r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9603
Expires: Sat, 04 Feb 2023 21:54:49 GMT
Date: Sat, 04 Feb 2023 19:14:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12781
Expires: Sat, 04 Feb 2023 22:47:47 GMT
Date: Sat, 04 Feb 2023 19:14:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20446
Expires: Sun, 05 Feb 2023 00:55:32 GMT
Date: Sat, 04 Feb 2023 19:14:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 18:36:15 GMT
content-type: application/json
age: 2311
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
bsft.us/z/2qa8h9l7c?uid=ecb4c403-d960-4f34-8e3c-f0a35b0df825&txnid=f0c62dc8-333f-4ce7-b172-184b9f790dc9&mid=adc2caba-dc82-4caa-bcf3-72b0c0315cfe&bsft_ek=2023-02-04T13:28:52Z&bsft_mime_type=html&bsft_tv=6&bsft_lx=2
54.68.118.52307 Temporary Redirect 642 B URL HTTP/1.1 bsft.us/z/2qa8h9l7c?uid=ecb4c403-d960-4f34-8e3c-f0a35b0df825&txnid=f0c62dc8-333f-4ce7-b172-184b9f790dc9&mid=adc2caba-dc82-4caa-bcf3-72b0c0315cfe&bsft_ek=2023-02-04T13:28:52Z&bsft_mime_type=html&bsft_tv=6&bsft_lx=2
IP 54.68.118.52:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (642), with no line terminators
Hash 0f487d7980225bb6cd5002eb39d0ef40
c97ec99672c77d05b290dc3171a802a1e3c8f20f
742c0f51211c24d9dfb9bae182348569b061cccd3fb5fac6302a6b86e6d62486
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /z/2qa8h9l7c?uid=ecb4c403-d960-4f34-8e3c-f0a35b0df825&txnid=f0c62dc8-333f-4ce7-b172-184b9f790dc9&mid=adc2caba-dc82-4caa-bcf3-72b0c0315cfe&bsft_ek=2023-02-04T13:28:52Z&bsft_mime_type=html&bsft_tv=6&bsft_lx=2 HTTP/1.1
Host: bsft.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 307 Temporary Redirect
Date: Sat, 04 Feb 2023 19:14:46 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Cache-Control: no-cache, no-store
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Location: https://knowledge.udacity.com?bsft_aaid=17bf3774-8c65-47da-9a84-c4f6169cf022&bsft_eid=90dbe19e-4064-1919-a4cb-d8e804fe7dc0&utm_campaign=ent_600_auto_ndxxx_3day-checkin_global&utm_source=blueshift&utm_medium=email&utm_content=ent_600_auto_ndxxx_3day-checkin_global&bsft_clkid=bc334481-b184-4645-9227-efdabba3857a&bsft_uid=ecb4c403-d960-4f34-8e3c-f0a35b0df825&bsft_mid=adc2caba-dc82-4caa-bcf3-72b0c0315cfe&bsft_txnid=f0c62dc8-333f-4ce7-b172-184b9f790dc9&bsft_mime_type=html&bsft_ek=2023-02-04T13%3A28%3A52Z&bsft_lx=2&bsft_tv=6
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
Access-Control-Allow-Headers: Content-Type, X-Api-Key
Access-Control-Max-Age: 1728000
X-Request-Id: 6966b2fb-2d2a-44a5-98f1-7bd40b768a4c
X-Runtime: 0.022776
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: zb9PaJafMGcNP4X9Q7DO1eDk39lmg6Glepx1XsuEsyewyft1Widi96WUq0zLCUIEfFBJPvbq32I=
x-amz-request-id: YJQ97TQXWFD9KPX8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 18:52:56 GMT
age: 1310
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 19:14:46 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 2a084bf5e225fc7630e66bc7450a3268
92d136523421e1a41f456fecb053d2593afbbbe4
812cc66b5f95f8f91f4738d47597c5217619f64835e8093c5eb64cb3b0546e67
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 739
Cache-Control: max-age=152559
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:46 GMT
Etag: "63de5cb3-116"
Expires: Mon, 06 Feb 2023 13:37:25 GMT
Last-Modified: Sat, 04 Feb 2023 13:25:07 GMT
Server: ECS (amb/6B87)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 2a084bf5e225fc7630e66bc7450a3268
92d136523421e1a41f456fecb053d2593afbbbe4
812cc66b5f95f8f91f4738d47597c5217619f64835e8093c5eb64cb3b0546e67
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 739
Cache-Control: max-age=152559
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:46 GMT
Etag: "63de5cb3-116"
Expires: Mon, 06 Feb 2023 13:37:25 GMT
Last-Modified: Sat, 04 Feb 2023 13:25:07 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 19:07:19 GMT
age: 447
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.249200 OK 78 kB IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 386a651d36a2e0d56bea670d92b01808
ed650b1d171c99b99e955fda02a0a6ee48e44a29
1d0cc388fffcc878886a91760b94cf4d971591f9e4c9ae757510f94c81270672
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9828
Expires: Sat, 04 Feb 2023 21:58:35 GMT
Date: Sat, 04 Feb 2023 19:14:47 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://knowledge.udacity.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:52:41 GMT
expires: Tue, 30 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 433326
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.164.100.136101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.100.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZljOZu7ROa+Jb0HbjHAZBA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dwLJLBoQHzLX6IAF6H+tHHm/EbI=
ocsp.digicert.com/
93.184.220.29200 OK 4.0 kB IP 93.184.220.29:0
Hash 31ae75f84cab9316e22e72f16e210bd7
e92c5e356518fa502e93eab4fbb164cb302f0a44
9741bba005e5409ba4993c45fd6fe2da479a3136629725e4b1b54f25917f4f4a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5386
Cache-Control: max-age=136295
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:47 GMT
Etag: "63de0b04-1d7"
Expires: Mon, 06 Feb 2023 09:06:22 GMT
Last-Modified: Sat, 04 Feb 2023 07:36:36 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-WW3F3H&l=dataLayer
172.217.21.168200 OK 88 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WW3F3H&l=dataLayer
IP 172.217.21.168:0
File type ASCII text, with very long lines (54172)
Hash a0d35a7497f7e0099b4bb12278c96d76
fdd2cea6e49166077af1e3f074b15f58447a644b
1ea27e4f65126d67ca595b072aa35a44b09691d2eaf0304eff08884f5120b2b4
GET /gtm.js?id=GTM-WW3F3H&l=dataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 19:14:47 GMT
expires: Sat, 04 Feb 2023 19:14:47 GMT
cache-control: private, max-age=900
last-modified: Sat, 04 Feb 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88385
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.19.1%2Cenv%3Aproduction%2Cservice%3Aknowledge-web%2Cversion%3A2.0.0&dd-api-key=pub6d4afde3839a07b93841ada70173b8c0&dd-evp-origin-version=4.19.1&dd-evp-origin=browser&dd-request-id=f919ba56-6fe4-4680-a181-75d8def0a699&batch_time=1675538124263
3.233.159.187202 Accepted 53 B URL HTTP/2 rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.19.1%2Cenv%3Aproduction%2Cservice%3Aknowledge-web%2Cversion%3A2.0.0&dd-api-key=pub6d4afde3839a07b93841ada70173b8c0&dd-evp-origin-version=4.19.1&dd-evp-origin=browser&dd-request-id=f919ba56-6fe4-4680-a181-75d8def0a699&batch_time=1675538124263
IP 3.233.159.187:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0d816a89228101d758f012c7f5d7f537
61d8ff7f6ab9f0558a19286af6aba0601ace9975
36c2a16152e7f2d59cea60aff63c3409bfa9e0a9e66ae09f13452bc1de6e1dfb
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.19.1%2Cenv%3Aproduction%2Cservice%3Aknowledge-web%2Cversion%3A2.0.0&dd-api-key=pub6d4afde3839a07b93841ada70173b8c0&dd-evp-origin-version=4.19.1&dd-evp-origin=browser&dd-request-id=f919ba56-6fe4-4680-a181-75d8def0a699&batch_time=1675538124263 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 12536
Origin: https://knowledge.udacity.com
Connection: keep-alive
Referer: https://knowledge.udacity.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
date: Sat, 04 Feb 2023 19:14:47 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 249 kB IP 216.58.211.3:0
Size 249 kB (249208 bytes)
Hash c804aa75a23220478c65aa9fb9f61902
85079e047468fdc1b7392215ed35ea41aa32ad10
88312618dd97a96a13fb6b4cacadf7438e3167053c3fb1decf23e412cc3a3679
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.35200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://auth.udacity.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 09:41:19 GMT
expires: Wed, 31 Jan 2024 09:41:19 GMT
cache-control: public, max-age=31536000
age: 380009
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sentry.io/api/1829925/envelope/?sentry_key=3d58e697e5ff4a5db4efc72851a2c1ed&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.11.1
35.188.42.15200 OK 2 B URL HTTP/1.1 sentry.io/api/1829925/envelope/?sentry_key=3d58e697e5ff4a5db4efc72851a2c1ed&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.11.1
IP 35.188.42.15:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/1829925/envelope/?sentry_key=3d58e697e5ff4a5db4efc72851a2c1ed&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.11.1 HTTP/1.1
Host: sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://auth.udacity.com
Content-Length: 432
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 19:14:48 GMT
Content-Type: application/json
Content-Length: 2
Connection: keep-alive
access-control-allow-origin: https://auth.udacity.com
access-control-expose-headers: retry-after, x-sentry-rate-limits, x-sentry-error
vary: Origin
x-envoy-upstream-service-time: 0
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash b4f35a242e261a860976ba0809191df5
0df8d9e0a82470f1ddaabb59f97d95b31dcb4a60
ea524dfd10b10a02510b1b4d56583dc78599065ca969a8dc7cc07451b740fdfc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:14:48 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 18:44:39 GMT
Expires: Wed, 08 Feb 2023 18:44:38 GMT
Etag: "0df8d9e0a82470f1ddaabb59f97d95b31dcb4a60"
Cache-Control: max-age=343189,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945bb3b5f90b515-OSL
tag.simpli.fi/sifitag/00e6f2b0-52be-013a-c1d3-06a60fe5fe77
34.90.223.176200 OK 3.1 kB URL HTTP/2 tag.simpli.fi/sifitag/00e6f2b0-52be-013a-c1d3-06a60fe5fe77
IP 34.90.223.176:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3100)
Hash 3624fae90940d5d2c532ab1c6d5c58e5
cdda3726ec28c860d4814c3917b2717f7420bfae
19878b9187c78ed5116d61cb3f236bd1f8178c0360d510afafedb0ecd524ec2a
GET /sifitag/00e6f2b0-52be-013a-c1d3-06a60fe5fe77 HTTP/1.1
Host: tag.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 3101
set-cookie: suid=9DC3C0747C49465AB2E4BDEA90A0F29B; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:48 GMT; SameSite=none; Secure;
suid_legacy=9DC3C0747C49465AB2E4BDEA90A0F29B; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:48 GMT; Secure;
x-request-id: F0C1A5Iqo97aKDjZWeoC
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=0, private, must-revalidate, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT, Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
tag.simpli.fi/sifitag/827c67f0-4414-013a-99d9-06b4c2516bae
34.90.223.176200 OK 3.1 kB URL HTTP/2 tag.simpli.fi/sifitag/827c67f0-4414-013a-99d9-06b4c2516bae
IP 34.90.223.176:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3100)
Hash 3624fae90940d5d2c532ab1c6d5c58e5
cdda3726ec28c860d4814c3917b2717f7420bfae
19878b9187c78ed5116d61cb3f236bd1f8178c0360d510afafedb0ecd524ec2a
GET /sifitag/827c67f0-4414-013a-99d9-06b4c2516bae HTTP/1.1
Host: tag.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 3101
set-cookie: suid=C309891AEF384D78BF5E84441DE1BF41; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:48 GMT; SameSite=none; Secure;
suid_legacy=C309891AEF384D78BF5E84441DE1BF41; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:48 GMT; Secure;
x-request-id: F0C1A5KJlc93zCPZWepC
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=0, private, must-revalidate, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT, Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 0817f4622d4d5284b3263ae1a6fcad5e
