmIRmyfunction function| mcmIrStopAdsClicking function| mcmIrAdsClicking undefined| IrInvalidClickTimeOut function| mcmIrInvalidClick function| mcmIrInvalidClick_ function| mcmIrvalidClick function| mcmIrinit function| mcmIrreinit function| mcmirallmyfun function| AddBlockIpAddress function| createCookie function| readCookie function| randomNumber number| irdomainkey number| _970x90_RequestCount number| _970x250_RequestCount number| _728x90_RequestCount number| _750x300_RequestCount number| _300x250_RequestCount number| _336x280_RequestCount number| _120x600_RequestCount number| _160x600_RequestCount number| _300x600_RequestCount number| _s120x600_RequestCount number| _rs120x600_RequestCount function| IRpointerEvents object| mcm1200x250_array function| mcmIRAds_1200x250 object| mcm1200x90_array function| mcmIRAds_1200x90 object| mcm1200x90atf_array function| mcmIRAds_atf1200x90 object| mcm970x90_array function| mcmIRAds_970x90 object| mcm970x90atf_array function| mcmmcmIRAds_970x90ATF object| mcm970x250_array function| mcmIRAds_970x250 object| mcm300x600_array function| mcmIRAds_300x600 object| mcm336x280_array function| mcmIRAds_336x280 object| mcm300x250_array function| mcmIRAds_300x250 object| mcm160x600_array function| mcmIRAds_160x600 object| mcm120x600_array function| mcmIRAds_120x600 object| mcm750x300_array function| mcmIRAds_750x300 object| mcm700x300_array function| mcmIRAds_700x300 object| mcm728x90_array function| mcmIRAds_728x90 object| mcm728x90atf_array function| mcmIRAds_728x90ATF object| mcm650x300_array function| mcmIRAds_650x300 object| mcm320x50_array function| mcmIRAds_320x50 object| mmcm320x100_array function| mcmIRAds_320x100 object| mcm336x280atf_array function| mcmIRAds_atf336x280 object| default_mcm700x300btf_array function| mcmIRAds_700x300BTF object| default_mcm336x280btf_array function| mcmIRAds_btf336x280 object| default_mcmscroll_array function| mcmIRAds_scroll function| mcmIRAds_sticky120x600 function| mcmIRAds_sticky160x600 function| mcmIRAds_rsticky120x600 function| mcmIRAds_sticky970x90 function| mcmIRAds_sticky970x90full function| mcmIRAds_sticky320x100 function| mcmgoogleadsPush function| IRCloseDIVTop function| IRCloseDIVBottom function| IRCloseDIVRight function| IRCloseDIVLeft function| isInViewport function| mcm_ir_AdsRequest2 function| _ir_operatingSytem object| sheet function| mcmIRAds_All function| mcmIrhandler number| monitor function| ir_ads_push function| reverseNum function| isInViewporta number| lastScrollTop function| scrollfunctionand_ number| scrollCount number| latestScrollTop object| doc number| lastScrollTop222 boolean| myscroll_ undefined| myVar function| mynewscrioll number| latestScrollTop2 number| lastScrollTop2222 boolean| myscroll_2 undefined| myVar2 function| mynewscrioll2 function| currentScrollPercentage2 function| currentScrollPercentage function| isInViewport_ function| ir_track boolean| adsfil object| google_js_reporting_queue number| google_srt object| google_logging_queue number| tmod object| google_ad_modifications object| ggeac object| google_persistent_state_async boolean| google_measure_js_timing object| google_tag_data object| google_reactive_ads_global_state boolean| _gfp_a_ object| google_sa_queue function| google_process_slots boolean| google_apltlad function| google_spfd number| google_lpabyc number| google_unique_id object| google_sv_map number| google_rum_task_id_counter string| google_user_agent_client_hint object| __cfBeacon object| jQuery11240261594791170092 object| _gat object| gaGlobal function| google_sa_impl object| googleToken object| googleIMState boolean| _gfp_p_ function| processGoogleToken number| google_global_correlator object| google_prev_clients object| ampInaboxIframes object| ampInaboxPendingMessages string| i_ object| GoogleGcLKhOms

