r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9568
Expires: Thu, 02 Feb 2023 08:14:37 GMT
Date: Thu, 02 Feb 2023 05:35:09 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16033
Expires: Thu, 02 Feb 2023 10:02:22 GMT
Date: Thu, 02 Feb 2023 05:35:09 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 04:43:28 GMT
content-type: application/json
age: 3101
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11924
Expires: Thu, 02 Feb 2023 08:53:53 GMT
Date: Thu, 02 Feb 2023 05:35:09 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kq7MY43BI300zIZSbpD2sT0QfI7tI8m8gLpVZA3+501oXcmRePHj8WPbGv3uVh9lnP6ieevjXfM=
x-amz-request-id: P1XMHCR22QTSRZN3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 04:51:50 GMT
age: 2599
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
mavstv.biz/557
302 Found 246 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 868b62e608b9b062ac31c9054db98e64
5258764033fa643f05a62c270895935df18a8b99
9b233f8e46f7c5b2a8915c0c112d10d1a6d796cf88214141d1f46c26213be1e6
GET /557 HTTP/1.1
Host: mavstv.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Thu, 02 Feb 2023 05:35:09 GMT
Server: Apache/2.4.37 (Red Hat Enterprise Linux)
Location: http://www.nba.com/mavericks/broadcasters/broadcast_index.html
Content-Length: 246
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:09 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.nba.com/mavericks/broadcasters/broadcast_index.html
301 Moved Permanently 0 B URL HTTP/1.1 www.nba.com/mavericks/broadcasters/broadcast_index.html
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /mavericks/broadcasters/broadcast_index.html HTTP/1.1
Host: www.nba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.nba.com/mavericks/broadcasters/broadcast_index.html
Date: Thu, 02 Feb 2023 05:35:09 GMT
Connection: keep-alive
Set-Cookie: _abck=7951E5BBBACBABA9A157C799681D4C9B~-1~YAAQF08kF23nrMeFAQAAgCCfEAloJmR5eI/TzFPXhtWZDy1NGSkJgXoUH+5aLgzCYyi5P86lnBaFZg7WkDMkwnDg6m/YSH3EoS/GQtndi9tH+RxOsm3rNADzOQwtqLbEsTRYPTfacZcdEffoiWzmoWcs/5CPzVQ35WJdZ5YZ7RDVF1MqpyiyX2F/bBehao4w/ARgc18XdBEEjLueNjYOpTiQGzBmxv0I/ccLi1pg7BoE5XSSEwRy+y8HXG0c61uArYIJ9FqPqBsT8XaJoYZM8+pVrLQNvO9eZZ8R2HTc8ERpxckdi6QVfvPZSJV/fcdFJezWywLZc5R6F6giABeGZvj7O6b+~-1~-1~1675319700; Domain=.nba.com; Path=/; Expires=Fri, 02 Feb 2024 05:35:09 GMT; Max-Age=31536000
bm_sz=C4CABB52DCD85C4E6B764937600FEC87~YAAQF08kF27nrMeFAQAAgCCfEBIiJHOqrQqyU1rgbEd/h6IRlKzjrRJ92wizyYouj+6VU31jE22D20HZggdLc+H7oV8sVa8wRGU5QERd0v9Sm5tPHkq4xtYpti069ixoKLhYkj/myadqKJcl7AEf+en70FO95FEB+sJLK26Yyq9STqCE4q3lhO+L9eJ1+ifVXhLORogKMqYPhUEeUPjAahPixOKTEtUlMyWUZ+anwAk0UGf70fW/NvmWvsS51mMhwG6eOKEdRz05vuFS9lxBAmAL+DgjtVhB27FAyi8VvD4=~4474178~3228722; Domain=.nba.com; Path=/; Expires=Thu, 02 Feb 2023 09:35:09 GMT; Max-Age=14400
www.nba.com/mavericks/broadcasters/broadcast_index.html
301 Moved Permanently 0 B URL HTTP/2 www.nba.com/mavericks/broadcasters/broadcast_index.html
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /mavericks/broadcasters/broadcast_index.html HTTP/1.1
Host: www.nba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: http://www.mavs.com/
cache-control: max-age=0
expires: Thu, 02 Feb 2023 05:35:09 GMT
content-security-policy: frame-ancestors 'self' https://app.platform.sportsdigita.com
date: Thu, 02 Feb 2023 05:35:09 GMT
strict-transport-security: max-age=86400
set-cookie: _abck=8BE78C130E0A42F6F303DB3359716B47~-1~YAAQF08kF3TnrMeFAQAAHyGfEAkcez2VWgDfqR9z/jAkSRuM+FDmy49wQYwY+eS5ALOMvA6zW6Bt3hszjNKF86/EXzfhgQehBqCIAyeK1WoWzISWovQbSUAj+9Nv70CWSw8NGC+vHy9p/pUDElaSkYXfCw6G4tQr0Q4O+AifS8ByK1sVaPfxf9WQeWTvpiF4ET2A1K2TTCQEzGNOW2nSpqZaeCDklC5TX1Mvyn8wh8bUCIphKHnBOktfiE/lfznL+4XOOMhXTVWyLSgh+tUlTKCaoWRTRSz0YpnFoQLC4NU9V1FGY9ITdWQMFaLjrhJtmpfbFd5ao5yeofjvLW3BnNSL9UCfwAEdFjXFAfPh5a8xbrMtLCe7OuNo~-1~-1~1675319628; Domain=.nba.com; Path=/; Expires=Fri, 02 Feb 2024 05:35:09 GMT; Max-Age=31536000; Secure
bm_sz=B4DE8DFF9289A29DBC4E232ED8CA7581~YAAQF08kF3XnrMeFAQAAHyGfEBLgsZXJf8Ws5yuhxEwYM7vLvvI/w5fmQ8hSNWu2Ew2v2S5JWiRuzF+u8C6/smlVn1lR2+N1/w62LeCulht/nZrW8Z4K+VChfrU73/n4eC9SKdMrt8NXrzbi0cvWiyf/RbO3nOCcGZZVw8prH5IRZMxmKctL+4HMxyOSjCI9DM2nXLD0t7+286ue8cF3+kwz7zIAJorhMMvfHJ1GWr0x8pkZEvBftHBA0Ba7gkoYIivKRaPrg2ioYBxsXv0m/rIccvgo6XWRx8WldImirak=~4474178~3228722; Domain=.nba.com; Path=/; Expires=Thu, 02 Feb 2023 09:35:09 GMT; Max-Age=14400
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 04:41:43 GMT
age: 3206
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.mavs.com/
301 Moved Permanently 162 B IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 05:35:09 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
X-Sucuri-ID: 19003
Location: https://www.mavs.com/
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2801
Expires: Thu, 02 Feb 2023 06:21:50 GMT
Date: Thu, 02 Feb 2023 05:35:09 GMT
Connection: keep-alive
ocsp.starfieldtech.com/
200 OK 1.8 kB IP
Hash b33e894160cc1aa8163ea036aa28f491
6496597e800c3a742e4d515a1dab62b6edc6ac96
e4bf00ea62c593bdbe44e7ccd9583595e390d55cbca08e8d924b9dd925160263
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 05:35:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Feb 2023 20:56:12 GMT
Expires: Thu, 02 Feb 2023 20:56:12 GMT
ETag: "6496597e800c3a742e4d515a1dab62b6edc6ac96"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /toKi3m+rbtaKYuk0CYJgQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9McReBcygDB+jisnVv50J0vL9K0=
ocsp.digicert.com/
200 OK 279 B IP
Hash 0218bac3ea8859feadf905c77c68955c
51c41e43fc73e1ebca172bccc39f23e9a32e9040
cd85a99d4b789707f22de5dc7eb967c68005c445552225c8176615ad132369c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3555
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:11 GMT
Last-Modified: Thu, 02 Feb 2023 04:35:56 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash 0218bac3ea8859feadf905c77c68955c
51c41e43fc73e1ebca172bccc39f23e9a32e9040
cd85a99d4b789707f22de5dc7eb967c68005c445552225c8176615ad132369c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3555
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:11 GMT
Last-Modified: Thu, 02 Feb 2023 04:35:56 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279
mavs.wpenginepowered.com/wp-content/plugins/real3d-flipbook-visual-composer-addon/assets/vc_extend.css?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/plugins/real3d-flipbook-visual-composer-addon/assets/vc_extend.css?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/real3d-flipbook-visual-composer-addon/assets/vc_extend.css?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
content-length: 0
last-modified: Tue, 14 Jul 2020 18:40:38 GMT
etag: "5f0dfc26-0"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JxcLC%2BN9l3cC4zUL4D6K5piaQ%2FvwFzSgvy%2F07qZKPj0ORyUfYexX2wHD8lIO2bF2P8Ca50IzDuHKSpz32aTBp9IC5oeMiaMjvDOv3X1ZaN5kdu3cLDGZvBUGa2QaFHvikej5wri%2FgmVRxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde098cb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 0218bac3ea8859feadf905c77c68955c
51c41e43fc73e1ebca172bccc39f23e9a32e9040
cd85a99d4b789707f22de5dc7eb967c68005c445552225c8176615ad132369c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3555
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:11 GMT
Last-Modified: Thu, 02 Feb 2023 04:35:56 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279
mavs.wpenginepowered.com/wp-content/themes/mavs/images/nba-logo.png
200 OK 19 kB URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/images/nba-logo.png
IP
ASN #209242 Cloudflare London, LLC
File type RIFF (little-endian) data, Web/P image\012- data
Hash bb5a20d977c38fc698d9f025c1ae4458
3a78e7aef4a76e91759f1da3e02df8540e9b3fdb
f3725249c836e0b31f87fcbe7de77e87ff4b667b5d403049494f5811811401c7
GET /wp-content/themes/mavs/images/nba-logo.png HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: image/webp
content-length: 19220
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=45975
content-disposition: inline; filename="nba-logo.webp"
content-security-policy: frame-ancestors 'self'
etag: "5d5131bd-b397"
last-modified: Mon, 12 Aug 2019 09:30:37 GMT
vary: Accept
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1211596
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YbGMMnf0gDIedCLGcJ2pf7jggeici0uKQbah%2FzwC%2Fy%2FWSqfhJPU1XnGB2e6eQZHG8BvUCriT9%2BV91S4epsfu6HtO3HQ8LmHO1DdtppEEr12Emb5OI%2F8DZzsBxngUr3gR9S%2BPeEl%2BDsYTkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde69e5b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
200 OK 68 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7
GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: image/png
content-length: 68
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
content-security-policy: frame-ancestors 'self'
etag: "6369518c-44"
last-modified: Mon, 07 Nov 2022 18:42:20 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 488247
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FEkWbXgu5xDhtQkMco3Sv%2B8Hz502ZspacaZffvMst5uxURBenG%2FWrPgQnGG7DTTF77uS4ov28KZH7lQZ%2F6nxdWhWrKR9TvKv8JLorawWZzOmltcDb%2FAxBldwg8c3Et0dhWWM%2FHVl5oUJHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde69ecb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/uploads/2022/08/Catch-the-Action-Schedule.png
200 OK 230 kB URL HTTP/2 mavs.wpenginepowered.com/wp-content/uploads/2022/08/Catch-the-Action-Schedule.png
IP
ASN #209242 Cloudflare London, LLC
File type RIFF (little-endian) data, Web/P image\012- data
Size 230 kB (229664 bytes)
Hash a0ad053aaadfda49e50e10f75b5f3d07
ae2afc660b5be60940f728e6007ec56a8d9eab6d
8e11aa51186a991d82f6b02f2698d03ec59fb5127eea2600a33e1bd2c32b5315
GET /wp-content/uploads/2022/08/Catch-the-Action-Schedule.png HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: image/webp
content-length: 229664
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=322927
content-disposition: inline; filename="Catch-the-Action-Schedule.webp"
content-security-policy: frame-ancestors 'self'
etag: "62fd0330-4ed6f"
last-modified: Wed, 17 Aug 2022 15:03:12 GMT
vary: Accept
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 488247
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KNThIaxMvizZiei6%2BKxtFQ4Dzcl%2BfydVN1IOJlE09VqgI3dAoh2Pd2I3O0ftGx8jDmOf2BedKVn7afmPfSoQRXeO4zMnVxLdLAlotfFx6QEzgOs3mE%2BcjU7Gj2RpG%2F2BkU1%2FS6TA8t9Xow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde69edb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/images/upcoming-game-mav-logo.png
200 OK 5.0 kB URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/images/upcoming-game-mav-logo.png
IP
ASN #209242 Cloudflare London, LLC
File type RIFF (little-endian) data, Web/P image\012- data
Hash 70f6f0d59a00f75f5b4379753a332f15
0f98b11cde487741f27761199344d88b0fa3b9a4
c23b73ed73f18a8374049b9292961596a97159015acfa5b68c7cebab9fc47c84
GET /wp-content/themes/mavs/images/upcoming-game-mav-logo.png HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: image/webp
content-length: 4986
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=8269
content-disposition: inline; filename="upcoming-game-mav-logo.webp"
content-security-policy: frame-ancestors 'self'
etag: "5d5131bf-204d"
last-modified: Mon, 12 Aug 2019 09:30:39 GMT
vary: Accept
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 7205686
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HpOJ%2B8HJ6CY%2FosvBVXXTiXs2IOPrCtL4V9e9%2BJBgkXZiyrZQSummu46iL%2BMqiP9mdz%2Fk%2FSX7McMKjkERvD1%2BO9w5qfDGg4n%2FruPCweLZAfzScyh0bVeDwXkqazi5gByffNfxxh8aodpUfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde89f7b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.typekit.net/rfh5zop.css
200 OK 1.2 kB URL HTTP/2 use.typekit.net/rfh5zop.css
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash b50d04147599e3217279304b7bc97641
5dcaf82c3026050632fb7c7255eb00d4a0427fbc
82f99113ca6636eaea86696b614391672ed19e350e4886be04e7c91980152797
GET /rfh5zop.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 1200
date: Thu, 02 Feb 2023 05:35:11 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 0218bac3ea8859feadf905c77c68955c
51c41e43fc73e1ebca172bccc39f23e9a32e9040
cd85a99d4b789707f22de5dc7eb967c68005c445552225c8176615ad132369c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3555
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:11 GMT
Last-Modified: Thu, 02 Feb 2023 04:35:56 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash 0218bac3ea8859feadf905c77c68955c
51c41e43fc73e1ebca172bccc39f23e9a32e9040
cd85a99d4b789707f22de5dc7eb967c68005c445552225c8176615ad132369c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6548
Cache-Control: max-age=116840
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:11 GMT
Etag: "63da5763-117"
Expires: Fri, 03 Feb 2023 14:02:31 GMT
Last-Modified: Wed, 01 Feb 2023 12:13:23 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
assets.adobedtm.com/82bf3c13a525/5c242dc5adef/launch-f8e9806a0236.min.js
200 OK 46 kB URL HTTP/2 assets.adobedtm.com/82bf3c13a525/5c242dc5adef/launch-f8e9806a0236.min.js
IP
File type ASCII text, with very long lines (32763)
Hash 73b6451054cd1c50abc7cbf4b5361a87
19cd744f7b820621ab8b1de466cf2bc57e47bd14
97c540f7a93d377bf209150404f2c4b067d42e8cfe02f5486fc738b57a43dae0
GET /82bf3c13a525/5c242dc5adef/launch-f8e9806a0236.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "ab8abe3bac1964ea6af90540cbd1fdab:1661996652.257632"
last-modified: Thu, 01 Sep 2022 01:44:12 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 46135
cache-control: max-age=3600
expires: Thu, 02 Feb 2023 06:35:11 GMT
date: Thu, 02 Feb 2023 05:35:11 GMT
access-control-allow-origin: https://www.mavs.com
timing-allow-origin: *
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/uploads/2023/01/MB-01-30-DALvsDET-1070-505x337.jpg
200 OK 46 kB URL HTTP/2 mavs.wpenginepowered.com/wp-content/uploads/2023/01/MB-01-30-DALvsDET-1070-505x337.jpg
IP
ASN #209242 Cloudflare London, LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=Dallas Mavericks], progressive, precision 8, 505x337, components 3\012- data
Hash 817f0dc7517bcce7234802c631356f19
06a20f1952ffd2dd1e07322e27e2ef3f580134d8
78ced354d34a82d95fa89ec41bd047e24ca192ea9b458d1d952d0af8cd530df0
GET /wp-content/uploads/2023/01/MB-01-30-DALvsDET-1070-505x337.jpg HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: image/jpeg
content-length: 45602
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=72904, status=webp_bigger
content-security-policy: frame-ancestors 'self'
etag: "63d8c4e8-11cc8"
last-modified: Tue, 31 Jan 2023 07:36:08 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 107901
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=soCgCZvSoJiQSjohyRJlzWGp7IO0sbkL4wpGk%2BgYnv%2Fl5Tz2KafEYLc%2FWHN3PGmaORH8lvU0jSXVJ4q1HtZ2gdsl8ppDD4EzK9Khf50%2Biok2CmN8yjzH2Fc7qDVpnMyKYJ17UnJZzsdyJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fdeba15b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/uploads/2022/10/6U7A2636-JerSean-Golatt.jpg
200 OK 403 kB URL HTTP/2 mavs.wpenginepowered.com/wp-content/uploads/2022/10/6U7A2636-JerSean-Golatt.jpg
IP
ASN #209242 Cloudflare London, LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3000x2000, components 3\012- data
Size 403 kB (403352 bytes)
Hash 42cb0b44d94b23abec818051a8d8e098
9869eb6d89a15c7a5806c3ebe637280d20e6c15c
de187b5f4a6782f195deb90c6d2e90bb7fae3dc058f28417dcee33a16b07652c
GET /wp-content/uploads/2022/10/6U7A2636-JerSean-Golatt.jpg HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: image/jpeg
content-length: 403352
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=403360, status=webp_bigger
content-security-policy: frame-ancestors 'self'
etag: "635c574f-627a0"
last-modified: Fri, 28 Oct 2022 22:27:27 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 488247
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X9AOkFJ%2BgZU6r5PwDKmYPAJQqF%2Bz%2BsIWXM3PTro6%2BX3l31T%2BoVBLeoD7Qvv8o%2Bxk4KzqqL4aLkw5FS0wM2Adutwe7cruozYTym8cGkjiOVE5HF4NMywuGfBR9s2GaisyKjstG959mevtNg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fdeba14b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/uploads/2023/01/VB-01-30-DALvsDETpostgame-0271-505x311.jpg
200 OK 64 kB URL HTTP/2 mavs.wpenginepowered.com/wp-content/uploads/2023/01/VB-01-30-DALvsDETpostgame-0271-505x311.jpg
IP
ASN #209242 Cloudflare London, LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=DALLAS MAVERICKS], progressive, precision 8, 505x311, components 3\012- data
Hash 39808dcb411df99b58cb217abf04decc
52d9ad42534379e4d7df4de72dd594196f4a7309
bfa878e7818852d82c08124982fac630754306e9b802aad52cd41640de34a7bb
GET /wp-content/uploads/2023/01/VB-01-30-DALvsDETpostgame-0271-505x311.jpg HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: image/jpeg
content-length: 63961
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=109834, status=webp_bigger
content-security-policy: frame-ancestors 'self'
etag: "63d95aaa-1ad0a"
last-modified: Tue, 31 Jan 2023 18:15:06 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 125892
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Oi8JlFgEE8OIPY%2Fb15FVI0tUXzIXj34ryqhc230kDGDm44TBdHigLOJf16OAyroKDwV9w1Cp9JiHR%2FjrhkCeZD9hzFKmQmoSXlUDGVKACuXTYy79IGf6KkUWrK6qNefz%2BBjwyrdjYOxWjQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fdeca1db4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/images/Home_News_Horse-Headshot.png
200 OK 48 kB URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/images/Home_News_Horse-Headshot.png
IP
ASN #209242 Cloudflare London, LLC
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1d501b264cc96d23215632dc46cfbaef
58222f3051582b8fe278a8234c968018ecaf8f53
74bff92cfdd54a844cb725a3eb941c4d80cd6c444894cca1b6e5580c85f4c4c4
GET /wp-content/themes/mavs/images/Home_News_Horse-Headshot.png HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: image/webp
content-length: 47460
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=93346
content-disposition: inline; filename="Home_News_Horse-Headshot.webp"
content-security-policy: frame-ancestors 'self'
etag: "63329e48-16ca2"
last-modified: Tue, 27 Sep 2022 06:55:04 GMT
vary: Accept
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 488247
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AZskVuzhDEyXtrEScDrHH1qHbNtm3ZcIaSubu2dv5h%2BDK2ISaSuwzP2tpywYWxMBK5GHLDuFw28WmpJjFTzgt8cqRw8m0p8hTWm%2Bi%2F7JGAIvCnaartzfb0JL%2F6xlG%2FA0NTxFYtGDJVcb2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fdeca1eb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 43aa7b375494613cd928eeee91e40289
1afe5079c2d91f0918d13b36e8174d3694751eec
eb917702a6d2e6d56e89bcf1050321dbc9f6896b2193739c8bad63fc9c1d4249
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB917702A6D2E6D56E89BCF1050321DBC9F6896B2193739C8BAD63FC9C1D4249"
Last-Modified: Tue, 31 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=944
Expires: Thu, 02 Feb 2023 05:50:55 GMT
Date: Thu, 02 Feb 2023 05:35:11 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 279 B IP
Hash 0218bac3ea8859feadf905c77c68955c
51c41e43fc73e1ebca172bccc39f23e9a32e9040
cd85a99d4b789707f22de5dc7eb967c68005c445552225c8176615ad132369c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3555
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:11 GMT
Last-Modified: Thu, 02 Feb 2023 04:35:56 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9d32268ead84a39f81ec672c0cfa8dec
53682e096f7c18782f11eda650a0543a1948d664
c8cfce34770aa1ba3b6907f02fbacc23fb4a7fafc2c386232033939aaaa10a9e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8CFCE34770AA1BA3B6907F02FBACC23FB4A7FAFC2C386232033939AAAA10A9E"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9530
Expires: Thu, 02 Feb 2023 08:14:01 GMT
Date: Thu, 02 Feb 2023 05:35:11 GMT
Connection: keep-alive
mavs.wpenginepowered.com/wp-content/plugins/addtocalendar/public/js/jquery.addtocalendar.min.js?ver=1.0.0
200 OK 1.9 kB URL HTTP/2 mavs.wpenginepowered.com/wp-content/plugins/addtocalendar/public/js/jquery.addtocalendar.min.js?ver=1.0.0
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (3096), with CRLF line terminators
Hash b75a373e5f432e49861754cbf7c54070
63e33e0a1a45a0c29abc5cb06001e50a1b77c203
79e96ea330939c960b86863eb42081d45ca2ae447b4dc798d2fadbbbc657288b
GET /wp-content/plugins/addtocalendar/public/js/jquery.addtocalendar.min.js?ver=1.0.0 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 31 May 2022 19:44:00 GMT
etag: W/"62967000-cf7"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 8548996
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GfTyFFovIhr3LFnFzDC2BBxC2p69CgDhY3i%2BCBqAEmoRYgwrcNnmYcGRAEvs26GjwFsZVJI8yRwQXLNYPl53QU5cBkf1e5qhl6hfIXMFlfRCnPBaS3R00zBQNdGKBiFll0zomkaLHiLdMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19b9b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=rfh5zop&ht=tk&f=25308.25309.25310.25311.25312.25313.25314.25315.25316.25317.25318.25319.25320.25321.25322.25323&a=5669842&app=typekit&e=css
200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=rfh5zop&ht=tk&f=25308.25309.25310.25311.25312.25313.25314.25315.25316.25317.25318.25319.25320.25321.25322.25323&a=5669842&app=typekit&e=css
IP
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=rfh5zop&ht=tk&f=25308.25309.25310.25311.25312.25313.25314.25315.25316.25317.25318.25319.25320.25321.25322.25323&a=5669842&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Thu, 02 Feb 2023 05:35:11 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2551