00e06f34894aebc50a1e7abe14a8e9b611bd2893
a069e013c941688979b91ff0b8ee2d3c6058937d1200f72380d8a83e884d9193
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=129254
Date: Sat, 04 Feb 2023 19:14:48 GMT
Etag: "63ddeeee-1d7"
Expires: Mon, 06 Feb 2023 07:09:02 GMT
Last-Modified: Sat, 04 Feb 2023 05:36:46 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: bzxA8c27WreQKoaTAG9IChq1_O0olKTv2mobagOoEYLMpKd1w-e0zQ==
Age: 5536
ext.chtbl.com/trackable.js
143.204.55.19200 OK 4.1 kB URL HTTP/2 ext.chtbl.com/trackable.js
IP 143.204.55.19:0
File type ASCII text, with very long lines (4092), with no line terminators
Hash 4a494dbb82444463b6fd8bff0e5593d6
16bc1f3f18d87fa93ab1c49a99eb50097ed892f5
27dc4f62298834987d3d8e5608c1af94c82ee3d18ee31858d39e0202697b5308
GET /trackable.js HTTP/1.1
Host: ext.chtbl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
content-length: 4092
last-modified: Fri, 12 Feb 2021 20:28:32 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 18:57:52 GMT
cache-control: max-age=3600
etag: "4a494dbb82444463b6fd8bff0e5593d6"
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iBDBbmWdhRk2aHn6gTBjAWDZvUXaSwnhlQFQor_8BnYS4j6v2OWTVg==
age: 1025
X-Firefox-Spdy: h2
d.impactradius-event.com/A2196549-ea12-4308-bf0b-5abde092433a1.js
35.186.249.72200 OK 14 kB URL HTTP/2 d.impactradius-event.com/A2196549-ea12-4308-bf0b-5abde092433a1.js
IP 35.186.249.72:0
File type C source, ASCII text, with very long lines (45107), with no line terminators
Hash 2b258a9739e374627d709726fc0572f9
62c1463de1204bce0b2885c4003564f4b481f692
6043a0a787066972a9321900830ff09485c62f6bbd4898670be9245ac9929570
GET /A2196549-ea12-4308-bf0b-5abde092433a1.js HTTP/1.1
Host: d.impactradius-event.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduJOKYuYM7dIrnVhbo9Y4S3qezfWWLA1boH-cKnP8NsXBslb0j5XJCOmBqmObODe4NTh9Zr3HRCck3QWFEl5jTWR4un0HtE
vary: X-Goog-Allowed-Resources,Accept-Encoding
x-goog-generation: 1669883420817141
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13517
content-encoding: gzip
x-goog-hash: crc32c=cpNnmw==, md5=KyWKlznjdGJ9cJcm/AVy+Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 13517
access-control-allow-origin: *
server: UploadServer
date: Sat, 04 Feb 2023 19:14:48 GMT
expires: Sat, 04 Feb 2023 19:19:48 GMT
cache-control: public,max-age=900,s-maxage=300
last-modified: Thu, 01 Dec 2022 08:30:20 GMT
etag: "2b258a9739e374627d709726fc0572f9"
content-type: text/javascript; charset=utf-8
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash b4f35a242e261a860976ba0809191df5
0df8d9e0a82470f1ddaabb59f97d95b31dcb4a60
ea524dfd10b10a02510b1b4d56583dc78599065ca969a8dc7cc07451b740fdfc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:14:48 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 18:44:39 GMT
Expires: Wed, 08 Feb 2023 18:44:38 GMT
Etag: "0df8d9e0a82470f1ddaabb59f97d95b31dcb4a60"
Cache-Control: max-age=343189,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945bb3cc92cb515-OSL
ocsp.pki.goog/s/gts1d4/8LrdngCjPfo
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/8LrdngCjPfo
IP 216.58.211.3:0
Hash 356e33e62894235d8a06e9f09775666f
162de8a2356fc8b7e351002a78f832d437b5248c
0d837ddb0344255b402f9687c27a6ecce2b7312f96ffed1399cd3ba9e66364b1
POST /s/gts1d4/8LrdngCjPfo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:48 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7884
Expires: Sat, 04 Feb 2023 21:26:12 GMT
Date: Sat, 04 Feb 2023 19:14:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7884
Expires: Sat, 04 Feb 2023 21:26:12 GMT
Date: Sat, 04 Feb 2023 19:14:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: f95a2821-ae89-4ea9-93b2-43e570285df3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEC3FyboAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8078-7e2177f11d5715d4092cad2c;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dcFgY5x3Ef0J__7wGn3llTjZ9as5nX1H4HErIT3VlKfeQaQTjymW2g==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:33 GMT
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
age: 75855
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G8F3Fflod6HB4QFtjpD09xzi-2LKPw_DBJT0PKYKU3bs3pvOwO_LRw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:32 GMT
age: 75856
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 114e345e134986d7451148fcea31b29d
541e878afee68c8802bb52b0cbbe5a5a0a185392
5030244d4babd1023166f39c935029d789a91ba90aa3a44c6f4c88ddc947b678
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8211
x-amzn-requestid: 6a1fd567-b34d-4787-aa05-5b7db3fc51c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fflRBHU4IAMFnsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61c06-2d1ec3206d2ebeb4780a84b4;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:11:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUloQ6xaRWpnvMRh7kFvFIWhFotmILLZHfD_YK01RmrQ2vmYKVh46w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 03:08:59 GMT
age: 57949
etag: "541e878afee68c8802bb52b0cbbe5a5a0a185392"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b5c35cdff2fb0758db780212b0b1f77
edbb557a3bf57128467335685aebbd4831d802f8
e0fa59843073ba8bd171c66610bc1b3d59a1a94c4991e6023507b9453ca0edba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9349
x-amzn-requestid: ecd1913d-7dbe-4ffd-ba85-0549aab51a06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyayOGPlIAMFQ7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dda4da-6a9b8d146155fa8b6c1c02d6;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 00:20:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jGBEz2d-SXXPBZhwlJgR4w248y-NY2c-18euLre5PULjWUIfhfUmNQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 00:20:43 GMT
etag: "edbb557a3bf57128467335685aebbd4831d802f8"
content-type: image/jpeg
age: 68045
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:48:04 GMT
age: 77204
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 75867
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/8LrdngCjPfo
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/8LrdngCjPfo
IP 216.58.211.3:0
Hash 356e33e62894235d8a06e9f09775666f
162de8a2356fc8b7e351002a78f832d437b5248c
0d837ddb0344255b402f9687c27a6ecce2b7312f96ffed1399cd3ba9e66364b1
POST /s/gts1d4/8LrdngCjPfo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:48 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
web.chtbl.com/track
143.204.55.125200 OK 49 B IP 143.204.55.125:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d082a3018d8d388ba8a05bbfd201e397
5a6271ee38cdebb71cdfcd8e05c4fac26e59389e
bb30148d9df7671c14f2cd5be91e6b7a1488932efb740a80b66f39052744c168
OPTIONS /track HTTP/1.1
Host: web.chtbl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://auth.udacity.com/
Origin: https://auth.udacity.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 49
date: Sat, 04 Feb 2023 19:14:48 GMT
server: uvicorn
access-control-allow-methods: OPTIONS,POST
access-control-allow-headers: *
access-control-allow-origin: *
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rmCxtiWdrrZBRJIflswdkFhnwQUqGSE6VVjt00TBNkUiBBRKlB2F_g==
X-Firefox-Spdy: h2
cdn.amplitude.com/libs/amplitude-5.2.2-min.gz.js
54.230.245.120200 OK 18 kB URL HTTP/2 cdn.amplitude.com/libs/amplitude-5.2.2-min.gz.js
IP 54.230.245.120:0
File type ASCII text, with very long lines (55078)
Hash b568e7b3c9d94da6a1d4845b18400f7a
e58022b19f4f38c0721c356057bd2311d08c49d6
8f1fc46d5ddd2fa579f686ac25bcf5d6348b635127debc9a6a7b8643d850a60c
GET /libs/amplitude-5.2.2-min.gz.js HTTP/1.1
Host: cdn.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 17889
date: Sun, 08 Jan 2023 09:26:25 GMT
last-modified: Mon, 21 Oct 2019 15:45:34 GMT
etag: "b568e7b3c9d94da6a1d4845b18400f7a"
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: aZB1RIRJqET7nosqRtOBVideRuh0jIV6
accept-ranges: bytes
server: AmazonS3
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hVaXLUUz9iSPZFb2HqgmYnLGXTUHK3Fo-qIHMylzPKh1mxkqDvkbWQ==
age: 2368104
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 42f7bb86070a306c0902a2947bfd5db1
679751d86f7520d1e5e30b5bc050015450de75a7
ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Sat, 04 Feb 2023 19:14:48 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ac85d3e0a8ec2827b2e3f0eca3336919
4b630e134dcb05e77c44e313f22f2214b51841a2
d1747dfa46c4ca2dcc3239bd1376ae7401b4b3e7b8d260dc4162b9b8208cd6f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4255
Cache-Control: max-age=140914
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:48 GMT
Etag: "63de217b-1d7"
Expires: Mon, 06 Feb 2023 10:23:22 GMT
Last-Modified: Sat, 04 Feb 2023 09:12:27 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 0974917b3fab2b783da788f95c94971e
01401513da20f3e150e8f7387fee5a0557d98452
742bae0bb18ebe4ad05939dc2b8da03fd8aa1b9611e3626d7bc4f13af5aa89dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.162200 OK 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 04 Feb 2023 19:14:48 GMT
expires: Sat, 04 Feb 2023 19:14:48 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3683895561922378665
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49958
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion_async.js
142.250.74.98200 OK 15 kB URL HTTP/2 www.googleadservices.com/pagead/conversion_async.js
IP 142.250.74.98:0
File type ASCII text, with very long lines (1654)
Hash 74ace29e686ae4445710506fba552bd5
f09b4d13010f36b8f3efb0442b3d6e616e26a643
f655be0a03ae5bb0d71fae713a55c95462e40c688c2154221ba8c95d94917ff1
GET /pagead/conversion_async.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 04 Feb 2023 19:14:48 GMT
expires: Sat, 04 Feb 2023 19:14:48 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 10376002428160754156
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15164
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.221.16200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.221.16:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: caszHT9kUwAd/8ww/nBZHjzR1ROHiZFVFaROVTYSAqJxIoTWVO4VbeGOq+y6c7zwuYFMM0nckpCrIp/5AryeLA==
content-length: 27843
x-fb-trip-id: 1679558926
date: Sat, 04 Feb 2023 19:14:48 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5ac5aaa2dd1a2ab697244f3c0fe3b5b5
bb8a9aeb28cc645435760f3a9a57d85e295de419
d42327bb295e41a2b04efa1c2ad6094a3480d0010de10bb32600f4d17fe9f0d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ac85d3e0a8ec2827b2e3f0eca3336919
4b630e134dcb05e77c44e313f22f2214b51841a2
d1747dfa46c4ca2dcc3239bd1376ae7401b4b3e7b8d260dc4162b9b8208cd6f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4255
Cache-Control: max-age=140914
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:48 GMT
Etag: "63de217b-1d7"
Expires: Mon, 06 Feb 2023 10:23:22 GMT
Last-Modified: Sat, 04 Feb 2023 09:12:27 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
dc.ads.linkedin.com/collect/?pid=406745&conversionId=423748&fmt=gif
13.107.42.14302 Found 0 B URL HTTP/2 dc.ads.linkedin.com/collect/?pid=406745&conversionId=423748&fmt=gif
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect/?pid=406745&conversionId=423748&fmt=gif HTTP/1.1
