Overview

URL acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
IP151.101.85.108
ASNAS6983 Earthlink, Inc.
Location United States
Report completed2017-08-02 17:08:25 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 151.101.85.108

Date UQ / IDS / BL URL IP
2017-10-09 11:35:09 +0200
0 - 0 - 0 acdn.adnxs.com/ib/static/usersync/v3/async_us (...) 151.101.85.108
2017-10-03 20:11:43 +0200
0 - 0 - 0 acdn.adnxs.com/ib/static/usersync/v3/async_us (...) 151.101.85.108
2017-10-03 19:33:39 +0200
0 - 0 - 0 acdn.adnxs.com 151.101.85.108
2017-09-28 17:04:50 +0200
0 - 0 - 0 acdn.adnxs.com/ib/static/usersync/v3/async_us (...) 151.101.85.108
2017-09-22 15:40:16 +0200
0 - 0 - 0 cdn.adnxs.com/v/s/100/trk.js 151.101.85.108
2017-09-20 09:45:00 +0200
0 - 0 - 0 acdn.adnxs.com/ib/static/usersync/v3/async_us (...) 151.101.85.108
2017-09-02 15:31:04 +0200
0 - 0 - 0 acdn.adnxs.com/ib/static/usersync/v3/async_us (...) 151.101.85.108
2017-08-31 21:28:28 +0200
0 - 0 - 0 acdn.adnxs.com/ib/static/usersync/v3/async_us (...) 151.101.85.108
2017-08-17 13:32:52 +0200
0 - 0 - 0 acdn.adnxs.com/ib/static/usersync/v3/async_us (...) 151.101.85.108
2017-08-13 11:15:44 +0200
0 - 0 - 0 acdn.adnxs.com 151.101.85.108

Last 10 reports on ASN: AS6983 Earthlink, Inc.

Date UQ / IDS / BL URL IP
2017-10-24 11:20:02 +0200
0 - 0 - 0 bid.contextweb.com/ 151.101.112.166
2017-10-24 10:13:35 +0200
0 - 0 - 0 https://philogb.github.io/jit/index.html 151.101.113.147
2017-10-24 10:10:32 +0200
0 - 0 - 0 https://rlopez0689.github.io/OrgChartJit 151.101.113.147
2017-10-24 10:00:53 +0200
0 - 0 - 0 https://jhfrench.github.io/bootstrap-tree/doc (...) 151.101.113.147
2017-10-24 09:58:09 +0200
0 - 0 - 0 stellathomas2605.kinja.com/pro-race-consultan (...) 151.101.65.34
2017-10-24 09:56:58 +0200
0 - 0 - 0 in.pinterest.com/pin/860891284992045607/ 151.101.112.84
2017-10-24 09:55:43 +0200
0 - 0 - 0 www.behance.net/gallery/58075893/Pro-Race-Con (...) 151.101.129.197
2017-10-24 09:52:46 +0200
0 - 0 - 0 stellathomas2605.kinja.com/pro-race-consultan (...) 151.101.1.34
2017-10-24 09:50:43 +0200
0 - 0 - 0 in.pinterest.com/pin/860891284992045458/ 151.101.112.84
2017-10-24 09:50:00 +0200
0 - 0 - 0 www.behance.net/gallery/58074605/Pro-Race-Con (...) 151.101.65.197

No other reports on domain: .



JavaScript

Executed Scripts (2)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (32)


Request Response
                                        
                                            GET /ib/static/usersync/v3/async_usersync.html HTTP/1.1 
Host: acdn.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         151.101.85.108
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.9.13
Last-Modified: Fri, 20 May 2016 02:07:09 GMT
Etag: W/"573e714d-3e3"
Expires: Tue, 01 Aug 2017 18:36:49 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Fastly-Debug-Digest: e0a1bb88354655bae6b4f44be1ff58238053e5563770e29e0e433e905ee66055
Content-Length: 506
Accept-Ranges: bytes
Date: Wed, 02 Aug 2017 15:07:38 GMT
Age: 31209942
Connection: keep-alive
X-Served-By: cache-jfk1022-JFK, cache-bma7025-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1691310
X-Timer: S1501686458.467286,VS0,VE0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   506
Md5:    b5df0fbc24b9c2e120c7adb1cd618f25
Sha1:   8ced45952c9a51b4e6689cd886e556719fa077b5
Sha256: 54020af72caa42494902c2e0d1fc011e0228df93d5531ef2f820af61528b3b63
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: acdn.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         151.101.85.108
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.9.13
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Fastly-Debug-Digest: 18c539ebc7ce97f994fcf35e270c019862b74f51f2b492807013e1380f831d87
Content-Length: 187
Accept-Ranges: bytes
Date: Wed, 02 Aug 2017 15:07:38 GMT
Age: 120
Connection: keep-alive
X-Served-By: cache-jfk8120-JFK, cache-bma7025-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 9, 1
X-Timer: S1501686459.742901,VS0,VE0
Vary: Accept-Encoding
Cache-Control: max-age=86400


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   187
Md5:    597ad05b83d70a47c307d9c2f8592377
Sha1:   dbe40651dac8de06a0c1172337932b4c354b331d
Sha256: a131a4684a51bc824aa2d6f1699e68f9b9045d39544d1c945dcd8dc68c59780c
                                        
                                            GET /async_usersync?cbfn=AN_async_load HTTP/1.1 
Host: ib.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html