Expires: Thu, 02 Feb 2023 06:17:42 GMT
Date: Thu, 02 Feb 2023 05:35:11 GMT
Connection: keep-alive
mavs.wpenginepowered.com/wp-content/themes/mavs/js/slick/slick.min.js?ver=1.8.1
200 OK 11 kB URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/slick/slick.min.js?ver=1.8.1
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (42862)
Hash 0905abcd729c0bc06255abf2eec58a40
6d4c6017522b781964386fe45b04863e5fa70030
87a5bfa64dbc9f9e9e36e0ebddd1be6230a55d8c99b29d2c18c05862afdcf051
GET /wp-content/themes/mavs/js/slick/slick.min.js?ver=1.8.1 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:33 GMT
etag: W/"5d5131b9-a76f"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 1211596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cwYLzko48jdot%2BF7fimzQl8vAh3IXC4YbTAL%2B4lX%2BspFgl3kc%2FbFNihxAgfONwMia4x1fV5sQPDt0v%2Bq7gX7nKjGSl%2BOxyufiWDiSrFcd0FDQ4wD7gEz9LnyciUv%2BcTCeQzjpJ2D4G7FzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde29bdb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2551
Expires: Thu, 02 Feb 2023 06:17:42 GMT
Date: Thu, 02 Feb 2023 05:35:11 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2551
Expires: Thu, 02 Feb 2023 06:17:42 GMT
Date: Thu, 02 Feb 2023 05:35:11 GMT
Connection: keep-alive
mavs.wpenginepowered.com/wp-content/themes/mavs/js/rellax.min.js?ver=5.2.17
200 OK 2.1 kB URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/rellax.min.js?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (528), with CRLF line terminators
Hash fbd15d2c97b1ffb018ed0ee1bc90f532
43d087cbdee1c2baa88e30dce63f14ade9d78ae4
bcef11f46bcc1aa45c8f7666f7417ce22f15d227cb59c4c4376fc6a00014f38a
GET /wp-content/themes/mavs/js/rellax.min.js?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:32 GMT
etag: W/"5d5131b8-1153"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JBjR41BRg1dOlWqu9S%2BoOPjstORSOeaQX6y%2FMiCu%2FK4Wy6M1dHqoBKNZroS5Req6BU3NK6fVdINlWc9s1%2B%2FEJWmCe5lWCfGSPRL572JsA%2FSLXfz7C8rWCs5WjqiMb%2BkieNr3mJaC6D928g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde59dbb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3825d7eb-9bf8-4ff1-ac96-196cbf5c1873.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3825d7eb-9bf8-4ff1-ac96-196cbf5c1873.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 93ef9da6520124f03883a2b5241e0623
41b557bb05e1769c124aa0195c398e2dbd1fc0e9
dd6a1589ae40fb69c60f1675ea49a6a1a00d43e29d1a18f0d30b7c4e9bceee5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3825d7eb-9bf8-4ff1-ac96-196cbf5c1873.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11198
x-amzn-requestid: f21313a6-3ca8-4c58-981c-a1700769719c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKUGu6IAMFsww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-1d60cc337f91692e436f2990;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: E6YLzYtdv40sBiYxz_GALMjA-Jk2RF9Ghflw68EvB2ty5XDxSQMUjg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:17:09 GMT
age: 26282
etag: "41b557bb05e1769c124aa0195c398e2dbd1fc0e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Barlow:400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&display=swap
200 OK 7.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Barlow:400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&display=swap
IP
Hash 5036fd895184d2486cdc57dfa8d85049
67885fd5f6773cb8ae3a7504a81d5c212d88aff0
2cb65d404742c06090ab028e7edfcd4e6fba5a524404bb9afee38cd6f1de44ad
GET /css?family=Barlow:400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mavs.wpenginepowered.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 05:35:11 GMT
date: Thu, 02 Feb 2023 05:35:11 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd8c5ba-bd1b-4dda-ae36-680f02b388f8.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd8c5ba-bd1b-4dda-ae36-680f02b388f8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b91a1323efe4b01a2d1a2e8485117934
43d04a554f6ef512e7b21ac09287efc0e4e5efee
393e3ab81aee9fda022d06c25789be66e56aaf56f81b0514ab5dfec445087bdf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd8c5ba-bd1b-4dda-ae36-680f02b388f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10807
x-amzn-requestid: 3c6771b8-3ae0-4300-9d84-9311c15389ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGh3oAMFp0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-27479faf4518900c03b84144;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oZ6etg6l7SjzCMTg-7DhIeEXMmempp9_kMb3ITzUqbrXKz2wz0qJ0w==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:02:22 GMT
age: 81169
etag: "43d04a554f6ef512e7b21ac09287efc0e4e5efee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg
200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0224e848c34cb32cf932ed99dfd8468a
31c1abac8979bca5a998a6649ca3e6f59c0fb2f5
f93d5a69758e57d4d2b0d307ce98ad5ea8d86b825108873e8ea5bc36567dc5c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5061
x-amzn-requestid: a266acae-8f1e-4cd7-b93b-e40aa5393521
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdUpGcmoAMF16Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc1d-1fbae7785fccc58f71c1b3e9;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PevXZz9rkBo3Cy6EooCVOpSoHyeKHMoYFjKRrvDld34WFWXzOmpANQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:11:31 GMT
age: 26620
etag: "31c1abac8979bca5a998a6649ca3e6f59c0fb2f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H1HIK6zdv95V96NxqSfHCqYtDQNPZ9NLAwG5oM5mwRr3nAUR0BPxlg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:25:11 GMT
age: 25800
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4392f298c9e98515493f1235810838f
b89eebf2b8adac69487262100b07da8bc171ecf7
b368d87d3a0fe4e1a8ddc82bed704b3056ad2874b8d325111b399b18807c1e5e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15656
x-amzn-requestid: 6723d22f-8b16-4fb2-af92-9b3257fc2a1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIHpRoAMFRYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-03b1c6646f63ba716a6298e1;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: alMHzjwJbGegz4F76t9-EhIhCUHgQngtgiZgMo2_MxAIrXqsNxWxBg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 08:16:33 GMT
age: 76718
etag: "b89eebf2b8adac69487262100b07da8bc171ecf7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-PLMHMB
200 OK 72 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PLMHMB
IP
File type Unicode text, UTF-8 text, with very long lines (18445)
Hash 054eb81c40e91734085e64fbb452801e
f74fb3b52551cd9af88676785e73961429e9a4e2
7a0dd305478b539f64149dfbfbd9154485b87b8aab7be4acf4dac2037e9abc7f
GET /gtm.js?id=GTM-PLMHMB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 05:35:12 GMT
expires: Thu, 02 Feb 2023 05:35:12 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72542
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/fancybox/jquery.fancybox.min.js?ver=5.2.17
200 OK 24 kB URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/fancybox/jquery.fancybox.min.js?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
File type HTML document, ASCII text, with very long lines (31972)
Hash f44d6f27c2df846cc2f2036ecdd9bee9
8b8dc45841a196a2af20e78c9f13a6352b2f9fb9
85e83074a9c640a7ea398f9051c44564a7b539bd974dedee1f7f15f317d982a8
GET /wp-content/themes/mavs/js/fancybox/jquery.fancybox.min.js?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 12 Aug 2020 13:30:43 GMT
etag: W/"5f33ef03-10a9d"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5vrQHSSwCFgHlRKowY%2BDilQWq8bjhWfdL5D5o2vkKt%2BC3OhqlMLMuLL2UV77r2pualvNZvlToUHrk1UREZ6UatOnUOodnY1F4LPN9mojWEnJwJV7EBbdslIMRG1CbdN%2BPFq9lcpyMJ7f3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde59dcb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 057e8054aa9220f42772ecfe8ab2638a
f2736acc712ef5c58c7df1418eb80f2fda38f602
656945785ccd4936656a447750984c5c0281cef52733278cb53b6bf9bb880a12
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 05:35:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 02 Feb 2023 00:42:23 GMT
Expires: Fri, 03 Feb 2023 00:42:23 GMT
ETag: "f2736acc712ef5c58c7df1418eb80f2fda38f602"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
200 OK 279 B IP
Hash 3130a3f818c0f05c6fead53ae1b4d2c0
1612d7fa55a126a3cabcd141f5686303dff8bd39
40a371cd1e0049c4e0f3a25afce389fe1554995f8e0fa051f9a9ba32a3f7bbdf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2420
Cache-Control: max-age=94675
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:12 GMT
Etag: "63da10ef-117"
Expires: Fri, 03 Feb 2023 07:53:07 GMT
Last-Modified: Wed, 01 Feb 2023 07:12:47 GMT
Server: ECS (amb/6B91)
X-Cache: HIT
Content-Length: 279
tk0x1.com/sj/tr?id=__ADID__&et=CONVERSION&pt=sp&event_name=DallasMavericks_Conversion&campaign_id=2002438>mcb=1483387115
200 OK 0 B URL HTTP/2 tk0x1.com/sj/tr?id=__ADID__&et=CONVERSION&pt=sp&event_name=DallasMavericks_Conversion&campaign_id=2002438>mcb=1483387115
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sj/tr?id=__ADID__&et=CONVERSION&pt=sp&event_name=DallasMavericks_Conversion&campaign_id=2002438>mcb=1483387115 HTTP/1.1
Host: tk0x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:12 GMT
content-length: 0
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79308fe5e8490b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 3130a3f818c0f05c6fead53ae1b4d2c0
1612d7fa55a126a3cabcd141f5686303dff8bd39
40a371cd1e0049c4e0f3a25afce389fe1554995f8e0fa051f9a9ba32a3f7bbdf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2287
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:12 GMT
Etag: "63da10ef-117"
Last-Modified: Thu, 02 Feb 2023 04:57:05 GMT
Server: ECS (amb/6B8A)
X-Cache: HIT
Content-Length: 279
s.cdn.turner.com/nba/tmpl_asset/static/nba-cms3-base/latest/js/pkgAnalyticsScout-min.js
404 Not Found 10 B URL HTTP/2 s.cdn.turner.com/nba/tmpl_asset/static/nba-cms3-base/latest/js/pkgAnalyticsScout-min.js
IP
ASN #20940 Akamai International B.V.
Hash 7605968e79d0ca095ab1231486d2b814
a007b420d19ceefa840f0373e050e3b51a4ab480
493fda53120050f85836032324409be6c6484f90a0755ae0c6a673ba7626818b
GET /nba/tmpl_asset/static/nba-cms3-base/latest/js/pkgAnalyticsScout-min.js HTTP/1.1
Host: s.cdn.turner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
accept-ranges: bytes
content-length: 10
server: AkamaiNetStorage
cache-control: max-age=3600
expires: Thu, 02 Feb 2023 06:35:12 GMT
date: Thu, 02 Feb 2023 05:35:12 GMT
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2
use.typekit.net/af/d6b712/00000000000000003b9adf58/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
200 OK 19 kB URL HTTP/2 use.typekit.net/af/d6b712/00000000000000003b9adf58/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 19356, version 1.0\012- data
Hash d769215fb797c36fc3aa408e9334919e
34a4953dff76d8d85be5cf07bfc8e820bae5f75b
015a85229bb770136e8f72b27c0dc4d46594f0a06d9af67ac158d4c037bd352b
GET /af/d6b712/00000000000000003b9adf58/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 19356
etag: "97578ee437d7ad5e21c2e75eb93d891db5454ce8"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 02 Feb 2023 05:35:12 GMT
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/mavs-animation.js?ver=1675316012
200 OK 7.8 kB URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/mavs-animation.js?ver=1675316012
IP
ASN #209242 Cloudflare London, LLC
Hash b209b6c43e81f13b4b748d0ed5e109d7
9a45dc79b227ccdce06fba0b8c1dd8d97b62ff48
b48fca1f7cc1ff25455efb280c86281ffda24e943d0a305170af1ec4e3bb0597
GET /wp-content/themes/mavs/js/mavs-animation.js?ver=1675316012 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 30 Sep 2022 13:50:42 GMT
etag: W/"6336f432-dc6c"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z7mv0Tn2xD5K29EnwOmbgRN4Fkhli5%2Bz81o5dcGuhuVm%2BjBNM6rtAHquszXZK%2FjPKUkdaTxP11u2jZgn0uRQgV1Vi5iMRbXGxiI1VoN4CZuBVJnQpP69aJifhNfMz0xLSBGI8GZHeOgQDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde29bcb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/plugins/addtocalendar/public/js/main.js?ver=1.0.0
200 OK 156 kB URL HTTP/2 mavs.wpenginepowered.com/wp-content/plugins/addtocalendar/public/js/main.js?ver=1.0.0
IP
ASN #209242 Cloudflare London, LLC
Size 156 kB (156518 bytes)
Hash 6222c7965a7c69384ac2ea02c90b8e19
b1cab8e853a8112bc45f56dbdd8a0071bd52a8b3
dd4344c9ab6f746f4ed834c945d8eca93fef97e5426580dc2402db40a954e51a
GET /wp-content/plugins/addtocalendar/public/js/main.js?ver=1.0.0 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 31 May 2022 19:44:00 GMT
etag: W/"62967000-248"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 8548996
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E%2BWlsXUXOudS776tqga77zw0uR%2FcgJ%2Fbb4RYBfIxVKersMMVjWXmoZ4IZ1jGaO2ekyAakJ%2FjC9WM%2FkXUP7XKLL20zJ5BJ1v1BHM9QEb9kyNhTo%2FGpAo0QbyDiIxpz9F8Bob%2BCXpV8UR7pA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde59e0b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.typekit.net/af/685a23/00000000000000003b9adf56/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3
200 OK 20 kB URL HTTP/2 use.typekit.net/af/685a23/00000000000000003b9adf56/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 19976, version 1.0\012- data
Hash 18ec39709730f2fe5ef9240742facdd2
a4aabf189b59c280b92650576919d10abd9b177b
69d7edb784b0e1181a1b88f625dacfd645558639d7b75f21fa7ec9f065a67675
GET /af/685a23/00000000000000003b9adf56/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 19976
etag: "abdbefd7296e8fc10b40a9051661822721ca8fe8"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 02 Feb 2023 05:35:12 GMT
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/plugins/adsanity/dist/css/widget-default.css?ver=1.5
200 OK 38 kB URL HTTP/2 mavs.wpenginepowered.com/wp-content/plugins/adsanity/dist/css/widget-default.css?ver=1.5
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (6184), with no line terminators
Hash cf03812fdd70866b9868a6648c3b76ac
db40cb5bea4c4234a9cab73affef8cb21de9f7a6
9ffbde2de6fabfe741ba568b95d3bca6afd21700c396135f38cc107f8bf98a12
GET /wp-content/plugins/adsanity/dist/css/widget-default.css?ver=1.5 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:31:09 GMT
etag: W/"5d5131dd-1828"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 8548997
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BNo9aSxV1tijGs0KH1B5zgtoR0PP5Tnl4mxK5kaf5cSQIJ1hz9dscYJvHxNIIzu3Tf%2BqsH9tOQoD3X2S3d6N6xiYbg%2F87ugTUCV954jPRDV0KMj%2B%2Bs8OYymg1hb4XpafN4ciOAgSfS4bJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde098ab4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
200 OK 13 kB URL HTTP/2 mavs.wpenginepowered.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
IP
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (24733), with no line terminators
Hash 3d6dcbf7e84c49f42541a8c94d9878c8
73c8c9f0c887edf60f08697c173999c9aa163e1b
7a24e6aa46ba3a057c91e927af0283e87a0e79c3f0f1c917f6659ed925767c7b
GET /wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 14 Mar 2022 16:51:31 GMT
etag: W/"622f7293-609e"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 8548996
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D%2FRMW41nlV5lgUOGp1F97cp1QJPPbIUNrY3gOZQIXCysDunUBgeI2Z%2FgwzCnoFlg3SjjdJJ1v%2BCAECODptZbl3zmDjtXBCEVk4JFB2Y%2FHyRYWtvR5C21nVrkErdlMVQeeZiw6iZwGhC79w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde59ddb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.typekit.net/af/6dc482/00000000000000003b9adf53/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
200 OK 19 kB URL HTTP/2 use.typekit.net/af/6dc482/00000000000000003b9adf53/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 19096, version 1.0\012- data
Hash 1a217235aa0b8aa30485cc3a1b7ea195
26db975877e2cee03903f81e635995323b8902de
3d56423c466f5a85b87874f56cbb6bf47c20bd27350f52edead20d2b78812d21
GET /af/6dc482/00000000000000003b9adf53/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 19096
etag: "d1687635967ab512ad74559feb2215d76ffa8289"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 02 Feb 2023 05:35:12 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/07284d/00000000000000003b9adf59/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3
200 OK 22 kB URL HTTP/2 use.typekit.net/af/07284d/00000000000000003b9adf59/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 21592, version 1.0\012- data
Hash bdfaba8102423fcb31f61526a8a352bc
280426bbdce79dc2a1cd6457ebeb709417d58d7c
1ab2a15d77d1dc97e86f1a13a55ebcc48b7efbd0aa25d8bd12015479e196b006
GET /af/07284d/00000000000000003b9adf59/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 21592
etag: "516c1288873c2b8d04cef7280db8dacdeaf18b2b"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 02 Feb 2023 05:35:12 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/316e70/00000000000000003b9adf57/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i6&v=3
200 OK 23 kB URL HTTP/2 use.typekit.net/af/316e70/00000000000000003b9adf57/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i6&v=3
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 22584, version 1.0\012- data
Hash e2aa3e9910ba832f29847f9d0b3c7072
ade572c4fa51c68b1d89f4196a8019bfdef340f3
03939823a652ca86a1a19e75ab792900f450da623219d26e6cda8e61e16b483a
GET /af/316e70/00000000000000003b9adf57/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i6&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 22584
etag: "820c450da11146cc04963cc270eaeddf6b143dd0"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 02 Feb 2023 05:35:12 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/c6e293/00000000000000003b9adf5b/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n8&v=3
200 OK 20 kB URL HTTP/2 use.typekit.net/af/c6e293/00000000000000003b9adf5b/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n8&v=3
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 20204, version 1.0\012- data
Hash 755d4560e082a5730514dcf6cfbec7f3
dfe8610aafa6a327518c5f7961d01b902f0d4eab
e02f21ac8937dab4ec11c28df12898c423f9a1b4db8a91254f24e1b223427785
GET /af/c6e293/00000000000000003b9adf5b/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n8&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 20204
etag: "28ef655c633af8833168c5f618a8d030f5a2543c"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 02 Feb 2023 05:35:13 GMT
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-includes/css/dist/block-library/style.min.css?ver=5.2.17
200 OK 314 kB URL HTTP/2 mavs.wpenginepowered.com/wp-includes/css/dist/block-library/style.min.css?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (29271), with no line terminators
Size 314 kB (313588 bytes)
Hash de2b538b0b94549d40df4e9ce841faa3
b9779a80aaf13e84b38452ac6b9fbe31a9a53e28
2ae71752269457f3ddb8afde5adeb876e7385d296de199dba42e58703a540992
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 05 Feb 2021 03:20:06 GMT
etag: W/"601cb966-7257"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mtjZ357q6uxjI2Y2XSII%2FfeTa%2BsxeUstZ2WSDHbAEzZS6mY315H0DgLEcsW72j%2FEh1EZETAb3B4NG%2BDUdSY4Eg6Ihnqyl%2BMORfnN2UMC8X%2BNRjHU9%2FAJ5Thl0NGnaLk5%2FgJgGEC7VEHFhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fdf4a6bb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQei0q1xVxjfp_dakBof6Bs-tb3ab2FNISVac.119.woff2
200 OK 53 kB URL HTTP/2 fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQei0q1xVxjfp_dakBof6Bs-tb3ab2FNISVac.119.woff2
IP
File type Web Open Font Format (Version 2), CFF, length 53112, version 1.0\012- data
Hash 65d1a8361b972df4b246ae506b158931
ac28d0e5de6f08bbff6598c6e7fbedb746368833
72886b29a4caed5ecd641a108d1b0393e3f94ecc551fc926dffe047e3cf35b4b
GET /s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQei0q1xVxjfp_dakBof6Bs-tb3ab2FNISVac.119.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 53112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:05:56 GMT
expires: Sat, 27 Jan 2024 02:05:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 May 2022 20:07:00 GMT
content-type: font/woff2
age: 530957
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQei0q1xVxjfp_dakBof6Bs-tb3ab2FNISVac.113.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQei0q1xVxjfp_dakBof6Bs-tb3ab2FNISVac.113.woff2
IP
File type Web Open Font Format (Version 2), CFF, length 12784, version 1.0\012- data
Hash d6309ca8492c7d164afe12d92d6a8f8f
275787556c533c20b42cf3fce8ebea8626ab483b
183bb6ae6b109ce74e499809151ae8dd4a15f0b2ac8b85576b3235ffc994db3d
GET /s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQei0q1xVxjfp_dakBof6Bs-tb3ab2FNISVac.113.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12784
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:05:56 GMT
expires: Sat, 27 Jan 2024 02:05:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 May 2022 20:07:26 GMT
content-type: font/woff2
age: 530957
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQei0q1xVxjfp_dakBof6Bs-tb3ab2FNISVac.118.woff2
200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQei0q1xVxjfp_dakBof6Bs-tb3ab2FNISVac.118.woff2
IP
File type Web Open Font Format (Version 2), CFF, length 13592, version 1.0\012- data
Hash 492cbb28a645a9d38c22f7919a6c1666
b1745e25b94e813d4f6600f99ad16fde958fd706
fad25cd49ede74711b387dc8073f3b1633337cf96a9291aacd4e94ef95aec2f8
GET /s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQei0q1xVxjfp_dakBof6Bs-tb3ab2FNISVac.118.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13592