Host: dc.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D406745%26conversionId%3D423748%26fmt%3Dgif%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQLOsiLqoZZ5QQAAAYYd2kNxlISWMkcAPzqax4JOUKMAtqoXSNePil8vohpAJ15496Wmk9jbkyug0w; Max-Age=2592000; Expires=Mon, 06 Mar 2023 19:14:48 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQJUUPfEeAs-ggAAAYYd2kNx3c10t0DJ5kuykt9BZXsMqZuav3Vmvef-dvi04hdrpH-g6f35Yu4RECRV4-Ja_Q; Max-Age=2592000; Expires=Mon, 06 Mar 2023 19:14:48 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&5d38ff54-f143-4a2a-8a32-98a657d6a228"; domain=.linkedin.com; Path=/; Secure; Expires=Sun, 04-Feb-2024 19:14:48 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675538088:t=1675624488:v=2:sig=AQEiE7poYo6NFDhOGyzEgPOqgXl1T-tV"; Expires=Sun, 05 Feb 2023 19:14:48 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXz5JyXNffg7Lq0dDUkTA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A1BE1A97209A4FF1AF35C86AC26517F3 Ref B: OSL30EDGE0317 Ref C: 2023-02-04T19:14:48Z
date: Sat, 04 Feb 2023 19:14:48 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 4869996247036dae2a82e2857fee1766
2418a61397554c71ae478679a98de688748a1b42
f680797aafc60f9a7800f73b5a139e5dd3df7d8bf10acb8a8f99e3cc2e312b05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
web.chtbl.com/track
143.204.55.125200 OK 49 B IP 143.204.55.125:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d082a3018d8d388ba8a05bbfd201e397
5a6271ee38cdebb71cdfcd8e05c4fac26e59389e
bb30148d9df7671c14f2cd5be91e6b7a1488932efb740a80b66f39052744c168
POST /track HTTP/1.1
Host: web.chtbl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json;charset=UTF-8
Content-Length: 861
Origin: https://auth.udacity.com
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 49
date: Sat, 04 Feb 2023 19:14:48 GMT
server: uvicorn
access-control-allow-methods: OPTIONS,POST
access-control-allow-headers: *
access-control-allow-origin: *
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: d8p9Nc6ueyz5Q6f4Qbl0UGoYQh5ta2QXMHYrPoYFKkx1ojWrBF7hqQ==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 5c174b3f4c983118ecd9de4a2dc96665
29ec250da031d36b4be53fa7effe07c480c8f6e0
239582331d94d909aedb3e5fe60f3397940bd07d7b23daefceebc8472e428e25
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1844
Cache-Control: max-age=148233
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:48 GMT
Etag: "63de477d-138"
Expires: Mon, 06 Feb 2023 12:25:21 GMT
Last-Modified: Sat, 04 Feb 2023 11:54:37 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 5c174b3f4c983118ecd9de4a2dc96665
29ec250da031d36b4be53fa7effe07c480c8f6e0
239582331d94d909aedb3e5fe60f3397940bd07d7b23daefceebc8472e428e25
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1844
Cache-Control: max-age=148233
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:48 GMT
Etag: "63de477d-138"
Expires: Mon, 06 Feb 2023 12:25:21 GMT
Last-Modified: Sat, 04 Feb 2023 11:54:37 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 312
dc.ads.linkedin.com/collect/?pid=406745&fmt=gif
13.107.42.14302 Found 0 B URL HTTP/2 dc.ads.linkedin.com/collect/?pid=406745&fmt=gif
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect/?pid=406745&fmt=gif HTTP/1.1
Host: dc.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D406745%26fmt%3Dgif%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQLuAAoRcrgDnwAAAYYd2kOKrPSAnGNEJRZpG0-7HOSjbK11wCczj6lPVwZ9yjqlkcFTM72BICAdtA; Max-Age=2592000; Expires=Mon, 06 Mar 2023 19:14:48 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQLpIJ-mvQxpLgAAAYYd2kOKj86PXb7Tb5behRv7QfMYZeB_fBtHVih6IR1Ti6E4c_xdN7fFfdc5v7e0RgQnag; Max-Age=2592000; Expires=Mon, 06 Mar 2023 19:14:48 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&33672397-a92b-4e40-8d61-20c1e6a36ffe"; domain=.linkedin.com; Path=/; Secure; Expires=Sun, 04-Feb-2024 19:14:48 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2426:u=1:x=1:i=1675538088:t=1675624488:v=2:sig=AQGMLsaoMBSbYgquI_7UA_ufZstLPfQe"; Expires=Sun, 05 Feb 2023 19:14:48 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXz5JyXu2wI5QCWW1acTQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: E2D291305C174260B6E68B8FA0CB823D Ref B: OSL30EDGE0317 Ref C: 2023-02-04T19:14:48Z
date: Sat, 04 Feb 2023 19:14:48 GMT
content-length: 0
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=6005efd0-f10e-4124-b664-861bc9bfded2&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5af6d889-edad-488b-9697-de63c5dc475f&tw_document_href=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv8k3&type=javascript&version=2.3.29
104.244.42.69200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=6005efd0-f10e-4124-b664-861bc9bfded2&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5af6d889-edad-488b-9697-de63c5dc475f&tw_document_href=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv8k3&type=javascript&version=2.3.29
IP 104.244.42.69:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=6005efd0-f10e-4124-b664-861bc9bfded2&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5af6d889-edad-488b-9697-de63c5dc475f&tw_document_href=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv8k3&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:48 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=72d556e1-41d3-4dd4-8a5a-fd6ff293fcaa; Max-Age=63072000; Expires=Mon, 03 Feb 2025 19:14:48 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 2049e44051162202
strict-transport-security: max-age=0
x-response-time: 107
x-connection-hash: b6923e7c2cf5da25a3363a254108507ac88133dbdbd7aee04a11bea2b242cd49
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=a1de4d68-074c-40cc-9de8-ce38fc30f429&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5af6d889-edad-488b-9697-de63c5dc475f&tw_document_href=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv8k3&type=javascript&version=2.3.29
104.244.42.69200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=a1de4d68-074c-40cc-9de8-ce38fc30f429&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5af6d889-edad-488b-9697-de63c5dc475f&tw_document_href=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv8k3&type=javascript&version=2.3.29
IP 104.244.42.69:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=a1de4d68-074c-40cc-9de8-ce38fc30f429&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5af6d889-edad-488b-9697-de63c5dc475f&tw_document_href=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv8k3&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:48 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=571fba47-1ca3-4bbd-8aad-49f421417117; Max-Age=63072000; Expires=Mon, 03 Feb 2025 19:14:48 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: f96d8ac08627c045
strict-transport-security: max-age=0
x-response-time: 105
x-connection-hash: b6923e7c2cf5da25a3363a254108507ac88133dbdbd7aee04a11bea2b242cd49
X-Firefox-Spdy: h2
ocsp.comodoca.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 7f6500984d576d60f2c14d6862600aa0
4c3a313c83c7c24d93096ddb2ab82137b26af1a7
76c2179b7329622efaeb7fd6af7442d5e6a5e5df8e6108359560aa9fee13b700
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:14:49 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 15:38:22 GMT
Expires: Sat, 11 Feb 2023 15:38:21 GMT
Etag: "4c3a313c83c7c24d93096ddb2ab82137b26af1a7"
Cache-Control: max-age=602447,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1095
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7945bb41080bb505-OSL
i.simpli.fi/p?cid=352880&cb=sifi_att_506501._hp
34.90.79.92200 OK 793 B URL HTTP/2 i.simpli.fi/p?cid=352880&cb=sifi_att_506501._hp
IP 34.90.79.92:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 69f5cdac7f7e186476a32461f9dce4b0
bf5ff273c202cde3964a1e1fd0a7b44671d0f741
d94c07e0412c557ff92392998262a2b418f34fb423bf5a4bd9dd54b1482c911c
GET /p?cid=352880&cb=sifi_att_506501._hp HTTP/1.1
Host: i.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:48 GMT
content-type: application/javascript; charset=UTF-8
set-cookie: suid=5A684B11856B4D24844DCAB58C40DEB6; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:48 GMT; SameSite=none; Secure;
suid_legacy=5A684B11856B4D24844DCAB58C40DEB6; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:48 GMT; Secure;
uid_syncd=true; path=/; expires=Sat, 11 Feb 2023 19:14:48 GMT; domain=.simpli.fi; secure
uid_syncd_secure=true; path=/; expires=Sat, 11 Feb 2023 19:14:48 GMT; domain=.simpli.fi; samesite=none; secure
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT, Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
um.simpli.fi/telaria_p
35.204.158.49302 Found 142 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /telaria_p HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://simplifi.partners.tremorhub.com/sync?UISF=8F32C52584D74ACFB8BEF30DD07CA0D2
set-cookie: suid=8F32C52584D74ACFB8BEF30DD07CA0D2; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=8F32C52584D74ACFB8BEF30DD07CA0D2; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/dtnx
35.204.158.49302 Found 142 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /dtnx HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://fei.pro-market.net/engine?du=24;csync=82E89671171043DB83C3D4845DC9D15C;mimetype=img;
set-cookie: suid=82E89671171043DB83C3D4845DC9D15C; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=82E89671171043DB83C3D4845DC9D15C; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/exelatem
35.204.158.49302 Found 142 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /exelatem HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://loadm.exelator.com/load/?p=204&g=2191&simid=A71329543FAC46B1BA1258DB214315D0&j=0
set-cookie: suid=A71329543FAC46B1BA1258DB214315D0; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=A71329543FAC46B1BA1258DB214315D0; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/yahoo
35.204.158.49200 OK 43 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /yahoo HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=5BC0B086C37E44178B4176FF2843524B; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=5BC0B086C37E44178B4176FF2843524B; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/beachfront
35.204.158.49302 Found 142 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /beachfront HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://sync.bfmio.com/sync?pid=141&uid=2B460568974F4A0095D550B8578B4B61
set-cookie: suid=2B460568974F4A0095D550B8578B4B61; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=2B460568974F4A0095D550B8578B4B61; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/bluekai
35.204.158.49302 Found 142 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /bluekai HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://stags.bluekai.com/site/29931?id=38A3AAA0D08C48E8B26C3474CFD14613
set-cookie: suid=38A3AAA0D08C48E8B26C3474CFD14613; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=38A3AAA0D08C48E8B26C3474CFD14613; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/crwdcntrl
35.204.158.49302 Found 142 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /crwdcntrl HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=8787AC60B90F49F183F7CDCC43A83A63
set-cookie: suid=8787AC60B90F49F183F7CDCC43A83A63; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=8787AC60B90F49F183F7CDCC43A83A63; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash c5a5b27f7e331c519773ac3a328a2e6a