                                         
                                         185.33.223.209
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.11.5
Date: Wed, 02 Aug 2017 15:07:40 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: http://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DAN_async_load
AN-X-Request-Uuid: 8259cbb4-505a-47db-b216-25a3a2070c6b
Set-Cookie: sess=1; Path=/; Max-Age=86400; Expires=Thu, 03-Aug-2017 15:07:40 GMT; Domain=.adnxs.com; HttpOnly uuid2=7005879865747680164; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:40 GMT; Domain=.adnxs.com; HttpOnly
X-Proxy-Origin: 77.40.129.123; 77.40.129.123; 314.bm-nginx-loadbalancer.mgmt.ams1; *.adnxs.com; 185.33.222.81:80


--- Additional Info ---
                                        
                                            GET /bounce?%2Fasync_usersync%3Fcbfn%3DAN_async_load HTTP/1.1 
Host: ib.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
Cookie: sess=1; uuid2=7005879865747680164

                                         
                                         185.33.223.209
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: nginx/1.11.5
Date: Wed, 02 Aug 2017 15:07:40 GMT
Content-Length: 1324
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: ba42086d-a7ef-40fc-80dc-e478714a301a
Set-Cookie: anj=dTM7k!M4.wgjZ%3ghqdmU(7TE[w@rp!]tbPB*Ny7NI/6X@j7xDmQ^%6qmHW7*3Y=.*J'?=(4k%LIKp(#V'jeq.`[E03(X1OFBw(9QKb98Fd:rxr>XSTle.AB-^(5gC6Yf7#a'Kf/eTTQ-#5q[!AWy8LX_ta; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:40 GMT; Domain=.adnxs.com; HttpOnly sess=1; Path=/; Max-Age=86400; Expires=Thu, 03-Aug-2017 15:07:40 GMT; Domain=.adnxs.com; HttpOnly uuid2=7005879865747680164; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:40 GMT; Domain=.adnxs.com; HttpOnly
X-Proxy-Origin: 77.40.129.123; 77.40.129.123; 314.bm-nginx-loadbalancer.mgmt.ams1; *.adnxs.com; 185.33.221.147:80


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   1324
Md5:    bd271e2fbc00b385e7a8d1e36319d264
Sha1:   27c93d8c7f78e159706eafc87c0faf056587aba4
Sha256: 282dbcc6b9448c89bccdffa759fbebb0b31abfb2642c00bebd618544c5caf352
                                        
                                            GET /pixel?google_nid=appnexus&google_cm&google_sc&uid=7005879865747680164 HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html

                                         
                                         216.58.211.130
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: http://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_cm=&google_sc=&uid=7005879865747680164&google_tc=
Date: Wed, 02 Aug 2017 15:07:38 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 323
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Wed, 02-Aug-2017 15:22:38 GMT; path=/; domain=.doubleclick.net


--- Additional Info ---
Magic:  HTML document text
Size:   323
Md5:    98f12b6b5285d5ce4e392f948cebca0e
Sha1:   f84056eb2199fef72e7c2f04e15ef975a1e3f9c7
Sha256: 4b9653eb14588d236fd518ceb0274d889fbe054cb34f6de6aeecfc1f99b1f5d1
                                        
                                            GET /pixel?google_nid=appnexus&google_cm=&google_sc=&uid=7005879865747680164&google_tc= HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
Cookie: test_cookie=CheckForPermission

                                         
                                         216.58.211.130
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: http://ib.adnxs.com/setuid?entity=101&uid=7005879865747680164&code=CAESEKmCcbdH4nJX-VEid3nO_2c&google_cver=1
Date: Wed, 02 Aug 2017 15:07:39 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 317
X-XSS-Protection: 1; mode=block
Set-Cookie: id=26a0b6ebbec725c6||t=1501686459|et=730|cs=002213fd48097cf384f346bbf7; expires=Fri, 02-Aug-2019 15:07:39 GMT; path=/; domain=.doubleclick.net test_cookie=; domain=.doubleclick.net; path=/; expires=Mon, 21 Jul 2008 23:59:00 GMT IDE=AHWqTUnihozjb3vvzDqPHcnMWms-KZut--zqz8EESCrDgTDPDARPTVADBw; expires=Fri, 02-Aug-2019 15:07:39 GMT; path=/; domain=.doubleclick.net; HttpOnly


--- Additional Info ---
Magic:  HTML document text
Size:   317
Md5:    ed3874790aa119dcfd324d9fbcd873cf
Sha1:   dcbefbe71242fb07189c68bb6e4a87d3aab61ce2
Sha256: 0c5911559ce9568ab6fb74ea5bfea45a7f406e20277389203193a0ec598dedf4
                                        
                                            GET /sync/img?mt_exid=13&mt_exuid=7005879865747680164&redir=http%3A%2F%2Fib.adnxs.com%2Fsetuid%3Fentity%3D8%26code%3D%5Buuid%5D HTTP/1.1 
Host: sync.mathtag.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html

                                         
                                         185.29.135.181
HTTP/1.1 302 Moved Temporarily
Content-Type: image/gif
                                        
Date: Wed, 02 Aug 2017 15:07:39 GMT
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=360
Cache-Control: no-cache
Set-Cookie: uuid=4bc95982-eabb-4900-bd04-b3abca9289f2; domain=.mathtag.com; path=/; expires=Thu, 30-Aug-2018 15:07:39 GMT
Location: http://sync.mathtag.com/sync/img?mt_exid=13&mt_exuid=7005879865747680164&redir=http%3A%2F%2Fib.adnxs.com%2Fsetuid%3Fentity%3D8%26code%3D%5Buuid%5D&mm_bnc&mm_bct
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Server: MT3 1.15.11.0 033507e RELEASE cdg-pixel-x13
Expires: Wed, 02 Aug 2017 15:07:38 GMT