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 01:01:44 GMT
expires: Fri, 02 Feb 2024 01:01:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 May 2022 20:07:10 GMT
content-type: font/woff2
age: 16409
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 512824
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 286393
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQei0q1xVxjfp_dakBof6Bs-tb3ab2FNISVac.117.woff2
200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQei0q1xVxjfp_dakBof6Bs-tb3ab2FNISVac.117.woff2
IP
File type Web Open Font Format (Version 2), CFF, length 10016, version 1.0\012- data
Hash 69178f868029049b641fab87a72f872d
d7a2730a0c0a4bb9e45674681bddb50686e25b03
55ba69c11db1d4be0836acfb5abe76c32024507fe2573024d4db23983a0ae8f8
GET /s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQei0q1xVxjfp_dakBof6Bs-tb3ab2FNISVac.117.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10016
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 16:05:17 GMT
expires: Mon, 29 Jan 2024 16:05:17 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 May 2022 20:07:11 GMT
content-type: font/woff2
age: 307796
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
200 OK 1.6 kB URL HTTP/2 assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
IP
File type ASCII text, with very long lines (3155)
Hash e672de61b277fc72de4299829bfbb31c
157a7409922d58a02dad3ba879d04eb2a3ef8f3d
e1a1c2a6f2ed4ffb63ebfda157eaf12c6ee3973be4da649eb63e0402c0d29215
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "2d1382c349d480b6b41574ac0c1af066:1644856531.739514"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
unused62: 8096267
content-length: 1597
expires: Thu, 02 Feb 2023 06:35:13 GMT
date: Thu, 02 Feb 2023 05:35:13 GMT
cache-control: no-cache
access-control-allow-origin: https://www.mavs.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
200 OK 12 kB URL HTTP/2 assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
IP
File type ASCII text, with very long lines (32768)
Hash e616df092766c7ab7904619f971a35cc
a960429c42802a43e3ce728fc4d1e8bdab10e606
082ae7647bfdb639846791e5c0ca39b96544dff3aed0c365973c9589cd5b091e
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d860c16ac938f7d839f0ec158d02d0f0:1644856531.418573"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 12163
unused62: 8096267
expires: Thu, 02 Feb 2023 06:35:13 GMT
date: Thu, 02 Feb 2023 05:35:13 GMT
cache-control: no-cache
access-control-allow-origin: https://www.mavs.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_AudienceManagement.min.js
200 OK 8.8 kB URL HTTP/2 assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_AudienceManagement.min.js
IP
File type exported SGML document, ASCII text, with very long lines (24999)
Hash 6f56f25549f094ee43918a26715f4c6b
0b75d52207556fa7879017f81a9445006a637047
57a0cc8a8dfd7a1ab1aa40a84c53b0db4caf025c5c5499bea095b91924139a96
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_AudienceManagement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "26a8cd142b539700557eb4710c3d56bd:1644856531.982003"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
unused62: 8096267
content-length: 8753
expires: Thu, 02 Feb 2023 06:35:13 GMT
date: Thu, 02 Feb 2023 05:35:13 GMT
cache-control: no-cache
access-control-allow-origin: https://www.mavs.com
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 65e3f22ba34500036d6a96bcabc31f04
7f27642bf87c575e7d7e73fcacfbb5f24a50834a
b552da9be1755a70ea7e66a8b3c1393939bcb78d44025ecedf1a18e6e1321327
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2375
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:13 GMT
Last-Modified: Thu, 02 Feb 2023 04:55:39 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=248F210755B762187F000101%40AdobeOrg&d_nsid=0&ts=1675316137942
302 Found 0 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=248F210755B762187F000101%40AdobeOrg&d_nsid=0&ts=1675316137942
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=248F210755B762187F000101%40AdobeOrg&d_nsid=0&ts=1675316137942 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.mavs.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v045-000256d3c.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/id/rd?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=248F210755B762187F000101%40AdobeOrg&d_nsid=0&ts=1675316137942
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=01098609698023216762080320345450275824; Max-Age=15552000; Expires=Tue, 01 Aug 2023 05:35:13 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: jPnoet6vRs8=
Content-Length: 0
Connection: keep-alive
dpm.demdex.net/id/rd?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=248F210755B762187F000101%40AdobeOrg&d_nsid=0&ts=1675316137942
200 OK 124 B URL HTTP/1.1 dpm.demdex.net/id/rd?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=248F210755B762187F000101%40AdobeOrg&d_nsid=0&ts=1675316137942
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 1f6783349ac4177ec3b3845fd520dca6
d84e7a43a8c8ff6f1a568ad6cb4162767f5b32b7
64bc30aa6a9d9e5396bb67c6af32c31f5ca6610641f0bdea10d759281df6adca
GET /id/rd?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=248F210755B762187F000101%40AdobeOrg&d_nsid=0&ts=1675316137942 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mavs.com
Content-Type: application/x-www-form-urlencoded
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.mavs.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v045-061dae83e.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-Error: 172
X-TID: 9JQ1OQd7Qok=
Content-Length: 124
Connection: keep-alive
js.adsrvr.org/up_loader.1.1.0.js
200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8dc722d27824e60548fd25752623cd07
33d66ad1a4a162e2d6c9ed732d6c9af79635fc4d
14ce9119fe06fb2d363ba3c824e9f5b3f212f1f39dfab38c836fa13a20daec1b
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 01 Feb 2023 22:48:26 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YXahsev0IvZ5lfBZh0FbSDD0l31aRgiVGgAl5OqtGmrI5adw_YCWLQ==
Age: 76142
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-1957426934862889
200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-1957426934862889
IP
File type ASCII text, with very long lines (3649)
Hash 2efa5487ccdebae5ac54cdf70cdc8083
da9a1760c2b9928bc28d519d4835b4e586b71f66
69e0d97915a09ab417e35fd9f6a8af09ccd2166b40d44d3ec42e0548dd93c974
GET /pagead/js/adsbygoogle.js?client=ca-pub-1957426934862889 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 02 Feb 2023 05:35:13 GMT
expires: Thu, 02 Feb 2023 05:35:13 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 16459302504402074160
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50015
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
platform.twitter.com/oct.js
301 Moved Permanently 0 B URL HTTP/1.1 platform.twitter.com/oct.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /oct.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Date: Thu, 02 Feb 2023 05:35:13 GMT
Location: https://static.ads-twitter.com/oct.js
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F709)
Server-Timing: x-cache;desc= ,x-tw-cdn;desc=VZ
x-tw-cdn: VZ
Content-Length: 0
www.mavs.com/wp-content/uploads/2020/03/Zion-505x342.jpg
200 OK 42 kB URL HTTP/2 www.mavs.com/wp-content/uploads/2020/03/Zion-505x342.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, description=NEW ORLEANS, LA - MARCH 01: New Orleans Pelicans forward Zion Williamson (1) dunks the ball during a NBA game between the New O], baseline, precision 8, 505x342, components 3\012- data
Hash d0461a615fe6fdcac1fb268a971a88f5
fdcc2375591a5d622ac17038309ce0c17a181119
591944695ec165428d3e0ff16d161ed08688088494cd83f3b8febbdbffb67ab7
GET /wp-content/uploads/2020/03/Zion-505x342.jpg HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/jpeg
content-length: 41750
x-sucuri-id: 19003
last-modified: Tue, 03 Mar 2020 22:21:08 GMT
etag: "5e5ed854-a316"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tag.simpli.fi/sifitag/9acc2d80-2603-0139-3a6d-06abc14c0bc6
200 OK 3.1 kB URL HTTP/2 tag.simpli.fi/sifitag/9acc2d80-2603-0139-3a6d-06abc14c0bc6
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3100)
Hash 5be6122c737333631b537ebc906ca391
baa0433dde83030679ec5dee6f3789d5f158572c
09c43441ef5dbc5f69137ddd3020535dafa4ff841a091baa05a0f658c1152456
GET /sifitag/9acc2d80-2603-0139-3a6d-06abc14c0bc6 HTTP/1.1
Host: tag.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: application/javascript; charset=utf-8
content-length: 3101
set-cookie: suid=CC5BD831FB394F3B82575686C84A6619; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:13 GMT; SameSite=none; Secure;
suid_legacy=CC5BD831FB394F3B82575686C84A6619; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:13 GMT; Secure;
x-request-id: Fz_rIRqSowK8egjw3RHB
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=0, private, must-revalidate, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT, Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/2nd-Half-BG-3.jpg
200 OK 847 kB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/2nd-Half-BG-3.jpg
IP
File type JPEG image data, progressive, precision 8, 1920x1080, components 3\012- data
Size 847 kB (847184 bytes)
Hash 9a54f6da30193e3b4fedc3c955396c68
004ac5072ab8fee611e9e2e6dab04164897856de
a664d11d37fd5a3dc46e94996ba5d4806d50e1560bf79a0fd53b89fad62cb052
GET /wp-content/uploads/2023/01/2nd-Half-BG-3.jpg HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/jpeg
content-length: 847184
x-sucuri-id: 19003
last-modified: Tue, 24 Jan 2023 23:56:22 GMT
etag: "63d07026-ced50"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/RH-%E2%80%93-01-30-DALvsDET-2870-505x337.jpg
200 OK 114 kB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/RH-%E2%80%93-01-30-DALvsDET-2870-505x337.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=8, manufacturer=NIKON CORPORATION, model=NIKON Z 9, xresolution=138, yresolution=146, resolutionunit=2, software=PhotoShelter https://www.photoshelter.com, datetime=2023:01:31 09:15:42], baseline, precision 8, 505x337, components 3\012- data
Size 114 kB (114312 bytes)
Hash 8c5ab9f2ab5ad09f179d23bb6c7e52aa
42034607673c2588d94876fa3cd0cecf75b749ae
b3cd376ff780951c8a21097bb3aca689e9165405d2879dfeec9473653fe9050c
GET /wp-content/uploads/2023/01/RH-%E2%80%93-01-30-DALvsDET-2870-505x337.jpg HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/jpeg
content-length: 114312
x-sucuri-id: 19003
last-modified: Tue, 31 Jan 2023 17:01:43 GMT
etag: "63d94977-1be88"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/VB-01-30-DALvsDET-26977-505x337.jpg
200 OK 89 kB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/VB-01-30-DALvsDET-26977-505x337.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, description=DALLAS, TX - JANUARY 30: The Detroit Pistons vs the Dallas Mavericks on January 30, 2023 at the American Airlines Center in Dal, manufacturer=SONY, model=ILCE-1, xresolution=404, yresolution=412, resolutionunit=2, software=PhotoShelter https://www.photoshelter.com, datetime=2023:01:30 20:50:52], baseline, precision 8, 505x337, components 3\012- data
Hash 0c66f03c71bf373051b29fc9b97c8b63
16ac4ecf7cd99a887740979507ab57d4735281c4
9a51ed796ffcafdfee1d300023b06c8f259662c64047115d21ad72de151866f1
GET /wp-content/uploads/2023/01/VB-01-30-DALvsDET-26977-505x337.jpg HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/jpeg
content-length: 88949
x-sucuri-id: 19003
last-modified: Tue, 31 Jan 2023 03:15:05 GMT
etag: "63d887b9-15b75"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/VB-01-30-DALvsDET-24673-505x337.jpg
200 OK 106 kB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/VB-01-30-DALvsDET-24673-505x337.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, description=DALLAS, TX - JANUARY 30: The Detroit Pistons vs the Dallas Mavericks on January 30, 2023 at the American Airlines Center in Dal, manufacturer=SONY, model=ILCE-1, xresolution=404, yresolution=412, resolutionunit=2, software=PhotoShelter https://www.photoshelter.com, datetime=2023:01:30 20:23:31], baseline, precision 8, 505x337, components 3\012- data
Size 106 kB (105612 bytes)
Hash 74310b70a3b00071d0cedf2a4355114a
4708057ceec8bf380c91bbdf6f5a83951d1acdbf
d69ff728dc4208b449c39b4416887bebf46b7834c1d752c10921dfc20ea4e4d2
GET /wp-content/uploads/2023/01/VB-01-30-DALvsDET-24673-505x337.jpg HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/jpeg
content-length: 105612
x-sucuri-id: 19003
last-modified: Tue, 31 Jan 2023 02:44:39 GMT
etag: "63d88097-19c8c"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/VB-01-26-DALatPHX-2732-2-505x337.jpg
200 OK 91 kB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/VB-01-26-DALatPHX-2732-2-505x337.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, description=Dallas Mavericks vs Phoenix Suns, manufacturer=SONY, model=ILCE-1, xresolution=296, yresolution=304, resolutionunit=2, software=PhotoShelter https://www.photoshelter.com, datetime=2023:01:26 22:25:34], baseline, precision 8, 505x337, components 3\012- data
Hash 2f04ead638015b4f51f61614b2899c3e
348d273b0fc3f1002ee2cdb71591d5d09e60d0b7
6466fe5236f007741ca5e3edb770295ad62741cb90194af06b205aaf421c9e52
GET /wp-content/uploads/2023/01/VB-01-26-DALatPHX-2732-2-505x337.jpg HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/jpeg
content-length: 91064
x-sucuri-id: 19003
last-modified: Fri, 27 Jan 2023 10:00:07 GMT
etag: "63d3a0a7-163b8"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/VB-01-28-DALatUTA-5214-505x337.jpg
200 OK 82 kB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/VB-01-28-DALatUTA-5214-505x337.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, description=Dallas Mavericks vs Utah Jazz - , manufacturer=SONY, model=ILCE-1, xresolution=318, yresolution=326, resolutionunit=2, software=PhotoShelter https://www.photoshelter.com, datetime=2023:01:28 22:06:08], baseline, precision 8, 505x337, components 3\012- data
Hash 03a1d43c94de997f0880026dd80762a8
05aa1bfe5ac5ae5a89990500bebeb8c220282cf3
b10eb9a830a6ffbc8cd33efd81d4b23ddc0f362057aab5dca210d04e3274e8f5
GET /wp-content/uploads/2023/01/VB-01-28-DALatUTA-5214-505x337.jpg HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/jpeg
content-length: 81872
x-sucuri-id: 19003
last-modified: Sun, 29 Jan 2023 05:42:49 GMT
etag: "63d60759-13fd0"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/VB-01-28-DALatUTA-4850-505x337.jpg
200 OK 97 kB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/VB-01-28-DALatUTA-4850-505x337.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, description=Dallas Mavericks vs Utah Jazz - , manufacturer=SONY, model=ILCE-1, xresolution=318, yresolution=326, resolutionunit=2, software=PhotoShelter https://www.photoshelter.com, datetime=2023:01:28 22:06:01], baseline, precision 8, 505x337, components 3\012- data
Hash 35f7a92d817da1de9a1b61c369496993
6f151b7c0db70359b3fc22ce8f7ede6af3dcc018
c61c7ac8d6b56cb8883ae128369d1d3a581db513ae800ef457f12d71e6aa7cec
GET /wp-content/uploads/2023/01/VB-01-28-DALatUTA-4850-505x337.jpg HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/jpeg
content-length: 97218
x-sucuri-id: 19003
last-modified: Sun, 29 Jan 2023 05:43:52 GMT
etag: "63d60798-17bc2"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/VB-01-28-DALatUTA-4897-505x337.jpg
200 OK 99 kB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/VB-01-28-DALatUTA-4897-505x337.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, description=Dallas Mavericks vs Utah Jazz - , manufacturer=SONY, model=ILCE-1, xresolution=318, yresolution=326, resolutionunit=2, software=PhotoShelter https://www.photoshelter.com, datetime=2023:01:28 22:06:03], baseline, precision 8, 505x337, components 3\012- data
Hash 656ec00dac20c7458467b18b2cbdab1d
c21bbdcede4ddab4fdff03f0a8519ea5d141ed4a
3251cda25bb85186ccfa14cc69d8feb62dbb699edbcfdbe3ac3af6aa27fd9bd9
GET /wp-content/uploads/2023/01/VB-01-28-DALatUTA-4897-505x337.jpg HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/jpeg
content-length: 99218
x-sucuri-id: 19003
last-modified: Sun, 29 Jan 2023 05:44:42 GMT
etag: "63d607ca-18392"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/VB-01-26-DALatPHX-3368-505x337.jpg
200 OK 104 kB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/VB-01-26-DALatPHX-3368-505x337.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, description=Dallas Mavericks vs Phoenix Suns, manufacturer=SONY, model=ILCE-1, xresolution=298, yresolution=306, resolutionunit=2, software=PhotoShelter https://www.photoshelter.com, datetime=2023:01:26 23:12:15], baseline, precision 8, 505x337, components 3\012- data
Size 104 kB (104243 bytes)
Hash e8ee1f4581755932ef6557b7454c6e80
ee49173ada436086bfb7a81bf74e6de0fbf8c99e
beec089d16d99bcfd9af04ff6bb38f1810e3bd3dfad81d20658035f8298a6273
GET /wp-content/uploads/2023/01/VB-01-26-DALatPHX-3368-505x337.jpg HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/jpeg
content-length: 104243
x-sucuri-id: 19003
last-modified: Fri, 27 Jan 2023 21:34:21 GMT
etag: "63d4435d-19733"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/VB-01-26-DALatPHX-3727-505x337.jpg
200 OK 90 kB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/VB-01-26-DALatPHX-3727-505x337.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, description=Dallas Mavericks vs Phoenix Suns, manufacturer=SONY, model=ILCE-1, xresolution=298, yresolution=306, resolutionunit=2, software=PhotoShelter https://www.photoshelter.com, datetime=2023:01:26 23:12:31], baseline, precision 8, 505x337, components 3\012- data
Hash ffaa3d35e5d87bdeec75140531745854
05309b4b3be08286a84ac2f8f6ef09004edc34f9
bdb76bf5c0fa31bb9982a085950c10872bed5e76f72d1a9b03eeba200fe37511
GET /wp-content/uploads/2023/01/VB-01-26-DALatPHX-3727-505x337.jpg HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/jpeg
content-length: 89881
x-sucuri-id: 19003
last-modified: Fri, 27 Jan 2023 21:33:40 GMT
etag: "63d44334-15f19"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/VB-01-26-DALatPHX-0221-505x337.jpg
200 OK 75 kB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/VB-01-26-DALatPHX-0221-505x337.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, description=Dallas Mavericks vs Phoenix Suns, manufacturer=SONY, model=ILCE-1, xresolution=276, yresolution=284, resolutionunit=2, software=PhotoShelter https://www.photoshelter.com, datetime=2023:01:26 21:44:12], baseline, precision 8, 505x337, components 3\012- data
Hash e64dc65757f6ec94d8d61d000375b095
5a4d94d61133cc14634431e715d72759ee046a52
c5e432b5210d1914c290704262e8f47ffc8c3ff35aab95c780cf3187e857ddf7
GET /wp-content/uploads/2023/01/VB-01-26-DALatPHX-0221-505x337.jpg HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/jpeg
content-length: 75358
x-sucuri-id: 19003
last-modified: Fri, 27 Jan 2023 06:30:40 GMT
etag: "63d36f90-1265e"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/Dwight-Powell-Statement-Jersey.png
200 OK 2.2 MB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/Dwight-Powell-Statement-Jersey.png
IP
File type PNG image data, 756 x 2819, 8-bit/color RGBA, non-interlaced\012- data
Size 2.2 MB (2245817 bytes)
Hash f2c62f309b4138690648e43095b37f8d
552215ca53b67dbc36635d639c30a103aee9220c
034533a69e8a2676b5b2948fca599107125dfc3ea60ac5b695fde4c2d1a1f556
GET /wp-content/uploads/2023/01/Dwight-Powell-Statement-Jersey.png HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/png
content-length: 2245817
x-sucuri-id: 19003
last-modified: Sat, 07 Jan 2023 18:56:18 GMT
etag: "63b9c052-2244b9"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
static.ads-twitter.com/oct.js
200 OK 15 kB URL HTTP/2 static.ads-twitter.com/oct.js
IP
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /oct.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Thu, 02 Feb 2023 05:35:14 GMT
x-served-by: cache-iad-kiad7000092-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 9e15328a68acb237467d243bd7cd8674
16226d31dc66e76857a6b1dacd64354ed7e22002
6a56413eb480fca43a88b8fe796353d621b0da4e1bf91134b3bbcf9d2f68e3ec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 316
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:14 GMT
Last-Modified: Thu, 02 Feb 2023 05:29:58 GMT
Server: ECS (amb/6BB2)
X-Cache: HIT
Content-Length: 471
www.mavs.com/wp-content/uploads/2023/01/Black-History-Month-Art-Contest-BG.jpg
200 OK 739 kB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/Black-History-Month-Art-Contest-BG.jpg
IP
File type JPEG image data, progressive, precision 8, 1920x1080, components 3\012- data
Size 739 kB (739152 bytes)
Hash 6bf97f8a99d20509ffad78a7500250e6
a13e303d9fdeb5c723f56309d3fef54f79be96c6
ffd709f9d70adcaa06bf35a08b10d44294adf17b996c8edef2837cb0f47e9cf7
GET /wp-content/uploads/2023/01/Black-History-Month-Art-Contest-BG.jpg HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/jpeg
content-length: 739152
x-sucuri-id: 19003
last-modified: Wed, 18 Jan 2023 23:10:51 GMT
etag: "63c87c7b-b4750"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/Black-History-Month-Art-Contest-Sticky-Note.png
200 OK 1.8 MB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/Black-History-Month-Art-Contest-Sticky-Note.png
IP
File type PNG image data, 1406 x 935, 8-bit/color RGBA, non-interlaced\012- data
Size 1.8 MB (1808363 bytes)
Hash dc72ed2ce842fbab0f38575fcd5e0415