9b75c49941e71bdd0157a940608abd7848c23e18
e06ac803cdbadab5944ca0c8ea2bded5718c80717b785936052b21e7e0937494
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6158
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Last-Modified: Sat, 04 Feb 2023 17:32:11 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 313
um.simpli.fi/lj_match
35.204.158.49302 Found 142 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /lj_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://ce.lijit.com/merge?pid=2&3pid=09247F852ADE407EA5D9510CB5240451
set-cookie: suid=09247F852ADE407EA5D9510CB5240451; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=09247F852ADE407EA5D9510CB5240451; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash c5a5b27f7e331c519773ac3a328a2e6a
9b75c49941e71bdd0157a940608abd7848c23e18
e06ac803cdbadab5944ca0c8ea2bded5718c80717b785936052b21e7e0937494
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6269
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Last-Modified: Sat, 04 Feb 2023 17:30:20 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
um.simpli.fi/liveramp_match
35.204.158.49302 Found 142 B URL HTTP/2 um.simpli.fi/liveramp_match
IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /liveramp_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://idsync.rlcdn.com/419566.gif?partner_uid=EED4206F96934F03BE8700B333E1C6E4
set-cookie: suid=EED4206F96934F03BE8700B333E1C6E4; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=EED4206F96934F03BE8700B333E1C6E4; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/spotx_match
35.204.158.49302 Found 142 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /spotx_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://sync.search.spotxchange.com/partner?adv_id=7797&uid=6AD2B67651D54A30940D3AEE5A243051
set-cookie: suid=6AD2B67651D54A30940D3AEE5A243051; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=6AD2B67651D54A30940D3AEE5A243051; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/an
35.204.158.49302 Found 142 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /an HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://ib.adnxs.com/setuid?entity=66&code=879FE0380F5E49D085D976A193187C40
set-cookie: suid=879FE0380F5E49D085D976A193187C40; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=879FE0380F5E49D085D976A193187C40; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/rb_match
35.204.158.49302 Found 142 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rb_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=CF0DAC1FBDCB48CB8461D597CB8C56DF&expires=365
set-cookie: suid=CF0DAC1FBDCB48CB8461D597CB8C56DF; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=CF0DAC1FBDCB48CB8461D597CB8C56DF; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash c5a5b27f7e331c519773ac3a328a2e6a
9b75c49941e71bdd0157a940608abd7848c23e18
e06ac803cdbadab5944ca0c8ea2bded5718c80717b785936052b21e7e0937494
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6158
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Last-Modified: Sat, 04 Feb 2023 17:32:11 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 313
um.simpli.fi/ox_match
35.204.158.49302 Found 142 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /ox_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://us-u.openx.net/w/1.0/sd?id=537072966&val=08BE163790DF4CDAA7112EFE06B75E9A
set-cookie: suid=08BE163790DF4CDAA7112EFE06B75E9A; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=08BE163790DF4CDAA7112EFE06B75E9A; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/triplelift
35.204.158.49302 Found 142 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /triplelift HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://eb2.3lift.com/xuid?mid=7969&xuid=6F6560F55F39472E9632F69E3E599709&dongle=yf3
set-cookie: suid=6F6560F55F39472E9632F69E3E599709; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=6F6560F55F39472E9632F69E3E599709; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/intentiq
35.204.158.49302 Found 142 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /intentiq HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=40BFE682DE43416FAECBE88D50F00F55
set-cookie: suid=40BFE682DE43416FAECBE88D50F00F55; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=40BFE682DE43416FAECBE88D50F00F55; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/ad_advisor
35.204.158.49302 Found 142 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /ad_advisor HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=A19229B98D9A4676B65DF09C775B7588
set-cookie: suid=A19229B98D9A4676B65DF09C775B7588; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=A19229B98D9A4676B65DF09C775B7588; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/tapad
35.204.158.49302 Found 142 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /tapad HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 142
location: https://pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=38AD7C1EB63A45DBABCD620748F8AB52
set-cookie: suid=38AD7C1EB63A45DBABCD620748F8AB52; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=38AD7C1EB63A45DBABCD620748F8AB52; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/freewheel
35.204.158.49200 OK 43 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /freewheel HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=E01EAB2718294AAEAD9632F123553539; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=E01EAB2718294AAEAD9632F123553539; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D406745%26conversionId%3D423748%26fmt%3Dgif%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D406745%26conversionId%3D423748%26fmt%3Dgif%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D406745%26conversionId%3D423748%26fmt%3Dgif%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?pid=406745&conversionId=423748&fmt=gif&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&669f9a57-3fdc-41a4-8fa5-6558c322cb1c"; Domain=.linkedin.com; Expires=Sun, 04-Feb-2024 19:14:49 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20230204191449a928001c-b4b5-4b48-8b39-c654a595ee5bAQHtLvx_S766lpY7BRO52wxVcoj7xNME"; Domain=.www.linkedin.com; Expires=Sun, 04-Feb-2024 19:14:49 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzU1MzgwODk7MjswMjEpLZUSVxGcYBi48MtFM4jL+GbrH/IoDfpAjoBuV09LKQ==; Domain=.linkedin.com; Expires=Thu, 03 Aug 2023 19:14:49 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675538089:t=1675624489:v=2:sig=AQF5tgiP-avDq8CfUm4QRHwdlsTYMH_G"; Expires=Sun, 05 Feb 2023 19:14:49 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXz5Jyfso//9T/+WLqBjA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 47E6F77C58234E35B71B42C6551A04D8 Ref B: OSL30EDGE0317 Ref C: 2023-02-04T19:14:49Z
date: Sat, 04 Feb 2023 19:14:48 GMT
content-length: 0
X-Firefox-Spdy: h2
um.simpli.fi/pubmatic
35.204.158.49200 OK 43 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pubmatic HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=293EC97BF896428D9B0BF8A8E1C94CE6; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=293EC97BF896428D9B0BF8A8E1C94CE6; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/g_match?id=&google_error=3
35.204.158.49204 No Content 0 B URL HTTP/2 um.simpli.fi/g_match?id=&google_error=3
IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /g_match?id=&google_error=3 HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 19:14:49 GMT
set-cookie: suid=96221C6BE9C64B3B8802F21FB0A203B9; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; SameSite=none; Secure;
suid_legacy=96221C6BE9C64B3B8802F21FB0A203B9; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:49 GMT; Secure;
expires: Fri, 03 Feb 2023 19:14:49 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
i.simpli.fi/p?cid=352880&cb=sifi_att_506501._hp
34.90.79.92200 OK 751 B URL HTTP/2 i.simpli.fi/p?cid=352880&cb=sifi_att_506501._hp
IP 34.90.79.92:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (751), with no line terminators
Hash 00a452dd918a0aaa6473192f8da5e146
13be87dc9df7a57b2be88c4669014e53f18203c8
ddaa13fc4464900ca97814b32c4c74e1e9b216d741a4f210abaaaefcae8b66fd
GET /p?cid=352880&cb=sifi_att_506501._hp HTTP/1.1
Host: i.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:48 GMT
content-type: application/javascript; charset=UTF-8
set-cookie: suid=A80EFE11B269408E8CA706586704C676; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:48 GMT; SameSite=none; Secure;
suid_legacy=A80EFE11B269408E8CA706586704C676; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:48 GMT; Secure;
uid_syncd=true; path=/; expires=Sat, 11 Feb 2023 19:14:48 GMT; domain=.simpli.fi; secure
uid_syncd_secure=true; path=/; expires=Sat, 11 Feb 2023 19:14:48 GMT; domain=.simpli.fi; samesite=none; secure
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT, Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
api.amplitude.com/
44.233.142.9200 OK 7 B IP 44.233.142.9:0
File type ASCII text, with no line terminators
Hash 260ca9dd8a4577fc00b7bd5810298076
53a5687cb26dc41f2ab4033e97e13adefd3740d6
aee408847d35e44e99430f0979c3357b85fe8dbb4535a494301198adbee85f27
POST / HTTP/1.1
Host: api.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 1294
Origin: https://auth.udacity.com
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html;charset=utf-8
content-length: 7
access-control-allow-origin: *
access-control-allow-methods: GET, POST
trace-id: Root=1-63deaea9-7a62c86e202f4a95705eb5c4
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 621b586028d5acaf29b8777ca0872ce1
9d2a358576d0acab58e2eacf7765b686cee9181f
a7c99a5217e394c715679780ae1e3e60202653547212b0a4fd2efab0e1a01015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash de88149c85daf1f2f8f183d16f581394
4b88639d92a9defef7e575ff50f00348d7a4fc91
5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.twitter.com/i/adsct?txn_id=nv8k3&p_id=Twitter&tw_sale_amount=0&tw_order_quantity=0
104.244.42.3200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?txn_id=nv8k3&p_id=Twitter&tw_sale_amount=0&tw_order_quantity=0
IP 104.244.42.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?txn_id=nv8k3&p_id=Twitter&tw_sale_amount=0&tw_order_quantity=0 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:49 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_IeEs5ygODsFg3Gk6eHncWg=="; Max-Age=63072000; Expires=Mon, 03 Feb 2025 19:14:49 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 05eac41209b334c4
strict-transport-security: max-age=631138519
x-response-time: 111
x-connection-hash: 89c0226a3ba70274b667c0e6582d785b4470c51435418049a84826bf16e4d3ae
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=6005efd0-f10e-4124-b664-861bc9bfded2&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5af6d889-edad-488b-9697-de63c5dc475f&tw_document_href=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv8k3&type=javascript&version=2.3.29
104.244.42.3200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=6005efd0-f10e-4124-b664-861bc9bfded2&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5af6d889-edad-488b-9697-de63c5dc475f&tw_document_href=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv8k3&type=javascript&version=2.3.29