--- Additional Info ---
                                        
                                            GET /setuid?entity=101&uid=7005879865747680164&code=CAESEKmCcbdH4nJX-VEid3nO_2c&google_cver=1 HTTP/1.1 
Host: ib.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
Cookie: sess=1; uuid2=7005879865747680164; anj=dTM7k!M4.wgjZ%3ghqdmU(7TE[w@rp!]tbPB*Ny7NI/6X@j7xDmQ^%6qmHW7*3Y=.*J'?=(4k%LIKp(#V'jeq.`[E03(X1OFBw(9QKb98Fd:rxr>XSTle.AB-^(5gC6Yf7#a'Kf/eTTQ-#5q[!AWy8LX_ta

                                         
                                         185.33.223.209
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.11.5
Date: Wed, 02 Aug 2017 15:07:41 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
AN-X-Request-Uuid: e70d84f9-55b9-4614-93cf-d7df3f19dcef
Set-Cookie: anj=dTM7k!M4/bdWIy(ghqdmU(7TE[w@rp!]tcZ8iYXJU5sy0W$haCF#WvLaGY4=-'aH_Xj<f2H)@#PSU80KH*sIImIzx(WUwxj]RxQ#nyW<U0G?-KYQM-:KLU#0?Qu9%WqcWdUyu?pIPv_r?9s!t]9oT'05+o`1uj8XR+G[aZf1fW-!1T%%q$=C(x(Em%)Mg-**PRPP(dH]ADq(:; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly sess=1; Path=/; Max-Age=86400; Expires=Thu, 03-Aug-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly uuid2=7005879865747680164; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly
X-Proxy-Origin: 77.40.129.123; 77.40.129.123; 314.bm-nginx-loadbalancer.mgmt.ams1; *.adnxs.com; 185.33.220.214:80


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    592ebefc7104d681d57852665e9ad514
Sha1:   15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
Sha256: 4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
                                        
                                            GET /c.gif?anx_uid=7005879865747680164&Red3=MSAN_pd HTTP/1.1 
Host: c.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html

                                         
                                         204.79.197.200
HTTP/1.1 302 Redirect
                                        
Cache-Control: private, no-cache, proxy-revalidate, no-store
Pragma: no-cache
Location: http://m.adnxs.com/seg?add=5159620&redir=http%3A%2F%2Fm.adnxs.com%2Fmapuid%3Fmember%3D226%26user%3D289984A67B926BEC38D18E747F926866%3B%26redir%3Dhttp%253A%252F%252Fm.adnxs.com%252Fmapuid%253Fmember%253D280%2526user%253D289984A67B926BEC38D18E747F926866%253B
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
Set-Cookie: ANONCHK=1; domain=c.bing.com; expires=Wed, 02-Aug-2017 15:17:39 GMT; path=/; MUID=289984A67B926BEC38D18E747F926866; domain=.bing.com; expires=Mon, 27-Aug-2018 15:07:39 GMT; path=/; MR=0; domain=c.bing.com; expires=Mon, 29-Jan-2018 15:07:39 GMT; path=/; MUIDB=337340B6CE7B6D5F22074A64CF9F6CA7; path=/; httponly; expires=Fri, 02-Aug-2019 15:07:39 GMT
X-Powered-By: ASP.NET
X-MSEdge-Ref: Ref A: 07E2D1089A73479996FD51F6DF5FEBE5 Ref B: STOSCHEDGE0209 Ref C: 2017-08-02T15:07:39Z
Date: Wed, 02 Aug 2017 15:07:38 GMT
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /cm?in=1&pub=345&userid=7005879865747680164 HTTP/1.1 
Host: p.rfihub.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html

                                         
                                         185.31.128.207
HTTP/1.1 302 Found
                                        
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: smd=H4sIAAAAAAAAALPiNTQ1MDSzMDMxtTQ0MAYAAwQ5zA8AAAA;Path=/;Domain=.rfihub.com;Expires=Mon, 27-Aug-2018 15:07:39 GMT euds=H4sIAAAAAAAAABMSNjcwMLUwt7QwMzU3MTezMDA0MwEAt6NXFhUAAAA;Path=/;Domain=.rfihub.com eud=H4sIAAAAAAAAABMSNjcwMLUwt7QwMzU3MTezMDA0M4niNTQF0hZmJqaWhgbGsxhR-QDkz-XVNAAAAA;Path=/;Domain=.rfihub.com;Expires=Mon, 27-Aug-2018 15:07:39 GMT rud=H4sIAAAAAAAAAOMSNjQwMTCzMDY2NzAzMLA0NTQ1NRTiM9Q1Ts-vSjHNjQyzsHCR4jU0NTA0szAzMbU0NDAGAFzee1Y0AAAA;Path=/;Domain=.rfihub.com;Expires=Mon, 27-Aug-2018 15:07:39 GMT ruds=H4sIAAAAAAAAAOMSNjQwMTCzMDY2NzAzMLA0NTQ1NRTiM9Q1Ts-vSjHNjQyzsHABAIfzSswlAAAA;Path=/;Domain=.rfihub.com
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: http://ib.adnxs.com/pxj?bidder=18&seg=378601&action=setuids('1040683370600951551','');&redir=
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /dis/usersync.aspx?r=7&p=3&cp=appnexus&cu=1&url=http%3A%2F%2Fib.adnxs.com%2Fsetuid%3Fentity%3D52%26code%3D%7Bcriteo_userid%7D%26seg%3D5311899 HTTP/1.1 
Host: dis.criteo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html