04d503480264c1831e300ebc37771dc33e92dee1
796ac491c55f9f6e14f3ed345a217ec3c96e8b670bcc5a27f6481884969ad6d2
GET /wp-content/uploads/2023/01/Black-History-Month-Art-Contest-Sticky-Note.png HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/png
content-length: 1808363
x-sucuri-id: 19003
last-modified: Wed, 18 Jan 2023 23:11:09 GMT
etag: "63c87c8d-1b97eb"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
smetrics.global.nba.com/id?d_visid_ver=5.4.0&d_fieldgroup=MC&mcorgid=248F210755B762187F000101%40AdobeOrg&ts=1675316138606
200 OK 48 B URL HTTP/2 smetrics.global.nba.com/id?d_visid_ver=5.4.0&d_fieldgroup=MC&mcorgid=248F210755B762187F000101%40AdobeOrg&ts=1675316138606
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 2b732c1fd5963e14ee3ad3a61a63bf6b
b39792f4c0e44681517d46ca774af1adfa2ff714
7d62632aa271b957d52ce81b11b65f5219a05b94c645cadb1776988b2701fc94
GET /id?d_visid_ver=5.4.0&d_fieldgroup=MC&mcorgid=248F210755B762187F000101%40AdobeOrg&ts=1675316138606 HTTP/1.1
Host: smetrics.global.nba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.mavs.com
access-control-allow-credentials: true
date: Thu, 02 Feb 2023 05:35:14 GMT
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: AMCV_248F210755B762187F000101%40AdobeOrg=0%7CMCMID%7C42568339131120552121956289988178263164; Path=/; Domain=nba.com; Max-Age=63072000; Expires=Sat, 01 Feb 2025 05:35:35 GMT;
s_ecid=MCMID%7C42568339131120552121956289988178263164; Path=/; Domain=nba.com; Max-Age=63072000; Expires=Sat, 01 Feb 2025 05:35:35 GMT; SameSite=Lax;
vary: Origin
content-type: application/x-javascript;charset=utf-8
content-length: 48
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/Black-History-Month-Art-Contest-Sticky-Note-Portrait.png
200 OK 1.2 MB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/Black-History-Month-Art-Contest-Sticky-Note-Portrait.png
IP
File type PNG image data, 1356 x 1380, 8-bit/color RGBA, non-interlaced\012- data
Size 1.2 MB (1233224 bytes)
Hash ada5c17d07019be12860bec7ff9163f7
af8defbce6b911e5422c85eca4cf1e9205c65c2f
cc64fc4df5996f3291c0ad827aefc6507998f0fe91a7d9796ab4e141848181b5
GET /wp-content/uploads/2023/01/Black-History-Month-Art-Contest-Sticky-Note-Portrait.png HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/png
content-length: 1233224
x-sucuri-id: 19003
last-modified: Wed, 18 Jan 2023 23:35:16 GMT
etag: "63c88234-12d148"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2022/12/22-23-All-Star-BG.jpg
200 OK 742 kB URL HTTP/2 www.mavs.com/wp-content/uploads/2022/12/22-23-All-Star-BG.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size 742 kB (741697 bytes)
Hash 4e2eeeeed74d553c08935c537b92d379
114328b28130721d66360af37db426fbaa1fa72e
c2b569d7e2591c8de04c80073f1bfb677c9479c01f3830308a61a80510a23823
GET /wp-content/uploads/2022/12/22-23-All-Star-BG.jpg HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/jpeg
content-length: 741697
x-sucuri-id: 19003
last-modified: Thu, 15 Dec 2022 15:41:27 GMT
etag: "639b4027-b5141"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 18eb356d510b2e59eea12833432f9de7
707829250ec389d87c4dab94eb9ddd4571f255e1
224f53f00e542fcd407985f017bde40211d6d9d53d389d712d34b98214f52667
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:14 GMT
Etag: "63dabb29-1d7"
Server: ECS (amb/6B80)
Content-Length: 471
ocsp.digicert.com/
200 OK 313 B IP
Hash f34e13cd7bd2390540358d01cbc690ff
15a098b4cd8fbd001a15d36207579fe9b18d4c07
1a74d35e15a7479290f811969f72f0de78f65bcb5b42bdfe673719d746839682
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4072
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:14 GMT
Last-Modified: Thu, 02 Feb 2023 04:27:23 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 313
use.typekit.net/af/9ec930/00000000000000003b9adf55/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3
200 OK 20 kB URL HTTP/2 use.typekit.net/af/9ec930/00000000000000003b9adf55/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 19652, version 1.0\012- data
Hash 2efac85a57776792aa9fd38a0a861f97
ef6e89a15fa1f0270837bd671770d2bde3d59e6b
ac36712156b92e0059c1bc008c51ade31475a923eef4ba049f6007bc4029c5bb
GET /af/9ec930/00000000000000003b9adf55/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 19652
etag: "67833e8551e00b0c0e8d94a43a21c451a0427f4a"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 02 Feb 2023 05:35:14 GMT
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20230131/r20190131/zrt_lookup.html
200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230131/r20190131/zrt_lookup.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230131/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:39:37 GMT
expires: Thu, 16 Feb 2023 00:39:37 GMT
cache-control: public, max-age=1209600
age: 17737
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/Luka-Burst_FINAL-1.png
200 OK 1.5 MB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/Luka-Burst_FINAL-1.png
IP
File type PNG image data, 1201 x 1144, 8-bit/color RGBA, non-interlaced\012- data
Size 1.5 MB (1452427 bytes)
Hash e0f097a79998b070c525939c8aa15e2f
d5d4f58f443eadfffc33dbf85fcc0259fe8945e8
0348f4bc3d991bacfbd607c280e2782824f0b3fc1721ec31009962c2f8bcb164
GET /wp-content/uploads/2023/01/Luka-Burst_FINAL-1.png HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: image/png
content-length: 1452427
x-sucuri-id: 19003
last-modified: Fri, 27 Jan 2023 00:11:13 GMT
etag: "63d316a1-16298b"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mavs.com/fonts/AvenirLight.woff
404 Not Found 146 B URL HTTP/2 www.mavs.com/fonts/AvenirLight.woff
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /fonts/AvenirLight.woff HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 02 Feb 2023 05:35:14 GMT
content-type: text/html
content-length: 146
x-sucuri-id: 19003
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-sucuri-cache: EXPIRED
X-Firefox-Spdy: h2
tn.alphonso.tv/ad/ord=1675316138387?prd=web&cust=DallasMavericks-623-WFAA&utm_source=unk&utm_mdm=unk&url=https%3A%2F%2Fwww.mavs.com%2F&title=Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks&sess_status=st&sess=1675317089826&event_type=visit
200 OK 35 B URL HTTP/1.1 tn.alphonso.tv/ad/ord=1675316138387?prd=web&cust=DallasMavericks-623-WFAA&utm_source=unk&utm_mdm=unk&url=https%3A%2F%2Fwww.mavs.com%2F&title=Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks&sess_status=st&sess=1675317089826&event_type=visit
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 87a, 1 x 1\012- data
Hash 87aec5a94c94ec7a5dd1c0839eb0182b
d6bff0d70b60442d004c0affe6c1ab890615046a
3992b901546ef4e2685680badcd372d0834724caf9b1c95ea0f1e7c4ce6e5bc8
GET /ad/ord=1675316138387?prd=web&cust=DallasMavericks-623-WFAA&utm_source=unk&utm_mdm=unk&url=https%3A%2F%2Fwww.mavs.com%2F&title=Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks&sess_status=st&sess=1675317089826&event_type=visit HTTP/1.1
Host: tn.alphonso.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.0
Date: Thu, 02 Feb 2023 05:35:14 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
ETag: "560c609e-23"
Access-Control-Allow-Origin: *
Vary: Origin
Accept-Ranges: bytes
t.co/i/adsct?bci=1&eci=1&event_id=8dbf02e0-2010-49e3-94c5-0fdef85605ed&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=30977f1c-aee9-4226-8570-322ea4746ac6&tw_document_href=https%3A%2F%2Fwww.mavs.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o54uk&type=javascript&version=2.3.29
200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=1&eci=1&event_id=8dbf02e0-2010-49e3-94c5-0fdef85605ed&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=30977f1c-aee9-4226-8570-322ea4746ac6&tw_document_href=https%3A%2F%2Fwww.mavs.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o54uk&type=javascript&version=2.3.29
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=1&eci=1&event_id=8dbf02e0-2010-49e3-94c5-0fdef85605ed&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=30977f1c-aee9-4226-8570-322ea4746ac6&tw_document_href=https%3A%2F%2Fwww.mavs.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o54uk&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:14 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=3c6b098b-44ce-4647-8e8b-06217f4d0a8c; Max-Age=63072000; Expires=Sat, 01 Feb 2025 05:35:14 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: d90db07d1dcaff95
strict-transport-security: max-age=0
x-response-time: 116
x-connection-hash: b286ce767ce701df18b6669551ddea7efefe746bbb862a49db09bc3e50c6637c
X-Firefox-Spdy: h2
www.mavs.com/wp-content/uploads/2023/01/Luka-Donc%CC%8Cic%CC%81-All-Star.png
200 OK 112 kB URL HTTP/2 www.mavs.com/wp-content/uploads/2023/01/Luka-Donc%CC%8Cic%CC%81-All-Star.png
IP
File type PNG image data, 479 x 235, 8-bit/color RGBA, non-interlaced\012- data
Size 112 kB (112424 bytes)
Hash 2e7a21332b507dbfed4b4922b61e086e
b97301d023b454d2e63667a777b91b02e5861285
7eb86d687df128b65e38e366c621ce26a586059c2181c51eef7180a05629cd55
GET /wp-content/uploads/2023/01/Luka-Donc%CC%8Cic%CC%81-All-Star.png HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:14 GMT
content-type: image/png
content-length: 112424
x-sucuri-id: 19003
last-modified: Fri, 27 Jan 2023 00:29:38 GMT
etag: "63d31af2-1b728"
cache-control: max-age=315360000
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
dpm.demdex.net/id?d_visid_ver=5.4.0&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=248F210755B762187F000101%40AdobeOrg&d_nsid=0&d_mid=42568339131120552121956289988178263164&ts=1675316139306
200 OK 1.7 kB URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.4.0&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=248F210755B762187F000101%40AdobeOrg&d_nsid=0&d_mid=42568339131120552121956289988178263164&ts=1675316139306
IP
File type JSON data\012- , ASCII text, with very long lines (6107), with no line terminators
Hash 59c72e60741729a40ea882b1762c3486
ae570ddea93366bfc5e5d5a0adf49414545807f0
d525071ff8e230e93c8cc93ffd8fc96b8ffeb09cd5a0cc2a8c8a31789c8a69e3
GET /id?d_visid_ver=5.4.0&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=248F210755B762187F000101%40AdobeOrg&d_nsid=0&d_mid=42568339131120552121956289988178263164&ts=1675316139306 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.mavs.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v045-02b96ccc8.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=42593674248348435391957162144667746883; Max-Age=15552000; Expires=Tue, 01 Aug 2023 05:35:14 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: L0SlaJSbSIM=
Content-Length: 1700
Connection: keep-alive
smetrics.global.nba.com/b/ss/nbasitesprod/10/JS-2.22.4-LCUM/s16810228843762?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=2%2F1%2F2023%205%3A35%3A39%204%200&d.&nsid=0&jsonv=1&.d&mid=42568339131120552121956289988178263164&aamlh=6&ce=UTF-8&pageName=home&g=www.mavs.com%2F&cc=USD&ch=home&server=www.mavs.com&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&v4=home&v9=home&c11=nba%3Ateam%3Adal&c19=en_US&v19=DAL&c21=nba&c28=nba%3Ateam%3Adal%3Aweb&v28=nba%3Ateam%3Adal%3Aweb&c29=nba%3Ateam%3Adal%3Aundefined&v30=en_US&c54=DAL&c59=1610612742&c62=www.mavs.com&v63=DAL&c64=dallas%20mavericks&v66=1610612742&c67=D%3Dg&v71=www.mavs.com&v72=nba&c74=NBA%20Team%20Sites%20%28Legacy%29&v82=dallas%20mavericks&v87=D%3Dg&v98=nba%3Ateam%3Adal&v99=nba%3Ateam%3Adal%3Aundefined&v101=ec%3D42568339131120552121956289988178263164%3B&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=248F210755B762187F000101%40AdobeOrg&AQE=1
200 OK 6.1 kB URL HTTP/2 smetrics.global.nba.com/b/ss/nbasitesprod/10/JS-2.22.4-LCUM/s16810228843762?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=2%2F1%2F2023%205%3A35%3A39%204%200&d.&nsid=0&jsonv=1&.d&mid=42568339131120552121956289988178263164&aamlh=6&ce=UTF-8&pageName=home&g=www.mavs.com%2F&cc=USD&ch=home&server=www.mavs.com&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&v4=home&v9=home&c11=nba%3Ateam%3Adal&c19=en_US&v19=DAL&c21=nba&c28=nba%3Ateam%3Adal%3Aweb&v28=nba%3Ateam%3Adal%3Aweb&c29=nba%3Ateam%3Adal%3Aundefined&v30=en_US&c54=DAL&c59=1610612742&c62=www.mavs.com&v63=DAL&c64=dallas%20mavericks&v66=1610612742&c67=D%3Dg&v71=www.mavs.com&v72=nba&c74=NBA%20Team%20Sites%20%28Legacy%29&v82=dallas%20mavericks&v87=D%3Dg&v98=nba%3Ateam%3Adal&v99=nba%3Ateam%3Adal%3Aundefined&v101=ec%3D42568339131120552121956289988178263164%3B&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=248F210755B762187F000101%40AdobeOrg&AQE=1
IP
File type ASCII text, with very long lines (6128)
Hash f54d114df1458aa716b80adf105fc9f0
437ca34b134e85e3ce30a1173e8a4e7c43018d0c
2d56126f0158ee655746629db87c1a0eb0bd191e84e93138a7fdb6ba9ffd62dd
GET /b/ss/nbasitesprod/10/JS-2.22.4-LCUM/s16810228843762?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=2%2F1%2F2023%205%3A35%3A39%204%200&d.&nsid=0&jsonv=1&.d&mid=42568339131120552121956289988178263164&aamlh=6&ce=UTF-8&pageName=home&g=www.mavs.com%2F&cc=USD&ch=home&server=www.mavs.com&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&v4=home&v9=home&c11=nba%3Ateam%3Adal&c19=en_US&v19=DAL&c21=nba&c28=nba%3Ateam%3Adal%3Aweb&v28=nba%3Ateam%3Adal%3Aweb&c29=nba%3Ateam%3Adal%3Aundefined&v30=en_US&c54=DAL&c59=1610612742&c62=www.mavs.com&v63=DAL&c64=dallas%20mavericks&v66=1610612742&c67=D%3Dg&v71=www.mavs.com&v72=nba&c74=NBA%20Team%20Sites%20%28Legacy%29&v82=dallas%20mavericks&v87=D%3Dg&v98=nba%3Ateam%3Adal&v99=nba%3Ateam%3Adal%3Aundefined&v101=ec%3D42568339131120552121956289988178263164%3B&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=248F210755B762187F000101%40AdobeOrg&AQE=1 HTTP/1.1
Host: smetrics.global.nba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
date: Thu, 02 Feb 2023 05:35:14 GMT
expires: Wed, 01 Feb 2023 05:35:14 GMT
last-modified: Fri, 03 Feb 2023 05:35:14 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3597713960907800576-4619778377448322302
vary: *
dcs: dcs-prod-irl1-2-v045-0f45dc272.edge-irl1.demdex.com 4 ms
x-aam-tid: pQUb0btHQMM=
content-type: application/x-javascript;charset=utf-8
content-length: 6129
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
nba.demdex.net/dest5.html?d_nsid=0
200 OK 2.8 kB URL HTTP/1.1 nba.demdex.net/dest5.html?d_nsid=0
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: nba.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Thu, 2 Feb 2023 05:35:14 GMT
DCS: dcs-prod-irl1-1-v045-0a637d725.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Fri, 28 Oct 2022 11:02:56 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: 4blhnyzoTxY=
transfer-encoding: chunked
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash df4a6d84addba49571d9f6ae44c61a3f
28c8093de27e27645cf6dfd5ae93a62fc77b9be5
cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 03:45:20 GMT
expires: Thu, 02 Feb 2023 05:45:20 GMT
cache-control: public, max-age=7200
age: 6594
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.mavs.com/fonts/AvenirLight.woff2
404 Not Found 146 B URL HTTP/2 www.mavs.com/fonts/AvenirLight.woff2
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /fonts/AvenirLight.woff2 HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0; wingify_donot_track_actions=0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 02 Feb 2023 05:35:14 GMT
content-type: text/html
content-length: 146
x-sucuri-id: 19003
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-sucuri-cache: EXPIRED
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 727 B IP
Hash 7b6a8a7ad5562d23a4592b765067742b
85386d47846b6f1c30e6bcfae68f2a3a8548d005
7fa107c691c2deb605c401652fc25e2f1103734774db8a22c72302f5ab168c70
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5552
Cache-Control: max-age=169835
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:14 GMT
Etag: "63db2a4d-2d7"
Expires: Sat, 04 Feb 2023 04:45:49 GMT
Last-Modified: Thu, 02 Feb 2023 03:13:17 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 727
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash d3e4ef294e427dbd856853cbc0d4c663
062b9217afb6a661a4e71598d919d0baadc41143
ba5e7d77b810caf885ae1ebdc1d464e397e08445e1cbac0a8b6665d5624e291b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5268
Cache-Control: max-age=136773
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:14 GMT
Etag: "63daaa43-1d7"
Expires: Fri, 03 Feb 2023 19:34:47 GMT
Last-Modified: Wed, 01 Feb 2023 18:06:59 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
www.google.com/pagead/1p-conversion/784979652/?random=1675316136985&cv=11&fst=1675316136985&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&label=fA0KCKGd2YoBEMStp_YC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.mavs.com%2F&tiba=Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks&value=0&bttype=purchase&auid=1224633519.1675316137&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/784979652/?random=1675316136985&cv=11&fst=1675316136985&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&label=fA0KCKGd2YoBEMStp_YC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.mavs.com%2F&tiba=Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks&value=0&bttype=purchase&auid=1224633519.1675316137&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/784979652/?random=1675316136985&cv=11&fst=1675316136985&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&label=fA0KCKGd2YoBEMStp_YC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.mavs.com%2F&tiba=Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks&value=0&bttype=purchase&auid=1224633519.1675316137&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 05:35:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/784979652/?random=1675316136985&cv=11&fst=1675316136985&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&label=fA0KCKGd2YoBEMStp_YC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.mavs.com%2F&tiba=Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks&value=0&bttype=purchase&auid=1224633519.1675316137&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 314 B IP
Hash a74e9df0da2b1a67dfda6786a37dd2a8
8fefdd28cf1a5806b0f3bb23f86b81e03dbde32a
6a8ae9cbe9e568d449136667058e401101fe5130f4dc92524d44f4498210aa9e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5708
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:14 GMT
Last-Modified: Thu, 02 Feb 2023 04:00:06 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 314
pixel.sitescout.com/iap/5c9cc80bd8a87819
302 Found 0 B URL HTTP/2 pixel.sitescout.com/iap/5c9cc80bd8a87819
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /iap/5c9cc80bd8a87819 HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
set-cookie: ssi=64665baf-3d6e-47dd-bd21-ca2196bd2e9d#1675316114922; Domain=.sitescout.com; Expires=Fri, 02-Feb-2024 05:35:14 GMT; Path=/; Secure; SameSite=None
location: https://pixel.sitescout.com/iap/5c9cc80bd8a87819?cookieQ=1
content-length: 0
date: Thu, 02 Feb 2023 05:35:14 GMT
server: AC1.1
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash cf816db355ae6a30fdb809409d670861
c6014076c7d3e167a35ef3f0c34d1f94e01bfa29
b35ed60f5d922c5f1079ee3697d309fb2742a87e58bd2b83dac3cbc0856b3423
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 05:35:14 GMT
Last-Modified: Thu, 02 Feb 2023 04:41:04 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VkPMqfxG4pk2nEuRhnWjJtX55mNoFjarxjfC5mVA_8zZ_xPTF6vQ0A==
Age: 3251
www.google-analytics.com/collect?v=1&_v=j99&a=681182771&t=pageview&_s=1&dl=https%3A%2F%2Fwww.mavs.com%2F&ul=en-us&de=UTF-8&dt=Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YGBAiEABBAAAAAAAI~&jid=616424159&gjid=1565080040&cid=1113087622.1675316140&tid=UA-42152113-1&_gid=1576592006.1675316140>m=2wg1u0PLMHMB&z=1893581036
200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j99&a=681182771&t=pageview&_s=1&dl=https%3A%2F%2Fwww.mavs.com%2F&ul=en-us&de=UTF-8&dt=Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YGBAiEABBAAAAAAAI~&jid=616424159&gjid=1565080040&cid=1113087622.1675316140&tid=UA-42152113-1&_gid=1576592006.1675316140>m=2wg1u0PLMHMB&z=1893581036
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j99&a=681182771&t=pageview&_s=1&dl=https%3A%2F%2Fwww.mavs.com%2F&ul=en-us&de=UTF-8&dt=Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YGBAiEABBAAAAAAAI~&jid=616424159&gjid=1565080040&cid=1113087622.1675316140&tid=UA-42152113-1&_gid=1576592006.1675316140>m=2wg1u0PLMHMB&z=1893581036 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Wed, 01 Feb 2023 10:55:04 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 67210
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bob.dmpxs.com/bob_002.gif?bob_bk=1&eid=41e972cf11&sub1=sched
200 OK 42 B URL HTTP/2 bob.dmpxs.com/bob_002.gif?bob_bk=1&eid=41e972cf11&sub1=sched
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /bob_002.gif?bob_bk=1&eid=41e972cf11&sub1=sched HTTP/1.1
Host: bob.dmpxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 42
last-modified: Mon, 03 Feb 2020 23:36:22 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 02 Feb 2023 05:15:52 GMT
etag: "d89746888da2d9510b64a9f031eaecd5"
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: m5ODPwi9v-MsCXuQ4EYhpfrKU766oIlZo2QD5y4Xea2mpykKe-e2BQ==
age: 7118
X-Firefox-Spdy: h2
ad.doubleclick.net/activity;src=6037123;type=offstert;cat=tmscl0;ord=9428759842064;gtm=2od1u0;auiddc=1224633519.1675316137;u5=805932;u23=K8vZ9171o17;~oref=https%3A%2F%2Fwww.mavs.com%2F?