IP 104.244.42.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=6005efd0-f10e-4124-b664-861bc9bfded2&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5af6d889-edad-488b-9697-de63c5dc475f&tw_document_href=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv8k3&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:49 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_pBCijRxvIlCkMxdcYXuosQ=="; Max-Age=63072000; Expires=Mon, 03 Feb 2025 19:14:49 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 0f763acc8bd349a1
strict-transport-security: max-age=631138519
x-response-time: 111
x-connection-hash: 89c0226a3ba70274b667c0e6582d785b4470c51435418049a84826bf16e4d3ae
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/872720222/?random=1675538125683&cv=9&fst=1675537200000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2F%3Breferrer%3Dhttps%3A%2F%2Fknowledge.udacity.com%2F%3Bsearch%3D%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Btitle%3DUdacity%3Burl%3Dhttps%3A%2F%2Fauth.udacity.com%2F%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&async=1&fmt=3&is_vtc=1&random=1550261915&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
216.58.211.4200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/872720222/?random=1675538125683&cv=9&fst=1675537200000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2F%3Breferrer%3Dhttps%3A%2F%2Fknowledge.udacity.com%2F%3Bsearch%3D%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Btitle%3DUdacity%3Burl%3Dhttps%3A%2F%2Fauth.udacity.com%2F%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&async=1&fmt=3&is_vtc=1&random=1550261915&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/872720222/?random=1675538125683&cv=9&fst=1675537200000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2F%3Breferrer%3Dhttps%3A%2F%2Fknowledge.udacity.com%2F%3Bsearch%3D%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Btitle%3DUdacity%3Burl%3Dhttps%3A%2F%2Fauth.udacity.com%2F%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&async=1&fmt=3&is_vtc=1&random=1550261915&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 19:14:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/872720222/?random=1675538125686&cv=9&fst=1675537200000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2Fsign-up%3Breferrer%3Dhttps%3A%2F%2Fknowledge.udacity.com%2F%3Bsearch%3D%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Btitle%3DUdacity%3Burl%3Dhttps%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Bcategory%3DSign%20Up%3Bname%3DSign%20Up&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&async=1&fmt=3&is_vtc=1&random=4254725489&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
216.58.211.4200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/872720222/?random=1675538125686&cv=9&fst=1675537200000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2Fsign-up%3Breferrer%3Dhttps%3A%2F%2Fknowledge.udacity.com%2F%3Bsearch%3D%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Btitle%3DUdacity%3Burl%3Dhttps%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Bcategory%3DSign%20Up%3Bname%3DSign%20Up&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&async=1&fmt=3&is_vtc=1&random=4254725489&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/872720222/?random=1675538125686&cv=9&fst=1675537200000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2Fsign-up%3Breferrer%3Dhttps%3A%2F%2Fknowledge.udacity.com%2F%3Bsearch%3D%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Btitle%3DUdacity%3Burl%3Dhttps%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Bcategory%3DSign%20Up%3Bname%3DSign%20Up&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&async=1&fmt=3&is_vtc=1&random=4254725489&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 19:14:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/1026675585/?random=2045052284&cv=7&fst=1675538088829&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY7KRCpWCywXy5qHAAg&random=874011754
216.58.211.4302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-conversion/1026675585/?random=2045052284&cv=7&fst=1675538088829&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY7KRCpWCywXy5qHAAg&random=874011754
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/1026675585/?random=2045052284&cv=7&fst=1675538088829&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY7KRCpWCywXy5qHAAg&random=874011754 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 19:14:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/1026675585/?random=2045052284&cv=7&fst=1675538088829&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY7KRCpWCywXy5qHAAg&random=874011754&ipr=y&prhg=0
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/872720222/?random=2032205528&cv=9&fst=1675538125680&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY_X9CYuzygXJ2LGABw&random=3260898005&resp=GooglemKTybQhCsO
216.58.211.4302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-conversion/872720222/?random=2032205528&cv=9&fst=1675538125680&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY_X9CYuzygXJ2LGABw&random=3260898005&resp=GooglemKTybQhCsO
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/872720222/?random=2032205528&cv=9&fst=1675538125680&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY_X9CYuzygXJ2LGABw&random=3260898005&resp=GooglemKTybQhCsO HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 19:14:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/872720222/?random=2032205528&cv=9&fst=1675538125680&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY_X9CYuzygXJ2LGABw&random=3260898005&resp=GooglemKTybQhCsO&ipr=y&prhg=0
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/872720222/?random=616349982&cv=9&fst=1675538125685&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY5-ACruWxdwP-ouVsAM&random=1675639985&resp=GooglemKTybQhCsO
216.58.211.4302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-conversion/872720222/?random=616349982&cv=9&fst=1675538125685&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY5-ACruWxdwP-ouVsAM&random=1675639985&resp=GooglemKTybQhCsO
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/872720222/?random=616349982&cv=9&fst=1675538125685&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY5-ACruWxdwP-ouVsAM&random=1675639985&resp=GooglemKTybQhCsO HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 19:14:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/872720222/?random=616349982&cv=9&fst=1675538125685&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY5-ACruWxdwP-ouVsAM&random=1675639985&resp=GooglemKTybQhCsO&ipr=y&prhg=0
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 621b586028d5acaf29b8777ca0872ce1
9d2a358576d0acab58e2eacf7765b686cee9181f
a7c99a5217e394c715679780ae1e3e60202653547212b0a4fd2efab0e1a01015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=a1de4d68-074c-40cc-9de8-ce38fc30f429&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5af6d889-edad-488b-9697-de63c5dc475f&tw_document_href=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv8k3&type=javascript&version=2.3.29
104.244.42.3200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=a1de4d68-074c-40cc-9de8-ce38fc30f429&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5af6d889-edad-488b-9697-de63c5dc475f&tw_document_href=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv8k3&type=javascript&version=2.3.29
IP 104.244.42.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=a1de4d68-074c-40cc-9de8-ce38fc30f429&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=5af6d889-edad-488b-9697-de63c5dc475f&tw_document_href=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv8k3&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:49 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_4rhAhpOuyKYAJIz+7xW4Sg=="; Max-Age=63072000; Expires=Mon, 03 Feb 2025 19:14:49 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 12e5c60674ba4e26
strict-transport-security: max-age=631138519
x-response-time: 109
x-connection-hash: 89c0226a3ba70274b667c0e6582d785b4470c51435418049a84826bf16e4d3ae
X-Firefox-Spdy: h2
ib.adnxs.com/setuid?entity=66&code=879FE0380F5E49D085D976A193187C40
37.252.173.215307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/setuid?entity=66&code=879FE0380F5E49D085D976A193187C40
IP 37.252.173.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?entity=66&code=879FE0380F5E49D085D976A193187C40 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 19:14:49 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3D879FE0380F5E49D085D976A193187C40
AN-X-Request-Uuid: 3399a819-514b-4e4f-99c3-d581e3f91a67
Set-Cookie: uuid2=841892281292766981; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 19:14:49 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash de88149c85daf1f2f8f183d16f581394
4b88639d92a9defef7e575ff50f00348d7a4fc91
5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/872720222/?random=1675538125686&cv=9&fst=1675537200000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2Fsign-up%3Breferrer%3Dhttps%3A%2F%2Fknowledge.udacity.com%2F%3Bsearch%3D%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Btitle%3DUdacity%3Burl%3Dhttps%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Bcategory%3DSign%20Up%3Bname%3DSign%20Up&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&async=1&fmt=3&is_vtc=1&random=4254725489&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/872720222/?random=1675538125686&cv=9&fst=1675537200000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2Fsign-up%3Breferrer%3Dhttps%3A%2F%2Fknowledge.udacity.com%2F%3Bsearch%3D%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Btitle%3DUdacity%3Burl%3Dhttps%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Bcategory%3DSign%20Up%3Bname%3DSign%20Up&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&async=1&fmt=3&is_vtc=1&random=4254725489&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/872720222/?random=1675538125686&cv=9&fst=1675537200000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2Fsign-up%3Breferrer%3Dhttps%3A%2F%2Fknowledge.udacity.com%2F%3Bsearch%3D%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Btitle%3DUdacity%3Burl%3Dhttps%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Bcategory%3DSign%20Up%3Bname%3DSign%20Up&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&async=1&fmt=3&is_vtc=1&random=4254725489&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 19:14:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/872720222/?random=1675538125683&cv=9&fst=1675537200000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2F%3Breferrer%3Dhttps%3A%2F%2Fknowledge.udacity.com%2F%3Bsearch%3D%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Btitle%3DUdacity%3Burl%3Dhttps%3A%2F%2Fauth.udacity.com%2F%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&async=1&fmt=3&is_vtc=1&random=1550261915&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/872720222/?random=1675538125683&cv=9&fst=1675537200000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2F%3Breferrer%3Dhttps%3A%2F%2Fknowledge.udacity.com%2F%3Bsearch%3D%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Btitle%3DUdacity%3Burl%3Dhttps%3A%2F%2Fauth.udacity.com%2F%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&async=1&fmt=3&is_vtc=1&random=1550261915&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/872720222/?random=1675538125683&cv=9&fst=1675537200000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2F%3Breferrer%3Dhttps%3A%2F%2Fknowledge.udacity.com%2F%3Bsearch%3D%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6%3Btitle%3DUdacity%3Burl%3Dhttps%3A%2F%2Fauth.udacity.com%2F%3Fnext%5C%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&async=1&fmt=3&is_vtc=1&random=1550261915&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 19:14:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=2197623860455254&ev=PageView&dl=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&rl=https%3A%2F%2Fknowledge.udacity.com%2F&if=false&ts=1675538126323&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675538126322.1085649447&it=1675538125722&coo=false&rqm=GET