                                         
                                         178.250.0.76
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Server: Microsoft-IIS/8.5
P3P: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
X-Powered-By: ASP.NET
Date: Wed, 02 Aug 2017 15:07:38 GMT
Content-Length: 43


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            GET /sync/img?mt_exid=13&mt_exuid=7005879865747680164&redir=http%3A%2F%2Fib.adnxs.com%2Fsetuid%3Fentity%3D8%26code%3D%5Buuid%5D&mm_bnc&mm_bct HTTP/1.1 
Host: sync.mathtag.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
Cookie: uuid=4bc95982-eabb-4900-bd04-b3abca9289f2

                                         
                                         185.29.135.181
HTTP/1.1 302 Moved Temporarily
Content-Type: image/gif
                                        
Date: Wed, 02 Aug 2017 15:07:39 GMT
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=360
Cache-Control: no-cache
Location: http://ib.adnxs.com/setuid?entity=8&code=4bc95982-eabb-4900-bd04-b3abca9289f2
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Server: MT3 1.15.11.0 033507e RELEASE cdg-pixel-x12
Set-Cookie: uuidc=KwX5+F0T5iZaE2FXUbWOpwdU5QKoofqyGojCyj1YEpjViyrHYdb+A9SHQNdg1zTlAiskL1LHOJvJNiixRf6HFWuotY+nmLfxdh0ZvqdVLBs=; Expires=Thu, 30-Aug-18 15:07:39 GMT; Domain=.mathtag.com; Path=/
Expires: Wed, 02 Aug 2017 15:07:38 GMT


--- Additional Info ---
                                        
                                            GET /track/cmf/generic?ttd_pid=appnexus&ttd_tpi=1&ttd_puid=7005879865747680164 HTTP/1.1 
Host: match.adsrvr.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html

                                         
                                         46.137.75.255
HTTP/1.1 302 Found
Content-Type: text/html
                                        
Cache-Control: private,no-cache, must-revalidate
Date: Wed, 02 Aug 2017 15:07:38 GMT
Location: http://match.adsrvr.org/track/cmb/generic?ttd_pid=appnexus&ttd_tpi=1&ttd_puid=7005879865747680164
P3P: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
Pragma: no-cache
Server: Microsoft-IIS/8.5
Set-Cookie: TDID=b32280ce-b68f-4760-88a4-4576e5e4b942; domain=.adsrvr.org; expires=Thu, 02-Aug-2018 15:07:38 GMT; path=/ TDCPM=CAEYBSgCMgsIhvGwn97wrDUQBTgB; domain=.adsrvr.org; expires=Thu, 02-Aug-2018 15:07:38 GMT; path=/
X-AspNet-Version: 4.0.30319
Content-Length: 225
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   225
Md5:    1a419a4f3bdeb6ed5bff183cb46feac7
Sha1:   a818454083388c9c014c624c7087c52fe80d5c23
Sha256: 4cc7db913e4eec3b2d80352202168f257bb6b1d544f8ef7e93dc680a85cfe5f2
                                        
                                            GET /pxj?bidder=18&seg=378601&action=setuids(%271040683370600951551%27,%27%27);&redir= HTTP/1.1 
Host: ib.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
Cookie: sess=1; uuid2=7005879865747680164; anj=dTM7k!M4/bdWIy(ghqdmU(7TE[w@rp!]tcZ8iYXJU5sy0W$haCF#WvLaGY4=-'aH_Xj<f2H)@#PSU80KH*sIImIzx(WUwxj]RxQ#nyW<U0G?-KYQM-:KLU#0?Qu9%WqcWdUyu?pIPv_r?9s!t]9oT'05+o`1uj8XR+G[aZf1fW-!1T%%q$=C(x(Em%)Mg-**PRPP(dH]ADq(:

                                         
                                         185.33.223.209
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.11.5
Date: Wed, 02 Aug 2017 15:07:41 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
AN-X-Request-Uuid: ab0e286c-1eb0-4e70-b6f0-06ad42051a43
Set-Cookie: anj=dTM7k!M4/bdWIy(ghqdmU(7TE[w@rp!]tcZ8iYXJU5sy0W$haCF#WvLaGY4=-'aH_Xj<f2H)@#PSU80KH*sIImIzx(WUwxj]RxQ#nyW<U0G?-KYQM-:KLU#0?Qu9%WqcWdUyu?pIPv_r?9s!t]9oT'05+o`1uj8XR+G[aZf1fW-!1T%%q$=C(x(Em%)Mg-**PRPP(dH]ADq(:; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly sess=1; Path=/; Max-Age=86400; Expires=Thu, 03-Aug-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly uuid2=7005879865747680164; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly
X-Proxy-Origin: 77.40.129.123; 77.40.129.123; 314.bm-nginx-loadbalancer.mgmt.ams1; *.adnxs.com; 185.33.222.218:80


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    592ebefc7104d681d57852665e9ad514
Sha1:   15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
Sha256: 4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
                                        
                                            GET /track/cmb/generic?ttd_pid=appnexus&ttd_tpi=1&ttd_puid=7005879865747680164 HTTP/1.1 
Host: match.adsrvr.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
Cookie: TDID=b32280ce-b68f-4760-88a4-4576e5e4b942; TDCPM=CAEYBSgCMgsIhvGwn97wrDUQBTgB