302 Found 0 B URL HTTP/2 ad.doubleclick.net/activity;src=6037123;type=offstert;cat=tmscl0;ord=9428759842064;gtm=2od1u0;auiddc=1224633519.1675316137;u5=805932;u23=K8vZ9171o17;~oref=https%3A%2F%2Fwww.mavs.com%2F?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /activity;src=6037123;type=offstert;cat=tmscl0;ord=9428759842064;gtm=2od1u0;auiddc=1224633519.1675316137;u5=805932;u23=K8vZ9171o17;~oref=https%3A%2F%2Fwww.mavs.com%2F? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 05:35:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=6037123;type=offstert;cat=tmscl0;ord=9428759842064;gtm=2od1u0;auiddc=1224633519.1675316137;u5=805932;u23=K8vZ9171o17;~oref=https%3A%2F%2Fwww.mavs.com%2F
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 05:50:14 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.mavs.com
200 OK 37 B URL HTTP/2 securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.mavs.com
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash e3fa91f08ccb92c429e6ae3771abaa35
c0eacc3aee8dce21a4810f8a602d483ed1d5f3d6
539455d89211031086bfe72728bbdc3845507098769fbe1b2843d8cfd21fb917
GET /pagead/ppub_config?ippd=www.mavs.com HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
date: Thu, 02 Feb 2023 05:35:14 GMT
expires: Thu, 02 Feb 2023 05:35:14 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 37
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 05:50:14 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/gpt/pubads_impl_2023012601.js
200 OK 134 kB URL HTTP/2 securepubads.g.doubleclick.net/gpt/pubads_impl_2023012601.js
IP
File type ASCII text, with very long lines (65395)
Size 134 kB (133524 bytes)
Hash 9c93b9ff40ce76eec31a00d6f37be983
e61107e891bc0cc85d1ee5604a9124b57e487dcd
096ba462c6c3d33809551b9c74320441ff97dae9da3dc33d4f99f4d60d5dd934
GET /gpt/pubads_impl_2023012601.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 133524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 16:57:28 GMT
expires: Fri, 26 Jan 2024 16:57:28 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 26 Jan 2023 09:36:55 GMT
content-type: text/javascript
age: 563866
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-42152113-1&cid=1113087622.1675316140&jid=616424159&gjid=1565080040&_gid=1576592006.1675316140&_u=YGBAiEABBAAAAEAAI~&z=125651175
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-42152113-1&cid=1113087622.1675316140&jid=616424159&gjid=1565080040&_gid=1576592006.1675316140&_u=YGBAiEABBAAAAEAAI~&z=125651175
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-42152113-1&cid=1113087622.1675316140&jid=616424159&gjid=1565080040&_gid=1576592006.1675316140&_u=YGBAiEABBAAAAEAAI~&z=125651175 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.mavs.com
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.mavs.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 05:35:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f44095f8ebc7d211f4ee24d88a703128
97263cb2c5d0237c08bee075fb75c8bddefddf2c
1183ec38cb48e7986d42d545c968616fe9f996f73849f1da6c111eb4ccfbb529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 688d5623b44631aa4488a00a2f0839bf
a61b989824aad6e1f8590df52fc58b99176277d8
a8578db726538e2f38f3217359398291f2776912e55b8c23b214449a9d92a3e9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=120569
Date: Thu, 02 Feb 2023 05:35:14 GMT
Etag: "63da709c-1d7"
Expires: Fri, 03 Feb 2023 15:04:43 GMT
Last-Modified: Wed, 01 Feb 2023 14:01:00 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OQCRq3kjT_7ARHJKh7FjwHlp2SXxVRbQyBTW3W6NCZ7uSLzzp7xtxg==
Age: 3823
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f44095f8ebc7d211f4ee24d88a703128
97263cb2c5d0237c08bee075fb75c8bddefddf2c
1183ec38cb48e7986d42d545c968616fe9f996f73849f1da6c111eb4ccfbb529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.twitter.com/i/adsct?bci=1&eci=1&event_id=8dbf02e0-2010-49e3-94c5-0fdef85605ed&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=30977f1c-aee9-4226-8570-322ea4746ac6&tw_document_href=https%3A%2F%2Fwww.mavs.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o54uk&type=javascript&version=2.3.29
200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=1&eci=1&event_id=8dbf02e0-2010-49e3-94c5-0fdef85605ed&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=30977f1c-aee9-4226-8570-322ea4746ac6&tw_document_href=https%3A%2F%2Fwww.mavs.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o54uk&type=javascript&version=2.3.29
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=1&eci=1&event_id=8dbf02e0-2010-49e3-94c5-0fdef85605ed&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=30977f1c-aee9-4226-8570-322ea4746ac6&tw_document_href=https%3A%2F%2Fwww.mavs.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o54uk&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:14 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_0fQXZWn7V1eujtAIrCZTrA=="; Max-Age=63072000; Expires=Sat, 01 Feb 2025 05:35:14 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 03bd16fe0bfa7a96
strict-transport-security: max-age=631138519
x-response-time: 110
x-connection-hash: 3dd352f761b26bdf755c6eddd8b9729d08980cdd1edaec5b74fda40fd1171b2c
X-Firefox-Spdy: h2
cm.everesttech.net/cm/dd?d_uuid=42593674248348435391957162144667746883
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=42593674248348435391957162144667746883
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/dd?d_uuid=42593674248348435391957162144667746883 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:15 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLkwAAAFWyOgMx; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:15 GMT; Path=/
everest_session_v2=Y9tLkwAAAFWyOwMx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=Y9tLkwAAAFWyOgMx
Server: AMO-cookiemap/1.1
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.mavs.com
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.mavs.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.mavs.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 05:35:15 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.mavs.com
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.mavs.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.mavs.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 05:35:15 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pixel.sitescout.com/iap/5c9cc80bd8a87819?cookieQ=1
204 No Content 0 B URL HTTP/2 pixel.sitescout.com/iap/5c9cc80bd8a87819?cookieQ=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /iap/5c9cc80bd8a87819?cookieQ=1 HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: max-age=0,no-cache,no-store
pragma: no-cache
expires: Tue, 11 Oct 1977 12:34:56 GMT
p3p: CP="NON DEVa PSAa PSDa OUR NOR NAV",policyref="/w3c/p3p.xml"
date: Thu, 02 Feb 2023 05:35:14 GMT
server: AC1.1
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/p/src=6037123;type=offstert;cat=tmscl0;ord=9428759842064;gtm=2od1u0;auiddc=1224633519.1675316137;u5=805932;u23=K8vZ9171o17;~oref=https%3A%2F%2Fwww.mavs.com%2F
302 Found 0 B URL HTTP/2 adservice.google.com/ddm/fls/p/src=6037123;type=offstert;cat=tmscl0;ord=9428759842064;gtm=2od1u0;auiddc=1224633519.1675316137;u5=805932;u23=K8vZ9171o17;~oref=https%3A%2F%2Fwww.mavs.com%2F
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/fls/p/src=6037123;type=offstert;cat=tmscl0;ord=9428759842064;gtm=2od1u0;auiddc=1224633519.1675316137;u5=805932;u23=K8vZ9171o17;~oref=https%3A%2F%2Fwww.mavs.com%2F HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 05:35:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.no/ddm/fls/p/src=6037123;type=offstert;cat=tmscl0;ord=9428759842064;gtm=2od1u0;auiddc=1224633519.1675316137;u5=805932;u23=K8vZ9171o17;~oref=https%3A%2F%2Fwww.mavs.com%2F
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
secure.quantserve.com/quant.js
200 OK 10 kB URL HTTP/2 secure.quantserve.com/quant.js
IP
File type ASCII text, with very long lines (26102)
Hash 8499f27663f9759e8bdfcf721cdb1385
cce839c37e190e9c05b0e17216d91b80a889a7b8
3afcdc3d5510b0b50774c81fbdf2598888ad4926810f59f8a63972a1b50b90d7
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:14 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "j4o3/UzQJzEULY/aoGayAw=="
expires: Thu, 09 Feb 2023 05:35:14 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.google.no/pagead/1p-conversion/784979652/?random=1675316136985&cv=11&fst=1675316136985&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&label=fA0KCKGd2YoBEMStp_YC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.mavs.com%2F&tiba=Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks&value=0&bttype=purchase&auid=1224633519.1675316137&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
200 OK 63 B URL HTTP/2 www.google.no/pagead/1p-conversion/784979652/?random=1675316136985&cv=11&fst=1675316136985&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&label=fA0KCKGd2YoBEMStp_YC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.mavs.com%2F&tiba=Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks&value=0&bttype=purchase&auid=1224633519.1675316137&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/784979652/?random=1675316136985&cv=11&fst=1675316136985&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&label=fA0KCKGd2YoBEMStp_YC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.mavs.com%2F&tiba=Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks&value=0&bttype=purchase&auid=1224633519.1675316137&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 05:35:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-42152113-1&cid=1113087622.1675316140&jid=616424159&_u=YGBAiEABBAAAAEAAI~&z=857930740
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-42152113-1&cid=1113087622.1675316140&jid=616424159&_u=YGBAiEABBAAAAEAAI~&z=857930740
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-42152113-1&cid=1113087622.1675316140&jid=616424159&_u=YGBAiEABBAAAAEAAI~&z=857930740 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 05:35:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y9tLkwAAAFWyOgMx
200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y9tLkwAAAFWyOgMx
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y9tLkwAAAFWyOgMx HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v045-0a2056b15.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: Dz/vBcsnQTU=
Content-Length: 59
Connection: keep-alive
pixel.quantserve.com/pixel;r=1330059400;labels=_fp.event.Default;rf=0;a=p-1A_QEHJsSYnvN;url=https%3A%2F%2Fwww.mavs.com%2F;uht=2;fpan=1;fpa=P0-421264542-1675316139816;pbc=;ns=0;ce=1;qjs=1;qv=c1229512-20230130173030;cm=;gdpr=0;ref=;d=mavs.com;dst=0;et=1675316139939;tzo=0;ogl=locale.en_US%2Ctype.website%2Ctitle.Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks%2Curl.https%3A%2F%2Fwww%252Emavs%252Ecom%2F%2Csite_name.The%20Official%20Home%20of%20the%20Dallas%20Mavericks%2Cimage.https%3A%2F%2Fwww%252Emavs%252Ecom%2Fwp-content%2Fuploads%2F2020%2F04%2FMavs-Facebook%252Ejpg%2Cimage%3Asecure_url.https%3A%2F%2Fwww%252Emavs%252Ecom%2Fwp-content%2Fuploads%2F2020%2F04%2FMavs-Facebook%252Ejpg%2Cimage%3Awidth.1200%2Cimage%3Aheight.630;ses=44e74669-58c2-45cd-8cbc-5591ecaacb6a
200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=1330059400;labels=_fp.event.Default;rf=0;a=p-1A_QEHJsSYnvN;url=https%3A%2F%2Fwww.mavs.com%2F;uht=2;fpan=1;fpa=P0-421264542-1675316139816;pbc=;ns=0;ce=1;qjs=1;qv=c1229512-20230130173030;cm=;gdpr=0;ref=;d=mavs.com;dst=0;et=1675316139939;tzo=0;ogl=locale.en_US%2Ctype.website%2Ctitle.Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks%2Curl.https%3A%2F%2Fwww%252Emavs%252Ecom%2F%2Csite_name.The%20Official%20Home%20of%20the%20Dallas%20Mavericks%2Cimage.https%3A%2F%2Fwww%252Emavs%252Ecom%2Fwp-content%2Fuploads%2F2020%2F04%2FMavs-Facebook%252Ejpg%2Cimage%3Asecure_url.https%3A%2F%2Fwww%252Emavs%252Ecom%2Fwp-content%2Fuploads%2F2020%2F04%2FMavs-Facebook%252Ejpg%2Cimage%3Awidth.1200%2Cimage%3Aheight.630;ses=44e74669-58c2-45cd-8cbc-5591ecaacb6a
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=1330059400;labels=_fp.event.Default;rf=0;a=p-1A_QEHJsSYnvN;url=https%3A%2F%2Fwww.mavs.com%2F;uht=2;fpan=1;fpa=P0-421264542-1675316139816;pbc=;ns=0;ce=1;qjs=1;qv=c1229512-20230130173030;cm=;gdpr=0;ref=;d=mavs.com;dst=0;et=1675316139939;tzo=0;ogl=locale.en_US%2Ctype.website%2Ctitle.Home%20-%20The%20Official%20Home%20of%20the%20Dallas%20Mavericks%2Curl.https%3A%2F%2Fwww%252Emavs%252Ecom%2F%2Csite_name.The%20Official%20Home%20of%20the%20Dallas%20Mavericks%2Cimage.https%3A%2F%2Fwww%252Emavs%252Ecom%2Fwp-content%2Fuploads%2F2020%2F04%2FMavs-Facebook%252Ejpg%2Cimage%3Asecure_url.https%3A%2F%2Fwww%252Emavs%252Ecom%2Fwp-content%2Fuploads%2F2020%2F04%2FMavs-Facebook%252Ejpg%2Cimage%3Awidth.1200%2Cimage%3Aheight.630;ses=44e74669-58c2-45cd-8cbc-5591ecaacb6a HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=63db4b93-41280-d7d1d-d95ac; expires=Mon, 04-Mar-2024 05:35:15 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
789645ba6b86e50ae6316c2233030985.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
200 OK 2.7 kB URL HTTP/2 789645ba6b86e50ae6316c2233030985.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: 789645ba6b86e50ae6316c2233030985.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Thu, 02 Feb 2023 05:35:15 GMT
expires: Fri, 02 Feb 2024 05:35:15 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-1A_QEHJsSYnvN.js
200 OK 50 kB URL HTTP/2 rules.quantcount.com/rules-p-1A_QEHJsSYnvN.js
IP
File type ASCII text, with very long lines (3504)
Hash 71d913ebb5610d947feeadc76e1eee32
e02203c95768daec4ccc99069a85101c5f7ad761
1e968f1212b8e700b8ab124183279af928a74a914c3c4e8413778988b818abfc
GET /rules-p-1A_QEHJsSYnvN.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 13 Oct 2022 15:17:42 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Thu, 02 Feb 2023 05:15:53 GMT
cache-control: max-age=3600
etag: W/"5d54447f7221d38546d84a9cd2c50329"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qPn9nfEiLPdJGBuei3N2k_ILD9oyXnGViK63GTxAmBbC1AnR64tTuQ==
age: 2340
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b204f3abe06417a75a9703b1ed69bb37
f636ae39c412c40c3737e9c3c99a5e2e30a7e861
209edba54e970905fc4efd62b8736ef3f5d5021ccb82ea63e7ebfe0baf3e1896
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b204f3abe06417a75a9703b1ed69bb37
f636ae39c412c40c3737e9c3c99a5e2e30a7e861
209edba54e970905fc4efd62b8736ef3f5d5021ccb82ea63e7ebfe0baf3e1896
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20230131/r20110914/client/window_focus_fy2021.js
200 OK 1.2 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230131/r20110914/client/window_focus_fy2021.js
IP
File type ASCII text, with very long lines (1054)
Hash 169edf919beed1ee17c8a752ef12132e
b7fbae15ed7789984ee59618845b914aae37bf3e
2bcf9aebfd80a2558d54f39de59542c3df52610616fb2e4380d9f3d976cc13fc
GET /pagead/js/r20230131/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1236
x-xss-protection: 0
date: Wed, 01 Feb 2023 22:16:01 GMT
expires: Wed, 15 Feb 2023 22:16:01 GMT
cache-control: public, max-age=1209600
age: 26354
etag: 15004572836499977866
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/simgad/14537463336766554208
200 OK 69 kB URL HTTP/2 tpc.googlesyndication.com/simgad/14537463336766554208
IP
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 0579b10fbf6a2b7ab7cc50ce860a056b
4d9368b56b9e231689f6e5220e54345fbc80255d
cba02929765640d2c30bace7771231397d5803723618b734e814a9b2c4eb7cc6
GET /simgad/14537463336766554208 HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="content-ads-owners"
report-to: {"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
timing-allow-origin: *
content-length: 69355
x-content-type-options: nosniff
x-dns-prefetch-control: off
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:34:23 GMT
expires: Fri, 26 Jan 2024 10:34:23 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 28 Jan 2022 20:55:17 GMT
content-type: image/png
age: 586852
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.simpli.fi/p?cid=299942&cb=sifi_att_42656._hp
200 OK 792 B URL HTTP/2 i.simpli.fi/p?cid=299942&cb=sifi_att_42656._hp
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 057b32214ef4c9e437d03d6e76aa66a0
e0f255fc135bde0fa534c1cbb9cb265809f8e8ff
5fa681b939e0e06cca46f1569ff4547edb6fb23bc539aa3d61885c81d5b3bbd3
GET /p?cid=299942&cb=sifi_att_42656._hp HTTP/1.1
Host: i.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: application/javascript; charset=UTF-8
set-cookie: suid=4C86AAE45A404D24B53D64CB50C573B9; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=4C86AAE45A404D24B53D64CB50C573B9; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
uid_syncd=true; path=/; expires=Thu, 09 Feb 2023 05:35:15 GMT; domain=.simpli.fi; secure
uid_syncd_secure=true; path=/; expires=Thu, 09 Feb 2023 05:35:15 GMT; domain=.simpli.fi; samesite=none; secure
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT, Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5e01d6c641ea60dd765ab60412bdca59
58739badba2f4d3dd08520cef55eee687cd7dd16
9c6067fe0021e67a46df754c73bb5b41f693e70ff00fa9f0e4dca55ad3e50d9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
um.simpli.fi/telaria_p
302 Found 142 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /telaria_p HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://simplifi.partners.tremorhub.com/sync?UISF=89B076F4908A43DBBD49603586F8604C
set-cookie: suid=89B076F4908A43DBBD49603586F8604C; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=89B076F4908A43DBBD49603586F8604C; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/freewheel
200 OK 43 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /freewheel HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=7139425E2CD243F7A450240791CFAF68; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=7139425E2CD243F7A450240791CFAF68; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/dtnx
302 Found 142 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /dtnx HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://fei.pro-market.net/engine?du=24;csync=381D66E7557D4005A59186735F89344C;mimetype=img;
set-cookie: suid=381D66E7557D4005A59186735F89344C; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=381D66E7557D4005A59186735F89344C; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/exelatem
302 Found 142 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /exelatem HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://loadm.exelator.com/load/?p=204&g=2191&simid=5C5BE2B529474B039B0C458EE0B8222E&j=0
set-cookie: suid=5C5BE2B529474B039B0C458EE0B8222E; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=5C5BE2B529474B039B0C458EE0B8222E; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/yahoo
200 OK 43 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /yahoo HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=5E384FCD2E124CB49E96CEF9C9EFAAB6; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=5E384FCD2E124CB49E96CEF9C9EFAAB6; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/beachfront
302 Found 142 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /beachfront HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://sync.bfmio.com/sync?pid=141&uid=D0090627115647EF8D8833729CE0C032
set-cookie: suid=D0090627115647EF8D8833729CE0C032; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=D0090627115647EF8D8833729CE0C032; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/bluekai
302 Found 142 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /bluekai HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://stags.bluekai.com/site/29931?id=4E5FC29939BF4DE98C97AA916FE1500F
set-cookie: suid=4E5FC29939BF4DE98C97AA916FE1500F; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=4E5FC29939BF4DE98C97AA916FE1500F; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/crwdcntrl
302 Found 142 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /crwdcntrl HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=0331F46B88CC4033A85B8B2C565C77AD
set-cookie: suid=0331F46B88CC4033A85B8B2C565C77AD; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=0331F46B88CC4033A85B8B2C565C77AD; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/lj_match
302 Found 142 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /lj_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://ce.lijit.com/merge?pid=2&3pid=C31C3CFEE5004982AA61F5620A2CCED1
set-cookie: suid=C31C3CFEE5004982AA61F5620A2CCED1; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=C31C3CFEE5004982AA61F5620A2CCED1; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/liveramp_match
302 Found 142 B URL HTTP/2 um.simpli.fi/liveramp_match
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /liveramp_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://idsync.rlcdn.com/419566.gif?partner_uid=CF83221C88D64CF7BBE163801C712AAE
set-cookie: suid=CF83221C88D64CF7BBE163801C712AAE; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=CF83221C88D64CF7BBE163801C712AAE; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/spotx_match
302 Found 142 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /spotx_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://sync.search.spotxchange.com/partner?adv_id=7797&uid=71FB1C3F1DB346CABF6CE20D2BEADB00
set-cookie: suid=71FB1C3F1DB346CABF6CE20D2BEADB00; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=71FB1C3F1DB346CABF6CE20D2BEADB00; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/an
302 Found 142 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /an HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://ib.adnxs.com/setuid?entity=66&code=E1372DEAD5D84367944DDED69C87F1B4
set-cookie: suid=E1372DEAD5D84367944DDED69C87F1B4; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=E1372DEAD5D84367944DDED69C87F1B4; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/rb_match
302 Found 142 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rb_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=86AA7DE0AFE24497B8C9D1E5446DF1A1&expires=365
set-cookie: suid=86AA7DE0AFE24497B8C9D1E5446DF1A1; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=86AA7DE0AFE24497B8C9D1E5446DF1A1; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/ox_match
302 Found 142 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /ox_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://us-u.openx.net/w/1.0/sd?id=537072966&val=72C67A7645B44343BCB2900F7F941080
set-cookie: suid=72C67A7645B44343BCB2900F7F941080; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=72C67A7645B44343BCB2900F7F941080; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/triplelift
302 Found 142 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /triplelift HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://eb2.3lift.com/xuid?mid=7969&xuid=1E271B2D80D74D7D9C4EE25252B4C716&dongle=yf3
set-cookie: suid=1E271B2D80D74D7D9C4EE25252B4C716; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=1E271B2D80D74D7D9C4EE25252B4C716; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/tapad
302 Found 142 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /tapad HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=D5C186A3E8E74E478A67618C9E513E21
set-cookie: suid=D5C186A3E8E74E478A67618C9E513E21; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=D5C186A3E8E74E478A67618C9E513E21; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/ad_advisor
302 Found 142 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /ad_advisor HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=61A3859FE4B544318FA95F09107FE553