157.240.221.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=2197623860455254&ev=PageView&dl=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&rl=https%3A%2F%2Fknowledge.udacity.com%2F&if=false&ts=1675538126323&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675538126322.1085649447&it=1675538125722&coo=false&rqm=GET
IP 157.240.221.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=2197623860455254&ev=PageView&dl=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-333f-4ce7-b172-184b9f790dc9%2526bsft_mime_type%253Dhtml%2526bsft_ek%253D2023-02-04T13%25253A28%25253A52Z%2526bsft_lx%253D2%2526bsft_tv%253D6&rl=https%3A%2F%2Fknowledge.udacity.com%2F&if=false&ts=1675538126323&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675538126322.1085649447&it=1675538125722&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 19:14:49 GMT
X-Firefox-Spdy: h2
www.google.no/pagead/1p-conversion/1026675585/?random=2045052284&cv=7&fst=1675538088829&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY7KRCpWCywXy5qHAAg&random=874011754&ipr=y&prhg=0
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-conversion/1026675585/?random=2045052284&cv=7&fst=1675538088829&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY7KRCpWCywXy5qHAAg&random=874011754&ipr=y&prhg=0
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/1026675585/?random=2045052284&cv=7&fst=1675538088829&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY7KRCpWCywXy5qHAAg&random=874011754&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 19:14:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-conversion/872720222/?random=2032205528&cv=9&fst=1675538125680&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY_X9CYuzygXJ2LGABw&random=3260898005&resp=GooglemKTybQhCsO&ipr=y&prhg=0
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-conversion/872720222/?random=2032205528&cv=9&fst=1675538125680&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY_X9CYuzygXJ2LGABw&random=3260898005&resp=GooglemKTybQhCsO&ipr=y&prhg=0
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/872720222/?random=2032205528&cv=9&fst=1675538125680&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY_X9CYuzygXJ2LGABw&random=3260898005&resp=GooglemKTybQhCsO&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 19:14:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-conversion/872720222/?random=616349982&cv=9&fst=1675538125685&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY5-ACruWxdwP-ouVsAM&random=1675639985&resp=GooglemKTybQhCsO&ipr=y&prhg=0
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-conversion/872720222/?random=616349982&cv=9&fst=1675538125685&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY5-ACruWxdwP-ouVsAM&random=1675639985&resp=GooglemKTybQhCsO&ipr=y&prhg=0
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/872720222/?random=616349982&cv=9&fst=1675538125685&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fauth.udacity.com%2Fsign-up%3Fnext%3Dhttps%253A%252F%252Fknowledge.udacity.com%252F%253Fbsft_aaid%253D17bf3774-8c65-47da-9a84-c4f6169cf022%2526bsft_eid%253D90dbe19e-4064-1919-a4cb-d8e804fe7dc0%2526utm_campaign%253Dent_600_auto_ndxxx_3day-checkin_global%2526utm_source%253Dblueshift%2526utm_medium%253Demail%2526utm_content%253Dent_600_auto_ndxxx_3day-checkin_global%2526bsft_clkid%253Dbc334481-b184-4645-9227-efdabba3857a%2526bsft_uid%253Decb4c403-d960-4f34-8e3c-f0a35b0df825%2526bsft_mid%253Dadc2caba-dc82-4caa-bcf3-72b0c0315cfe%2526bsft_txnid%253Df0c62dc8-3&ref=https%3A%2F%2Fknowledge.udacity.com%2F&tiba=Sign%20Up%20-%20Udacity&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=qa7eY5-ACruWxdwP-ouVsAM&random=1675639985&resp=GooglemKTybQhCsO&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 19:14:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3D879FE0380F5E49D085D976A193187C40
37.252.173.215200 OK 43 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3D879FE0380F5E49D085D976A193187C40
IP 37.252.173.215:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fsetuid%3Fentity%3D66%26code%3D879FE0380F5E49D085D976A193187C40 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 19:14:49 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: dd351b17-ef18-45b7-9df3-52a14101037d
Set-Cookie: anj=dTM7k!M4.FE:2jUF']wIg2E>9kDVaz!]tbPl1N!7On*M$=BWP$ieuA]k^^KOjGHPheTFDCeV@ThiIuAti+.Wpe)Ddqm0bi./X%W#.wL4W1Qw2-.Zi9F; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 19:14:49 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 8077210062c315b98902cb06c74d485b
808e94ac31f1b45185103ce25c1bc2afd056b17a
78871f45de0c58bffa6a86b50f6bd0db61932bf6a2b7d8191dba0f0eaab628b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.amplitude.com/
44.233.142.9200 OK 7 B IP 44.233.142.9:0
File type ASCII text, with no line terminators
Hash 260ca9dd8a4577fc00b7bd5810298076
53a5687cb26dc41f2ab4033e97e13adefd3740d6
aee408847d35e44e99430f0979c3357b85fe8dbb4535a494301198adbee85f27
POST / HTTP/1.1
Host: api.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 3804
Origin: https://auth.udacity.com
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html;charset=utf-8
content-length: 7
access-control-allow-origin: *
access-control-allow-methods: GET, POST
trace-id: Root=1-63deaea9-54143e2932c964494283882e
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.usertrust.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash cc0f9dc9f5bb9f248bf66e68243a3cad
d74233c50aad8aa66a489c954773de4945d63704
f2d52f955ace992856ca665b00ad3453d609aa9739ea88db5cf31b6fe9f44e45
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:14:49 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 10:10:18 GMT
Expires: Wed, 08 Feb 2023 10:10:17 GMT
Etag: "d74233c50aad8aa66a489c954773de4945d63704"
Cache-Control: max-age=603325,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 706
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7945bb447c92b4fd-OSL
stags.bluekai.com/site/29931?id=38A3AAA0D08C48E8B26C3474CFD14613
184.24.45.23200 OK 62 B URL HTTP/2 stags.bluekai.com/site/29931?id=38A3AAA0D08C48E8B26C3474CFD14613
IP 184.24.45.23:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3f386f5061436a0338a64e0910db495d
599fe4a552c991a2b3ce5a1660732bf7b21fb901
0af3aae90b7de9fdceee2ab421378ea2f54c74be81ef43fc6c1790a032755d80
GET /site/29931?id=38A3AAA0D08C48E8B26C3474CFD14613 HTTP/1.1
Host: stags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 62
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Sat, 04 Feb 2023 19:14:49 GMT
set-cookie: bku=blx99vZrlZwkQNLY; Path=/; Domain=.bluekai.com; Expires=Fri, 04 Aug 2023 19:14:49 GMT; Secure; SameSite=None
bkpa=KJy9nyexd02pSUHknp/8mE1hwtkAwE1TxEBOxDWyHe9TxpxTHECY1Mje1pxlBWBsHeW6BMWp9y9ojyrS; Path=/; Domain=.bluekai.com; Expires=Fri, 04 Aug 2023 19:14:49 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
fei.pro-market.net/engine?du=24;csync=82E89671171043DB83C3D4845DC9D15C;mimetype=img;
107.178.240.89302 Found 0 B URL HTTP/2 fei.pro-market.net/engine?du=24;csync=82E89671171043DB83C3D4845DC9D15C;mimetype=img;
IP 107.178.240.89:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /engine?du=24;csync=82E89671171043DB83C3D4845DC9D15C;mimetype=img; HTTP/1.1
Host: fei.pro-market.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: Apache-Coyote/1.1
p3p: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
anserver: gapp-eu-4.c.datonics-gcp-01.internal
set-cookie: anProfile="1+1+1f=1+1g=2+1j=57:1+rs=s+rt=5B5A2A9A+s2=(rpklgp)"; Domain=.pro-market.net; Max-Age=15552000; Path=/; Secure; SameSite=None;
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: Mon, 1 Jan 1990 0:0:0 GMT
access-control-allow-origin: *
location: https://fei.pro-market.net/engine?du=24;csync=82E89671171043DB83C3D4845DC9D15C;mimetype=img;sr
content-type: image/gif
content-length: 0
date: Sat, 04 Feb 2023 19:14:49 GMT
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 20b8d61b25284d1677b2910b2d159fc7
2beeda9e6ee348bb33d5a9c7df292b1c9e695b8f
7fdb76517fb8233a46125e5bd41cc39935b98542dfc7e84a018b049682019794
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3730
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Last-Modified: Sat, 04 Feb 2023 18:12:39 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
px.ads.linkedin.com/collect?pid=406745&conversionId=423748&fmt=gif&liSync=true
13.107.42.14200 OK 65 B URL HTTP/2 px.ads.linkedin.com/collect?pid=406745&conversionId=423748&fmt=gif&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 8b0d5b18476ae12e2476f3621d54c4a5
2ad669e9d207fbb37e84dda25766dbaeb66d792c
2d7244b6960d26ae56f048f162f02949ca7858be19d9349ec82906e56dfa3cfe
GET /collect?pid=406745&conversionId=423748&fmt=gif&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 65
content-type: image/gif
content-encoding: gzip
vary: Accept-Encoding
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&19c031d6-3d39-491b-8ebb-802abaa99f02"; domain=.linkedin.com; Path=/; Secure; Expires=Sun, 04-Feb-2024 19:14:49 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2453:u=1:x=1:i=1675538089:t=1675624489:v=2:sig=AQESQUIkCnTzwbjf6KG3zsNQXgxN612L"; Expires=Sun, 05 Feb 2023 19:14:49 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXz5Jyktyu9vvWhBR2sUQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 91104EA167F0473B93E1C770A526D4E1 Ref B: OSL30EDGE0317 Ref C: 2023-02-04T19:14:49Z
date: Sat, 04 Feb 2023 19:14:49 GMT
X-Firefox-Spdy: h2
fei.pro-market.net/engine?du=24;csync=82E89671171043DB83C3D4845DC9D15C;mimetype=img;sr
107.178.240.89200 OK 43 B URL HTTP/2 fei.pro-market.net/engine?du=24;csync=82E89671171043DB83C3D4845DC9D15C;mimetype=img;sr
IP 107.178.240.89:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 968c3ad2c1183fee0bf0dd479f7904b7
1d770800ecb05eb9133f9b51620c9e4349656859
3331a0486cb3e8a75c8c2fdf02bf80fd8fe2b811dfe5c7b4aa892d38bfcf604a
GET /engine?du=24;csync=82E89671171043DB83C3D4845DC9D15C;mimetype=img;sr HTTP/1.1
Host: fei.pro-market.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache-Coyote/1.1
p3p: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
anserver: gapp-eu-4.c.datonics-gcp-01.internal
set-cookie: anProfile="0+1+1f=1+1g=2+1j=57:1+rs=s+rt=5B5A2A9A+s2=(rpklgp)"; Domain=.pro-market.net; Max-Age=15552000; Path=/; Secure; SameSite=None;
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: Mon, 1 Jan 1990 0:0:0 GMT