                                         
                                         46.137.75.255
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private,no-cache, must-revalidate
Date: Wed, 02 Aug 2017 15:07:41 GMT
P3P: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
Pragma: no-cache
Server: Microsoft-IIS/8.5
Set-Cookie: TDID=b32280ce-b68f-4760-88a4-4576e5e4b942; domain=.adsrvr.org; expires=Thu, 02-Aug-2018 15:07:41 GMT; path=/ TDCPM=CAESFwoIYXBwbmV4dXMSCwjy0d6QyPCsNRAFGAU4AUIEIgIIAQ..; domain=.adsrvr.org; expires=Thu, 02-Aug-2018 15:07:41 GMT; path=/
X-AspNet-Version: 4.0.30319
Content-Length: 70
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   70
Md5:    58a7930cd4577fc33c35828c271eab8f
Sha1:   406e57f86dc101e10f3a57be1e2f7b93c4580474
Sha256: 8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
                                        
                                            GET /setuid?entity=8&code=4bc95982-eabb-4900-bd04-b3abca9289f2 HTTP/1.1 
Host: ib.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
Cookie: sess=1; uuid2=7005879865747680164; anj=dTM7k!M4/bdWIy(ghqdmU(7TE[w@rp!]tcZ8iYXJU5sy0W$haCF#WvLaGY4=-'aH_Xj<f2H)@#PSU80KH*sIImIzx(WUwxj]RxQ#nyW<U0G?-KYQM-:KLU#0?Qu9%WqcWdUyu?pIPv_r?9s!t]9oT'05+o`1uj8XR+G[aZf1fW-!1T%%q$=C(x(Em%)Mg-**PRPP(dH]ADq(:

                                         
                                         185.33.223.209
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.11.5
Date: Wed, 02 Aug 2017 15:07:41 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
AN-X-Request-Uuid: 05cf05ee-0b1d-470a-8f39-5b2226703aa7
Set-Cookie: anj=dTM7k!M40uDv<yXF']wIg2Il`@[@NJ!A#Fk.FoAc=:_)V=nhl_4_#%dBoQ20'Qn7B>dyB*`Pfz9fHq.d5SP7brng%%>.pLrjs>n#INiYhTAx[di8FW/77hNU1I34QhVZADgZd5v69xmK0x=xLjg4k$(uqrB)jiX>:SamC?btA%'OW#)2jxWKE7tnt%VAO[e5#^f)5(I3m7ydj)E]vte5+Lc=0]mk4f@bIK[:MC=bAw/92vIX27%W^Q4uVNN3FJH!:x?6p8^Nc; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly sess=1; Path=/; Max-Age=86400; Expires=Thu, 03-Aug-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly uuid2=7005879865747680164; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly
X-Proxy-Origin: 77.40.129.123; 77.40.129.123; 314.bm-nginx-loadbalancer.mgmt.ams1; *.adnxs.com; 185.33.222.88:80


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    592ebefc7104d681d57852665e9ad514
Sha1:   15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
Sha256: 4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
                                        
                                            GET /seg?add=5159620&redir=http%3A%2F%2Fm.adnxs.com%2Fmapuid%3Fmember%3D226%26user%3D289984A67B926BEC38D18E747F926866%3B%26redir%3Dhttp%253A%252F%252Fm.adnxs.com%252Fmapuid%253Fmember%253D280%2526user%253D289984A67B926BEC38D18E747F926866%253B HTTP/1.1 
Host: m.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
Cookie: sess=1; uuid2=7005879865747680164; anj=dTM7k!M4/bdWIy(ghqdmU(7TE[w@rp!]tcZ8iYXJU5sy0W$haCF#WvLaGY4=-'aH_Xj<f2H)@#PSU80KH*sIImIzx(WUwxj]RxQ#nyW<U0G?-KYQM-:KLU#0?Qu9%WqcWdUyu?pIPv_r?9s!t]9oT'05+o`1uj8XR+G[aZf1fW-!1T%%q$=C(x(Em%)Mg-**PRPP(dH]ADq(:

                                         
                                         185.33.222.210
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.11.5
Date: Wed, 02 Aug 2017 15:07:41 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: http://m.adnxs.com/mapuid?member=226&user=289984A67B926BEC38D18E747F926866;&redir=http%3A%2F%2Fm.adnxs.com%2Fmapuid%3Fmember%3D280%26user%3D289984A67B926BEC38D18E747F926866%3B
AN-X-Request-Uuid: 2ff1b47c-b5b2-46ef-aa1b-53ec8c0024c5
Set-Cookie: anj=dTM7k!M4/bdWIy(ghqdmU(7TE[w@rp!]tcZ8iYXJU5sy0W$haCF#WvLaGY4=-'aH_Xj<f2H)@#PSU80KH*sIImIzx(WUwxj]RxQ#nyW<U0G?-KYQM-:KLU#0?Qu9%WqcWdUyu?pIPv_r?9s!t]9oT'05+o`1uj8XR+G[aZf1fW-!1T%%q$=C(x(Em%)Mg-**PRPP(dH]ADq(:; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly sess=1; Path=/; Max-Age=86400; Expires=Thu, 03-Aug-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly uuid2=7005879865747680164; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly
X-Proxy-Origin: 77.40.129.123; 77.40.129.123; 258.bm-nginx-loadbalancer.mgmt.ams1; *.adnxs.com; 185.33.222.73:80