set-cookie: suid=61A3859FE4B544318FA95F09107FE553; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=61A3859FE4B544318FA95F09107FE553; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/intentiq
302 Found 142 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /intentiq HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
content-length: 142
location: https://sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=725DAE229E9F4068B44782F23ED20774
set-cookie: suid=725DAE229E9F4068B44782F23ED20774; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=725DAE229E9F4068B44782F23ED20774; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/pubmatic
200 OK 43 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pubmatic HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=24687DE6870641A38A20B6066B588EAE; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; SameSite=none; Secure;
suid_legacy=24687DE6870641A38A20B6066B588EAE; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:15 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:15 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/g_match?id=&google_error=3
204 No Content 0 B URL HTTP/2 um.simpli.fi/g_match?id=&google_error=3
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /g_match?id=&google_error=3 HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 05:35:16 GMT
set-cookie: suid=B921804377FD4612A02A62603ADEE35D; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:16 GMT; SameSite=none; Secure;
suid_legacy=B921804377FD4612A02A62603ADEE35D; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:16 GMT; Secure;
expires: Wed, 01 Feb 2023 05:35:16 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
ocsp.usertrust.com/
200 OK 472 B IP
Hash cc0f9dc9f5bb9f248bf66e68243a3cad
d74233c50aad8aa66a489c954773de4945d63704
f2d52f955ace992856ca665b00ad3453d609aa9739ea88db5cf31b6fe9f44e45
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 10:10:18 GMT
Expires: Wed, 08 Feb 2023 10:10:17 GMT
Etag: "d74233c50aad8aa66a489c954773de4945d63704"
Cache-Control: max-age=603325,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 445
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79308ffdbf76b524-OSL
sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=725DAE229E9F4068B44782F23ED20774
403 Forbidden 986 B URL HTTP/2 sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=725DAE229E9F4068B44782F23ED20774
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b0bbf56ac2257f5aa8c080a8a774abc1
727b538c1e0f929153c9d7a5d8bfaebeaaf7923c
db03ee9ecebd7ef5076374b20e4acc0b0c9421b50ce5184d977aa055a0e18230
GET /profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=725DAE229E9F4068B44782F23ED20774 HTTP/1.1
Host: sync.intentiq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: CloudFront
date: Thu, 02 Feb 2023 05:35:16 GMT
content-type: text/html
content-length: 986
x-cache: Error from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: K_I0pB1DvGVMNNxh2XPJWWke8J0B5eTuusHkgwksEoXiMQFYklWQTQ==
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 63c87219c9485e63bafff8e2faf93082
fc659138e1022cee68d8b709e9b71f0c6e1ca0a4
29e989c86753d887e11b2c6e8179e61aa3370e3218a2c1a3149df84f75967883
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1664
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:16 GMT
Last-Modified: Thu, 02 Feb 2023 05:07:32 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
fei.pro-market.net/engine?du=24;csync=381D66E7557D4005A59186735F89344C;mimetype=img;
302 Found 0 B URL HTTP/2 fei.pro-market.net/engine?du=24;csync=381D66E7557D4005A59186735F89344C;mimetype=img;
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /engine?du=24;csync=381D66E7557D4005A59186735F89344C;mimetype=img; HTTP/1.1
Host: fei.pro-market.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: Apache-Coyote/1.1
p3p: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
anserver: gapp-eu-4.c.datonics-gcp-01.internal
set-cookie: anProfile="1+1+1f=1+1g=2+1j=57:1+rs=s+rt=5B5A2A9A+s2=(rpfu6s)"; Domain=.pro-market.net; Max-Age=15552000; Path=/; Secure; SameSite=None;
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: Mon, 1 Jan 1990 0:0:0 GMT
access-control-allow-origin: *
location: https://fei.pro-market.net/engine?du=24;csync=381D66E7557D4005A59186735F89344C;mimetype=img;sr
content-type: image/gif
content-length: 0
date: Thu, 02 Feb 2023 05:35:16 GMT
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 04acd4b4c17cdca0131b9c78d0490d03
94c1318cd364c51cd0b59837bf3682e0481f663d
6dd61c53369dc613196fde48585c05cc3c392dd7e65265ead0be393abdf07f81
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Feb 2023 23:03:32 GMT
Expires: Thu, 02 Feb 2023 23:03:32 GMT
ETag: "94c1318cd364c51cd0b59837bf3682e0481f663d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
stags.bluekai.com/site/29931?id=4E5FC29939BF4DE98C97AA916FE1500F
200 OK 62 B URL HTTP/2 stags.bluekai.com/site/29931?id=4E5FC29939BF4DE98C97AA916FE1500F
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3f386f5061436a0338a64e0910db495d
599fe4a552c991a2b3ce5a1660732bf7b21fb901
0af3aae90b7de9fdceee2ab421378ea2f54c74be81ef43fc6c1790a032755d80
GET /site/29931?id=4E5FC29939BF4DE98C97AA916FE1500F HTTP/1.1
Host: stags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 62
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Thu, 02 Feb 2023 05:35:16 GMT
set-cookie: bku=blx99JHntt1BUtz3; Path=/; Domain=.bluekai.com; Expires=Wed, 02 Aug 2023 05:35:16 GMT; Secure; SameSite=None
bkpa=KJy9nyexd02pSUHknp/8mE1hwtkAwEHaBDje1MA81pkYHMHWHEATxpAlxDW81EjsHEWN1eOs9y9LAQFm; Path=/; Domain=.bluekai.com; Expires=Wed, 02 Aug 2023 05:35:16 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=D5C186A3E8E74E478A67618C9E513E21
302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=D5C186A3E8E74E478A67618C9E513E21
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive?partner_id=2305&partner_device_id=D5C186A3E8E74E478A67618C9E513E21 HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 05:35:16 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1675316116224;Expires=Mon, 03 Apr 2023 05:35:16 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=73e88df8-dc79-4dcb-8d67-c97195d4812d;Expires=Mon, 03 Apr 2023 05:35:16 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=D5C186A3E8E74E478A67618C9E513E21
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fei.pro-market.net/engine?du=24;csync=381D66E7557D4005A59186735F89344C;mimetype=img;sr
200 OK 43 B URL HTTP/2 fei.pro-market.net/engine?du=24;csync=381D66E7557D4005A59186735F89344C;mimetype=img;sr
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 968c3ad2c1183fee0bf0dd479f7904b7
1d770800ecb05eb9133f9b51620c9e4349656859
3331a0486cb3e8a75c8c2fdf02bf80fd8fe2b811dfe5c7b4aa892d38bfcf604a
GET /engine?du=24;csync=381D66E7557D4005A59186735F89344C;mimetype=img;sr HTTP/1.1
Host: fei.pro-market.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache-Coyote/1.1
p3p: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
anserver: gapp-eu-5.c.datonics-gcp-01.internal
set-cookie: anProfile="0+1+1f=1+1g=2+1j=57:1+rs=s+rt=5B5A2A9A+s2=(rpfu6s)"; Domain=.pro-market.net; Max-Age=15552000; Path=/; Secure; SameSite=None;
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: Mon, 1 Jan 1990 0:0:0 GMT
access-control-allow-origin: *
content-type: image/gif
content-length: 43
date: Thu, 02 Feb 2023 05:35:15 GMT
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ib.adnxs.com/setuid?entity=66&code=E1372DEAD5D84367944DDED69C87F1B4
307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/setuid?entity=66&code=E1372DEAD5D84367944DDED69C87F1B4
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?entity=66&code=E1372DEAD5D84367944DDED69C87F1B4 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3DE1372DEAD5D84367944DDED69C87F1B4
AN-X-Request-Uuid: 3e8e441d-aa37-49fc-ba9f-73be8b5a2c04
Set-Cookie: uuid2=2632298541186827745; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 05:35:16 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
status.geotrust.com/
200 OK 471 B IP
Hash 0c82cba3066dfd5140095331fb953eff
5d7e89f215ed8c3b456bc35175919665ae87dedf
f6ba0d0485ca343f4b24684ea9df6de4e63da70dd5a7bb48c5dc7981377445bc
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2910
Cache-Control: max-age=122879
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:16 GMT
Etag: "63da7d35-1d7"
Expires: Fri, 03 Feb 2023 15:43:15 GMT
Last-Modified: Wed, 01 Feb 2023 14:54:45 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 3a24f73634f4c175fcf8afe66522d4c5
b6be0ef8b424d88db88206728b3edfb6e2af45f4
0b3ac603508f11a804d8b65f369965f3f2685378a8e498c7148b541391966736
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 05:35:16 GMT
Last-Modified: Thu, 02 Feb 2023 04:54:06 GMT
Server: ECS (bsa/EB18)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SWeAitGhJkoQCXXrL4FkyCjemWAhq23bACVbsIGisie71QI6EoDM6A==
Age: 2470
pixel.everesttech.net/1/gr?url=https%3A%2F%2Fus-u.openx.net%2Fw%2F1.0%2Fsd%3Fid%3D537072980%26val%3D__EFGSURFER__.__EFGCK__
302 Found 447 B URL HTTP/1.1 pixel.everesttech.net/1/gr?url=https%3A%2F%2Fus-u.openx.net%2Fw%2F1.0%2Fsd%3Fid%3D537072980%26val%3D__EFGSURFER__.__EFGCK__
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (313)
Hash bcbcdb2d044b24d98644cbfa3b35aaf9
d52b1dc21b59d0adc456c1db920735efab86144e
440c220b3aa0804611f223650884a05693387ca68b3631f1900b6bf400861b3f
GET /1/gr?url=https%3A%2F%2Fus-u.openx.net%2Fw%2F1.0%2Fsd%3Fid%3D537072980%26val%3D__EFGSURFER__.__EFGCK__ HTTP/1.1
Host: pixel.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nba.demdex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 447
Connection: keep-alive
Server: Apache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WTl0TGxBQUFBSHZkS0Q0ZQ&url=/1/gr%3furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__
ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3DE1372DEAD5D84367944DDED69C87F1B4
200 OK 43 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3DE1372DEAD5D84367944DDED69C87F1B4
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fsetuid%3Fentity%3D66%26code%3DE1372DEAD5D84367944DDED69C87F1B4 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 8ba076ba-56fe-475b-9f0f-117c8012fc93
Set-Cookie: anj=dTM7k!M4.FE:2jUF']wIg2GTtm9#DU!]tbPl1N!7On*M$=BX3-kaJUjjc?DheTXVKgmY]ge8XcKeU_hedZIHdf`FS_t]JKI/X%W#.wL4W1Qw1[UTAwQ; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 05:35:16 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=0331F46B88CC4033A85B8B2C565C77AD
404 Not Found 49 B URL HTTP/2 bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=0331F46B88CC4033A85B8B2C565C77AD
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
GET /map/c=7625/tp=SIMP/tpid=0331F46B88CC4033A85B8B2C565C77AD HTTP/1.1
Host: bcp.crwdcntrl.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Thu, 02 Feb 2023 05:35:16 GMT
content-type: image/gif
content-length: 49
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.20.26
access-control-allow-origin: *
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2
pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=D5C186A3E8E74E478A67618C9E513E21
200 OK 95 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=D5C186A3E8E74E478A67618C9E513E21
IP
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /idsync/ex/receive/check?partner_id=2305&partner_device_id=D5C186A3E8E74E478A67618C9E513E21 HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:16 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1675316116272;Expires=Mon, 03 Apr 2023 05:35:16 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=6887452e-6035-4821-a3b4-3ab0cf291494;Expires=Mon, 03 Apr 2023 05:35:16 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_3WAY_SYNCS=;Expires=Mon, 03 Apr 2023 05:35:16 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
content-type: image/png
content-length: 95
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 727 B IP
Hash 25d45c2fcda1e80380e31da3a268fa45
ef655fa6ca1fffb41ab1ffbb7af4dae90fa919f8
7b6dac7b0a5563f5a5d7dbc1bdd7407500fe87232bab21a5ba087faa50be873e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3581
Cache-Control: max-age=93312
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:16 GMT
Etag: "63da0717-2d7"
Expires: Fri, 03 Feb 2023 07:30:28 GMT
Last-Modified: Wed, 01 Feb 2023 06:30:47 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
200 OK 471 B IP
Hash ad70a6f450827dd5acc92719f20df8c5
d094c2828d19e11ffac158ffb1321787a64dc65d
74caf4fc02d200a1b3037cad1015f58aa53534797b3dd3d5ff44647a7514cad3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4503
Cache-Control: max-age=161204
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:16 GMT
Etag: "63db0cb1-1d7"
Expires: Sat, 04 Feb 2023 02:22:00 GMT
Last-Modified: Thu, 02 Feb 2023 01:06:57 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash f272271261bfe90f09569b812de6f253
ab40bca0c92c8a5884e2f6cd23df14d63229c0df
42f7dddb0c624fd74d51388bfafcca0c5a2b1ff330709b7a111703ec77b0d5a8
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Feb 2023 21:39:34 GMT
Expires: Thu, 02 Feb 2023 21:39:34 GMT
ETag: "ab40bca0c92c8a5884e2f6cd23df14d63229c0df"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 43030f3d6872c114931f12d793a3bb17
81918b93fe2b78d40334c184571e20ae2f9d68d8
c988d04156ff1363a4e3272dc0cfc9b2c8624d5743ce8c3ea722ba02a0041f85
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 05:35:16 GMT
Last-Modified: Thu, 02 Feb 2023 04:51:51 GMT
Server: ECS (bsa/EB21)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8kkhit7rJUq8J_A--k3WiWyuOFkKtUWacHFO4nWDZjGP63VKyENZ_Q==
Age: 2606
eb2.3lift.com/xuid?mid=7969&xuid=1E271B2D80D74D7D9C4EE25252B4C716&dongle=yf3
200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=7969&xuid=1E271B2D80D74D7D9C4EE25252B4C716&dongle=yf3
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=7969&xuid=1E271B2D80D74D7D9C4EE25252B4C716&dongle=yf3 HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:16 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
us-u.openx.net/w/1.0/sd?id=537072966&val=72C67A7645B44343BCB2900F7F941080
200 OK 43 B URL HTTP/2 us-u.openx.net/w/1.0/sd?id=537072966&val=72C67A7645B44343BCB2900F7F941080
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /w/1.0/sd?id=537072966&val=72C67A7645B44343BCB2900F7F941080 HTTP/1.1
Host: us-u.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Thu, 02 Feb 2023 05:35:16 GMT
content-type: image/gif
content-length: 43
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash d0299af45f53f9bb956e2fabb07d796d
a3df5b815732fee2304681126027173eb7b60ebd
555e558262736adb6e4e2b6cbf4331d247ebf394736b1126253e2d1b985833d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5594
Cache-Control: max-age=86669
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:16 GMT
Etag: "63d9e547-1d7"
Expires: Fri, 03 Feb 2023 05:39:45 GMT
Last-Modified: Wed, 01 Feb 2023 04:06:31 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
200 OK 471 B IP
Hash fc30d0c6124c0cc22e443c3b412f9d4e
2f5f2465c42c6648486e9fb15f03b62b45031263
3bd5d60a15a93587c0a816960df26fea611cabb256dc21314806dbac9be24eee
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6268
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:16 GMT
Last-Modified: Thu, 02 Feb 2023 03:50:48 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
insight.adsrvr.org/track/up?adv=yqlgrn2&ref=https%3A%2F%2Fwww.mavs.com%2F&upid=l13k6df&upv=1.1.0
200 OK 471 B URL HTTP/2 insight.adsrvr.org/track/up?adv=yqlgrn2&ref=https%3A%2F%2Fwww.mavs.com%2F&upid=l13k6df&upv=1.1.0
IP
Hash 8a41a6e5225635ecc02de9eabd9a472b
585d12a70f821899fdfad9c09cc87fc46cac9ea0
997fff4ada3bc79630777b4f847861230bb5ae6c58627220d8ef2c693bb92cbf
GET /track/up?adv=yqlgrn2&ref=https%3A%2F%2Fwww.mavs.com%2F&upid=l13k6df&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
pixel.everesttech.net/1/gr?url=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fexpires%3D30%26nid%3D2181%26put%3D__EFGSURFER__.__EFGCK__%26v%3D11782
302 Found 479 B URL HTTP/1.1 pixel.everesttech.net/1/gr?url=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fexpires%3D30%26nid%3D2181%26put%3D__EFGSURFER__.__EFGCK__%26v%3D11782
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (345)
Hash 55ff373a82b1252bf5401bd3d59c2999
b3ef576036a6c689d8929cd9259cec060bb5a390
d6ed21957cbc6d65534c925bf323eb18025d2007116f8e37bf53ac8e736063b9
GET /1/gr?url=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fexpires%3D30%26nid%3D2181%26put%3D__EFGSURFER__.__EFGCK__%26v%3D11782 HTTP/1.1
Host: pixel.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nba.demdex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 479
Connection: keep-alive
Server: Apache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WTl0TGxBQUFCUm5EYUFMNQ&url=/1/gr%3furl=https%253A%252F%252Fpixel.rubiconproject.com%252Ftap.php%253Fexpires%253D30%2526nid%253D2181%2526put%253D__EFGSURFER__.__EFGCK__%2526v%253D11782
pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=86AA7DE0AFE24497B8C9D1E5446DF1A1&expires=365
204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=86AA7DE0AFE24497B8C9D1E5446DF1A1&expires=365
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6286&nid=2132&put=86AA7DE0AFE24497B8C9D1E5446DF1A1&expires=365 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 7c5d24517ee193cc868994bc18883d1d
Content-Type: image/gif
pixel.everesttech.net/1/gr?url=https%3A%2F%2Fpixel.everesttech.net%2F1x1%3F
302 Found 389 B URL HTTP/1.1 pixel.everesttech.net/1/gr?url=https%3A%2F%2Fpixel.everesttech.net%2F1x1%3F
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b0b91db3ea572af4c77a332f165e2233
063239fc96b2c66a14306483da2ef5f091913964
c3ef2094c88764b60401281d7bc463f88872c01c1d7022cc7473e7402cf7d650
GET /1/gr?url=https%3A%2F%2Fpixel.everesttech.net%2F1x1%3F HTTP/1.1
Host: pixel.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nba.demdex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 389
Connection: keep-alive
Server: Apache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WTl0TGxBQUFCU252elQ0aA&url=/1/gr%3furl=https%253A%252F%252Fpixel.everesttech.net%252F1x1%253F
ocsp.digicert.com/
200 OK 471 B IP
Hash cb9d7539bdf950d9b0a95e12983584a3
1d5b2da95cc238d11f319ba7425f548dcc00c6f5
4649b711b00ff58237021fc7480c0954f9e8187439ace4e5c026a412492f962c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4406
Cache-Control: max-age=124386
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:16 GMT
Etag: "63da7d41-1d7"
Expires: Fri, 03 Feb 2023 16:08:22 GMT
Last-Modified: Wed, 01 Feb 2023 14:54:57 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
pixel.everesttech.net/1/gr?url=https%3A%2F%2Fib.adnxs.com%2Fpxj%3Faction%3Dsetuid(%27__EFGSURFER__.__EFGCK__%27)%26bidder%3D51%26seg%3D2634060der%3D51%26seg%3D2634060
302 Found 500 B URL HTTP/1.1 pixel.everesttech.net/1/gr?url=https%3A%2F%2Fib.adnxs.com%2Fpxj%3Faction%3Dsetuid(%27__EFGSURFER__.__EFGCK__%27)%26bidder%3D51%26seg%3D2634060der%3D51%26seg%3D2634060
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (366)
Hash f4e135862d352113801044a40d61d009
b0bad118860e1a103bf4c7fa3ffceb34e30a6fcd
d2e560251d97d8fc1e65a49a6a4d94f335c952f669b0c36c5f6626af53d91e6b
GET /1/gr?url=https%3A%2F%2Fib.adnxs.com%2Fpxj%3Faction%3Dsetuid(%27__EFGSURFER__.__EFGCK__%27)%26bidder%3D51%26seg%3D2634060der%3D51%26seg%3D2634060 HTTP/1.1
Host: pixel.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nba.demdex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 500
Connection: keep-alive
Server: Apache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WTl0TGxBQUFCWDF4a3lQOA&url=/1/gr%3furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060
ce.lijit.com/merge?pid=2&3pid=C31C3CFEE5004982AA61F5620A2CCED1
204 No Content 0 B URL HTTP/1.1 ce.lijit.com/merge?pid=2&3pid=C31C3CFEE5004982AA61F5620A2CCED1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge?pid=2&3pid=C31C3CFEE5004982AA61F5620A2CCED1 HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Thu, 02 Feb 2023 05:35:16 GMT
X-MERGE: GDPR Optout true
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
Expires: Fri, 20 Mar 2009 00:00:00 GMT
P3P: CP="CUR ADM OUR NOR STA NID"
X-Sovrn-Pod: ad_ap2ams1
status.geotrust.com/
200 OK 471 B IP
Hash 0c82cba3066dfd5140095331fb953eff
5d7e89f215ed8c3b456bc35175919665ae87dedf
f6ba0d0485ca343f4b24684ea9df6de4e63da70dd5a7bb48c5dc7981377445bc
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2910
Cache-Control: max-age=122879
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 05:35:16 GMT
Etag: "63da7d35-1d7"
Expires: Fri, 03 Feb 2023 15:43:15 GMT
Last-Modified: Wed, 01 Feb 2023 14:54:45 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
sync.search.spotxchange.com/partner?adv_id=7797&uid=71FB1C3F1DB346CABF6CE20D2BEADB00
302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7797&uid=71FB1C3F1DB346CABF6CE20D2BEADB00
IP
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?adv_id=7797&uid=71FB1C3F1DB346CABF6CE20D2BEADB00 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=5f9338bd-a2bb-11ed-bcaf-182a6e990306; expires=Thu, 02-Mar-2023 05:35:16 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=7797&uid=71FB1C3F1DB346CABF6CE20D2BEADB00&__user_check__=1&sync_id=5f933914-a2bb-11ed-bcaf-182a6e990306
X-fe: 133
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
idsync.rlcdn.com/419566.gif?partner_uid=CF83221C88D64CF7BBE163801C712AAE
451 Unavailable For Legal Reasons 0 B URL HTTP/2 idsync.rlcdn.com/419566.gif?partner_uid=CF83221C88D64CF7BBE163801C712AAE
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /419566.gif?partner_uid=CF83221C88D64CF7BBE163801C712AAE HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Thu, 02 Feb 2023 05:35:16 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 626f46c7eef83f37f23cd8405b8c5d91
14e29a7e778edf4324b9dcfd24eec28182aeefed
88420ab29afd71fcc3f7f39a1f363514e3fcc54a74a8e674a442e8cd3f4f44e6
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 05:35:16 GMT
Last-Modified: Thu, 02 Feb 2023 04:38:20 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n_rOpixSPu0--ewUbhu7QYqqdP-yMoh3Z65oEI1utTO6zlQKVfbfiA==
Age: 3416
pixel.everesttech.net/1/gr?url=https%3A%2F%2Fimage2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI2NjgmdGw9NDMyMDA%3D%26piggybackCookie%3D__EFGSURFER__.__EFGCK__
302 Found 502 B URL HTTP/1.1 pixel.everesttech.net/1/gr?url=https%3A%2F%2Fimage2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI2NjgmdGw9NDMyMDA%3D%26piggybackCookie%3D__EFGSURFER__.__EFGCK__
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (368)
Hash a5b8a25d1af200b7d85e1315ab36b664
d7b63cc948ba3cd05a83d4a59cc822798f1a0ab6
e7d96f2862051eeea1bc4adcee54114679f34f06947823acd63ba22b768b39bf
GET /1/gr?url=https%3A%2F%2Fimage2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI2NjgmdGw9NDMyMDA%3D%26piggybackCookie%3D__EFGSURFER__.__EFGCK__ HTTP/1.1
Host: pixel.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nba.demdex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 502
Connection: keep-alive
Server: Apache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WTl0TGxBQUFCVUxxUGg5QQ&url=/1/gr%3furl=https%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI2NjgmdGw9NDMyMDA%253D%2526piggybackCookie%253D__EFGSURFER__.__EFGCK__
loadm.exelator.com/load/?p=204&g=2191&simid=5C5BE2B529474B039B0C458EE0B8222E&j=0
204 No Content 0 B URL HTTP/2 loadm.exelator.com/load/?p=204&g=2191&simid=5C5BE2B529474B039B0C458EE0B8222E&j=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /load/?p=204&g=2191&simid=5C5BE2B529474B039B0C458EE0B8222E&j=0 HTTP/1.1