18 Cookies

Domain/Path Name / Value
notes.io/ Name: PHPSESSID
Value: d0nd1gsavvcu2u5avbgrorr14j
notes.io/ Name: IRcookieTime
Value: {"stopclick1":"1s","stopclick2":"1s","stopclick3":"3s","stopclick4":"4s","blockipclick2":"1s","blockipclick3":"2s","blockipclick5":"9s","blockipclick7":"1m","blockipclick9":"2m","blockipclick10":"5m","cookiesinterval":"30m","blockcookies":"720m","viewport":"true","cookiescheck":"true","blacklistip":"3m","stopadsclick":"0","adsrefresh":"true","adsrefreshtime":"40"}
notes.io/ Name: incRevIpCheck
Value: 173.245.209.136
.notes.io/ Name: __utma
Value: 225778053.1743898437.1663226410.1663226410.1663226410.1
.notes.io/ Name: __utmc
Value: 225778053
.notes.io/ Name: __utmz
Value: 225778053.1663226410.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none)
.notes.io/ Name: __utmt
Value: 1
.notes.io/ Name: __utmb
Value: 225778053.1.10.1663226410
notes.io/ Name: IRtrack
Value: com
.notes.io/ Name: __gads
Value: ID=b6453fb1a5bd78e4-22bace546fd600e8:T=1663226411:RT=1663226411:S=ALNI_MYukjSt5AOau4izTQzG9Q1jy1oRRw
.notes.io/ Name: __gpi
Value: UID=000009c882855cf5:T=1663226411:RT=1663226411:S=ALNI_MZplLjrj1v08tn8w0g_d1dL78goLQ
.doubleclick.net/ Name: IDE
Value: AHWqTUl169071KGxW-8LeiqwXReJFdojNjBmwFJbrnXN_NFr4sawGnEiDlpkTTtchmc
.adsrvr.org/ Name: TDID
Value: 6088ec8b-fe56-461c-906f-83f38268546e
.adsrvr.org/ Name: TDCPM
Value: CAEYBSABKAIyCwik7JXnrr2LOxAFOAE.
.media.net/ Name: visitor-id
Value: 3062280136832815000V10
notes.io/ Name: requestCount
Value: 1
.media.net/ Name: data-g
Value: CAESEMYxyIdaNmpPUwr-Q1RzHTc~~6
.media.net/ Name: data-ttd
Value: 6088ec8b-fe56-461c-906f-83f38268546e~~1

Security Headers

This page lists any security headers set by the main page. If you want to understand what these mean and how to use them, head on over to this page

Header Value
Strict-Transport-Security max-age=63072000

Indicators

This is a term in the security industry to describe indicators such as IPs, Domains, Hashes, etc. This does not imply that any of these indicate malicious activity.

9216c867f52e9b45ad9bcb92318de475.safeframe.googlesyndication.com
adservice.google.com
adservice.google.com.au
cm.g.doubleclick.net
contextual.media.net
cs.media.net
googleads.g.doubleclick.net
hblg.media.net
increaserev.com
lg3.media.net
match.adsrvr.org
notes.io
pagead2.googlesyndication.com
partner.googleadservices.com
qsearch-a.akamaihd.net
secureads.increaserev.com
securepubads.g.doubleclick.net
ssl.google-analytics.com
static.cloudflareinsights.com
stats.g.doubleclick.net
tpc.googlesyndication.com
warp.media.net
www.cloudflare.com
www.google.com
www.google.com.au
www.googletagservices.com
104.16.124.96
104.26.0.126
104.83.196.24
142.251.10.157
142.251.10.94
142.251.12.156
142.251.12.97
15.197.193.217
172.217.194.132
172.217.194.157
172.64.156.26
172.67.197.149
23.36.252.26
23.36.48.24
42.99.128.161
74.125.200.106
74.125.200.132
74.125.200.157
74.125.24.156
74.125.68.157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