--- Additional Info ---
                                        
                                            GET /mapuid?member=226&user=289984A67B926BEC38D18E747F926866;&redir=http%3A%2F%2Fm.adnxs.com%2Fmapuid%3Fmember%3D280%26user%3D289984A67B926BEC38D18E747F926866%3B HTTP/1.1 
Host: m.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
Cookie: sess=1; uuid2=7005879865747680164; anj=dTM7k!M4/bdWIy(ghqdmU(7TE[w@rp!]tcZ8iYXJU5sy0W$haCF#WvLaGY4=-'aH_Xj<f2H)@#PSU80KH*sIImIzx(WUwxj]RxQ#nyW<U0G?-KYQM-:KLU#0?Qu9%WqcWdUyu?pIPv_r?9s!t]9oT'05+o`1uj8XR+G[aZf1fW-!1T%%q$=C(x(Em%)Mg-**PRPP(dH]ADq(:

                                         
                                         185.33.222.210
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.11.5
Date: Wed, 02 Aug 2017 15:07:41 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: http://m.adnxs.com/mapuid?member=280&user=289984A67B926BEC38D18E747F926866;
AN-X-Request-Uuid: 974f2a00-b81f-462c-afec-b942b78afa9c
Set-Cookie: anj=dTM7k!M4/bdWIy(ghqdmU(7TE[w@rp!]tcZ8iYXJU5sy0W$haCF#WvLaGY4=-'aH_Xj<f2H)@#PSU80KH*sIImIzx(WUwxj]RxQ#nyW<U0G?-KYQM-:KLU#0?Qu9%WqcWdUyu?pIPv_r?9s!t]9oT'05+o`1uj8XR+G[aZf1fW-!1T%%q$=C(x(Em%)Mg-**PRPP(dH]ADq(:; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly sess=1; Path=/; Max-Age=86400; Expires=Thu, 03-Aug-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly uuid2=7005879865747680164; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly
X-Proxy-Origin: 77.40.129.123; 77.40.129.123; 258.bm-nginx-loadbalancer.mgmt.ams1; *.adnxs.com; 185.33.221.149:80


--- Additional Info ---
                                        
                                            GET /mapuid?member=280&user=289984A67B926BEC38D18E747F926866; HTTP/1.1 
Host: m.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
Cookie: sess=1; uuid2=7005879865747680164; anj=dTM7k!M4/bdWIy(ghqdmU(7TE[w@rp!]tcZ8iYXJU5sy0W$haCF#WvLaGY4=-'aH_Xj<f2H)@#PSU80KH*sIImIzx(WUwxj]RxQ#nyW<U0G?-KYQM-:KLU#0?Qu9%WqcWdUyu?pIPv_r?9s!t]9oT'05+o`1uj8XR+G[aZf1fW-!1T%%q$=C(x(Em%)Mg-**PRPP(dH]ADq(:

                                         
                                         185.33.222.210
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.11.5
Date: Wed, 02 Aug 2017 15:07:41 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
AN-X-Request-Uuid: 7439f955-95f2-4759-b349-dfc8a43438ac
Set-Cookie: anj=dTM7k!M4/bdWIy(ghqdmU(7TE[w@rp!]tcZ8iYXJU5sy0W$haCF#WvLaGY4=-'aH_Xj<f2H)@#PSU80KH*sIImIzx(WUwxj]RxQ#nyW<U0G?-KYQM-:KLU#0?Qu9%WqcWdUyu?pIPv_r?9s!t]9oT'05+o`1uj8XR+G[aZf1fW-!1T%%q$=C(x(Em%)Mg-**PRPP(dH]ADq(:; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly sess=1; Path=/; Max-Age=86400; Expires=Thu, 03-Aug-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly uuid2=7005879865747680164; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:41 GMT; Domain=.adnxs.com; HttpOnly
X-Proxy-Origin: 77.40.129.123; 77.40.129.123; 258.bm-nginx-loadbalancer.mgmt.ams1; *.adnxs.com; 185.33.223.76:80


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    592ebefc7104d681d57852665e9ad514
Sha1:   15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
Sha256: 4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: acdn.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: sess=1; uuid2=7005879865747680164; anj=dTM7k!M4/bdWIy(ghqdmU(7TE[w@rp!]tcZ8iYXJU5sy0W$haCF#WvLaGY4=-'aH_Xj<f2H)@#PSU80KH*sIImIzx(WUwxj]RxQ#nyW<U0G?-KYQM-:KLU#0?Qu9%WqcWdUyu?pIPv_r?9s!t]9oT'05+o`1uj8XR+G[aZf1fW-!1T%%q$=C(x(Em%)Mg-**PRPP(dH]ADq(:

                                         
                                         151.101.85.108
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.9.13
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Fastly-Debug-Digest: 18c539ebc7ce97f994fcf35e270c019862b74f51f2b492807013e1380f831d87
Content-Length: 187
Accept-Ranges: bytes
Date: Wed, 02 Aug 2017 15:07:39 GMT
Age: 121
Connection: keep-alive
X-Served-By: cache-jfk8120-JFK, cache-bma7025-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 9, 2
X-Timer: S1501686459.303424,VS0,VE0
Vary: Accept-Encoding
Cache-Control: max-age=86400


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   187
Md5:    597ad05b83d70a47c307d9c2f8592377
Sha1:   dbe40651dac8de06a0c1172337932b4c354b331d
Sha256: a131a4684a51bc824aa2d6f1699e68f9b9045d39544d1c945dcd8dc68c59780c
                                        
                                            GET /dyn/an-usersync?user_id=7005879865747680164 HTTP/1.1 
Host: router.infolinks.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html

                                         
                                         107.178.242.198
HTTP/1.1 200 OK
                                        
Server: Apache-Coyote/1.1
Cache-Control: no-store
Set-Cookie: ANUSERCOOKIE=7005879865747680164; Domain=infolinks.com; Expires=Sat, 12-Aug-2017 15:07:39 GMT; Path=/
Content-Length: 0
Date: Wed, 02 Aug 2017 15:07:38 GMT
Via: 1.1 google