Host: loadm.exelator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 02 Feb 2023 05:35:16 GMT
cache-control: no-cache
x-powered-by: Undertow/1
access-control-allow-credentials: true
p3p: policyref=/w3c/p3p.xml, CP=NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA, policyref=/w3c/p3p.xml, CP=NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?adv_id=7797&uid=71FB1C3F1DB346CABF6CE20D2BEADB00&__user_check__=1&sync_id=5f933914-a2bb-11ed-bcaf-182a6e990306
200 OK 43 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7797&uid=71FB1C3F1DB346CABF6CE20D2BEADB00&__user_check__=1&sync_id=5f933914-a2bb-11ed-bcaf-182a6e990306
IP
ASN #35220 SpotXchange, INC
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /partner?adv_id=7797&uid=71FB1C3F1DB346CABF6CE20D2BEADB00&__user_check__=1&sync_id=5f933914-a2bb-11ed-bcaf-182a6e990306 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=5f9c5e9a-a2bb-11ed-b6ce-194044dd0206; expires=Thu, 02-Mar-2023 05:35:16 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 88
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fus-u.openx.net%252Fw%252F1.0%252Fsd%253Fid%253D537072980%2526val%253D__EFGSURFER__.__EFGCK__&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAAEazowMx; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAAEazpAMx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBRWF6b3dNeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fpixel.rubiconproject.com%252Ftap.php%253Fexpires%253D30%2526nid%253D2181%2526put%253D__EFGSURFER__.__EFGCK__%2526v%253D11782&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fpixel.rubiconproject.com%252Ftap.php%253Fexpires%253D30%2526nid%253D2181%2526put%253D__EFGSURFER__.__EFGCK__%2526v%253D11782&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fpixel.rubiconproject.com%252Ftap.php%253Fexpires%253D30%2526nid%253D2181%2526put%253D__EFGSURFER__.__EFGCK__%2526v%253D11782&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAAFH9CAOV; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAAFH9CQOV; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBRkg5Q0FPVg
Server: AMO-cookiemap/1.1
sync.bfmio.com/sync?pid=141&uid=D0090627115647EF8D8833729CE0C032
204 0 B URL HTTP/1.1 sync.bfmio.com/sync?pid=141&uid=D0090627115647EF8D8833729CE0C032
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=141&uid=D0090627115647EF8D8833729CE0C032 HTTP/1.1
Host: sync.bfmio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204
Date: Thu, 02 Feb 2023 05:35:15 GMT
Set-Cookie: __141_cid=D0090627115647EF8D8833729CE0C032; Domain=.bfmio.com; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
__io_cid=6a5e5062abb0ebda5b8498fbb7bf2b52d5de1f3d; Domain=.bfmio.com; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
Connection: keep-alive
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fpixel.everesttech.net%252F1x1%253F&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fpixel.everesttech.net%252F1x1%253F&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fpixel.everesttech.net%252F1x1%253F&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAAFtj3gNx; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAAFtj3wNx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBRnRqM2dOeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fib.adnxs.com%252Fpxj%253Faction%253Dsetuid(%2527__EFGSURFER__.__EFGCK__%2527)%2526bidder%253D51%2526seg%253D2634060der%253D51%2526seg%253D2634060&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAAFU5kgOJ; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAAFU5kwOJ; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBRlU1a2dPSg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAANKNqQN6; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAANKNqgN6; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBTktOcVFONg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI2NjgmdGw9NDMyMDA%253D%2526piggybackCookie%253D__EFGSURFER__.__EFGCK__&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI2NjgmdGw9NDMyMDA%253D%2526piggybackCookie%253D__EFGSURFER__.__EFGCK__&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI2NjgmdGw9NDMyMDA%253D%2526piggybackCookie%253D__EFGSURFER__.__EFGCK__&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAAN05lQOJ; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAAN05lgOJ; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBTjA1bFFPSg
Server: AMO-cookiemap/1.1
d.agkn.com/pixel/10751/?che=1675316116381&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D219583204415000360881
302 Found 0 B URL HTTP/1.1 d.agkn.com/pixel/10751/?che=1675316116381&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D219583204415000360881
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/10751/?che=1675316116381&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D219583204415000360881 HTTP/1.1
Host: d.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache, must-revalidate
Date: Thu, 02 Feb 2023 05:35:16 GMT
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Location: https://um.simpli.fi/aa_px?sk=219583204415000360881
P3P: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Server: Apache-Coyote/1.1
Set-Cookie: ab=0001%3AR6u41nhFfr0enmHg2nDBO%2FhAOLTeW8VS;Path=/;Domain=agkn.com;Max-Age=31536000;SameSite=None;Secure
u=C|0AAArbggUK24IFAAAAAAA;Path=/;Domain=agkn.com;Max-Age=31536000;SameSite=None;Secure
Content-Length: 0
Connection: keep-alive
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAAK1pEAN-; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAAK1pEQN-; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBSzFwRUFOLQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAAIKM_gN-; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2="Y9tLlAAAAIKM@wN-"; Version=1; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBSUtNX2dOLQ
Server: AMO-cookiemap/1.1
um.simpli.fi/aa_px?sk=219583204415000360881
302 Found 142 B URL HTTP/2 um.simpli.fi/aa_px?sk=219583204415000360881
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /aa_px?sk=219583204415000360881 HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 05:35:16 GMT
content-type: text/html
content-length: 142
set-cookie: suid=D6188FCD18F74665A2BBC27B9BE60B16; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:16 GMT; SameSite=none; Secure;
suid_legacy=D6188FCD18F74665A2BBC27B9BE60B16; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:16 GMT; Secure;
location: /empty.gif
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
pixel.everesttech.net/1/gr?url=https%3A%2F%2Fdsum-sec.casalemedia.com%2Frum%3Fcm_dsp_id%3D71%26external_user_id%3D__EFGSURFER__.__EFGCK__
302 Found 457 B URL HTTP/1.1 pixel.everesttech.net/1/gr?url=https%3A%2F%2Fdsum-sec.casalemedia.com%2Frum%3Fcm_dsp_id%3D71%26external_user_id%3D__EFGSURFER__.__EFGCK__
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (323)
Hash 32226ae45223080b99670a7024eb203b
6c9feb7c75b958030da527b655019bcd973fc0cf
d0e82bad43ad07d7525ff4d36ae566acdecb062ac7c06fb0d4acf7b972ac7f62
GET /1/gr?url=https%3A%2F%2Fdsum-sec.casalemedia.com%2Frum%3Fcm_dsp_id%3D71%26external_user_id%3D__EFGSURFER__.__EFGCK__ HTTP/1.1
Host: pixel.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nba.demdex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 457
Connection: keep-alive
Server: Apache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WTl0TGxnQUFCVnFyT3pKWg&url=/1/gr%3furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__
um.simpli.fi/empty.gif
200 OK 43 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /empty.gif HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:16 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=BD74F227D8AC4AD8A7EA3E9A60E0633D; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:16 GMT; SameSite=none; Secure;
suid_legacy=BD74F227D8AC4AD8A7EA3E9A60E0633D; Path=/; domain=simpli.fi; Expires=Sat, 03-Feb-24 05:35:16 GMT; Secure;
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAAMyNDgN-; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAAMyNDwN-; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBTXlORGdOLQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAAEj9LwOV; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAAEj9MAOV; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBRWo5THdPVg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAAKOz1AMx; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAAKOz1QMx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBS096MUFNeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAANOiZQOY; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAANOiZgOY; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBTk9pWlFPWQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAANGz5AMx; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAANGz5QMx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBTkd6NUFNeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAALeicgOY; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAALeicwOY; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBTGVpY2dPWQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAAJpkIgNx; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAAJpkIwNx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBSnBrSWdOeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAAEZkJANx; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAAEZkJQNx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBRVprSkFOeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAAB6SEwNe; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAAB6SFANe; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBQjZTRXdOZQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAAKyN7gN6; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAAKyN7wN6; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBS3lON2dONg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlAAAAGo54QOJ; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Path=/
everest_session_v2=Y9tLlAAAAGo54gOJ; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxBQUFBR281NFFPSg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAAGiN9gN6; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAAGiN9wN6; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBR2lOOWdONg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAAEppXgN-; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAAEppXwN-; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBRXBwWGdOLQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAACB5DgNn; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAACB5DwNn; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBQ0I1RGdObg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAAFVpYwN-; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAAFVpZAN-; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBRlZwWXdOLQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAABp5HANn; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAABp5HQNn; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBQnA1SEFObg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAANq0MgMx; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAANq0MwMx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBTnEwTWdNeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAAHa0OgMx; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAAHa0OwMx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBSGEwT2dNeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAAFb9lwOV; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAAFb9mAOV; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBRmI5bHdPVg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAAD39nQOV; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAAD39ngOV; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBRDM5blFPVg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAAJCixgOY; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAAJCixwOY; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBSkNpeGdPWQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAAJ2i0AOY; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAAJ2i0QOY; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBSjJpMEFPWQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAAJKSZgNe; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAAJKSZwNe; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBSktTWmdOZQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAAG9kdgNx; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAAG9kdwNx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBRzlrZGdOeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAANaSbwNe; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAANaScANe; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBTmFTYndOZQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAAMuOOQN6; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAAMuOOgN6; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBTXVPT1FONg
Server: AMO-cookiemap/1.1
ocsp.sectigo.com/
200 OK 471 B IP
Hash 8a41a6e5225635ecc02de9eabd9a472b
585d12a70f821899fdfad9c09cc87fc46cac9ea0
997fff4ada3bc79630777b4f847861230bb5ae6c58627220d8ef2c693bb92cbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 13:42:56 GMT
Expires: Wed, 08 Feb 2023 13:42:55 GMT
Etag: "585d12a70f821899fdfad9c09cc87fc46cac9ea0"
Cache-Control: max-age=547057,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793090001b10b50c-OSL
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAAIdpqwN-; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAAIdprAN-; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBSWRwcXdOLQ
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nba.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 05:35:17 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9tLlQAAAOCOZQN6; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 05:35:17 GMT; Path=/
everest_session_v2=Y9tLlQAAAOCOZgN6; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WTl0TGxRQUFBT0NPWlFONg
Server: AMO-cookiemap/1.1
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00c1df1d-5e83-46c4-87de-093028c17afe.jpeg
200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00c1df1d-5e83-46c4-87de-093028c17afe.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbb3b7fe13504478f3fe5e8c0190b8db
b8ca03ed416b5ab9cd118f32a1890ffa764a7aec
e47f269c393ee8d87bfce593f31fd49309e1d9b47b8745dd3b6568036da50d55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00c1df1d-5e83-46c4-87de-093028c17afe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7416
x-amzn-requestid: c4e8c4e6-5f2a-4b94-ad48-f10fb51c78c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BH1-IAMF17g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-40e58e6e49f919a3740bb92a;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2-O9YJrb-baVaEYFpesrbfMrIDBautEp2f5ilm1-vmHcjUGxE0c1VA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 26183
etag: "b8ca03ed416b5ab9cd118f32a1890ffa764a7aec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/plugins/swiftype-search/assets/facets.css?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/plugins/swiftype-search/assets/facets.css?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/plugins/swiftype-search/assets/facets.css?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 14 Mar 2022 16:52:40 GMT
etag: W/"622f72d8-163"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TNQoHJl6VfsrbLX7DjHvRCGAs4JtWJQ%2BrS%2BmWxafKr5L8yZFC9dH53zSYnNwAG89BguV%2FX%2FX8wu2XNwPkLrHRipoQc1dtQ0rXjaaRRSTrd5NZ7zL%2FUj5Ch4VQZeq1cOARGRAJ9gO%2FunPkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde098db4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/slick/slick.css?ver=1.8.1
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/slick/slick.css?ver=1.8.1
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/slick/slick.css?ver=1.8.1 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:32 GMT
etag: W/"5d5131b8-6f0"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 8548997
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VsPaMAkUgmAVfCm6SnN4rcIP0BtyGU0ePkv1FNDDmzEOpgTw15tOPA7Wii9w%2Bs2cwDnLNkE93EBsfEkJv0cOGLjZXqNUCeDl64TI5ShoXkjVu4hizmUQK3XCntN%2Fokuc%2Fo5xhRrbauK38w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde1999b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=61A3859FE4B544318FA95F09107FE553
302 Found 0 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=61A3859FE4B544318FA95F09107FE553
IP
GET /adscores/g.pixel?sid=9201915418&sifi_uid=61A3859FE4B544318FA95F09107FE553 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 05:35:16 GMT
location: https://d.agkn.com/pixel/10751/?che=1675316116381&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D219583204415000360881
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3A0M6lsvmTXlCfUmNOFKKAIUGFp10V2mSu; Path=/; Domain=.agkn.com; Expires=Fri, 02-Feb-2024 05:35:16 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
simplifi.partners.tremorhub.com/sync?UISF=89B076F4908A43DBBD49603586F8604C
200 OK 0 B URL HTTP/2 simplifi.partners.tremorhub.com/sync?UISF=89B076F4908A43DBBD49603586F8604C
IP
GET /sync?UISF=89B076F4908A43DBBD49603586F8604C HTTP/1.1
Host: simplifi.partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mavs.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:16 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
www.mavs.com/
200 OK 0 B IP
GET / HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:10 GMT
content-type: text/html; charset=UTF-8
x-sucuri-id: 19003
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
link: <https://www.mavs.com/wp-json/>; rel="https://api.w.org/", <https://www.mavs.com/>; rel=shortlink
x-cacheable: SHORT
cache-control: max-age=600, must-revalidate
x-cache: HIT: 3
x-cache-group: normal
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
content-encoding: br
x-sucuri-cache: EXPIRED
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/jquery.sticky-sidebar.js?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/jquery.sticky-sidebar.js?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/jquery.sticky-sidebar.js?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:32 GMT
etag: W/"5d5131b8-6a0c"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ssCc0PO%2BjNjxO0q4gQ3PcLSYcbfS%2BXlNbikEEDXR%2B1ZUDYBo8JuyWp3u2LNUsPuJ%2BLc7utwbsv9p%2FoExSkjx7%2FHmmaE1C4%2Fp%2BPtEKHFBYQqCFqiY4CB6fBJOP%2FgTYSpZds7cv4bz%2B2FKRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19aeb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/fetch.umd.min.js?ver=0.44408500%201675316012
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/fetch.umd.min.js?ver=0.44408500%201675316012
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/fetch.umd.min.js?ver=0.44408500%201675316012 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 13 Aug 2021 10:03:20 GMT
etag: W/"61164368-25e9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k331QT9USAuLBa7X8Pq48vZATFW1vcS8fS9NmWLvSUHYnM9kOvmLnuzPOPMOzWkPJqGn1lZVyMk1ZK5NhJ7dWrc98fN1OiJT1vW5uOyUZ8CeoTFh9ykqitc9jjsPM6TdKjRzsA2ILqSyWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19b5b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/ScrollMagic/TweenMax.min.js?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/ScrollMagic/TweenMax.min.js?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/ScrollMagic/TweenMax.min.js?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:32 GMT
etag: W/"5d5131b8-1c56a"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GWB0LY6fQRTL7s5mmxoCOVt3Yb1udXBriVYkIA3ZfWPXwzJsyvnO%2F8CwIOB0XIsR%2Fj1Dg0HOqomJEe%2FOaGVojr7TYDutPAMQJqSRH8ZfP%2B3R120vNOSFO4p%2BYJz6GUllvRqpOQ1X7b5QOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19a8b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/MonthPicker.min.js?ver=0.44406900%201675316012
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/MonthPicker.min.js?ver=0.44406900%201675316012
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/MonthPicker.min.js?ver=0.44406900%201675316012 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 01 Oct 2020 09:47:08 GMT
etag: W/"5f75a59c-3b1f"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uE8ctHh3JqEP5H0Zm2LBmjcV1nywet2HYrndUaTLiSu5TYFU7Efwswo9at1sCwNq011wSTreyOjtvwm2rtdcLVu3CqQabCwYA1P%2FzHC62ngmOK%2BLBlw6zz43hEd7NgYVm9o4VvfYMI9M7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19b3b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/css/jquery-ui.css?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/css/jquery-ui.css?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/css/jquery-ui.css?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 01 Oct 2020 09:59:51 GMT
etag: W/"5f75a897-8c85"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3j0kwVAvyaq%2FpzQE06iqVBYRjJy6xuJduDvMsZ%2FF6Qm7N1pb94oqKuYzyDhMrMPDacwQfVXsdP9RXg83Tx0reNCnzAKPnioBRttSNzRrXpn7dp%2FeA3p77kFCCxD6Jogpp84S40Hzv3%2BHlA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde1998b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400%2C500%7CNoto+Sans+JP:900%2C700%7CMontserrat:600%2C700&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400%2C500%7CNoto+Sans+JP:900%2C700%7CMontserrat:600%2C700&display=swap
IP
GET /css?family=Roboto:400%2C500%7CNoto+Sans+JP:900%2C700%7CMontserrat:600%2C700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 05:35:11 GMT
date: Thu, 02 Feb 2023 05:35:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/css/MonthPicker.min.css?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/css/MonthPicker.min.css?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/css/MonthPicker.min.css?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 01 Oct 2020 09:47:24 GMT
etag: W/"5f75a5ac-439"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XB%2Bk9prj6hORG%2FbALlNjv9kHGRLSGYYCH2DsnXGM39DxgpiwPYkO%2BCKxUs98lACHA6xrxp%2BD5arbtDt%2BKTpoNyQbb6R4X%2B5WDlDqligtNL9x2rxIhQqEoq70MIArWGF107zTTU672%2BmRCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde199cb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/function-pjdw.js?ver=0.44409500%201675316012
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/function-pjdw.js?ver=0.44409500%201675316012
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/function-pjdw.js?ver=0.44409500%201675316012 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 06 Oct 2022 05:12:57 GMT
etag: W/"633e63d9-1214"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CrTUPHziYeoyJCq5oLRHmzNAYeiNvn2%2BuYSQts%2B9B4Cn%2BXTxZOxchApeNXkSrQRko%2BsE5a%2FTm7wmHMslUnT8%2B5sCtdHX%2FapecqAEXmGfidVXxqO%2FeQRApyxT6JOipwuDM6l3%2BmUubGynqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19b6b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.5
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.5
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.5 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 07 Nov 2022 18:42:21 GMT
etag: W/"6369518d-63723"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7468089
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2ZQZQZyG4ZviqiVCTRZZP5dgstg8%2F57ytaLA%2Bczm29iKswMAWVbiQO7MYUD02Yhyg7azCv0GUOv%2Bx7osa2khf3YtdsNnHKiYa%2BqiMBY4cax%2FwRT3sMT%2FDfen91rV73WvqOtr1rrH03pwHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19a3b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/plugins/wpbakery-image-hover-add-on/assets/css/min/imagehover-pro.min.css?ver=1.0.1
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/plugins/wpbakery-image-hover-add-on/assets/css/min/imagehover-pro.min.css?ver=1.0.1