access-control-allow-origin: *
content-type: image/gif
content-length: 43
date: Sat, 04 Feb 2023 19:14:49 GMT
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?adv_id=7797&uid=6AD2B67651D54A30940D3AEE5A243051
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7797&uid=6AD2B67651D54A30940D3AEE5A243051
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?adv_id=7797&uid=6AD2B67651D54A30940D3AEE5A243051 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 Feb 2023 19:14:49 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=31fd403a-a4c0-11ed-85c8-1f6fc1870506; expires=Sat, 04-Mar-2023 19:14:49 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=7797&uid=6AD2B67651D54A30940D3AEE5A243051&__user_check__=1&sync_id=31fd40a2-a4c0-11ed-85c8-1f6fc1870506
X-fe: 10
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 002fa82ebebbd1a977edc8e3a43c0d79
ca06b53ec573796a982c2a4dc3f94921a67b04c5
0f5e1f4b509129c31083285e52e2cc1988ea6d951acc648f3f953600cb5104c7
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 04 Feb 2023 19:14:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 03 Feb 2023 23:05:34 GMT
Expires: Sat, 04 Feb 2023 23:05:34 GMT
ETag: "ca06b53ec573796a982c2a4dc3f94921a67b04c5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3f8339d975c6001faa880572833aea0b
cafb35ff51580b6a1a22e65a0f7556bad9915e5c
fe2ad633f43c1dd5de1f62c298ae983af789323eca4d676ce680471c85ed3e82
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3969
Cache-Control: max-age=161179
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Etag: "63de71c3-1d7"
Expires: Mon, 06 Feb 2023 16:01:08 GMT
Last-Modified: Sat, 04 Feb 2023 14:54:59 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
px.ads.linkedin.com/collect?pid=406745&fmt=gif&liSync=true
13.107.42.14200 OK 65 B URL HTTP/2 px.ads.linkedin.com/collect?pid=406745&fmt=gif&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 8b0d5b18476ae12e2476f3621d54c4a5
2ad669e9d207fbb37e84dda25766dbaeb66d792c
2d7244b6960d26ae56f048f162f02949ca7858be19d9349ec82906e56dfa3cfe
GET /collect?pid=406745&fmt=gif&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 65
content-type: image/gif
content-encoding: gzip
vary: Accept-Encoding
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&c402711d-89ad-4975-8a5e-f246eacfc979"; domain=.linkedin.com; Path=/; Secure; Expires=Sun, 04-Feb-2024 19:14:49 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2426:u=1:x=1:i=1675538089:t=1675624489:v=2:sig=AQH_zEo5qD5fMMqUHnjMR3pmquqVxXlK"; Expires=Sun, 05 Feb 2023 19:14:49 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXz5Jyk+cmuRlxJEgAiJg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 24B2E00A73564618B284A828B4843CE1 Ref B: OSL30EDGE0317 Ref C: 2023-02-04T19:14:49Z
date: Sat, 04 Feb 2023 19:14:49 GMT
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 33b4dcac47176829c3f733cf485b00d8
2f0ca8dfa8106b51602e1c9cd6a5b1e31254c924
d258d8a0ec6ed7cf9fb2ee6de730c0380adde3a3c656e10f046a56f140307f2c
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 468
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Last-Modified: Sat, 04 Feb 2023 19:07:01 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
sync.search.spotxchange.com/partner?adv_id=7797&uid=6AD2B67651D54A30940D3AEE5A243051&__user_check__=1&sync_id=31fd40a2-a4c0-11ed-85c8-1f6fc1870506
185.94.180.126200 OK 43 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7797&uid=6AD2B67651D54A30940D3AEE5A243051&__user_check__=1&sync_id=31fd40a2-a4c0-11ed-85c8-1f6fc1870506
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /partner?adv_id=7797&uid=6AD2B67651D54A30940D3AEE5A243051&__user_check__=1&sync_id=31fd40a2-a4c0-11ed-85c8-1f6fc1870506 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 19:14:49 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=32039335-a4c0-11ed-a493-129210fe0106; expires=Sat, 04-Mar-2023 19:14:49 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 98
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 8b01e823dcdb0bc93def67791b99c1ff
c2b1ff308d5b27a776259ed5696ee0854e586c77
7be7f84db702ba6b520c773d6422eaf7e1ee519485a030057713a74618e3be2d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=165654
Date: Sat, 04 Feb 2023 19:14:49 GMT
Etag: "63de922d-1d7"
Expires: Mon, 06 Feb 2023 17:15:43 GMT
Last-Modified: Sat, 04 Feb 2023 17:13:17 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5H5BZ1Cy_cdWcQJszkmHPGAnk7sLxNInqSEIT_8h7Rd7F99DHF-nkA==
Age: 146
loadm.exelator.com/load/?p=204&g=2191&simid=A71329543FAC46B1BA1258DB214315D0&j=0
34.254.143.3204 No Content 0 B URL HTTP/2 loadm.exelator.com/load/?p=204&g=2191&simid=A71329543FAC46B1BA1258DB214315D0&j=0
IP 34.254.143.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /load/?p=204&g=2191&simid=A71329543FAC46B1BA1258DB214315D0&j=0 HTTP/1.1
Host: loadm.exelator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sat, 04 Feb 2023 19:14:49 GMT
cache-control: no-cache
x-powered-by: Undertow/1
access-control-allow-credentials: true
p3p: policyref=/w3c/p3p.xml, CP=NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA, policyref=/w3c/p3p.xml, CP=NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA
X-Firefox-Spdy: h2
bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=8787AC60B90F49F183F7CDCC43A83A63
52.208.98.204404 Not Found 49 B URL HTTP/2 bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=8787AC60B90F49F183F7CDCC43A83A63
IP 52.208.98.204:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
GET /map/c=7625/tp=SIMP/tpid=8787AC60B90F49F183F7CDCC43A83A63 HTTP/1.1
Host: bcp.crwdcntrl.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: image/gif
content-length: 49
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.24.230
access-control-allow-origin: *
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 7d1b3aee35892ad3630e76123d6ea87b
715d5f74de75912c721ac85fff8d99f31c095905
26db0797915d5ab7123e52ab0acf361d6ea09551212dc0523f47ccc4e3ca0ad8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5474
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Last-Modified: Sat, 04 Feb 2023 17:43:35 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 727
us-u.openx.net/w/1.0/sd?id=537072966&val=08BE163790DF4CDAA7112EFE06B75E9A
34.98.64.218200 OK 43 B URL HTTP/2 us-u.openx.net/w/1.0/sd?id=537072966&val=08BE163790DF4CDAA7112EFE06B75E9A
IP 34.98.64.218:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /w/1.0/sd?id=537072966&val=08BE163790DF4CDAA7112EFE06B75E9A HTTP/1.1
Host: us-u.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: image/gif
content-length: 43
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 78a82e2279e081ee2bd2aebd2df7d998
6768c02cb5f8dc6a93a7a33a1be8b0531f1156e1
37139034b5d88f08c251fbb1fcd3d01281583013f0f73bd37bee8f50ca8abeed
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4072
Cache-Control: max-age=111601
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Etag: "63ddafb2-1d7"
Expires: Mon, 06 Feb 2023 02:14:50 GMT
Last-Modified: Sat, 04 Feb 2023 01:06:58 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash f3e44103b7d170e0970d552139f257ae
4a5eda54bdc74bbc9fc5ae7486ea6dcc5d6242b6
5f18e1b8be9ba4e548ef84c1892d62939ca947b0820a5cffa31941bae51a98f1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 19:14:49 GMT
Last-Modified: Sat, 04 Feb 2023 18:59:52 GMT
Server: ECS (nyb/1D1D)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vFdhPhGG-v9FlWFs5PtPTOMV3fYYfngQwYiN7Lp5mabo2GeQOxlt6g==
Age: 897
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 33b4dcac47176829c3f733cf485b00d8
2f0ca8dfa8106b51602e1c9cd6a5b1e31254c924
d258d8a0ec6ed7cf9fb2ee6de730c0380adde3a3c656e10f046a56f140307f2c
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5915
Cache-Control: max-age=163111
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Etag: "63de71b6-1d7"
Expires: Mon, 06 Feb 2023 16:33:20 GMT
Last-Modified: Sat, 04 Feb 2023 14:54:46 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash b65347944aea406bf169e59c048b0750
2be690743340a63565e7d587622ac821b69390da
b38f37bf496e311006f62f49fc72ea7083b02bc7123bd93d2bb59a5c94907562
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 04 Feb 2023 19:14:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 03 Feb 2023 21:41:45 GMT
Expires: Sat, 04 Feb 2023 21:41:45 GMT
ETag: "2be690743340a63565e7d587622ac821b69390da"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=CF0DAC1FBDCB48CB8461D597CB8C56DF&expires=365
69.173.144.165204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=CF0DAC1FBDCB48CB8461D597CB8C56DF&expires=365
IP 69.173.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6286&nid=2132&put=CF0DAC1FBDCB48CB8461D597CB8C56DF&expires=365 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: cc9654c54e9aa67bf2b10be1073297a8
Content-Type: image/gif
sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=40BFE682DE43416FAECBE88D50F00F55
143.204.237.93403 Forbidden 986 B URL HTTP/2 sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=40BFE682DE43416FAECBE88D50F00F55
IP 143.204.237.93:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4c8aa85250bebcd4cb4b955451ef22bf
4a838412740f5c7161161e9a63c429ed4a28d0f4
e74bc85dd339282d74ac5c821d3c288f5bd3fc3be21c29634d55c7272f10ea6b
GET /profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=40BFE682DE43416FAECBE88D50F00F55 HTTP/1.1
Host: sync.intentiq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: CloudFront
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: text/html
content-length: 986
x-cache: Error from cloudfront
via: 1.1 a14ac175c5535de44ce87bfddfa7ddbe.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C1
x-amz-cf-id: KaaV5ta09DyPo-aCM5bZZEgnC35Jfg37F0qgXpGFzJ0LTq-TxiJTLg==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8c1b36d8a05cb6576b75952399224a1c
cb7c4f893d6693e89e0ffda4ddf07969b8c85141
74774be8f4182a194d07e6834d118c4ba409d1cfa12c7fc8a3a4c1283353d0f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5331
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Last-Modified: Sat, 04 Feb 2023 17:45:58 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ce.lijit.com/merge?pid=2&3pid=09247F852ADE407EA5D9510CB5240451
72.251.249.13204 No Content 0 B URL HTTP/1.1 ce.lijit.com/merge?pid=2&3pid=09247F852ADE407EA5D9510CB5240451
IP 72.251.249.13:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge?pid=2&3pid=09247F852ADE407EA5D9510CB5240451 HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Sat, 04 Feb 2023 19:14:49 GMT
X-MERGE: GDPR Optout true
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
Expires: Fri, 20 Mar 2009 00:00:00 GMT
P3P: CP="CUR ADM OUR NOR STA NID"
X-Sovrn-Pod: ad_ap2ams1
pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=38AD7C1EB63A45DBABCD620748F8AB52
35.227.248.159302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=38AD7C1EB63A45DBABCD620748F8AB52
IP 35.227.248.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive?partner_id=2305&partner_device_id=38AD7C1EB63A45DBABCD620748F8AB52 HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 19:14:49 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1675538089919;Expires=Wed, 05 Apr 2023 19:14:49 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=ebd6a194-ea19-42a8-909c-f606527c7aa4;Expires=Wed, 05 Apr 2023 19:14:49 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=38AD7C1EB63A45DBABCD620748F8AB52