--- Additional Info ---
                                        
                                            GET /t/v2/sync?tagid=V2_4265&src.visitorId=7005879865747680164 HTTP/1.1 
Host: odr.mookie1.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html

                                         
                                         52.58.228.58
HTTP/1.1 302 Found
Content-Type: text/plain; charset=UTF-8
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 02 Aug 2017 15:07:40 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: http://global.ib-ibi.com/image.sbxx?go=298769&pid=541&xid=11414725099465377130
P3P: CP="NON DSP COR NID CURa PSAa PSDa OUR STP UNI COM NAV STA LOC OTC",policyref="/w3c/p3p.xml"
Pragma: no-cache
Set-Cookie: id=11414725099465377130; Domain=.mookie1.com; Expires=Sat, 01-Sep-2018 15:07:40 GMT; Path=/ mdata=1|11414725099465377130|1501686460247; Domain=.mookie1.com; Expires=Sat, 01-Sep-2018 15:07:40 GMT; Path=/
X-Application-Context: application
Content-Length: 0
Connection: keep-alive


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: acdn.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: sess=1; uuid2=7005879865747680164; anj=dTM7k!M4/bdWIy(ghqdmU(7TE[w@rp!]tcZ8iYXJU5sy0W$haCF#WvLaGY4=-'aH_Xj<f2H)@#PSU80KH*sIImIzx(WUwxj]RxQ#nyW<U0G?-KYQM-:KLU#0?Qu9%WqcWdUyu?pIPv_r?9s!t]9oT'05+o`1uj8XR+G[aZf1fW-!1T%%q$=C(x(Em%)Mg-**PRPP(dH]ADq(:

                                         
                                         151.101.85.108
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.9.13
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Fastly-Debug-Digest: 18c539ebc7ce97f994fcf35e270c019862b74f51f2b492807013e1380f831d87
Content-Length: 187
Accept-Ranges: bytes
Date: Wed, 02 Aug 2017 15:07:41 GMT
Age: 123
Connection: keep-alive
X-Served-By: cache-jfk8120-JFK, cache-bma7025-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 9, 3
X-Timer: S1501686462.738672,VS0,VE0
Vary: Accept-Encoding
Cache-Control: max-age=86400


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   187
Md5:    597ad05b83d70a47c307d9c2f8592377
Sha1:   dbe40651dac8de06a0c1172337932b4c354b331d
Sha256: a131a4684a51bc824aa2d6f1699e68f9b9045d39544d1c945dcd8dc68c59780c
                                        
                                            GET /tap.php?v=4894&nid=1986&put=7005879865747680164 HTTP/1.1 
Host: pixel.rubiconproject.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html

                                         
                                         213.19.162.90
HTTP/1.1 307 Temporary Redirect
                                        
Set-Cookie: c=1; Path=/
Location: /tap.php?cookie_redirect=1&v=4894&nid=1986&put=7005879865747680164
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Content-Length: 0
Date: Wed, 02 Aug 2017 15:07:41 GMT
Server: Rubicon Project


--- Additional Info ---
                                        
                                            GET /tap.php?cookie_redirect=1&v=4894&nid=1986&put=7005879865747680164 HTTP/1.1 
Host: pixel.rubiconproject.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
Cookie: c=1

                                         
                                         213.19.162.90
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
X-RPHost: xMvOq69Ck1gzIx8Wgc-3KQ
Set-Cookie: rpb=4894%3D1; Domain=.rubiconproject.com; Expires=Fri, 01-Sep-2017 15:07:42 GMT; Path=/ put_1986=7005879865747680164; Domain=.rubiconproject.com; Expires=Fri, 01-Sep-2017 14:59:59 GMT; Path=/ rpx=4894%3D66487%2C0%2C1%2C%2C; Domain=.pixel.rubiconproject.com; Expires=Fri, 01-Sep-2017 15:07:42 GMT; Path=/ khaos=J5V5CHV3-24-9MTI; Domain=.rubiconproject.com; Expires=Thu, 01-Feb-2018 03:07:42 GMT; Path=/
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Connection: keep-alive
Content-Length: 42
Date: Wed, 02 Aug 2017 15:07:41 GMT
Server: Rubicon Project


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST / HTTP/1.1 
Host: gn.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1419
Content-Transfer-Encoding: binary
Cache-Control: max-age=520695, public, no-transform, must-revalidate
Last-Modified: Tue, 1 Aug 2017 15:43:14 GMT
Expires: Tue, 8 Aug 2017 15:43:14 GMT
Date: Wed, 02 Aug 2017 15:07:42 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1419
Md5:    a955688e27cc12a3bc0c3952faf15c27
Sha1:   f95adf3b8244dd631ba09bebf06af107b516b08e
Sha256: 13c3db018d8ad1c822a297db379306d6d05169e70175adf22946bca6942682f4
                                        
                                            GET /getuid?https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dappnexus1%26google_sc%26google_hm%3D%24%7BBASE64_UID_ENC%7D%26google_cm HTTP/1.1 
Host: ib.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
Cookie: sess=1; uuid2=7005879865747680164; anj=dTM7k!M4.wgjZ%3ghqdmU(7TE[w@rp!]tbPB*Ny7NI/6X@j7xDmQ^%6qmHW7*3Y=.*J'?=(4k%LIKp(#V'jeq.`[E03(X1OFBw(9QKb98Fd:rxr>XSTle.AB-^(5gC6Yf7#a'Kf/eTTQ-#5q[!AWy8LX_ta