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/plugins/wpbakery-image-hover-add-on/assets/css/min/imagehover-pro.min.css?ver=1.0.1 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 21 Oct 2022 16:41:14 GMT
etag: W/"6352cbaa-18344"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 8548996
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RTe8JW6ytcVbkrVwK%2BFOy3b0wrrJR5Ziog5Xl%2BHA%2BXJxMi3Zed0i3olHVk0y0DwPYlHaO1Wx%2FRCgi%2FBsYbc%2BJ%2F8ACRBCYXBYIJSXJ5hB02odeZYpYxXyFtq1WGtk%2BoW239T1LlZ7sgGZjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fdf4a69b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/jquery.mCustomScrollbar.concat.min.js?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/jquery.mCustomScrollbar.concat.min.js?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/jquery.mCustomScrollbar.concat.min.js?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:32 GMT
etag: W/"5d5131b8-b1a7"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NSMxtuk4hwhEqSqIpUMwf0g6GVOPUjCpE29jTWxPawqb5VmUyHwd5Kro3ikX%2FYs5uw57OpNkVg7p218rF1QwwQKglv1kVncWO7fAHB7sbxPjZHOCr3s4k9OAm7G9vg4kV%2Bi%2BTGqGFOPVgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19b0b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-includes/js/wp-embed.min.js?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-includes/js/wp-embed.min.js?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-includes/js/wp-embed.min.js?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 05 Feb 2021 03:20:06 GMT
etag: W/"601cb966-56f"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 1160364
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aHIihGe%2Fq10%2FQARkjZIkpl%2F%2FCikDaxsRzpzRLlmUrM%2Bs%2FdJnpmoYd5TIGVRGeM7FTBwRLzL6XE9fpbzJFtu5Br9fGdCCcBOw%2BCUHgPmOTY71UO1J1OUcUd4pTGTHywRHcNs9t5Vyffkbrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde59dfb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scripts.pumpjackdataworks.com/us/v1/pjdw-sdk.umd.js?ver=0.44408700%201675316012
200 OK 0 B URL HTTP/2 scripts.pumpjackdataworks.com/us/v1/pjdw-sdk.umd.js?ver=0.44408700%201675316012
IP
GET /us/v1/pjdw-sdk.umd.js?ver=0.44408700%201675316012 HTTP/1.1
Host: scripts.pumpjackdataworks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"9063a2000930e51e1074f90af9ce2976"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FVJayJVYFmUUKckPQg1xFBOirknBJWLwrGpAkbIk8YBaozu1ZXaXjIv%2F7XJ2A07Z8RCMQBreQxgEJYBcGs0TZNgPsd5ZpL4qBz0uMjoku3jFIh28X6r%2Bjzr9tpsi5t3jKl1r1IJqgiRPGMBYTP9IHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 79308fdf7b8eb51d-OSL
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/style.css?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/style.css?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/style.css?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:33 GMT
etag: W/"5d5131b9-74b"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n04hUqAzlbqrNQnAl0ViNViQA1geM7QR7YsgNKd3n9HQa4YPGrDt7bexJpX80BmWSh0VqnDmI6KjsJyhc9YMR022xtYlHfnKWRgmSaCrbKS5jgmLyNflMcIA89QZ3xvQtViUQKHWpTAmtA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde1996b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/ResizeSensor.js?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/ResizeSensor.js?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/ResizeSensor.js?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:32 GMT
etag: W/"5d5131b8-2bb6"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dzw%2FeZpz2ITg96%2BJzOw%2FgZpLXrMc3z7MaLxiCOzwjGMD0Pg2gUZ9zlsSsPQtOIFBp2xk0mMF5Nyd27Qm8s0mxSasz0doCdgKEiL7%2F1FyHskaD0Nd2GOYfg%2FKwiU4poE9GrYVyRs%2B%2FUBGeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19adb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.7
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.7
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.7 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Sat, 10 Oct 2020 01:41:57 GMT
etag: W/"5f811165-a6e0"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 8548997
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I9NJ25ZuA678XH84Dbf9p9pRugsqGM5T86GWICAbreAiSSCwjIUBl73CiN25LoZgvZKNx7sjRit76tKaFf3YSEUKbQ3vBjkZduK9mZHc40fRMsWwmbZkQQmU41mjvrF8XfgFMc646Vt8RQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fdf4a6eb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/functions.js?ver=0.44387300%201675316012
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/functions.js?ver=0.44387300%201675316012
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/functions.js?ver=0.44387300%201675316012 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 22 Dec 2021 07:21:59 GMT
etag: W/"61c2d217-336b"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gIFLFR3%2FOawBRH%2BHcoC28gVKuEP38BxtEPxed3e8Vn%2BAIKe0wYMHkrK%2FCWD%2F5feib5SdMLfMAERd%2F%2B16TOq%2FyfHPsE1WE7yBF%2B76rm9hkgL%2BeW%2BjCPoAHVtGT5LQKLeU3HVNBHxwqjZKKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19afb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/slick/slick-theme.css?ver=1.8.1
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/slick/slick-theme.css?ver=1.8.1
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/slick/slick-theme.css?ver=1.8.1 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:32 GMT
etag: W/"5d5131b8-c49"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 8548997
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uZF8M3mOL3VX1bedIldfu2RU8fRwdnNBQ8e3GTllfDib0u00ftmEmhLjm9%2F0pWOE3lH6SfowLy4Rc77Vct3oE1cAOrHaGwtoaAGL16qbAk2qQGe6oaIQivf3xjGZEZlDRL6Hjj5ReFikpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde199ab4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/css/fancybox/jquery.fancybox.min.css?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/css/fancybox/jquery.fancybox.min.css?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/css/fancybox/jquery.fancybox.min.css?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 12 Aug 2020 13:31:57 GMT
etag: W/"5f33ef4d-31fb"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nHDy%2BLycOEf3WWzIKkHUS25ZH2hesb%2B2AFMPQsz%2Bq13%2BLW5HNtkjqb1gkVv%2B68pLpEdhrWAraIVFGz6BPIEjsqvXxqOkxP0t8Av7wIN4SHx1rWU3L9OIfQmN2c99QkiBAUUJ%2FqsJZztXaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde199bb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/polyfill.min.js?ver=0.44407700%201675316012
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/polyfill.min.js?ver=0.44407700%201675316012
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/polyfill.min.js?ver=0.44407700%201675316012 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 13 Aug 2021 10:03:21 GMT
etag: W/"61164369-f21"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WhpxXoVjaJD8%2Fo5I7z5VEThC2Pd1I2jg3afQTPXxOq8ivcpIJyBE9F9cuXeH503HFAI8nXqPstpuyR3XtLUs0cXrSPUPWvZj2o2bcLCQdG2lK0QJAXu336Bkw4DuqkFBTNvrcakx2ag0cg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19b4b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/css/theme.css?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/css/theme.css?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/css/theme.css?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 23 Mar 2021 07:27:54 GMT
etag: W/"6059987a-b4c0"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gBaZ2hYIebM1kLI1gS70AQRxVVJdOzcRwYoGwc%2BRCY9NMyFq4OG2qVC6KIJcA5PVgRqQITLx3HDH%2BscfMgS6B%2BudXFD%2BSuuFvYqnKj1vx9bu%2F1shfvmtDi3ojDhtf11%2FYJazQpYFnFfNbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde1994b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/images/logo.svg
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/images/logo.svg
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/images/logo.svg HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:37 GMT
etag: W/"5d5131bd-2fcf"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 1233187
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hPczGq4Ela38SFqpAs2Leew4OEcxI5biL4y8CirBJU7NvvpSeQpRDbKKf6M91GjJB9IpEAFDpzbwvJ8zLeJdPy3lVA3oj0BSJO%2BOt37SbFLQLMrOJ304am%2BUcCv8ZiFpf2BT63sOlc09%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde69ebb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
walls.io/js/wallsio-widget-1.2.js
200 OK 0 B URL HTTP/2 walls.io/js/wallsio-widget-1.2.js
IP
GET /js/wallsio-widget-1.2.js HTTP/1.1
Host: walls.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Mon, 30 Jan 2023 14:45:52 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"63d7d820-3998"
expires: Thu, 02 Feb 2023 06:35:11 GMT
cache-control: max-age=3600, public
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-ua-compatible: IE=Edge
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/css/bootstrap.min.css?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/css/bootstrap.min.css?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/css/bootstrap.min.css?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:33 GMT
etag: W/"5d5131b9-2606e"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iVWAdwh%2BgIhiFyN1DZWSRnDTNrw2WQ%2FTEAupuOmESmlFQaYBPATNPXH%2FaucnNGkzkHrS7mnBXeIO9Uky4w9gaGF%2BpaZtmkP4htOJIkWXoHnlSKX761m1AyBAXfahPL1HiUmnuZopEV%2BJNg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde198eb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/jquery.sticky.js?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/jquery.sticky.js?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/jquery.sticky.js?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:32 GMT
etag: W/"5d5131b8-2765"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9I5ifvakmY6fqrpZubrRHrhLY9kpwstw%2Bk%2FzJKaWiWjA4Vfi8IAm3nJrtV%2FfuLpB%2FD3%2Fc93DOODxKQbt%2FDOKK896WusgnJiGmdFCHgtXv2TvosNSGVz0uw21LncSheQp7PUxbj%2BLOEC7DQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19a6b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.mavs.com/fonts/AvenirLight.otf
404 Not Found 0 B URL HTTP/2 www.mavs.com/fonts/AvenirLight.otf
IP
GET /fonts/AvenirLight.otf HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: text/html
x-sucuri-id: 19003
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
content-encoding: br
x-sucuri-cache: EXPIRED
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/jquery-ui.min.js?ver=0.44405000%201675316012
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/jquery-ui.min.js?ver=0.44405000%201675316012
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/jquery-ui.min.js?ver=0.44405000%201675316012 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 01 Oct 2020 09:47:11 GMT
etag: W/"5f75a59f-3ab2b"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s%2BPOc328UMTUaD%2FdymCC1P4uHBujdFJhym0KfWn1erEfLwD1p72wjB5ib1oyjJpOgSIspzDQnEtX4axnMPZ2gOSe75huQeodS3xU472iCYj0XFQa2221OBOAE2ljHj2z15%2BFA%2BC37tXtfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19b1b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.mavs.com/fonts/AvenirLight.ttf
404 Not Found 0 B URL HTTP/2 www.mavs.com/fonts/AvenirLight.ttf
IP
GET /fonts/AvenirLight.ttf HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: text/html
x-sucuri-id: 19003
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
content-encoding: br
x-sucuri-cache: EXPIRED
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=nkimdvf&ref=https%3A%2F%2Fwww.mavs.com%2F&upid=qmlxy6w&upv=1.1.0
200 OK 0 B URL HTTP/2 insight.adsrvr.org/track/up?adv=nkimdvf&ref=https%3A%2F%2Fwww.mavs.com%2F&upid=qmlxy6w&upv=1.1.0
IP
GET /track/up?adv=nkimdvf&ref=https%3A%2F%2Fwww.mavs.com%2F&upid=qmlxy6w&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:15 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/css/jquery.mCustomScrollbar.min.css?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/css/jquery.mCustomScrollbar.min.css?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/css/jquery.mCustomScrollbar.min.css?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:33 GMT
etag: W/"5d5131b9-a757"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 539540
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3VYPAPP9VUgzrVCjPZ%2F%2BHApcElAUuEmvxESawFoGE7lXEdtlggdGKDPw9opXYMmmm9ZUyT0SEqy1mv42T9oiZDXMUmqx1Anok0ihYMYz1GDr%2BwHzEdgyatFzw73JCsbF3KOkOFO2euFTUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde1997b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.12
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.12
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.12 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:04:30 GMT
etag: W/"5d512b9e-6bf7"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 5360883
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q%2B5xtpi4PBW83Ovq3vdxRr3xWqKVwv99XlNHrNqw%2BUaao9mNexPIcdzkZQFYSjZVJjfPEd4EfDJ0%2Bs%2BEnqCxPTlXKFMhSd3e5r%2B%2BJsCWw3jqd8AcIcdp5jWiAo2ietAUAQm2R6IsQiuXHg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde199eb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP
ASN #209242 Cloudflare London, LLC
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 17 May 2019 17:08:53 GMT
etag: W/"5cdeeaa5-17a69"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 8548996
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kda7GILals78RcCNw3wsYMH3ayh1fJ0YHg0nP5vBQoJFpgKQrtkXNx3WlIrRiPrCPhpa%2FM9RRLmGx9aqWxWN9KD0ioW0rZ00GQ1BmiIRdckrapS2texC3ipmjVPC89qpjQDzl5N0WaFz5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde199fb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/plugins/essential-grid/public/assets/font/font-awesome/css/font-awesome.css?ver=3.0.7
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/plugins/essential-grid/public/assets/font/font-awesome/css/font-awesome.css?ver=3.0.7
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/plugins/essential-grid/public/assets/font/font-awesome/css/font-awesome.css?ver=3.0.7 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Sat, 10 Oct 2020 01:41:57 GMT
etag: W/"5f811165-a250"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 8548997
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bZNsVM2WQk3J34bcxlo3c1ZOzQeIQ8OeMQI%2F%2BMfznhPX0xHoNVqEu6fmb7eRzqs8JBsr0Dy7UVl%2Bx6oskQTHw8KvBkZsb7W8yqpIEt8YIStScevueKauRW1OORd6fDn1e0e7AVybxyuNTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde098bb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/css/font-awesome.min.css?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/css/font-awesome.min.css?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/css/font-awesome.min.css?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:34 GMT
etag: W/"5d5131ba-7918"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E0ZbWH9XjHLaHCvq9R1JYFrJFdMfNdKv9y2cdxHy5lbseopo676PCwJ4zpv5%2FnMHONSnIKffwfqFOXz6Su76UByOJsVicMHAHetOrB6y2q%2FsUV1ownTg1RVfp1RJj3BYuowW7x3sNED95Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde1990b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/bootstrap.min.js?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/bootstrap.min.js?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/bootstrap.min.js?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:32 GMT
etag: W/"5d5131b8-e2d8"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dp3ueOh5P5xip8PHMdxuN1cZsOGsDiAR%2FcHnmAkoBvyKIWzkJBeg9FMnhT6awsx74icN7J5jhqX1GMWfKwLqqFg6%2FAOBy7p3FZM3thiqltjhFCx2GAl19fNwj92XvHqAHc9eB%2BLxJnjhaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19a5b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/ScrollMagic/ScrollMagic.min.js?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/ScrollMagic/ScrollMagic.min.js?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/ScrollMagic/ScrollMagic.min.js?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:32 GMT
etag: W/"5d5131b8-19e8b"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fj7m8OtWHijpBy1ZEWowsyHs5Z311s4d2l5kA45kpSwFEZF4gOoVmNhSvcJcaNeaJkD2mhNQnN%2BTLftW6vdmMYrHKVMz7KpN6K%2FwM7wujMlSPOt3zqK%2FjiKZL4rs%2BySwVU0W6bKhvTlxoA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19a9b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.5
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.5
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.5 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 07 Nov 2022 18:42:20 GMT
etag: W/"6369518c-e394"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7468089
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hfCwFEdqWO%2F6DE3jpWD6G0b7ly5A5Cyic32OPwt6sP6ugNsBOtzROycL37dxnFHX5zULrldYgwNtNFby5WNrPHG%2BJZMoxRLZtn%2BYwyTNqyEn4RamxWYBws8qFv26N74hRUn7HE2ZBsHjlw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19b7b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.mavs.com/wp-json/wp/v2/posts?per_page=11&page=1&sticky=false
200 OK 0 B URL HTTP/2 www.mavs.com/wp-json/wp/v2/posts?per_page=11&page=1&sticky=false
IP
GET /wp-json/wp/v2/posts?per_page=11&page=1&sticky=false HTTP/1.1
Host: www.mavs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.mavs.com/
Cookie: _gcl_au=1.1.1224633519.1675316137; _wingify_pc_uuid=17bc3b429a9a43faa9b12a956b1d8fa1; AMCV_248F210755B762187F000101%40AdobeOrg=1176715910%7CMCIDTS%7C19391%7CvVersion%7C5.4.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 05:35:13 GMT
content-type: application/json; charset=UTF-8
x-sucuri-id: 19003
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
x-robots-tag: noindex
link: <https://www.mavs.com/wp-json/wp/v2/posts?per_page=11&page=2&sticky>; rel="next"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages
access-control-allow-headers: Authorization, Content-Type
x-wp-total: 4681
x-wp-totalpages: 426
allow: GET
x-cacheable: SHORT
cache-control: max-age=600, must-revalidate
x-cache: HIT: 5
x-cache-group: normal
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-sucuri-cache: BYPASS
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
ASN #209242 Cloudflare London, LLC
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 20 May 2016 06:11:28 GMT
etag: W/"573eaa90-2748"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 8548997
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S%2Be5HXW7RoCpTrsr%2FhKr%2Fr2th50J6M5JOcC7D%2FEZazz24OzxZ0XRAqzuYP0fb04GvEjuv7fgMpcgqQeqEJTmNVRVcf49CUkGL%2F6iSjdUXkTIJPsQCe7emlHnmaZ8ZEvsWnEJLtqZV5ndgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19a0b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/ScrollMagic/plugins/debug.addIndicators.min.js?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/ScrollMagic/plugins/debug.addIndicators.min.js?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/ScrollMagic/plugins/debug.addIndicators.min.js?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:33 GMT
etag: W/"5d5131b9-5b5f"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eJFhnEJh34MJCuYz%2Bk%2FZWrfjbiGKLQMm0p7pXQl9BzdaI1kyuQ%2BoveATlvZr2db4%2BzhLOCVfs8FOUWZyhCpVXgGLzQJxzGyiMhgffTan3fJ5AcyY%2BuQsbbQ2z0X%2F3F1Wm4rNwAQtCoiwwA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19acb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/ScrollMagic/plugins/animation.gsap.min.js?ver=5.2.17
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/ScrollMagic/plugins/animation.gsap.min.js?ver=5.2.17
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/ScrollMagic/plugins/animation.gsap.min.js?ver=5.2.17 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 12 Aug 2019 09:30:32 GMT
etag: W/"5d5131b8-2ea6"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 7727580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CfbTZkpUNRUYKLTatTceAyEFayFLEdrQ2lkIOf35kTwGuyk8aMfdb%2BCxLdbXsJ0tWCuBk7APUPNRg7e00aRyQENaruyNDzgzcRzPJ4UuYKsl8uSCahpmGggtJUIw%2FWWTSa1A56lycl7G6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19aab4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/css/custom.css?ver=22.78
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/css/custom.css?ver=22.78
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/css/custom.css?ver=22.78 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 30 Nov 2022 15:29:08 GMT
etag: W/"638776c4-91fc0"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 5491317
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rFp7Lt63SMFqJjJsn7CEPt7dyjd0P%2FmYedYsXmmirrQRcckd2VqwaeTRdzqeGpUGqtuQqzKNOZRxnP43xdytzSHFHvKnlJJyDoagKKF%2BJrTpFAAYfkZz4hULtUwZFgLQxbfQfoYaoPiHPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde1992b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/css/custom-responsive.css?ver=19.8
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/css/custom-responsive.css?ver=19.8
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/css/custom-responsive.css?ver=19.8 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 19 Oct 2021 07:29:11 GMT
etag: W/"616e73c7-b388"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 8548996
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eMYDMCzPCGWaSdcKJf43F2J5swHEUADBO7LQBFtrqxXc2HktgVDHA3jzNQAxkCrV4z%2FvQNSK6P0O9VPzR%2FS7DudlLvEAvB9oMoN7DNE11d8plrtpIL0LfTtA3Gkfn7qgVGVOFEYVE%2FGkRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde1993b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/plugins/addtocalendar/public/css/addtocalendar.css?ver=1.0.0
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/plugins/addtocalendar/public/css/addtocalendar.css?ver=1.0.0
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/plugins/addtocalendar/public/css/addtocalendar.css?ver=1.0.0 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 31 May 2022 19:44:00 GMT
etag: W/"62967000-1666"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 8548997
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wpN0WhJPINDfGyjrTEKXRyzxnFLNH%2FO9YiJrLhR05dT%2FP1vFVj%2FSFkIpmQe6HpPuSZK9aWHvS0KIhS1jKt6TZ6dnVb0OV5IVpAJt41fb6Q4OJEdukaw8OG9stjtKNyleCoJ8lj%2BmGsLqeA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fdf3a5eb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.7
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.7
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.7 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Sat, 10 Oct 2020 01:41:57 GMT
etag: W/"5f811165-3177"
cache-control: public, max-age=31536000
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
cf-cache-status: HIT
age: 8548996
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=44Y%2BNH%2FW4CU60vX8oqM0SHJx%2FN8wyyxHXcXMnYwaS3gqF5IQy%2FO0WsUrXZJIHa%2BeziXBv9U4AK044j7qs6DPkGiah93r9lu6nnG6E0XyTdLVCkYtnxgrbjRKdMYYAW%2BzBetJ5DsLiYQu8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fdf4a6db4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mavs.wpenginepowered.com/wp-content/themes/mavs/js/jquery.maskedinput.min.js?ver=0.44406000%201675316012
200 OK 0 B URL HTTP/2 mavs.wpenginepowered.com/wp-content/themes/mavs/js/jquery.maskedinput.min.js?ver=0.44406000%201675316012
IP
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/mavs/js/jquery.maskedinput.min.js?ver=0.44406000%201675316012 HTTP/1.1
Host: mavs.wpenginepowered.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mavs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 05:35:11 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 01 Oct 2020 09:47:07 GMT
etag: W/"5f75a59b-10e4"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZBDmn2TV9W5EdJjKSfdAGs8adEhMsagE%2B7iNitwwg1Twb4GbEalNW99ouTKP8Jo5g9gdlcNRfhi9R%2F0FkQu4L0NzySyhA4e6AmLMWE%2BZJlNnAcYV%2FXxs0qegQ9%2Bybce55W3uP5E3fjHyFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79308fde19b2b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
54.84.45.2
52.211.139.33
91.228.74.159
23.38.202.64
104.17.81.80
185.94.180.126
3.72.42.242
151.101.244.157
15.236.117.205