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 559e28226cae3d9dcc05a4b3b2397e9d
9554456b30a6948aceb7102906e93342907b065f
13c46ddee7d04c6128ab27034d24127c18bb40c5a053da4f641209eb9f693445
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 19:14:49 GMT
Last-Modified: Sat, 04 Feb 2023 19:14:33 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dTFBXcjlC6E8WLBefnAt5KsxHV0Aa6mVGcEGfbxJtOXSDcbQOzdv6A==
Age: 16
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8c1b36d8a05cb6576b75952399224a1c
cb7c4f893d6693e89e0ffda4ddf07969b8c85141
74774be8f4182a194d07e6834d118c4ba409d1cfa12c7fc8a3a4c1283353d0f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5331
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:14:49 GMT
Last-Modified: Sat, 04 Feb 2023 17:45:58 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
sync.bfmio.com/sync?pid=141&uid=2B460568974F4A0095D550B8578B4B61
54.82.132.12204 0 B URL HTTP/1.1 sync.bfmio.com/sync?pid=141&uid=2B460568974F4A0095D550B8578B4B61
IP 54.82.132.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=141&uid=2B460568974F4A0095D550B8578B4B61 HTTP/1.1
Host: sync.bfmio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204
Date: Sat, 04 Feb 2023 19:14:49 GMT
Set-Cookie: __141_cid=2B460568974F4A0095D550B8578B4B61; Domain=.bfmio.com; Expires=Sun, 04-Feb-2024 19:14:49 GMT; Path=/
__io_cid=a5dbe92d09c935b5447c6746659c69c22f776bad; Domain=.bfmio.com; Expires=Sun, 04-Feb-2024 19:14:49 GMT; Path=/
Connection: keep-alive
pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=38AD7C1EB63A45DBABCD620748F8AB52
35.227.248.159200 OK 95 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=38AD7C1EB63A45DBABCD620748F8AB52
IP 35.227.248.159:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /idsync/ex/receive/check?partner_id=2305&partner_device_id=38AD7C1EB63A45DBABCD620748F8AB52 HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:49 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1675538089960;Expires=Wed, 05 Apr 2023 19:14:49 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=a0470cbb-0a88-4cf1-88ac-568709635c9c;Expires=Wed, 05 Apr 2023 19:14:49 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_3WAY_SYNCS=;Expires=Wed, 05 Apr 2023 19:14:49 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
content-type: image/png
content-length: 95
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
eb2.3lift.com/xuid?mid=7969&xuid=6F6560F55F39472E9632F69E3E599709&dongle=yf3
76.223.111.18200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=7969&xuid=6F6560F55F39472E9632F69E3E599709&dongle=yf3
IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=7969&xuid=6F6560F55F39472E9632F69E3E599709&dongle=yf3 HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 8a41a6e5225635ecc02de9eabd9a472b
585d12a70f821899fdfad9c09cc87fc46cac9ea0
997fff4ada3bc79630777b4f847861230bb5ae6c58627220d8ef2c693bb92cbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:14:49 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 13:42:56 GMT
Expires: Wed, 08 Feb 2023 13:42:55 GMT
Etag: "585d12a70f821899fdfad9c09cc87fc46cac9ea0"
Cache-Control: max-age=325085,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945bb451b9ab515-OSL
idsync.rlcdn.com/419566.gif?partner_uid=EED4206F96934F03BE8700B333E1C6E4
35.244.174.68451 Unavailable For Legal Reasons 0 B URL HTTP/2 idsync.rlcdn.com/419566.gif?partner_uid=EED4206F96934F03BE8700B333E1C6E4
IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /419566.gif?partner_uid=EED4206F96934F03BE8700B333E1C6E4 HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Sat, 04 Feb 2023 19:14:50 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 8a41a6e5225635ecc02de9eabd9a472b
585d12a70f821899fdfad9c09cc87fc46cac9ea0
997fff4ada3bc79630777b4f847861230bb5ae6c58627220d8ef2c693bb92cbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:14:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 13:42:56 GMT
Expires: Wed, 08 Feb 2023 13:42:55 GMT
Etag: "585d12a70f821899fdfad9c09cc87fc46cac9ea0"
Cache-Control: max-age=325084,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945bb46de03b515-OSL
d.agkn.com/pixel/10751/?che=1675538089863&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D216493104417002878763
54.220.35.26302 0 B URL HTTP/1.1 d.agkn.com/pixel/10751/?che=1675538089863&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D216493104417002878763
IP 54.220.35.26:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/10751/?che=1675538089863&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D216493104417002878763 HTTP/1.1
Host: d.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Cache-Control: no-cache, must-revalidate
Date: Sat, 04 Feb 2023 19:14:49 GMT
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Location: https://um.simpli.fi/aa_px?sk=216493104417002878763
P3P: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Set-Cookie: ab=0001%3AITE6OvgQXGqUlxm4eYkVIaXhe3EtG%2F0b;Path=/;Domain=agkn.com;Max-Age=31536000;SameSite=None;Secure
u=C|0AAArcWsqK3FrKgAAAAAA;Path=/;Domain=agkn.com;Max-Age=31536000;SameSite=None;Secure
Content-Length: 0
Connection: keep-alive
um.simpli.fi/aa_px?sk=216493104417002878763
35.204.158.49302 Found 142 B URL HTTP/2 um.simpli.fi/aa_px?sk=216493104417002878763
IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /aa_px?sk=216493104417002878763 HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 19:14:50 GMT
content-type: text/html
content-length: 142
set-cookie: suid=7A2DD3AE396C4E9DBD08BABDBC4A55E9; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:50 GMT; SameSite=none; Secure;
suid_legacy=7A2DD3AE396C4E9DBD08BABDBC4A55E9; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:50 GMT; Secure;
location: /empty.gif
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/empty.gif
35.204.158.49200 OK 43 B IP 35.204.158.49:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /empty.gif HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:50 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=0FB460FB1D67408B8D7FBB75DBC844B6; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:50 GMT; SameSite=none; Secure;
suid_legacy=0FB460FB1D67408B8D7FBB75DBC844B6; Path=/; domain=simpli.fi; Expires=Mon, 05-Feb-24 19:14:50 GMT; Secure;
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
knowledge.udacity.com/?bsft_aaid=17bf3774-8c65-47da-9a84-c4f6169cf022&bsft_eid=90dbe19e-4064-1919-a4cb-d8e804fe7dc0&utm_campaign=ent_600_auto_ndxxx_3day-checkin_global&utm_source=blueshift&utm_medium=email&utm_content=ent_600_auto_ndxxx_3day-checkin_global&bsft_clkid=bc334481-b184-4645-9227-efdabba3857a&bsft_uid=ecb4c403-d960-4f34-8e3c-f0a35b0df825&bsft_mid=adc2caba-dc82-4caa-bcf3-72b0c0315cfe&bsft_txnid=f0c62dc8-333f-4ce7-b172-184b9f790dc9&bsft_mime_type=html&bsft_ek=2023-02-04T13%3A28%3A52Z&bsft_lx=2&bsft_tv=6
104.18.4.237200 OK 0 B URL HTTP/2 knowledge.udacity.com/?bsft_aaid=17bf3774-8c65-47da-9a84-c4f6169cf022&bsft_eid=90dbe19e-4064-1919-a4cb-d8e804fe7dc0&utm_campaign=ent_600_auto_ndxxx_3day-checkin_global&utm_source=blueshift&utm_medium=email&utm_content=ent_600_auto_ndxxx_3day-checkin_global&bsft_clkid=bc334481-b184-4645-9227-efdabba3857a&bsft_uid=ecb4c403-d960-4f34-8e3c-f0a35b0df825&bsft_mid=adc2caba-dc82-4caa-bcf3-72b0c0315cfe&bsft_txnid=f0c62dc8-333f-4ce7-b172-184b9f790dc9&bsft_mime_type=html&bsft_ek=2023-02-04T13%3A28%3A52Z&bsft_lx=2&bsft_tv=6
IP 104.18.4.237:0
GET /?bsft_aaid=17bf3774-8c65-47da-9a84-c4f6169cf022&bsft_eid=90dbe19e-4064-1919-a4cb-d8e804fe7dc0&utm_campaign=ent_600_auto_ndxxx_3day-checkin_global&utm_source=blueshift&utm_medium=email&utm_content=ent_600_auto_ndxxx_3day-checkin_global&bsft_clkid=bc334481-b184-4645-9227-efdabba3857a&bsft_uid=ecb4c403-d960-4f34-8e3c-f0a35b0df825&bsft_mid=adc2caba-dc82-4caa-bcf3-72b0c0315cfe&bsft_txnid=f0c62dc8-333f-4ce7-b172-184b9f790dc9&bsft_mime_type=html&bsft_ek=2023-02-04T13%3A28%3A52Z&bsft_lx=2&bsft_tv=6 HTTP/1.1
Host: knowledge.udacity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:46 GMT
content-type: text/html; charset=utf-8
cf-ray: 7945bb313a340b59-OSL
age: 3849
cache-control: public, max-age=120
etag: W/"4165548027ccbb61d05707bb81345728"
expires: Sat, 04 Feb 2023 23:14:46 GMT
last-modified: Fri, 27 Jan 2023 19:10:30 GMT
strict-transport-security: max-age=15552000; includeSubDomains
cf-cache-status: HIT
content-security-policy: frame-ancestors 'none'
x-content-type-options: nosniff
x-frame-options: DENY
set-cookie: __cf_bm=DLjr_QhB8FM5fZB_0v_rae43GYa7ZN7SSGJc7u7fjMg-1675538086-0-AU0LjjbzKioW8z26x1P0lAPNDDyEwIAawdHU3Rgi2/YI93zqkZy+VeN6Lgp6nV/Q5RwQTy3DHzjtNcNdUlepdLca1tiw31k/bPdqxsFXy7pV; path=/; expires=Sat, 04-Feb-23 19:44:46 GMT; domain=.udacity.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,400,600,400italic|Source+Code+Pro:400
142.250.74.138200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400,600,400italic|Source+Code+Pro:400
IP 142.250.74.138:0
GET /css?family=Open+Sans:300,400,600,400italic|Source+Code+Pro:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledge.udacity.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 19:14:46 GMT
date: Sat, 04 Feb 2023 19:14:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
imp.i115008.net/xur/11298
34.107.161.65200 OK 0 B URL HTTP/2 imp.i115008.net/xur/11298
IP 34.107.161.65:0
POST /xur/11298 HTTP/1.1
Host: imp.i115008.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Origin: https://auth.udacity.com
Connection: keep-alive
Referer: https://auth.udacity.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
access-control-allow-origin: https://auth.udacity.com
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Sat, 04 Feb 2023 19:14:48 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
set-cookie: brwsr=314784a0-a4c0-11ed-ae48-f7e789e11fb9; Domain=.i115008.net; Path=/; Secure; Max-Age=62208000; Expires=Fri, 24 Jan 2025 19:14:48 GMT; HttpOnly; SameSite=None
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 19:14:48 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=A19229B98D9A4676B65DF09C775B7588
3.67.120.212302 Found 0 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=A19229B98D9A4676B65DF09C775B7588
IP 3.67.120.212:0
GET /adscores/g.pixel?sid=9201915418&sifi_uid=A19229B98D9A4676B65DF09C775B7588 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 19:14:49 GMT
location: https://d.agkn.com/pixel/10751/?che=1675538089863&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D216493104417002878763
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3AQrgWQ3Z%2B%2FaG1kgdqO1s%2FHYLIA4QBQGRL; Path=/; Domain=.agkn.com; Expires=Sun, 04-Feb-2024 19:14:49 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
simplifi.partners.tremorhub.com/sync?UISF=8F32C52584D74ACFB8BEF30DD07CA0D2
54.236.111.218200 OK 0 B URL HTTP/2 simplifi.partners.tremorhub.com/sync?UISF=8F32C52584D74ACFB8BEF30DD07CA0D2
IP 54.236.111.218:0
GET /sync?UISF=8F32C52584D74ACFB8BEF30DD07CA0D2 HTTP/1.1
Host: simplifi.partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.udacity.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:14:49 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2