                                         
                                         185.33.223.209
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.11.5
Date: Wed, 02 Aug 2017 15:07:44 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://cm.g.doubleclick.net/pixel?google_nid=appnexus1&google_sc&google_hm=NzAwNTg3OTg2NTc0NzY4MDE2NA%3D%3D&google_cm
AN-X-Request-Uuid: d53d49a9-b058-437d-b577-200d3a683357
Set-Cookie: sess=1; Path=/; Max-Age=86400; Expires=Thu, 03-Aug-2017 15:07:44 GMT; Domain=.adnxs.com; HttpOnly uuid2=7005879865747680164; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:44 GMT; Domain=.adnxs.com; HttpOnly
X-Proxy-Origin: 77.40.129.123; 77.40.129.123; 314.bm-nginx-loadbalancer.mgmt.ams1; *.adnxs.com; 185.33.222.149:80


--- Additional Info ---
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 02 Aug 2017 15:07:42 GMT
Expires: Sun, 06 Aug 2017 15:07:42 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    0dad3164bfe4018bf987134b3cd46ea3
Sha1:   9dfbda7085879b1eaf2606fcc9d643102d3ce61b
Sha256: 90d8a182037f775be074981724e1df0a5545dc30d01a5b890b86199113c42878
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=454200, public, no-transform, must-revalidate
Last-Modified: Mon, 31 Jul 2017 21:17:04 GMT
Expires: Mon, 7 Aug 2017 21:17:04 GMT
Date: Wed, 02 Aug 2017 15:07:42 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    20e446477c7c1daa74fa78a6ab6e5be6
Sha1:   850d8a7fbf202234a4bc3eaee5b1bf285f374411
Sha256: 8a195afa24542467f3def801b5d234c2b1d5b94720ef8dee540013fd523b8be5
                                        
                                            GET /pixel?google_nid=appnexus1&google_sc&google_hm=NzAwNTg3OTg2NTc0NzY4MDE2NA%3D%3D&google_cm HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
Cookie: id=26a0b6ebbec725c6||t=1501686459|et=730|cs=002213fd48097cf384f346bbf7; IDE=AHWqTUnihozjb3vvzDqPHcnMWms-KZut--zqz8EESCrDgTDPDARPTVADBw

                                         
                                         216.58.211.130
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://adx.adnxs.com/mapuid?member=181&user=&google_gid=CAESEC85PIzUbGSUQf6hKGIVEIc&google_cver=1
Date: Wed, 02 Aug 2017 15:07:42 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 307
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="39,38,37,36,35",quic=":443"; ma=2592000; v="39,38,37,36,35"


--- Additional Info ---
Magic:  HTML document text
Size:   307
Md5:    81bac538ebf930a8045ee8147ac46135
Sha1:   b3805c0152412a6407a3f75a03dd4fb95bf188ff
Sha256: 9f4ea68ba951e00df391aa6a7fc0896a6f0185a3a25cedbe5a55795aa1ab4bef
                                        
                                            GET /mapuid?member=181&user=&google_gid=CAESEC85PIzUbGSUQf6hKGIVEIc&google_cver=1 HTTP/1.1 
Host: adx.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html
Cookie: sess=1; uuid2=7005879865747680164; anj=dTM7k!M4/bdWIy(ghqdmU(7TE[w@rp!]tcZ8iYXJU5sy0W$haCF#WvLaGY4=-'aH_Xj<f2H)@#PSU80KH*sIImIzx(WUwxj]RxQ#nyW<U0G?-KYQM-:KLU#0?Qu9%WqcWdUyu?pIPv_r?9s!t]9oT'05+o`1uj8XR+G[aZf1fW-!1T%%q$=C(x(Em%)Mg-**PRPP(dH]ADq(:

                                         
                                         185.33.223.198
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.11.5
Date: Wed, 02 Aug 2017 15:07:44 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
AN-X-Request-Uuid: e2f9327c-45a2-480e-ab39-054495a34a3f
Set-Cookie: anj=dTM7k!M4/bdWIy(ghqdmU(7TE[w@rp!]taR].DZ_O=hQ]]ihFsiv992Ufp[>8tdKbpg3YxYmv<[:%0Lfj<9r1qj^!cCGgC>Q9/$vS8lvPTY?f*_dQ@C]->ckIe1iQ<^3#>HSB6SQO/8?bQ^zQmU0%ZAA-_p<4W$/+nV_:8h9q[7@.HRbJ8PK%82HiDlW?k0Ti3w!NYV^!?4?'$USn+; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:44 GMT; Domain=.adnxs.com; HttpOnly sess=1; Path=/; Max-Age=86400; Expires=Thu, 03-Aug-2017 15:07:44 GMT; Domain=.adnxs.com; HttpOnly uuid2=7005879865747680164; Path=/; Max-Age=7776000; Expires=Tue, 31-Oct-2017 15:07:44 GMT; Domain=.adnxs.com; HttpOnly
X-Proxy-Origin: 77.40.129.123; 77.40.129.123; 310.bm-nginx-loadbalancer.mgmt.ams1; *.adnxs.com; 185.33.223.72:80


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    592ebefc7104d681d57852665e9ad514
Sha1:   15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
Sha256: 4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
                                        
                                            GET /image.sbxx?go=298769&pid=541&xid=11414725099465377130 HTTP/1.1 
Host: global.ib-ibi.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://acdn.adnxs.com/ib/static/usersync/v3/async_usersync.html

                                         
                                         0.0.0.0
                                        


--- Additional Info ---